| Time |
Presentation/Activity |
Presenter |
| 8:00 AM-8:30 AM |
Check In and Continental Breakfast
|
|
| 8:30 AM-9:15 AM |
Will We Be Able to Pick the Red Pill in 20 Years?
This presentation takes that question seriously, not philosophically, but neurologically. Drawing exclusively from peer-reviewed research in neuroscience, cognitive psychology, and clinical medicine, it shows what happens when AI removes effort, recall, struggle, and independent problem-solving. This presentation takes that question seriously, not philosophically, but neurologically. Drawing exclusively from peer-reviewed research in neuroscience, cognitive psychology, and clinical medicine, it shows what happens when AI removes effort, recall, struggle, and independent problem-solving from daily work. EEG studies, longitudinal analyses, and human–AI experiments point to the same pattern: reduced cognitive load changes how the brain engages. Memory weakens, executive function declines, skills erode quietly, even among experts, often without detection.
The deeper risk isn’t productivity, it’s agency. Cognitive delegation trains people to accept outputs rather than interrogate them, narrowing attention, softening judgment, reshaping volition itself. This is not an anti-AI talk. It argues for cognitive parity, for humans who can still challenge, override, and collaborate meaningfully with intelligent systems. The red pill remains available, but only if we preserve the capacity to reach for it.
|
Cody Burrows, CISO, Cyber Perimeter Security LLC
Experienced Executive; with a demonstrated history of working in the security industry internationally. Able to lead numerous teams through modern Cloud and advanced security issues with a background in penetration testing, architecture and engineering. Skilled in bridging the gaps between the C-Suite, middle management down to the administrator level. Extensive proficiency in large corporate environments, Data Centers, PCI, OWASP, NIST and SANS standards. Certified CISSP, GPEN, Ethical Hacking and graduated from Navy Electronic Submarine School, Groton, CT., Excelsior College and UC Santa Cruz. Expertise in multiple verticals such as military, DoD/Government contracting, Financial, Pharmaceuticals and Leisure.
|
| 9:15 AM-10:00 AM |
What If Everything We Know About Cybersecurity Is Wrong? Reimagining Cybersecurity Strategy from a Systems Theory Lens
Cybersecurity spending surpasses $200 billion annually, yet breaches keep accelerating. More tools, more frameworks, more analysts, inherent silos, and still we fall further behind. What if the problem isn't investment or talent gap, but the system itself?
This session introduces Systems Theory to cybersecurity strategy, drawing from Peter Senge's The Fifth Discipline and Possibility Science. Through two archetypes, Shifting the Burden and Eroding Goals, attendees will see how common practices create the very cycles that keep organizations insecure.
Cybersecurity is not a linear problem. It is a complex, interconnected system, and until we treat it as one, no amount of spending will change the outcome.
|
 Danny Magallanes, Founder, Host, Producer of Podcast: Inclusive Cyber, Inclusive Cyber
Danny Magallanes, a U.S. military veteran, former FBI Analyst, and consultant with extensive intelligence and cybersecurity experience, has forged a versatile career marked by leadership, innovation, and notable achievements across public and private sectors. Danny is currently host and producer of Inclusive Cyber Video Podcast. Danny served as a senior manager at Accenture where he built and led the development of a cyber threat intelligence program to protect the 2020 Census and led intelligence, threat emulation, pentesting teams. At Cigna, he served as the Director of the Fusion Cell where he led and matured Cyber Threat Intelligence, Threat Hunt, and Adversary Simulation teams. Currently, he is a Senior Director of a global Security Engineering team within a News and Entertainment Company.
|
| 10:00 AM-10:30 AM |
Networking Break
|
|
| 10:30 AM-11:15 AM |
Developing a Mature Access Strategy for the GenAI Era
Synopsis:
As enterprises race to adopt Generative AI, a critical blind spot is emerging; one that most organizations won’t catch until it’s too late. GenAI systems do not follow traditional access rules, and without intentional guardrails, these tools can surface sensitive information simply because they can access it, not because users should see it. In this session, Field CTO Kraig Faulkner breaks down the unseen risks of GenAI-driven data exposure, drawing from potential real-world scenarios that highlight how quickly innocuous queries can turn into major security incidents.
Key Takeaways:
Attendees will learn why legacy access models like RBAC don’t translate cleanly to AI systems, how data sprawl amplifies the danger, and what modern approaches, such as Data Security Posture Management, and AI-aligned classification strategies, can do to restore control.
This presentation delivers pragmatic, consultative guidance for leaders seeking to safely harness GenAI without compromising their data estate. You’ll leave with a clearer understanding of where your organization is vulnerable today and a roadmap for maturing access governance in an AI-powered future.
- Why GenAI bypasses traditional access assumptions—and how to fix it
- How data visibility, classification, and governance must evolve for AI
- Practical steps to build AI-ready access controls and reduce business risk
- A consultative blueprint for aligning GenAI adoption with enterprise security goals
|
Kraig Faulkner, Field CTO, Infolock
Mr. Faulkner is responsible for helping customers and partners become technically enabled to reduce critical data risk and drive successful technology-driven outcomes. As a leader with expertise in information technology and digital safety across an array of industries, he brings a devout passion for assessing business risk and protecting systems from advanced attacks. He understands the consequences associated with leaving data unprotected in an ever-evolving technology-driven world and constantly evangelizes alignment between business units to protect sensitive data – from endpoint to cloud.
|
| 11:15 AM-12:00 PM |
Back to Basics: Auditing AI with the Fundamentals You Already Own
Key Takeaways:
- Leverage Existing Tools and Controls
You don’t need to reinvent the wheel — foundational audit principles and existing governance frameworks can be adapted to assess AI systems effectively.
- Apply Time-Tested Risk Management
Traditional risk management practices (e.g., access controls, data lineage, change management) remain relevant and powerful when auditing AI models and workflows.
- Build Confidence Through Familiar Methods
By using tools and processes you already trust, you can establish a strong baseline for AI oversight without waiting for new regulations or technologies to catch up.
|
Edward Watabe, SVP, AlixPartners
Edward is an experienced information and cybersecurity professional specializing in Technology GRC, technology audit, and shaping security strategy across diverse industries using best practices such as NIST. Known for a pragmatic and risk-based approach to security, Edward has successfully led initiatives in developing and managing technology audit programs, ensuring compliance, and advancing emerging cybersecurity principles. While Edward's core expertise lies in traditional cybersecurity domains, like many others, he has begun exploring the intersection of AI and security. His current focus includes understanding the implications of using AI within the enterprise through a security lens and assessing what this means for clients. Edward is actively collaborating with peers across the industry and beyond to address these challenges, ensuring that innovation aligns with robust security principles. Edward has been invited to speak at events ranging from executive client engagements to sessions for new professionals entering the cybersecurity field. His growing interest in AI reflects a commitment to staying ahead of emerging technologies while maintaining a strong security-first mindset.
|
| 12:00 PM-1:30 PM |
Lunch and Annual Chapter Update + Student Case Competition Awards
|
|
| 1:30 PM-2:15 PM |
Mike Ellerhorst Session - Topic Underway
|
Mike Ellerhorst, Founder and CEO, NTM Advisory
Mike is the Founder and CEO of NTM Advisory. He embraces disruption, brings calm to chaos, and enjoys delivering transformation programs to solve complex and challenging problems. He is a proven leader of diverse international teams successfully delivering to clients primarily in the financial services, healthcare, and retail industries. Mike has over 15 years of Consulting and Industry experience – bringing the perspective of both a trusted advisor and a practitioner who has had to make hard decisions and deal with the consequences. Mike built his foundation of expertise with over a decade of experience at PwC across the Cybersecurity and Privacy, IT Infrastructure, Cloud Computing, and Advisory practices. He has designed and run security and privacy programs as a CISO and is an expert at efficiently using resources to pragmatically mitigate IT and business risks. He holds the ITIL Foundations Certification and previously held the AWS Solutions Architect certification. He is also an experienced project and program manager and held the Certified Associate in Project Management (CAPM) from the Project Management Institute. Mike holds a Bachelor's degree in Computer Science from the University of Notre Dame, and a Global Executive MBA from the Fuqua School of Business at Duke University, including embedded learning and professional experiences on 4 continents (Shanghai, New Delhi, Santiago, Berlin, and Durham, NC).
|
| 2:15 PM-3:00 PM |
Why AI Fails -- The Leadership Discipline Behind the 5% Who Succeed
This presentation takes that question seriously, not philosophically, but neurologically. Drawing exclusively from peer-reviewed research in neuroscience, cognitive psychology, and clinical medicine, it shows what happens when AI removes effort, recall, struggle, and independent problem-solving from
|
Neil Morris, VP of Global IT, Redaptive, Inc
Neil D. Morris is a transformational technology executive who bridges the gap between innovation and authentic leadership to drive sustainable business outcomes. Currently serving as Head of IT at Redaptive, Inc., Neil brings over two decades of experience leading digital transformation initiatives across aerospace, defense, telecommunications, and sustainable technology sectors. Neil champions a human-centered approach to technology leadership. His philosophy centers on the belief that successful digital transformation requires cultural evolution alongside technical innovation—a perspective shaped by navigating complex M\&A integrations at Ball Aerospace and Maxar Technologies, where he led teams of 300+ professionals and managed budgets exceeding $80 million annually. Neil's expertise spans enterprise architecture, cloud transformation, cybersecurity governance, and IT/OT convergence. He has architected solutions supporting millions of customers, consolidated data centers to achieve 77% reduction in deployment cycles, and delivered first-year savings exceeding $15 million through strategic technology initiatives. His leadership during the BAE Systems acquisition of Ball Aerospace exemplified his ability to maintain operational continuity while driving innovation during pivotal transitions. What distinguishes Neil is his authentic leadership journey—rising to C-suite positions through non-traditional education paths while balancing family responsibilities including special needs advocacy. This personal resilience informs his commitment to building inclusive, innovative organizations where diverse perspectives drive breakthrough solutions. He believes that the most effective technology leaders are those who embrace vulnerability, champion their teams, and recognize that sustainable success comes from aligning technological capabilities with human potential. As an Orbie-nominated CIO and sought-after speaker, Neil shares insights on AI strategy implementation, building resilient IT organizations, and navigating career pivots in technology leadership. His mission extends beyond operational excellence to empowering the next generation of technology leaders to embrace both innovation and authenticity in their journey to the C-suite. Neil holds a Master's in Information Systems Management and Bachelor's in Business Management from the University of Phoenix, proving that determination and continuous learning can overcome any perceived limitations.
|
| 3:00 PM-3:30 PM |
|
|
| 3:30 PM-4:15 PM |
The Cyber Resilience Act (CRA) Survival Guide: What You Need to Do to Comply and Sell Your Products in the European Union
To sell products with a digital component in the European Union (EU) companies must comply with the Cyber Resilience Act (CRA). The first major enforcement deadline of the EU Cyber Resilience Act (CRA) arrives on September 11, 2026. Security by design is no longer a best practice—it’s the law. If your product has digital elements and you want to sell in the EU, you face a new reality of mandatory CE marking, vulnerability reporting, and strict support timelines.
In this session, we strip away the legal jargon to focus on the operational reality. I’ll lay out the timeline, identify product categories, break down the CRA’s core requirements, reporting requirements, highlight CRA required technical documentation artifacts, and provide a practical roadmap to guide development lifecycles in light of the new standard before the enforcement window closes.
This session quickly moves beyond the "what" of the regulation and dives into the "how" of technical compliance. We will break down the immediate mandatory reporting requirements for actively exploited vulnerabilities and address key points for the looming 2027 deadline for full CE marking.
|
Alise Rivas, Global Cybersecurity Manager, Trimble
Alise Rivas, MBA, MS, CISM, is a Global Cybersecurity Manager at Trimble, Inc., where she currently focuses on GRC. Alise has over 20 years of experience in Cybersecurity across multiple industries, including: healthcare, aerospace, hardware, and software. Alise has a proven track record of building enterprise-level security programs from the ground up, overhauling floundering security programs, and building security culture throughout international corporations. She holds a Master’s in Cybersecurity from Regis University, an MBA from Boston University, and a CISM certification.
|
| 4:15 PM-6:00 PM |
|
|