Itinerary List

Registration + Breakfast + Networking

What does AI Bias look like? What is AI Explainability? What is AI Observability? How does it relate to tracking data drift, hallucinations, and model performance, ensuring AI systems remain accurate, reliable, and compliant in production environments.

Join an IT/Cyber/AI assessment/audit roundtable panel to discuss the most relevant topics in IT auditing and IT risk management. We’ll discuss key risks and practical approaches to IT audits/compliance/assessment in organizations through practical knowledge sharing and indstry-specific standards.
We will discuss top IT risk and assessment/audit areas, challenges, and the latest in IT and cyber best practices during an interactive session with experienced IT/cybersecurity and IT audit professionals. As always, we focus on key "soft" and technical subjects with a focus on best practices and knowledge sharing.
This roundtable session will include an in-depth discussion of key assessment audit issues, IT trends, IT/IT security/cyber best practices, and best IT audit practices. In the era of information overflow, what are the best resources available for IT auditors/assessors? We will dig down into available IT/IT security standards in the near future, many of which are free. This session includes active knowledge sharing of your key success factors or challenges. We will use interactive tools in the discussion to create an interactive session and input from the participants. Some of the topics that have been discussed in the past are:
• IT and IT security standards/practices – Recent updates to be aware of
• IT governance – Your most important audit
• Biggest IT audit challenges
• How to build IT audit value
• AI Governance and risk management
• IT asset management – what to audit and what is accepted practices
• Cyber risk / Cyber security audit approaches
• IT risk assessments from an audit perspective
• Network security – What to audit and how
• Root cause analysis – Why a must
• IoT, IoMT, SCADA – The weakest link?
• How will the IIA new topical requirements impact?
• Information/data governance a forgotten risk?
• What is a good approach for IT security assessments?
• Independent assurance (SOC, CMMC, HITRUST, FedRAMP, "StateRAMP", Riskrecon, CSA, etc.) what are the pros and cons? How does it impact me
• And many more topics.
This sessions value for IT, IT risk management, IT security, compliance, and privacy professionals. The session has outstanding evaluations from new and experienced IT auditors/IT security professionals. We promise you a high-value knowledge session.

What does effective GRC look like in the age of AI?

CMMC 101 - Will contractors be disqualified from DoD contracts?
What is CMMC
Who is impacted by CMMC
Current timeline
What actions do contractors need to take now to be eligible for contract awards
Cost of certification
Recommended next steps

This session explores the real-world adoption of AI in enterprise environments — examining what has worked, what has failed, and the lessons learned along the way. Through a roundtable and workshop format, participants will discuss the current state of enterprise AI, emerging trends, common challenges, and critical success factors, while looking ahead to near-term developments shaping the landscape.

What to expect from a disruption standpoint (how will AI impact skills required)? What skillsets are companies look for? Are companies re-examining how they hire?

Enjoy a lunch buffet while networking with peers

Security accountability and responsibility across an organization based on the open group standards for security roles.

GRC in Agentic Workflows

Following a well received session in November, James Gress returns with an expanded presentation that builds on attendee feedback and the rapidly evolving AI toolset. This session goes deeper — offering new insights, advanced techniques, and practical strategies for leveraging AI to streamline and accelerate your personal workflows.

Common issues in getting ready for a certification. Top tips to be ready for the most common certifications (CMMC, SOC, ISO, PCI, etc.). Can AI help with pre-audit/readiness assessments?

Recharge with some ice cream and snacks!

Network with peers while enjoying cocktails, refreshments and Hors d'Oeuvres.

AI/LLM Panel: What Worked? What failed? Lessons Learned will

Quantum Capers: HNDL (Harvest Now Decrypt Later)! How does one prepare? A framework for transitioning to Post Quantum Cryptography(PQC)

What and why to Use SABSA as Enterprise Architecture tool - A key tool for AI/Data governance, cybersecurity and integrated enterprise architecture for success.

Ways to utilize AI to determine optimum resources for security and resiliency on your infrastructure