Demystifying Zero Trust

If we’ve learned anything from global politics, it’s that every piece of technology equipment is vulnerable to hackers. The very idea of a data breach is enough to keep a security executive (or CISO) up at night. Bad press, huge revenue losses, eroded consumer trust and worse, heavy penalty fees have led the industry to develop the Zero Trust model.

Zero Trust is fairly literal. Meaning, it’s a security system that does not trust any user attempts to access (or work within the applications), of an enterprise system unless their ID can be verified at several points. It was created by John Kindervag of Forrester Research in 2018. Since then it’s become a buzz word that few truly grasp the meaning of.

Ordinarily, an organization’s data accessibility assumes that if you are able to log in, you can be trusted. This model has become outdated as cybercrime gets more sophisticated. 64% of organizations have experienced a phishing attack in the past year. Most hacks are the result of a phishing link in an email being clicked on. In fact, 90% of data breaches involve some sort of phishing element. Often the entry point for a hacker isn’t where the data they want lives, but it grants them access to whatever isn’t restricted. Zero Trust aims to make these kinds of scams impossible. If implemented correctly, attempts to hack into an enterprise system would trigger alarms for the security team, thus thwarting the attack before it starts.

Many organizations do not have the resources to entirely overhaul their current security measures, but thankfully Zero Trust is scalable to fit the needs of your organization. There are many iterations of Zero Trust and some of them may already be in use at your company. A lot of IT staffs have already started rolling out pieces of Zero Trust, including virtual seminars and fake phishing scam links in employee email accounts. The bigger Zero Trust picture is that data breaches are preventable, but it comes down to good training, strong security measures and knowledgeable security professionals.

Futher reading…

https://www.phishingbox.com/resources/phishing-facts

https://www.paloaltonetworks.com/cyberpedia/what-is-a-zero-trust-architecture

CCPA – Who is Next?

Inspired by California’s CCPA, more states are debating whether to follow suit. The California Consumer Privacy Act (CCPA) is a bill signed into law in late 2019 to protect California residents from having their personal data shared or sold to third parties without consent. This law went into effect on the first of the year.

The CCPA follows quick on the heels of the General Data Protection Regulation (GDPR) in Europe, which took effect in 2018. The key tenants of the law are very similar, essentially barring organizations from collecting or storing personal data without the consumer’s consent. As a result, nearly every website now informs users that some sort of digital fingerprint is being recorded.

So what is my “data” and why is that important? Personal data is defined by the state of California as “information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.” The use of your personal data by companies is important because it can determine how an organization will market directly to you, even if you don’t want them to. Think of all those robocalls and junk emails you get that you don’t remember opting into. That is likely the result of a company that you did share your info with, selling that data to another company that also wants to market to you.  

One of the biggest points of the CCPA is that consumers have the right to access the data being collected on them, the right to ask an organization to delete their data, and the right to not have their data shared with anyone unless they personally opt-in. Enforcing this new law will be challenging as nearly 90% of American companies are not yet in compliance. Consequences for failing to adhere to the new law include steep, even financially devastating fines regulated by the FEC.

Currently the law only protects California residents, but it’s expected that other states will quickly adopt the law too. Since California has one of the highest populations of any US states, the CCPA is important for any organization targeting California residents for marketing or commerce. Data breaches continue to erode consumer trust and the CCPA is the first measure taken by a US state to hold companies legally liable for any mishandling. Expect states like Massachusetts, Minnesota, Pennsylvania, New Jersey, and New York to follow.

Additional Resources:

https://oag.ca.gov/privacy/ccpa

https://www.consumerreports.org/privacy/california-privacy-law-ccpa-california-consumer-privacy-act/

https://iapp.org/resources/article/california-consumer-privacy-act-of-2018/

CIO & CISO SoCal Summits Recap

March 19, 2019 – Loews Hollywood Hotel, Los Angeles, CA

While there were subfreezing temperatures in Chicago, we were thrilled to hold our CIO and CISO Southern California Summits in beautiful Los Angeles, CA at the Loews Hollywood Hotel. These summits welcomed CIOs and CISOs as well as other IT/security executives throughout SoCal and featured conversations and thought leadership discussions around the latest topics including digital transformation, augmented analytics, smart spaces, cybersecurity, blockchain and much more.

A special thank you to our speakers for their excellent insight throughout this busy day:

Also, special thanks to the panelists who participated in the Executive Visions panel, The Revitalizing Change in the Role of the CXO, as well as the Women in IT Panel, Building a High-Performance Team for Digital Transformation.

Executive Visions Panel:

  • Tim Moran, Former Senior Vice President of Global Information Technology Financial Systems, Live Nation Entertainment (Moderator)
  • Mark Van Holsbeck, CISO, Avery Dennison
  • Lance Hassell, Chief Operating Officer, Covenant Care
  • Kathy Linares, VP of IT, Insulectro
  • Paul Love, CISO, CO-OP Financial Services

Women in IT Panel:

  • Helen Norris, Vice President, Chief Information Officer, Chapman University
  • Louise Brandy, VP of Enterprise Applications, Essex Property Trust
  • Kathy Linares, VP of IT, Insulectro
  • Nayaki Nayyar, President, Digital Service Management, BMC Software
  • Nicole McMackin, President and CEO, Irvine Technology Corporation
  • Carol Fawcett, Corporate Vice President, Chief Information Officer, Golden State Foods

We are confident that our attendees created new connections with their peers, uncovered one or more new ideas that will impact their digital transformation efforts and found several new solution providers that can help them achieve their goals. We look forward to seeing everyone again at next year’s CIO and CISO Southern California Summits!

Executive Insights Podcast – Ken Kumar

We’re thrilled to announce the next episode of the Executive Insights Podcast series. The third episode of the podcast features Ken Kumar, a global executive technology leader in the pharmaceutical and manufacturing industry, as he sits down with our Relationship Management Director, John Suguitan.

Tune in to the second episode of the podcast series where Sergio shares his insight on the latest challenges facing his industry, the latest technology disruptors, the impact of digital transformation and more!

CIO & CISO Miami Summits Recap

March 14, 2019 – Four Seasons – Brickell, Miami, FL

We took our talents down to South Beach for our CIO & CISO Miami Summits on March 14, 2019 at the Four Seasons in downtown Miami. These summits welcomed CIOs and CISOs as well as other IT/security executives throughout the South Florida and featured conversations and thought leadership discussions around the latest topics including digital transformation, augmented analytics, smart spaces, cybersecurity, blockchain and much more.

A special thank your to our speakers for their excellent insight throughout this busy day:

Also, special thanks to the panelists who participated in the Working Lunch – Diversity by Design in Artificial Intelligence

  • Annalisa Fernandez, Intercultural Strategist, Because Culture (Moderator)
  • Gary Eppinger, CISO, Carnival Corporation
  • Lars Schmekel, CISO, Miami Dade County
  • Chris Harrison, CTO, Nova Southeastern University
  • Greg Taffet, MC, Board Member of South Florida Digital Alliance, former CIO, US Gas and Electric

We are confident that our attendees created new connections with their peers, uncovered one or more new ideas that will impact their digital transformation efforts and found several new solution providers that can help them achieve their goals. We look forward to seeing everyone again at next year’s CIO and CISO Miami Summits!


CIO & CISO Chicago Summits Recap

March 12, 2019 – Convene – 16 W Adams, Chicago, IL

Being headquartered in Chicago, we are always excited to host our summits in our backyard as the CIO and CISO Chicago Summits took place at the Convene – 16 W Adams in the Loop. These summits welcomed CIOs and CISOs as well as other IT/security executives throughout the Windy City region and featured conversations and thought leadership discussions around the latest topics including digital transformation, augmented analytics, smart spaces, cybersecurity, blockchain and much more.

A special thank your to our speakers for their excellent insight throughout this busy day:

Also, special thanks to the panelists who participated in the Executive Visions panel – The Revitalizing Change in the Role of the CIO & CISO

  • Steve Rubinow, President, Infocology Inc.
  • Ruben Chacon, CISO, Constellation Brands
  • Vince Fattore, CIO, Temperature Equipment Corporation
  • Mohammed Dastagir, Chief Technology Officer, Sears Holdings Corporation

We are confident that our attendees created new connections with their peers, uncovered one or more new ideas that will impact their digital transformation efforts and found several new solution providers that can help them achieve their goals. We look forward to seeing everyone again at next year’s CIO and CISO Chicago Summits!

CIO & CISO New York Summits Recap

February 26, 2019 – Convene – 117 W 46th St., New York, NY

The Big Apple was home to our third round of summits in 2019 as we held our CIO and CISO New York Summits at the Convene – 117 W 46th St in Midtown. These summits welcomed CIOs and CISOs as well as other IT/security executives throughout the Tri-state area and featured conversations and thought leadership discussions around the latest topics including digital transformation, augmented analytics, smart spaces, cybersecurity, blockchain and much more.

A special thank your to our speakers for their excellent insight throughout this busy day:M

Also, special thanks to the panelists who participated in the Executive Visions panel – The Revitalizing Change in the Role of the CXO

  • Alizabeth Calder, SVP CIO, HomeEquity Bank
  • Kenn Kern, CIO, District Attorney Office, New York
  • Jazz Tobaccowalla, CIO, Celgene
  • Chirag Arora, CISO, Crum & Forster
  • Allen Hsiao, Vice President & Chief Medical Informatics Officer, Yale New Haven Health
  • Lance Braunstein, CIO, E*Trade

We are confident that our attendees created new connections with their peers, uncovered one or more new ideas that will impact their digital transformation efforts and found several new solution providers that can help them achieve their goals. We look forward to seeing everyone again at next year’s CIO and CISO New York Summits!


CIO & CISO D.C. & Public Sector Summits Recap

February 21, 2019 – Convene – 1201 Wilson Blvd, Arlington, VA

The second summit of the year took place in our nation’s capital where we held multiple summits – CIO and CISO DC Summits alongside our CIO and CISO Public Sector Summit. These summits welcomed CIOs, CISOs as well as other IT/security executives throughout the DC area in both the public and private sectors and featured conversations and thought leadership discussions around the latest topics including digital transformation, augmented analytics, smart spaces, cybersecurity, blockchain and much more.

A special thank your to our speakers for their excellent insight throughout this busy day:

Master of Ceremonies & Panel Moderators:

  • Stan Kizior, Former COO – Department of IT, State of Maryland
  • Aaron Rinehart, Former Chief Enterprise Security Architect, UnitedHealth Group

Think Tank, Executive Boardroom, Thought Leadership Sessions Speakers:

Also, special thanks to the panelists who participated in the Executive Visions panel – The Revitalizing Change in the Role of the CIO

  • Marvin Onyemaechi, CIO, The George Washington University Hospital
  • Don Spicer, Associate Vice Chancellor & Chief Information Officer, University System of Maryland
  • Jothi Dugar, Chief Information Security Officer, National Institute of Health

We are confident that our attendees created new connections with their peers, uncovered one or more new ideas that will impact their digital transformation efforts and found several new solution providers that can help them achieve their goals. We look forward to seeing everyone again at next year’s CIO and CISO DC and Public Sector Summits!


CIO & CISO Montreal Summits Recap

February 12, 2019 – The Ritz- Carlton, Montreal, QC

Last month, we kicked off our summit calendar in Montreal for our CIO and CISO Montreal Summits. These summits welcomed CIOs, CISOs as well as other IT/security executives throughout the Montreal area and featured conversations and thought leadership discussions around the latest topics including digital transformation, augmented analytics, smart spaces, cybersecurity, blockchain and much more.

A special thank you to our speakers for their excellent insight throughout this busy day:

Also, special thanks to the panelists who participated in the Executive Visions panel – Dealing with the Disruptive Technologies & Diversity That Are Changing the Workplace

  • Fouad Farès, Founding Partner & CEO, MINDSMASTER Canada Inc. (Moderator)
  • Christine Sayegh-Filgiano, Executive Vice President, Portfolio Construction and Risk, Ivanhoe Cambridge
  • Remi Lafrance, Chief Information Officer, Réseau de transport métropolitain
  • Nadia Naffi, PhD, Assistant Professor, Department of Education, Educational Technology, Concordia University

We are confident that our attendees created new connections with their peers, uncovered one or more new ideas that will impact their digital transformation efforts and found several new solution providers that can help them achieve their goals. We look forward to seeing everyone again at next year’s CIO and CISO Montreal Summits!

Executive Insights Podcast – Sergio Rio

We’re thrilled to announce the next episode of the Executive Insights Podcast series. The second episode of the podcast features food & beverage industry leader, Sergio Rio as he sits down with our Relationship Management Director, John Suguitan.

Tune in to the second episode of the podcast series where Sergio shares his insight on the latest challenges facing his industry, strategy around digital transformation, relationship with technology partners and more!