WHO:

  ISACA + OWASP + ISSA + INFRAGARD + ISC2 + RIMS + (SIM + ACP - Waiting on Confirmation) 

​​​

AI + Cyber + Risk + Technology Professionals 

​​​

​​​

WHAT:

GRC Edition 2025: Evolving GRC in AI  + Data + Operational Technology + Enterprise  

​

EVENT OVERVIEW:

Cyber Resilience + AI: GRC Edition 2025 is a full-day conference crafted to address critical challenges in cybersecurity, artificial intelligence, and technology governance, risk, and compliance (GRC), with a particular emphasis on AI (Yes…more AI!), Data and OT. 

​

This immersive event builds on the strategic foundations explored at the June GRC Workshop, delivering actionable insights and tactical approaches to empower today’s GRC professionals and executives.
 

A Unique Opportunity: Shaping Florida’s Technology Governance  

This time around, we’re adding a unique and potentially transformative dimension to the conference. Attendees will have the exclusive opportunity to contribute to Florida’s IT governance framework by participating in sessions designed to provide actionable guidance to the Florida Senate Appropriations Committee.

​

 A dedicated session featuring former Senator Jeremy Ring will offer perspectives on structuring Florida’s IT Governance Program, equipping attendees to influence state-level policy while addressing the real-world challenges faced by enterprises and practitioners.

 

​

Agenda Highlights Include:

​​

Tabletop exercise (TTX) involving lawyers and CISOs (Chief Information Security Officers) focusing on the intersection of technical response and legal/regulatory compliance:​

• Validate and improve communication, coordination, and decision-making between the technical/security teams (led by the CISO) and the legal/compliance teams during a crisis.

• Focus on critical, time-sensitive decisions like:

  • When to notify regulators/affected parties, negotiating a ransom payment (if applicable and legal)

  • What information is shared externally (media/public statements).

• Lessons learned / war stories
  ​

Provide feedback and guidance to Florida's Senate Appropriations Committees​

• Opportunity to contribute actionable guidance directly to the Florida Senate Appropriations Committee regarding the state’s IT governance framework.

• Utilize real-world enterprise and practitioner challenges to influence state-level policy decisions and the legislative budgeting process.

• Participate in a dedicated session featuring former Senator Jeremy Ring.​

​​​

Life and Death Consequences of Securing Healthcare and the complexity involved 

• Complexity of the physical and regulatory environments

• Increasing risk

• Consequences of failure

​​

AI impacts on both the cost and scope of risk transference (insurance) and the entire legal liability outlook.

• Challenges in the gap between traditional legal and insurance language and the novel risks posed by autonomous, black-box AI systems.

• The "Silent AI" Risk Gap: Traditional Cyber Insurance policies focus on data breaches, network intrusions, and ransomware.

• They often do not explicitly cover newer AI-specific losses:​

  • Algorithmic Bias: Liability for discriminatory outcomes (e.g., in hiring or lending) caused by the AI model itself.

  • Data Poisoning: Malicious corruption of an AI model's training data.

  • "Hallucinations"/Errors: Financial loss or professional liability resulting from inaccurate or fabricated AI output.

​

Employee Feedback Gap:​

• Societal and Gender biases in employee feedback

• Impact on business outcomes 

• Considerations for improvement
   

​​

Professional Development:​

• Executive Presence

• Impact of Salary Negotiations 

• Strategies for improvement​

​

​Career Exploration Session:​

• Current state of employment environment

• Opportunity Exploration Strategies

• Meet and greet with recruiters and companies trying to hire​​​​

​​​​​​

​

THEME: Pathfinding future technology trends (and the associated Governance, Risk and Compliance) to inform and empower the Tampa Bay Technology Community.

​​​

Specific focus on AI Governance, Data Governance, Operation Technology Governance:

(Tactical approaches to the strategic foundations laid out in June GRC Workshop 2025)​

​​

• AI

  • AI Governance

  • AI Risk Management

  • AI Security

  • AI Audit

• Data 

  • Data Governance 

  • Data Audit

  • Privacy

• OT / IoT / Industrial Control Systems 

  • ICS/OT/IoT Governance

  • ICS/OT/IoT Risk Management

​​

​Enterprise AI Risk Management and Governance: Key Strategic Considerations

Current State Assessment:

What is the present landscape of artificial intelligence deployments across enterprise environments, and how are organizations positioning themselves within this technological transformation?

Risk Mitigation Framework:

Given the accelerated pace of AI evolution, what are the critical security vulnerabilities and risk vectors that organizations must address to ensure responsible and secure AI implementation?

Dynamic Risk Management:

In an environment characterized by continuous technological disruption, how should organizations adapt their risk management frameworks to maintain effectiveness amid constant change?

AI Assurance and Audit Practices:

What comprehensive audit methodologies and assessment frameworks are emerging to evaluate AI systems' compliance, performance, and risk posture?

Governance Architecture:

Considering the current enterprise AI adoption patterns and the dynamic nature of the technology landscape, what integrated governance models are organizations developing for AI and data stewardship?

Regulatory Convergence and Compliance:

How are organizations navigating the complex regulatory environment where comprehensive frameworks (GDPR, EU AI Act) intersect with the fragmented regulatory landscape in the United States (CCPA, Minnesota Consumer Data Privacy Act, Utah Artificial Intelligence Policy Act, Colorado AI Act, etc.), and what governance strategies are emerging to address this regulatory complexity?

Strategic Integration Opportunities:

What transformative opportunities are emerging at the convergence of cybersecurity, governance risk and compliance (GRC), and artificial intelligence that can drive organizational resilience and competitive advantage?

​​​

Industry-Focused Break Out Sessions segmented by Verticals:

Additionally, GRC Workshop will breakout sessions segmented by verticals. 

Breakout sessions organized around vertical-specific discussion groups, each led by seasoned subject matter experts who bring authentic, real-world challenges to the table.

​​

Interactive Problem-Solving Methodology:

Each SME presents a genuine governance or risk management challenge from their experience and facilitates group discussions around two key questions:

Are you facing this challenge too?
What solutions have proven effective in your organization?
 

​​

Additionally, we will be having legal, insurance, ransomware, and privacy SMEs going through the breakout sessions to answer questions specific to those verticals.

​

Confirmed Industry Verticals:

​​

Banking & Financial Services

Client data protection and clinical governance

Regulatory compliance and risk management

​

Healthcare & Life Sciences

Patient data protection and clinical governance

Regulatory compliance and risk management​

​​

Public

Power, water, and educational institution governance

Client data protection and clinical governance

Regulatory compliance and risk management

​

Under Consideration Industry Verticals

​​​

Telecommunications

Network security and data transmission governance

Client data protection and clinical governance

Regulatory compliance and risk management

​

Manufacturing

IoT security and operational technology governance

​​

Government

Public sector compliance and citizen data protection

​​​​​​​​​​​​​

​

Why Attend?  Engaging Content and Immersive Networking  

Experience a thoughtfully curated program featuring insightful presentations, interactive discussions, and meaningful networking opportunities.

​

Hosted at the unique Kress Contemporary, this avant-garde venue blends historic Ybor aesthetic with chic, elegant design, fostering an environment ideal for strategic dialogue, professional growth, and relationship-building.
 

Come help shape the future of GRC in Florida and beyond!
 

​