8:15am

Biotech

9:00am

G10 Biotech

9:10am

G10 Biotech

Keynote Speaker: "The Cyber Threat Landscape"
Eric Lurie, Supervisor of the FBI Albany Cyber Task Force

This talk will look at current cyber threats, the actors behind those threats, and related case studies.

10:15am

G10 Biotech

Keynote Speakers: "Princeton University's Cybersecurity Journey"

• David Sherry, Princeton University, CISO
• Tara Schaufler, Information Security Awareness and Training Program Manager

11:15am

G10 Biotech

It's "Privacy and Security" not “Privacy vs. Security,” Meryl Bursic, Privacy Officer

Must there be a tradeoff between privacy and security? How do privacy and security work together to protect our personal information? Explore the unique challenges we face as an academic institution, how these challenges align with our mission, and what we can do to continue to build a campus culture that understands and respects both privacy and security.

11:45am

Biotech

1:00pm

G10 Biotech

Ask a CISO Moderated Panel:

• Bobby Edamala, Cornell University, CISO
• Mark Herron, University at Buffalo, CISO
• David Sherry, Princeton University, CISO
• Jason Youngers, Ithaca College, CISO

2:15pm

G01 Biotech

Track One*: Examination of Exposed AWS Access Keys, Michael Sprague, Cloud DevOps Engineer

What actually happens when you put AWS credentials in a public code repository and what you can do to minimize the blast radius.

*Limit 50 attendees.

2:15pm

G10 Biotech

Track Two: Go ATT&CK Yourself, Dan Villanti, Sr. Security Engineer

Learn how networks can be compromised featuring a live demonstration from an attacker's perspective. Discover the MITRE ATT&CK framework and its value in understanding the techniques used by attackers, which can help inform countermeasures used to prevent and detect a breach.

Break

3:15pm

G01 Biotech

Track One*: Patterns in Audit Findings, Timur Uckun; Curtis Josey, Data Analytics Manager; and Geoffrey Yearwood, IT Risk Assurance Manager.

Topics covered will include an overview of the University Audit Office, what to expect from an ITRA review, and the current state of the university’s IT risk assurance posture from an auditor’s perspective.

*Limit 50 attendees.

3:15pm

G10 Biotech

Track Two: Lifecycle of a Security Incident, Tim Bradish, Assistant Director of Security Operation and Incident Response

This talk will explore the lifecycle of a security incident at Cornell University. Whether you’re a technical support provider, in management, or just curious, discover how the IT Security Office responds to, collaborates on, classifies, analyzes, and reports on varying levels of security incidents across campus.