Beyond the Phish: Building Visibility & Pen Testing Maturity in Data Security - In Person
March 25, 2026 | 9:00 AM – 10:30 AM
1.5 CPE Credits (75 minutes including Q&A)
Cost
Session Title
Beyond the Phish: Building Visibility & Pen Testing Maturity in Data Security
Session Description
This session will explore how organizations can strengthen their data protection strategy by aligning visibility, Data Security Posture Management (DSPM), and penetration testing practices with leading cybersecurity frameworks.
We will examine the practical impact of testing across network, application, AI/ML, IoT, OT, and physical environments—and how results from these exercises can directly inform maturity progress using the CMMI Cybermaturity Platform.
Additionally, we’ll map penetration testing and DSPM efforts back to the CIS Top 3 Critical Controls—Inventory of Assets, Inventory of Software, and Data Protection—to demonstrate how organizations can make meaningful, measurable progress using their existing toolsets.
Speaker Bio
Heather Case Hall is a Senior Security Solutions Architect with nearly three decades of experience in IT and cybersecurity, including audit, incident response, and cloud security engineering.
She holds a Master’s degree in Cybersecurity & Information Assurance and maintains numerous industry certifications including CISSP, GPEN, GCFA, GCIH, GCWN, and more than a dozen GIAC credentials.
Heather currently leads strategic security programs at Myriad360, including the Penetration Testing Brokerage (PTB) and Data Security Health Assessments (DSHA). She frequently advises organizations on aligning penetration testing maturity with enterprise visibility and risk frameworks such as CMMI and NIST CSF.
Food & Drinks
Coordination in progress (local option under consideration: Travelers Coffee).