All news with #conference tag

Bruce Schneier: Upcoming Speaking Engagements 2025–2026

📢 Bruce Schneier lists his scheduled public talks and book signings through late 2025 and early 2026. Highlights include a signing at the Cambridge Public Library on October 22, 2025 at 6 PM ET, sponsored by Harvard Bookstore, and a virtual talk about his book Rewiring Democracy on October 23, 2025 at 1 PM ET hosted by Data & Society. He will also appear at the World Forum for Democracy in Strasbourg (Nov 5–7), the University of Toronto Bookstore (Nov 14), the MIT Museum with Crystal Lee (Dec 1), and the Chicago Public Library (Feb 5, 2025). Details and updates are maintained on this page.

Laura Deaner on AI, Quantum Risks and Cyber Leadership

🔒 Laura Deaner, newly appointed CISO at the Depository Trust & Clearing Corporation (DTCC), explains how AI and machine learning are transforming threat detection and incident response. She cautions that quantum computing could break current encryption by 2030, urging immediate focus on post-quantum cryptography and comprehensive crypto inventories. Deaner also stresses that modern CISOs must combine curiosity with disciplined asset hygiene to lead security transformations effectively.

Inside Black Hat's NOC: Zero-Hour Security Operations

🛡️ At Black Hat, Palo Alto Networks' NOC operates a zero-hour defense model that protects critical infrastructure while enabling controlled exploit training. Engineers from Cortex and Unit 42 collaborate with partners like Corelight to develop rapid detections, deploy contextual rules on PA-5430 firewalls, and automate responses via Cortex XSIAM. The environment balances visibility, segmentation and automated enforcement to stop external threats without disrupting sanctioned exercises.

Agentic SOC Workshops: Practical AI for Security Teams

🛡️ The Agentic SOC Workshop is a complimentary, half-day event series from Google Cloud designed to help security professionals apply agentic AI and cloud-native threat intelligence to real-world operations. Attendees will participate in hands-on labs, a Capture the Flag challenge, and peer networking to learn how Gemini and Google Cloud tools can reduce alert fatigue and automate routine workflows. Sessions start in Los Angeles on Sept. 17 and Chicago on Sept. 19, with additional dates in October.

CISA Priorities at 16th Billington CyberSecurity Summit

🔐 The Cybersecurity and Infrastructure Security Agency (CISA) will present senior leaders and experts at the 16th Annual Billington CyberSecurity Summit, Sept. 9–12 in Washington, D.C. Acting Director Madhu Gottumukkala and new Executive Assistant Director for Cybersecurity Nick Andersen will deliver fireside chats outlining CISA’s strategic objectives. Other sessions address vulnerability management, threat hunting, supply chain collaboration, and AI in code security. Registration is required.

GKE Turns 10 Hackathon: Build Agentic AI Microservices

🚀 Join the GKE Turns 10 Hackathon to build next‑generation microservices enhanced with agentic AI. Google provides sample applications (Bank of Anthos or Online Boutique), example agents on GitHub, documentation, quickstarts and a webinar to help teams get started. Submissions must run on GKE and use Google AI models such as Gemini, with agents interacting via APIs rather than altering core application code. Participants may also use the Agent Development Kit (ADK), Model Context Protocol (MCP) and Agent2Agent (A2A) to extend functionality.

Advanced Threat Hunting Workshop — Labscon 2025 LLMs

🔎 Our colleague Joseliyo Sánchez, together with SentinelOne researcher Aleksandar Milenkoski, will present a hands-on workshop at Labscon on automating large-scale threat hunting using the VirusTotal Enterprise API. Attendees will employ Python and Google Colab to process massive datasets, track APT behaviors, and apply LLMs to enhance analysis, query building, and visualizations. The session targets CTI analysts, threat hunters, incident responders, SOC analysts, and security researchers. A follow-up blog post will publish example exercises and materials for further learning.

Agent Development Kit Hackathon: Winners and Highlights

🚀 The Agent Development Kit (ADK) Hackathon concluded with more than 10,400 participants from 62 countries, 477 submitted projects, and 1,500+ agents built. The competition emphasized multi-agent orchestration for automation, data analysis, customer service, and content generation, awarding SalesShortcut the Grand Prize. Regional winners included Energy Agent AI, Edu.AI, GreenOps, and Nexora-AI, and organizers pointed participants to ADK documentation and developer forums while announcing an upcoming GKE hackathon with over $50,000 in prizes.

SASE Summit 2025 — Convergence without Compromise, Global

🔒 Fortinet’s 4th Annual SASE Summit (NAMER: Sept 16, 2025; EMEA/LATAM/APAC: Sept 18, 2025) centers on the theme Convergence without Compromise, arguing that robust security and top performance can be delivered together through a unified, AI-driven platform. The event features Gartner VP Analyst Jonathan Forest and Fortinet leaders Nirav Shah and Jordan Thompson, along with customer case studies from Tepper Sports & Entertainment and Funke Mediengruppe. Attendees will receive practical guidance on adopting a consolidated SASE approach that embeds zero trust, AI-enabled controls, and end-to-end visibility to reduce complexity, cut costs, and better protect hybrid workforces and cloud environments.

Fortinet Marks International Women in Cybersecurity Day

👩‍💻 Fortinet marks International Women in Cybersecurity Day 2025 by highlighting programs that expand access to cybersecurity training and career pathways for women. The Fortinet Training Institute and its Education Outreach Program provide free access to Network Security Expert (NSE) training and certifications, and run instructor-led initiatives such as the Networking Fundamentals Bootcamp. Through a four-year partnership with WiCyS, Fortinet supported regional meetups and led a Hands-on SOC Workshop at the WiCyS Annual Conference (April 2–5, 2025) in Dallas. These efforts are positioned to address the global cyber skills gap ahead of the forthcoming 2025 Cyber Skills Report.

12 Days Left to Nominate for CSO30 Awards 2025 — Apply

🏆 With only 12 days until the 12 September 2025 nomination deadline, the CSO30 ASEAN Awards invite senior security leaders to submit entries that demonstrate outstanding leadership, innovation, and measurable business value. Categories include Business Value, Leadership, and Public‑Private Partnership. Winners will be honoured at an in‑person ceremony in Singapore and join a global community of top CISOs and security executives.

CSO Guide to Top Security Conferences for 2025 and Dates

📅 CSO's editors compile a curated calendar of leading and niche cybersecurity conferences worldwide, spanning September 2025 through April 2026. The list identifies event names, dates and locations, and notes in-person, virtual and hybrid formats as well as events run by CSO’s parent company, Foundry. Use this guide to prioritize training, vendor demos and networking opportunities tailored to your region and role.

Securing AI Before Times: Preparing for AI-driven Threats

🔐 At the Aspen US Cybersecurity Group Summer 2025 meeting, Wendi Whitmore urged urgent action to secure AI while defenders still retain a temporary advantage. Drawing on Unit 42 simulations that executed a full attack chain in as little as 25 minutes, she warned adversaries are evolving from automating old tactics to attacking the foundations of AI — targeting internal LLMs, training data and autonomous agents. Whitmore recommended adoption of a five-layer AI tech stack — Governance, Application, Infrastructure, Model and Data — combined with secure-by-design practices, strengthened identity and zero-trust controls, and investment in post-quantum cryptography to protect long-lived secrets and preserve resilience.

DLA Selects Google Public Sector for Cloud Modernization

☁️ Google Public Sector has been awarded a $48 million DLA Enterprise Platform contract to migrate the Defense Logistics Agency to a DoD‑accredited commercial cloud. The multi‑phased program will move key infrastructure and data to a modern, AI‑ready Google Cloud foundation and enable BigQuery, Looker, and Vertex AI analytics. Emphasizing secure‑by‑design infrastructure and Mandiant threat intelligence, the effort aims to reduce costs, improve resiliency, and accelerate AI‑driven logistics and transportation management.

Webinar: Code-to-Cloud Visibility — Foundation for AppSec

🔒 Join a focused 60-minute webinar on September 18, 2025 at 2 PM EST to learn why leading teams are prioritizing code-to-cloud visibility to reduce app risk and accelerate remediation. Experts will share practical steps to map code issues to cloud behavior, prioritize critical applications and automate fixes to shrink vulnerability counts and remediation time. Attendees receive a free ASPM checklist and a recording to apply learnings immediately.

BlueHat Asia 2025 Call for Papers Closes Sept 5 — Bengaluru

📢 BlueHat Asia 2025 in Bengaluru is now accepting talk submissions through September 5, 2025. Hosted by the Microsoft Security Response Center (MSRC), the two-day event on November 5–6 invites security researchers and responders of all experience levels to present findings, lessons learned, and industry guidance. Topics of interest include vulnerability discovery and mitigation, exploit development and detection, AI/ML security, IoT/OT and critical infrastructure protection, DFIR, social engineering, and reverse engineering. Submissions require a title and a sufficiently detailed abstract; a full academic paper is not necessary, and MSRC cases may be presented only after at least 30 days have passed since the associated fix was published. To explore co-presentation or partnership opportunities, contact bluehat@microsoft.com.

BlueHat Asia 2025 CFP Open — Submit Papers by Sep 14

📣 BlueHat Asia 2025, hosted by the Microsoft Security Response Center (MSRC), will take place in Bengaluru, India on November 5–6, 2025. The Call for Papers is open through September 14, 2025, and submissions require only a talk title and a sufficiently detailed abstract—no formal paper is necessary. Speakers are invited to present practical research and lessons across topics such as vulnerability discovery and mitigation, exploit development and detection, securing AI and machine learning, IoT/OT and critical infrastructure security, DFIR, social engineering, malware, and reverse engineering. If you’ve reported a case to MSRC, consider presenting once at least 30 days have passed since the fix was published and impacted customers were notified.

Earth Engine in BigQuery: Raster Analytics & Map Visuals

🌍 BigQuery now integrates Earth Engine, enabling analysts to run raster analytics and join satellite-derived imagery with vector data using familiar SQL workflows. Initial capabilities include the ST_RegionStats() geography function plus a curated set of ~20 Earth Engine raster datasets for land cover, weather and climate analysis. With general availability, Google Cloud adds EU regional deployment, an Image Details tab for enhanced metadata visibility, usage and quota controls, and a preview map visualization in BigQuery Studio to render GEOGRAPHY query results on Google Maps for interactive exploration and stakeholder-ready outputs.

Fortinet at Black Hat USA 2025: Innovation & Community

🔒 Fortinet played a central role at Black Hat USA 2025, engaging thousands of attendees through demos, theater sessions, and partner presentations. At Booth #2446 and the Security Fabric Theater, Fortinet highlighted integrated capabilities across secure networking, SOC transformation, endpoint protection, and CNAPP, and showcased research on adversarial AI. The program extended into DEF CON 33, reinforcing the urgency of attack surface management and rapid threat detection.

What I Wish I Knew Before Becoming a CISO — Advice

🔒 Drawing on a Black Hat panel and an eclectic career spanning Unix administration, MSSP operations, and multiple roles at Fortinet, the author distills practical guidance for aspiring and new CISOs. Key points stress that the role is not purely technical but a business resilience function demanding clear, data-driven communication, calendar discipline, and strong team building. The post also highlights burnout risks and the critical need for D&O insurance and legal preparedness.