Topic 1: Instituting a Boredom-Free Cyber Awareness Culture
Brief: It is easy to send emails to users, but very difficult to institute cyber awareness. At the end of the day, we must ask ourselves: Do our users care? Are they likely to notify us when cyber threats occur, to ignore them, or to "take the bait" and become another victim? Your organisation may be at any level of cyber maturity, but every company's security program needs to devote resources to building its culture through boredom-free security awareness training. Why the typical canned template training modules don't work on their own. How to implement incentives to help (and not hurt) your cyber program. Helping the workforce become more secure in their personal lives, leading to a more secure organisation. Making security awareness training fun through gamification and a spirit of competition.
Speaker Bio: Jeff Hoge is a Senior Cybersecurity Engineer at Echelon Risk + Cyber. He has worked in the information security and technology fields for 19 years. Prior to joining Echelon, he implemented and led the information security program at a regional healthcare insurer. His passion is helping individuals and organizations better defend themselves from cyber threats with an empathetic, relationship-oriented approach. Located in the Winston-Salem, NC area and originally from Virginia's New River Valley, he serves as the Vice-President of the Triad of NC ISSA chapter. Jeff loves spending time with his four children and enjoys being involved with community service.
Topic 2: Securing Cloud and Kubernetes workloads at Scale.
Brief: What tools are avalible to secure Cloud and Kubernetes How to be proactive in securing Kubernetes and Cloud workloads.
Speaker Bio: Senior Leader in Cybersecurity with 20+ years of experience in leading and managing comprehensive security programs to protect digital and emerging threats Develop a high-performing organization with experienced leaders who partner effectively across the organization’s security team to achieve shared outcomes. Build mechanisms for meaningful engagement with our product engineering teams on a shared security roadmap, coordinated with partner security teams, including the Product and Software Security, Cyber Operations and Technology GRC teams.