We welcome information executives, system administrators, and cybersecurity innovators for three days of exploration into the latest cybersecurity challenges and strategies, with special focus on the finance, energy, healthcare and transportation sectors.
The event consists of an elite group of top-tier speakers, featuring former CIA director John Brennan. Other keynotes include Aanchal Gupta, director of security at Facebook; Daniel C. Holtzman, an international authority on cyber security safety, security engineering, supply chain risk management and more; and Pascal Millaire, CEO of CyberCube.
Continuing professional education credit may be available through this event. Please check with your accrediting body for confirmation.
The summit will conclude with the launch meeting of The University of Tulsa Cybersecurity Consortium, a joint-industry partnership driven by members’ research and development needs. This group will become an ongoing research and development collaboration, working in partnership with The University of Tulsa’s Institute for Information Security. Tulsa Cyber Summit 2019 registrants will have an opportunity to submit proposals in advance to help set the meeting’s agenda.
Consortium membership is paid, with dues going to support a mutually agreed annual program of work.
The Tulsa Cyber Summit will feature four keynote speakers, six sectoral panels, and featured speakers on two parallel tracks for leadership and technology. Cybersecurity innovators can also submit their ideas to the Tulsa Cyber Summit Pitch Competition.
John Brennan, Former Director, CIA
“Living in a Digital World: The Challenges and Opportunities Awaiting the Next Generation of Americans”
John Brennan is a national security expert with nearly four decades of experience, culminating in his tenure as director of the Central Intelligence Agency (CIA) from 2013 to 2017. Previously a deputy national security advisor and assistant to President Barack Obama for Homeland Security and Counterterrorism, Brennan teaches audiences how to think about and respond to global events, terrorism and cybersecurity concerns. Brennan’s presentations offer an insider’s look at the shifting global landscape and reveal what it takes to remain an effective player in business while keeping pace with the alarming proliferation of cyber threats.
Aanchal Gupta, Director of Security, Facebook
“Cybersecurity Workforce and Technical Challenges on the Frontier”
Aanchal Gupta is Director of Security at Facebook. Her global team assesses and mitigates security risks across services including Facebook, Messenger, Instagram, Oculus and WhatsApp. Her team also is responsible for the security of Facebook’s corporate infrastructure. Gupta previously was Chief Information Security Officer at Microsoft for Skype and Skype for Business and led Yahoo’s Global Identity team, contributing to authentication and authorization open standards such as OpenID and OAuth.
Daniel C. Holtzman, Cyber Technical Director, United States Air Force
“Cyber Resiliency: The Intersection of Technology and Culture”
Daniel C. Holtzman is an internationally recognized authority on cybersecurity, program protection planning, security engineering, supply chain risk management, mission/system assurance and resiliency. His work in large-scale systems engineering and high-assurance weapon systems has supported the U.S. Department of Defense, NATO, public and private industry and federally funded research and development centers. He currently serves the United States Air Force as Highly Qualified Expert, Cyber Technical Director at Hanscom Air Force Base, Massachusetts.
Pascal Millaire, CEO, CyberCube
“Insurance: Reshaping the Future of Cyber Risk Management in the 21st Century”
Pascal Millaire is the CEO of CyberCube, a Symantec Ventures company that provides data-driven cyber underwriting and aggregation management analytics to the global insurance industry. Millaire previously was vice president at Symantec, where he oversaw cyber insurance product development and insurance security partnerships. He also was president of an Internet of Things technology company and spent seven years at McKinsey, where he advised clients in the insurance industry.
Leadership and Technology Tracks
Participants can choose to attend sessions discussing cybersecurity issues at the leadership or technical levels. Participants are free to move between tracks as desired.
Leadership Track Sessions
- Incident Response and Threat Detection
- Know Your Adversary
- Workforce Development
- Elements of Corporate Culture
- IoT Governance
- Cyber 101 for Leadership
Technology Track Sessions
- AI/ML in Cybersecurity
- Application Security
- Privacy Technology
- Tokenization and Vulnerability Management
- IoT and CPS Security
- Enterprise Security
This panel will explore the symbiotic relationship between community and enterprise in cybersecurity innovation and entrepreneurship. What are the key environmental supports and impediments for start-ups trying to develop novel security solutions? What resources can a community provide to attract and retain cybersecurity talent? How can public-private-academic partnerships best catalyze economic growth for this industry? Robert Spoo, Chapman Distinguished Professor of Law at The University of Tulsa, will moderate discussion. Panelists will include Jerald Dawkins, Chief Information Security Officer of True Digital Security; Pablos Holman, inventor and futurist with Intellectual Ventures; and representatives from economic development and venture capital organizations.
The financial industry has been managing cybersecurity risks for longer than just about any other sector, because it has long been targeted by profit-motivated criminal actors. What are the most pressing cyber risks facing the financial industry? What strategies are available to mitigate those risks? How are cybercriminal strategies evolving, and how do we keep up? Tyler Moore, Tandy Associate Professor of Cybersecurity and Information Assurance at The University of Tulsa, will moderate the discussion.
How does cybersecurity apply to the transportation industry? Whose interests are at stake, and who is responsible? What is the difference between functional safety and cybersecurity? How does cybersecurity differ between passenger vehicles and commercial vehicles? How do we ensure the talent to manage these needs? Jeremy Daily, Associate Professor of Mechanical Engineering at The University of Tulsa, will moderate discussion.
What are the cybersecurity challenges facing the electricity industry? How is the move to the Smart Grid and small-scale distributed generation, such as wind and solar, impacting the sector? What new risks and challenges emerge as the grid becomes decentralized? What skill sets are needed to address these challenges? Peter J. Hawrylak, Associate Professor of Electrical and Computer Engineering at The University of Tulsa, will moderate discussion.
This session explores the dangers and opportunities presented by the emerging ecosystem of the Internet of Things, an area of cyber risk that often goes unnoticed, potentially decreasing the barrier on malicious actors. The “physical internet” broadens the attack vector, requiring a robust security strategy. This session will focus on the roles of industry, government and consumers in enhancing the security, safety and privacy of the Internet of Things ecosystem. Ido Kilovaty, Frederic Dorwart Endowed Assistant Professor of Law at The University of Tulsa, will moderate discussion.
Oil and Gas Panel
This panel will explore current cybersecurity challenges and solutions in the oil and gas industry. Mauricio Papa, Associate Professor of Computer Science at The University of Tulsa, will moderate discussion.
Sunday, March 24
12:00 p.m. 4:00 p.m. Registration Opens
3:00 p.m. 5:00 p.m. Cyber Startup Challenge Pitch Competition
36 Degrees North, 36 E Cameron St., Tulsa, OK 74103
5:30 p.m. 7:00 p.m. Opening Reception
Welltown Brewery, 114 W Archer St, Tulsa, OK 74103
Monday, March 25
7:30 a.m. 8:30 a.m. Registration and Breakfast
Hyatt Regency Foyer
8:30 a.m. 8:45 a.m. Opening Remarks and Introduction
Promenade B and C
8:45 a.m. 9:45 a.m. Keynote: "Living in a Digital World: The Challenges and Opportunities Awaiting the Next Generation of Americans," John Brennan, Former Director of the Central Intelligence Agency
9:55 a.m. 10:45 a.m. Leadership Track: Know Your Adversary
• "Insider Threat," Crystal Lister, Sr Director, GPSG
• "Bots, Trolls and Warriors: The Modern Adversary Playbook," Andrea Limbago, Chief Social Scientist, Virtru
Technology Track: AI/ML in Cybersecurity
• "Bringing Red vs. Blue to Machine Learning," Bobby Filar, Data Scientist, Endgame
• "Security Implications of Sharing ML-Trained Models," Bradley Skaggs, Senior Principal Research Scientist, Secureworks
10:55 a.m. 11:45 a.m. Leadership Track: Incident Response and Threat Detection
• "Incident Response and Cybersecurity Operations," Vincent Scott, Executive Director, STI-TEC Research Center
• "Threat Detection," Scott Shumate, Founder, Valutare
Technology Track: Application Security
• "Emerging Trends in Code Quality and Security Automation," Stephen Magill, Principal Scientist, Software Analysis, Galois
• "Securing and Defending Enterprise Applications," Mark Moore, Application Security Services Lead, Deloitte
11:45 a.m. 1:15 p.m. Keynote/Lunch: "Cybersecurity Workforce and Technical Challenges on the Frontier," Aanchal Gupta, Director of Security, Facebook
Tulsa Ballroom Central
1:15 p.m. 2:05 p.m. Leadership Track: Cyber Workforce Challenges
• "Bringing the Network to the Researcher," Zac Lindsey, General Counsel, Baffin Bay Networks
• "The Evolving Role of the Chief Information Security Officer," Kim Keever, CISO, Cox Communications
Technology Track: Privacy Technology
• "Privacy Preserving Network Surveillance Technology," Michael Haney, Research Scientist, Idaho National Labs
• "Can We Protect Privacy Without Breaking the Web?" Luke Crouch, Developer, Mozilla
2:15 p.m. 3:05 p.m. Leadership Track: Elements of Corporate Culture
• "Protecting the Enterprise with People, Culture and Product," Tony Meehan, VP of Engineering, Endgame
• "Cybersecurity Training: What Works and What Doesn’t," Brad Brummel, Associate Professor of Psychology at The University of Tulsa
Technology Track: Tokenization and Vulnerability Management
• "Meeting Data Protection Compliance Obligations in an Increasingly Privacy-focused World," Alex Pezold, CEO, TokenEx
• "Prioritizing Vulnerabilities According to Weaponized Exploits," Johnny Shaieb, VMS Manager - X Force Red, IBM
3:05 p.m. 3:25 p.m. Break 3:25 p.m. 4:15 p.m. Panel
• Dave Pocyznek, Chief Information Security Officer, BOK Financial
• Wes Earnest, Information Security Officer, Payne County Bank
• Gary Lorenz, former Global Head of Cyber Risk, AIG
• Sajan Gautam, Chief Information Security Officer, Arvest Bank
• Tyler Moore, Associate Professor of Cybersecurity and Information Assurance, The University of Tulsa
Moderator: Sal Aurigemma, Assistant Professor of Computer Information Systems, The University of Tulsa
Energy and Electricity
• Jerome Wild, Director, IT Applications Southwest Power Pool
• Timothy Fawcett, Senior Consultant, C.H. Guernsey & Co.
• Jason Nations, Senior System Security Analyst, OGE Energy Corporation
• Michael Meason, Senior Manager, Information and Security, Western Farmers Electric Cooperative
• Jay Coffey, Solutions Leader, Jigsaw-Security
Moderator: Peter Hawrylak, Associate Professor of Electrical and Computer Engineering, The University of Tulsa
Oil & Gas
• Alex Barclay, Chief Information Security Officer, eLynx
• Jim Arrowood, Director of Information Security, ONEOK
• Nathan Singleton, Cybersecurity Manager, Helmerich & Payne, Inc.
• Geoff Goolsbay, Director, Enterprise Security, ONE Gas
• Kurt Haberstroh, Director, SCADA Department, Phillips 66
Moderator: Mauricio Papa, Associate Professor of Computer Science, The University of Tulsa
• Karl Heimer, Principal at Heimer & Associates, LLC
• Larry Hilkene, Chief Product Cybersecurity Engineer, Cummins
• Gloria D'Anna, Author, SAE Cybersecurity for Commercial Vehicles
• Ben Gardiner, Senior Cybersecurity Research Engineer, National Motor Freight Traffic Association
Moderator: Jeremy Daily, Associate Professor of Mechanical Engineering, The University of Tulsa
4:25 p.m. 5:15 p.m. Leadership Track: IoT Governance
• "Internet of Things: Dangers and Opportunities," Ido Kilovaty, Assistant Professor of Law, The University of Tulsa and Anthony Hendricks, Attorney, Crowe and Dunlevy
Technology Track A: IoT and CPS Security
• "Wearable Security," Charles Walter, Postdoctoral Researcher, The University of Tulsa
• "Connected Cars and the Cybersecurity Challenges Facing Them," Andrew Kongs, Security Engineer, Cylance
Technology Track B: Cloud Security
• "How the Cloud is Changing Security," Rue Limones, Senior Program Manager, Microsoft Cloud App Security
6:00 p.m. 7:00 p.m. Networking Reception sponsored by Phillips 66
Tulsa Ballroom North
7:00 p.m. Keynote/Dinner: "Rethinking Cyber: From Protection to Enablement,” Nadav Zafrir, Co-Founder and CEO, Team8
Tulsa Ballroom Central
Tuesday, March 26
7:30 a.m. 8:30 a.m. Breakfast
8:30 a.m. 9:30 a.m. Keynote: "Cyber Resiliency: The Intersection of Technology and Culture," Daniel Holtzman, Cyber Technical Director, Air Force
9:40 a.m. 10:30 a.m. Leadership Track: Cyber 101 for Leadership
• "Encryption for Leadership," John Lister, VP, GPSG
• "Cybersecurity for Artificial Intelligence Solutions: A Framework for Reducing AI Vulnerabilities," Robert Gourley, CTO, OODA
Technology Track: Enterprise Security
• "Is Your Toaster an Insider Threat?" Robert Flores, CEO, Applicology Incorporated
• "Real Hacks from the Field," Moderated by Michael Oglesby, VP of Security Services, True Digital Security; with Scott Williamson, VP; Jerald Dawkins, CISO; Josh Bozarth, Security Testing Services Manager, True Digital Security, Inc.
10:40 a.m. 11:30 a.m. Panel: Fostering a Culture of Innovation in Cybersecurity: Global Thought, Local Action
• Jerald Dawkins, Founder and Chief Information Security Officer, True Digital Security, Inc.
• Pablos Holman, Inventor, Intellectual Ventures
• Jeremy Daily, Associate Professor of Mechanical Engineering, The University of Tulsa
• Mark Lauinger, Senior VP of Client Services, i2E
• Hank Haines, President and Founder, Sequoyah Technologies
• Diana Kelley, Cybersecurity Field CTO, Microsoft
Moderator: Robert Spoo, Chapman Distinguished Professor of Law, The University of Tulsa College of Law
11:30 a.m. 1:00 p.m. Keynote/Lunch: "Insurance: Reshaping the future of cyber risk management in the 21st Century," Pascal Millaire, CEO, CyberCube
Tulsa Ballroom Central
1:00 p.m. 1:15 p.m. Closing Remarks and Adjourn 1:15 p.m. 2:00 p.m. Optional Cybersecurity Consortium Information Session
Cyber Security Innovation
Bob Spoo, Chapman Distinguished Professor of Law, University of Tulsa
Peter Hawrylak, Associate Professor of Electrical and Computer Engineering, University of Tulsa
Ido Kilovaty, Frederic Dorwart Endowed Assistant Professor of Law, University of Tulsa