2015 North American International Cyber Summit Hosted by Michigan Governor Rick Snyder

Transcription

1 2015 North American International Cyber Summit Hosted by Michigan Governor Rick Snyder Monday, October 26, 2015 Monday, October 26, COBO Center, Detroit, MI Start Time Presentation 7:30 AM Registration, Continental Breakfast & Visit with Sponsors COBO Center - Detroit, MI Twitter Hashtag: #MICyberSummit As of October 16, :30 AM Presentation of the Colors by the Michigan State Police Color Guard and performance of the National Anthem by Men of Grace Welcome Speaker: 8:35 AM David Behen, DTMB Director and Michigan Chief Information Officer Local Welcome: 8:40 AM Beth Niblock, CIO, City of Detroit Keynote Speaker: 8:45 AM Michigan Governor Rick Snyder Featured Speaker: Reynold N. Hoover, Major General, USA, Director, Intelligence and Command, Control, Communications, and Computers and Chief 9:10 AM Information Officer

2 Keynote Speaker: You Have Already Been Hacked! How Do You Detect It? The OPM Story Description: Breach detection for the enterprise. Got to have it! What do you need to know? How does your technology work and what do you need to protect it? What questions should you ask, what tools do you need? Ben Cotton was on the frontline for the OPM breach. Listen and learn from this enlightening story. 9:25 AM Ben Cotton, President/CEO, CyTech Services 10:05 AM Networking Break and Visit with Sponsors 10:20 AM Federal Cyber Collaboration Panel Description: Join our panel of federal agency experts who will discuss the world of cyber from the federal perspective. The discussion will include current challenges, and initiatives as well as lessons learned. Law enforcement tools that can assist victims of data breaches will also be discussed. Moderator: Barbara McQuade, U.S. Attorney, Eastern District of Michigan, United States Department of Justice Kelvin Coleman, Branch Chief, Government Engagement, Cybersecurity and Communications, Department of Homeland Security G. Thomas Winterhalter, Supervisory Special Agent, Federal Bureau of Investigation (FBI) Lt. Michael O. Walker, Staff Attorney, Ninth Coast Guard District, United States Coast Guard Diamond/Platinum Roundtable Cyber Discussion: Cyber 911 Are we seeing the precursor of the first "cyber war"? This session will reference the high profile attacks against OPM and other gov/high profile public companies. What implications are associated with the loss of so much sensitive data, what do organizations need to know in order to protect their employees, customers, suppliers? What if anything can be done to limit the damage to data already exposed? We are in the middle of the most important "cyber" event in history. The United States has had no bigger loss, no more significant event (in the digital space) ever. Moderator: Jeffrey S. McLeod, Director, Homeland Security and Public Safety Division, National Governors Association (NGA) Terry Hect, Director, Chief Security Strategist, AT&T Richard Dorough, Senior Managing Director, PwC Peter Romness, Cybersecurity Solutions Lead, U.S. Public Sector, Cisco Systems 11:00 AM Kelly Bissell, Principal, Deloitte & Touche LLP 11:45 AM Networking Break and Visit with Sponsors 12:15 PM Luncheon 1:15 PM Transition from Luncheon to Breakout Sessions 1:25 PM Breakout Sessions:

3 Title: Panel Discussion on Cloud Infrastructure Security (transparency, control and response) Description: Retail hacking, identity theft, industrial espionage, government data breaches, airline interruptions, stock market manipulation-- the world gets more complicated and less secure every day. We will be discussing the evolution from broad persistent threats to more sophisticated attempts targeting businesses daily. Moderator: Raj Patel, Partner, Management Consulting, Plante & Moran Brian Herr, Chief Security Officer, Secure-24 LLC Brigadier General Michael Stone, Assistant Adjutant General - Installations, Michigan National Guard, Department of Military and Veterans Affairs William (Joe) Adams, VP of Research and Cyber Security, Merit Network, Inc. Title: Lessons Learned from the Hacking Frontlines Description: Inside the hearts and minds of a panel of ethical hackers - the good guys! What keeps them up at night? Ideas they want to share with you - and what they think you should know about cybersecurity and threats. It might surprise you! Moderator: Christian Kopacsi, CSO, State of Michigan Christopher Payne, Senior Group Manager, Cyber Security Incident Response Team (CSIRT), Target Matt Carpenter, Principal Security Researcher, Grimm Abraham Jones, Supervisor of Information Services, Spectrum Health Robert Leale, President, CanBusHack, Inc. Title: Combatting the Small Business Cyber Threat: Resources for Prevention and Recovery Description: Small and midsize business are on the target list for hackers. While the larger corporations can recover from a cyber attack, small businesses may not come back. Learn what the most common cyber threats are facing small businesses, how to assess and protect company assets, and how to recover from an attack. NCSA, a 501(c)(3) founded in 2001, is a leading public-private partnership, working with the U.S. Department of Homeland Security, corporate sponsors and nonprofit collaborations to promote cybersecurity and privacy awareness everywhere. The FTC recently launched, "Start with Security", a Data Security program to help small businesses protect data from cyber threats. That material and a workshop for small business created by NCSA and the Council for Better Business Bureaus will be shared and discussed. Speaker(s): Kristin Judge, Director of Special Projects, National Cyber Security Alliance (NCSA) Bill Fanelli, Chief Security Officer, Council of Better Business Bureaus Jacqueline K. Connor, Attorney, Division of Privacy and Identity Protection, Federal Trade Commission (FTC)

4 Title: Raising the Bar: The Michigan Israel Partnership on Cyber Security Description: In order to learn from the best data protection organizations in the world, fight cybercrime, better understand emerging cyberthreats, build new cyberdefense capabilities and strengthen economic development opportunities, Michigan State Government and the State of Israel are taking cyber collaboration and security partnerships to a new level. So what did the Michigan delegation of public and private sector security professionals learn during their visits to Israel? What has been done over the past few years to strengthen ties and build new capabilities? Where does this unique relationship go next to enhance cyber capabilities? This panel session will explore these questions and more in an interactive format that will highlight diverse perspectives from global leaders in cybersecurity. Moderator: Dan Lohrmann, Chief Strategist and Chief Security Officer (CSO), Security Mentor, Inc. Amir Becker, Director of Cyber Cooperation, Embassy of Israel Rod Davenport, Chief Technology Officer, State of Michigan F/Lt. James Ellis, Commander of the Cyber Section, Michigan State Police Title: Quantum Technology: Challenges and Opportunities for Cyber Security Description: Quantum Information Technology is becoming real. The implication for information security is far-reaching. A crisis is looming as the very foundation of cryptography is being challenged. Much of today's public cryptology will be defeated by large scale quantum computers. If a secret needs to stay secret for many years to come, encrypting it using current technologies is inadequate. To over come these challenges, "Post-Quantum Cryptography" has emerged as an active area of research for searching for practical alternatives resilient to quantum attacks. While threatening today's cryptography, quantum information on the other hand enables breakable quantum cryptography. Most remarkably, some quantum cryptographic methods are "untrustworthy", i.e. the "trusted", i.e., require the user's faith on the hardware's integrity. In this talk, Professor Shi will outline these challenges and opportunities without assuming any prior knowledge of the field. A participant will be exposed to this trend of critical importance for information security, and will be able to start the necessary planning for his/her organization's response. Speaker: Yaoyun Shi, Professor, University of Michigan Title: Cyber Range Exercise Description: Stampede is an international, multi-team, remote Capture the Flag exercise designed to challenge cyber security professionals in a real time, force on force setting. Teams work against each other to control the network, requiring them to exhibit their skills in attacking and defending. Stampede will be conducted throughout the day of the Summit. Each team will attempt to penetrate and control elements of critical infrastructure within the Michigan Cyber Range's training environment called Alphaville. 2:10 PM Networking Break and Visit with Sponsors 2:30 PM Breakout Sessions:

5 Title: New Attack Vectors in the Shifting Threat Landscape Description: 2014 brought a surge in the disclosure of critical vulnerabilities to foundational frameworks branded with logos and catchy names, but what were the real reasons behind vulnerability disclosures reaching the highest rate in recorded history last year? Attackers tailored the Citadel malware to infiltrate new targets, making it imperative for organizations to defend themselves with more than just a single layer of protection. This session will provide information on attacks and report recent trends. Speaker: Chris Poulin, Research Strategist, X-Force, IBM Corporation Title: The Legal Issues of Responding to Data Breaches Description: Data breaches implicate not only serious technology, security and business concerns for victims of cybersecurity incidents, but also legal concerns as well. The role of legal counsel in cybersecurity response is a growing and critical aspect, and businesses should involved knowledgeable data breach counsel at the first sign of trouble, extending through the investigation into the scope and nature of the incident, and continuing in to the breach response areas. This session will help attendees (a) identify situations where legal counsel should be involved, (b) understand the risks and benefits of including counsel throughout the data breach process, and (c) recognize the potential legal liabilities arising from a data breach. Topics covered in the process include cybersecurity investigation, confidentiality, consumer notification requirements, government inquiries, customer and shareholder litigation, and business partner litigation. Speaker(s): Michael P. Hindelang, Partner, Honigman Miller Scwhartz and Cohn LLP B. Michael Ortwein III, Partner, Honigman Miller Schwartz and Cohn LLP Title: Veteran Talent in IT and Cybersecurity Description: The Michigan Veterans Affairs Agency will discuss the advanced IT and cybersecurity skill sets that can be found within the military and how Michigan is working to assist companies in locating veterans with these skill sets for employment in Michigan. It is anticipated that an additional 50,000 veterans will transition to Michigan by Today's returning veterans are highly trainable, adaptive and experienced. They can transition into many different work experiences and environments, and they bring a sense of commitment and mission to whatever job they take on. A select group of veterans will participate in the presentation to speak to industry on how their skill sets and experience, and those of veterans like them, can benefit from Michigan's IT industry. Attendees will learn which military occupational areas may be a good fit for their career openings and how to attract and retain top veteran talent in these areas. Speaker(s): Jeff Barnes, Director of the Michigan Veterans Affairs Agency (MVAA) Kristina Leonardi, Director of Strategy, Michigan Veterans Affairs Agency Bradley Bunch, U.S. Air Force/U.S. Army Christopher Conger, U.S. Air Force Joseph Zane, U.S. Marine Corps

6 Title: Anatomy of a Cyber Crime Description: An in-depth overview of the steps taken to successfully investigate a cyber event. Law enforcement officials will take the attendees through the steps required to initiate a criminal incident. Identification of incident, determination of the intent, intelligence gathering, ip address and social medial tracing, search warrant consideration and service, suspect interview and interrogation, and prosecution considerations. Speaker(s): Jay Poupard, Detective Lieutenant, Michigan Cyber Command Center (MC3) Danny Cook, Detective Sergeant, Michigan State Police Title: Covering Your Assets, a Guide to Protecting your Data and How to Sell the Proper Security Solutions to Your Board Description: Has your neck been on the line for protecting your company data assets, but declined for additional budget on cyber-security measures? This session will visit the value of data and it's protection, along with tips on garnering buy-in from your executives and boards. Speaker: Yan Ness, CEO, Online Tech Title: Cyber Range Exercise Description: Stampede is an international, multi-team, remote Capture the Flag exercise designed to challenge cyber security professionals in a real time, force on force setting. Teams work against each other to control the network, requiring them to exhibit their skills in attacking and defending. Stampede will be conducted throughout the day of the Summit. Each team will attempt to penetrate and control elements of critical infrastructure within the Michigan Cyber Range's training environment called Alphaville. 3:15 PM Networking Break and Visit with Sponsors 3:30 PM Breakout Sessions: Title: Preventing Data Breaches with Risk-Aware Authentication and Session Management Description: In both government agencies and corporations alike, traditional authentication and authorization defenses against fraudulent access attempts have only temporarily stopped cybercriminals and have made it harder for legitimate users. Multi-function authentication and single sign-on can be a powerful combination to mitigate the threat of data breaches while providing a convenient user experience, but is that enough? What happens if credentials are stolen? What can be accessed during this session. Attend this session to learn two best practices for preventing data breaches caused by fraudulent access and session hijacking: user behavioral profiling to increase authentication security; and risk-aware session management to prevent session hijacking using continuous device authentication and risk-based authorization. Speaker: Martin Yam, Senior Advisor, CA Technologies

7 Title: Automotive Cybersecurity - Why it Matters, How its Different, What is the Threat and What Can We do About It Description: The modern car is a marvel of code and communications. This evolution of the automobile from mechanical conveyance to mobile office and communications hub was not a long-planned metamorphosis, and both coding and architectural choices which made sense when cars were not connected are now design artifacts which must be protected and eventually changed now that cars will be denizens of the Internet of Things (IoT). What are the real issues here, and why doesn't traditional IT security work for cars? This session will help attendees understand the core issues of how and why automotive cybersecurity is different from standard IT security and why the response and solutions must therefore be different, too. Speaker: Karl Heimer, Principal, Auto Immune, Inc. Title: Isolating Untrusted Software on Secure Systems - Hypervisor Case Study Description: The computing platforms in aircraft, ground vehicles, and medical electronics require low size, weight and power (SWaP) to be broadly adopted with a goal of consolidating multiple application on one computing platform. This consolidation creates a challenge for embedded computer systems to run security-critical and/or safety-critical applications on the same computing platform as non critical applications. While new applications may provide desired functionality, some applications may be untrusted, resulting in a vulnerability to the system. The challenge is to provide separation, isolation and resiliency to enable the use of these "non-critical" functions while assuring that they will not interrupt or interfere with critical functions such as flight controls (aerospace), anti-lock brakes (automotive) and sensitive data sharing (medical and defense). This is case study an embedded hypervisor will be demonstrated that provides this separation and security. Speaker: Dr. Gregg Wildes, Business Development Manager, DornerWorks Title: Cyber Warfare: Got Intelligence? Description: Some people never see the punch coming. The threat landscape just keeps getting more complicated. This session will share intelligence and analysis of global threat activity. Intelligence should always lead to action and this session will look at what the data means and what we must be doing based on this intelligence. Forewarned is forearmed, and this session will prepare you to block the next punch coming your way. Speaker: Kevin Haley, Director, Security Technology and Response, Symantec Title: Cyber Insurance: How to Investigate the Right Coverage for Your Company Description: Practitioner's view of how to evaluate your cyber insurance needs. How do you select an insurance broker? What to expect during the process of purchasing cyber insurance along with a set of questions to ask insurance brokers. Benefit and takeaways from this session include: insight into the process of working with an insurance broker and how to prepare for meetings, familiarity with the cyber insurance purchasing process and role of insurance in managing cyber risk. Speaker: Dr. Faith Heikkila, CISO and Privacy Officer, Greenleaf Trust

8 Title: Cyber Range Exercise Description: Stampede is an international, multi-team, remote Capture the Flag exercise designed to challenge cyber security professionals in a real time, force on force setting. Teams work against each other to control the network, requiring them to exhibit their skills in attacking and defending. Stampede will be conducted throughout the day of the Summit. Each team will attempt to penetrate and control elements of critical infrastructure within the Michigan Cyber Range's training environment called Alphaville. 4:15 PM Adjournment