Category Archives: Events

TrustArc Sponsors and Participates at DAA Summit 19:DC

TrustArc was pleased to once again participate as a Gold sponsor in the Digital Advertising Alliance Summit–which this year returned to Washington, D.C.   TrustArc is one of only two Approved Providers of the globally-recognized AdChoices Icon , a tool that lets consumers know and control when information about their inferred interests may be collected or used to show tailored advertising.  Hundreds of companies participate in the DAA’s YourAdChoices program, which TrustArc supports, allowing for enhanced notice and easy opt-outs from interest-based advertising. The Summit’s first day featured a visit to Capitol Hill to share with Congresspersons and U.S. Senators … Continue reading TrustArc Sponsors and Participates at DAA Summit 19:DC

The post TrustArc Sponsors and Participates at DAA Summit 19:DC appeared first on TrustArc Blog.

June Event Spotlight: European Data Protection Summit, DAA Summit, Infosecurity Europe, Privacy Insight Series Webinars, CCPA Workshop, and GDPR/CCPA Summit

TrustArc regularly attends and hosts events around the world and online – please visit us at one or more of the following events. _____________________________________________________________________ European Data Protection Summit London June 3 Data Protection World Forum launched a new event for 2019, The European Data Protection Summit & Dinner took place on 3rd June, 2019 at a newly launched state-of-the-art event suite at 133 Houndsditch, London. This one-day event was designed to tackle the latest issues, challenges and developments that data protection, privacy and security professionals are facing in 2019. In the evening the summit transformed into an evening-dinner where attendees … Continue reading June Event Spotlight: European Data Protection Summit, DAA Summit, Infosecurity Europe, Privacy Insight Series Webinars, CCPA Workshop, and GDPR/CCPA Summit

The post June Event Spotlight: European Data Protection Summit, DAA Summit, Infosecurity Europe, Privacy Insight Series Webinars, CCPA Workshop, and GDPR/CCPA Summit appeared first on TrustArc Blog.

TrustArc Participates in IAPP Canada Privacy Symposium 2019

TrustArc was pleased to once again take part in the IAPP Canada Privacy Symposium held on May 23rd and 24th in picturesque Toronto–participating in four conference sessions, side events and, of course, countless conversations. The annual confab of industry thought-leaders, regulators and privacy professionals from Canada and abroad came at a particularly fascinating moment for privacy and data protection in the world’s second largest country. Recent events that have cast Canada in the privacy spotlight include the Office of the Privacy Commissioner (OPC)’s release of findings against the Canadian arm of a global credit reporting agency headquartered in the U.S.; … Continue reading TrustArc Participates in IAPP Canada Privacy Symposium 2019

The post TrustArc Participates in IAPP Canada Privacy Symposium 2019 appeared first on TrustArc Blog.

TrustArc at European Data Protection Summit

Data Protection World Forum will launch a new event for 2019, The European Data Protection Summit & Dinner which takes place next week on 3rd June, 2019 at a newly launched state-of-the-art event suite at 133 Houndsditch, London. This one-day event is designed to tackle the latest issues, challenges and developments that data protection, privacy and security professionals are facing in 2019. In the evening the summit will transform into an evening-dinner where attendees will be able to enjoy a drinks reception, three-course meal, networking and entertainment. The European Data Protection Summit & Dinner will bring together an international line-up … Continue reading TrustArc at European Data Protection Summit

The post TrustArc at European Data Protection Summit appeared first on TrustArc Blog.

What’s Going on at Infosecurity 2019: Tripwire Edition

It seems like only yesterday that we were packing up the Tripwire stand after another fantastic year at Infosec and here I am (literally) counting down the days until the doors open for Infosecurity Europe 2019! The Tripwire team is always excited to get on the show floor and have great conversations with clients and […]… Read More

The post What’s Going on at Infosecurity 2019: Tripwire Edition appeared first on The State of Security.

TrustArc speaking at IAPP Canada Privacy Symposium 2019

Personal data makes so much possible in technology, and health care, and marketing, and retail, and… where does privacy fit in? Explore that question and more by attending the IAPP Canada Privacy Symposium 2019. This year’s symposium features two days of breakout sessions focused on the challenges of deriving value from personal data while protecting individual rights. Hear advice on fundamentals such as breach response, privacy/data security synergy, data localization and anonymization, and vendor management. Look ahead to policy developments that will influence privacy practice. TrustArc is proud to have several speakers at this month’s IAPP Canada Symposium in Toronto! … Continue reading TrustArc speaking at IAPP Canada Privacy Symposium 2019

The post TrustArc speaking at IAPP Canada Privacy Symposium 2019 appeared first on TrustArc Blog.

TrustArc at IAPP Global Privacy Summit 2019: Event Recap

TrustArc had the pleasure of sponsoring, speaking and exhibiting at IAPP Global Privacy Summit 2019 this month in Washington D.C. With over 4,000 attendees, 300 sessions and 60 exhibitors, the Summit was buzzing with hundreds of privacy professionals, many of whom traveled to the D.C. Summit from all corners of the globe. This year’s Summit was the perfect setting for privacy-related education, guidance, inspiration and connections that spotlighted the big picture of data protection. TrustArc SVP Product Management, Michael Lin, took over the Little Big Stage on Thursday morning to discuss how businesses use the TrustArc Platform to automate and … Continue reading TrustArc at IAPP Global Privacy Summit 2019: Event Recap

The post TrustArc at IAPP Global Privacy Summit 2019: Event Recap appeared first on TrustArc Blog.

TrustArc Participates at Practicing Law Institute in San Francisco

TrustArc was honored to be invited to serve as faculty for the Practicing Law Institute (PLI)’s 20th Annual Institute on Privacy and Data Security Law on May 6-7 in San Francisco.  Before an audience of attorneys representing a wide array of industries and private practice, the days’ sessions covered topics ranging from complying with the California Consumer Privacy Act, to addressing cybersecurity readiness, to insights from regulators, to ethical considerations for privacy and info sec attorneys, to vendor risk management.   Hilary Wandall, SVP, Privacy Intelligence and General Counsel, presented on a panel entitled “Beyond GDPR – Privacy and Data … Continue reading TrustArc Participates at Practicing Law Institute in San Francisco

The post TrustArc Participates at Practicing Law Institute in San Francisco appeared first on TrustArc Blog.

May Event Spotlight: IAPP Global Privacy Summit, Data Protection World Forum Webinar, IAPP Webinar, CCPA PRIVACY SUMMIT, European Data Protection Days, Privacy Insight Series Webinar, TrustArc Workshop, and GDPR Salon

TrustArc regularly attends and hosts events around the world and online – please visit us at one or more of the following events. ________________________________________________________________________ IAPP Global Privacy Summit Washington DC May 1 – May 3 The IAPP Global Privacy Summit 2019 gathered more than 3,600 professionals from around the world for an outstanding program with a truly global focus. Four days of education, guidance, inspiration and connections focused on the big picture of data protection. Thank you to everyone who came out and joined us at our TrustArc / RADAR Welcome Party, stopped by booth #203 to say hi or … Continue reading May Event Spotlight: IAPP Global Privacy Summit, Data Protection World Forum Webinar, IAPP Webinar, CCPA PRIVACY SUMMIT, European Data Protection Days, Privacy Insight Series Webinar, TrustArc Workshop, and GDPR Salon

The post May Event Spotlight: IAPP Global Privacy Summit, Data Protection World Forum Webinar, IAPP Webinar, CCPA PRIVACY SUMMIT, European Data Protection Days, Privacy Insight Series Webinar, TrustArc Workshop, and GDPR Salon appeared first on TrustArc Blog.

TrustArc to Sponsor IAPP Global Privacy Summit 2019

TrustArc is excited to be part of the IAPP Global Privacy Summit in Washington, DC this week! The 2019 Summit will gather more than 3,600 professionals from all over the globe for an engaging program full of privacy experts. The conference features four days of education, guidance, inspiration and connections that will spotlight the big picture of data protection. To kick the conference off, TrustArc is hosting a Welcome Party with partner RADAR on Wednesday, May 1st. Clients, partners and friends will get together over drinks and food to network and touch base before diving into the following day’s first … Continue reading TrustArc to Sponsor IAPP Global Privacy Summit 2019

The post TrustArc to Sponsor IAPP Global Privacy Summit 2019 appeared first on TrustArc Blog.

Upcoming cybersecurity events featuring BH Consulting

Here, we list upcoming events, conferences, webinars and training featuring members of the BH Consulting team presenting about cybersecurity, risk management, data protection, GDPR, and privacy. 

Tech Connect Live 2019: Dublin, 30 May

BH Consulting COO Valerie Lyons will be presenting at this event which takes place at the RDS in Dublin on Thursday 30 May. The conference is a business and technology event, with talks on a range of related subjects happening throughout the day. The event is free to attend, and more than 5,000 delegates are expected on the day. To find out more and to register for a free pass, visit here

Data Protection Officer certification course: Vilnius/Maastricht June/July

BH Consulting contributes to this specialised hands-on training course that provides the knowledge needed to carry out the role of a data protection officer under the GDPR. This course awards the ECPC DPO certification from Maastricht University. Places are still available at the courses scheduled for June and July, and a link to book a place is available here

IAM Annual Conference: Dublin, 28-30 August

Valerie Lyons is scheduled to speak at the 22nd annual Irish Academy of Management Conference, taking place at the National College of Ireland. The event will run across three days, and its theme considers how business and management scholarship can help to solve societal challenges. For more details and to register, visit the IAM conference page. 

The post Upcoming cybersecurity events featuring BH Consulting appeared first on BH Consulting.

4th Annual Cyber Security Conference for Executives

Cyber Security for Executives (including deans and small business owners).

This year’s conference at the Johns Hopkins University covered ground of interest to business leaders, especially with respect to the implications cyber risk has for their legal and contracting activities. The executives for whom the conference was organized were expansively and quite properly defined to include not just the denizens of a Fortune 500 C-suite, but small business owners, partners in medical and accounting practices, college deans, and so on.

In his opening remarks, Anton Dahbura, Director of the Information Security Institute at the Johns Hopkins University’s Whiting School of Engineering, reviewed his “Unlucky Top 13” list, an inventory of recent security horror-shows. He thinks these incidents (the Equifax breach being the one that’s arrived with most éclat) may have induced the public to pay attention, and may finally be moving people away from what Dahbura called “the gazelle mentality,” that is, the comforting thought that if you stay close to the herd, you’ll be OK. (You won’t.)

Other speakers discussed the opportunity costs sound security inevitably imposes on organizations. One new addition to the faculty at the Johns Hopkins School of Advanced International Studies, Thomas Rid (who’d just arrived from his previous appointment in London) offered an overview of the attribution challenge. Historically informed, Rid’s account argued that attribution is as much art as science. A panel of legal experts offered advice for businesses. (One highlight: Whiteford Taylor Preston’s Howard Feldman reminded everyone of the importance of contracts, and that you may be bound by contracts you hadn’t realized were contracts at all. “Your privacy policy, on your website, is a contract.”)

And Bob Olsen, CEO of event sponsor COMPASS Cyber Security, closed with some effective analogies security professionals can use to communicate with the business leaders they support.

Strategic perspective from US Cyber Command.

Guy Walsh, Brigadier General (retired), US Air Force, and currently responsible for strategic initiatives at US Cyber Command, delivered the conference’s opening keynote. He began with a quick observation about Equifax, saying that the incident should serve as a reminder that it can take time to patch and address known vulnerabilities.

He described the emergence of cyberspace as a fifth operational domain, joining land, sea, air, and space, and he described US Cyber Command as a warfighting organization recently elevated in status and sharply distinguished in its mission from the National Security Agency.

Walsh reviewed some Air Force history, and claimed that the first insider hack of the USAF was done in 1963, by John Boyd, the leading thinker of the Fighter Mafia. Boyd is more familiar as the officer who formulated the concept of the OODA loop, the cycle of Observe, Orient, Decide, and Act that he outlined in his Discourse on Winning and Losing. Boyd argued that if one could execute that cycle faster than one’s adversary, “get inside their OODA loop,” one would have a decisive advantage in combat. Getting inside the OODA loop, Walsh argued, was as important in cyberspace as it was in air-to-air combat.

After describing Buckshot Yankee, a Russian attack against US Central Command with Agent BZT, Walsh outlined the strategic adversaries the US faces. They are, as many others have said, Russia, China, North Korea, Iran, and terrorists. In this threat environment Cyber Command operates National Mission Forces, Combat Mission Forces, Cyber Protection Forces, and, against ISIS, Joint Task Force Ares.

One trend and two observations Walsh made have implications for most enterprises, not just Cyber Command. The trend he sees is that big data and artificial intelligence will change the dynamic in cyberspace. His two observations with broader implications were, first, the point that retaliation against cyber attack need not be exclusively or primarily cyber retaliation. It may not need to be cyber retaliation at all. And second, when he described the three major Cyber Command exercises (Cyber Flag, Cyber Guard, and Cyber Knight) he said they took their inspiration from Red Flag, the Air Force’s realistic training against a dissimilar adversary opposing force. Like Red Flag, these exercises have been vital in increasing readiness and capability.

The risk landscape as seen from the perspective of the healthcare sector.

Stephanie Reel (CIO, the Johns Hopkins University Health Systems) brought the perspective of a healthcare organization (and a “hybrid organziation”) to the discussion. She claimed that healthcare has surpassed financial services as the most-targeted sector. In some ways the sector’s modernization has increased its vulnerabilities. Unification and aggregation of data have exposed the sector to “unintentional negligence among the players.” That unification is striking: about 60% of patient data in the United States is currently held by a single vendor.

With greater risk has come more spending on security, and Reel pointed out that this is not only a direct expense, but it imposes opportunity costs as well. “Money spent on security is not being spent to cure disease,” she said, nor is it being used to improve public health. But the reality of the threat requires that security be addressed. Ransomware has been a particular problem for healthcare, Reel said as she reviewed their own experience with the Medstar incident of 2016.  Medical care and patient safety require that digitized records and networked devices have high availability, and it’s that availability that ransomware attacks. Direct manipulation of medical devices themselves (“still sort of science fiction; we haven’t seen it at Johns Hopkins”) also remains a very real threat, although not yet a common one.

Reel seconded Dahbura’s call for a national conversation about an identification system, and, although she feared that people were too ready to concede defeat on identity management, still closed on a hopeful note. She thought the tensions a hybrid organization like hers faces among the competing claims of security, operations, healthcare, research, and education could ultimately be resolved.

For the full article, visit The CyberWire. If you would like to be informed about next year’s event, please CONTACT US.

This is an excerpt from an article originally written by The CyberWire