Industry experts discussed current and emerging cybersecurity and privacy regulations, the future of cyber regulatory compliance, and how organizations can develop and enhance cyber and privacy programs at the 9^th Annual Cybersecurity Conference for Executives. Since 2014, the Johns Hopkins Information Security Institute has partnered with consulting firm Ankura to provide targeted cybersecurity tips to executives nationwide and to give insight into top cybersecurity threats, new requirements and regulations, and best practices. Ankura donates all proceeds from the event for a partial scholarship to ISI’s Master of Science in Security Informatics program.

This year’s conference took place on April 18 in Scott-Bates Commons. The event began with opening remarks from Robert Olsen, senior managing director of Ankura Baltimore; Anton Dahbura, executive director of ISI; and Dean Ed Schlesinger of the Whiting School of Engineering.

The remarks were followed by a keynote address on the latest regulatory cybersecurity and privacy requirements presented by Dr. Phyllis Schneck, vice president and chief information security officer at Northrop Grumman, an aerospace and defense company.

Kenric Tom, managing director of Ankura New York, led a session on data privacy laws, breaking down the top privacy requirements of the past decade, discussing upcoming regulations, and advising on core privacy controls that all organizations should implement.

After a short break, Mike Jacobs and Matthew B. Welling of international law firm Crowell & Moring LLP discussed core cybersecurity regulations and emerging laws. This session preceded a lunch and learn event directed by James C. Foster, CEO of the local cybersecurity firm ZeroFox.

Following lunch, Brian H. Montgomery and David Oliwenstein of global law firm Pillsbury Winthrop Shaw Pittman LLP used the New York Department of Financial Services’ and the Securities and Exchange Commission’s cybersecurity requirements as examples to illustrate how executives can build effective cyber programs that comply with regulatory requirements.

This workshop was followed by a panel on the price of regulatory non-compliance; panelists included Joe Comeau, cyber risk consultant at insurance brokerage Lockton Companies and Gretchen D. Ruck, senior managing director of Ankura Washington, D.C.

The last session, “Developing a Cyber and Privacy Governance Program” led by Olsen, outlined tips and best practices to help executives continuously evaluate regulatory compliance and enhance their organizations’ security controls to protect their most critical assets.

Dahbura gave closing remarks before the day concluded with a networking reception.

“The Johns Hopkins University Information Security Institute appreciates the partnership we have had with Ankura to co-host this conference,” stated Dahbura.

The 10^th Annual Cybersecurity Conference for Executives will be held in April 2024.