Cyber Security 2019

Cyber Security 2019

Building and Testing Cyber Resilience

May 27 • Toronto


Days Hours Minutes Seconds

Conference Overview

Cyber incidents, intrusions, and attacks threaten organizations on a daily basis. The idea that organizations will fall victim to some form of cyber-attack has moved from a possibility to a virtual inevitability. Building a strong cyber security posture is not enough – organizations need to build cyber resilience.

Recent research by the Conference Board highlights two important distinctions separate cyber resilience from cyber security: business continuity and organizational responsibility. Unlike cyber security, which is usually very focused on protection, cyber resilience recognizes the inevitability of a successful cyber-attack and the need to ensure that the business can maintain critical functions and quickly return to normal.


March 6

8:00 a.m.

Registration and Continental Breakfast

8:30 a.m.

Opening Remarks from the Co-Chairs

9:00 a.m.

Plenary Session 1
The Global Cyber Security Ecosystem

Digital technologies are everywhere; they're in our pockets, homes, workplaces, means of transportation, parks, and critical infrastructures. With them have come a new world of security concerns that many companies, governmental organizations, and private citizens have been working to address. This keynote presentation will set the tone for the day by providing a big picture overview of the cyber security threats Canada and Canadians face, as well as what one organization is doing in the face of those threats.

9:45 a.m.

Plenary Session 2
Panel Discussion: Operationalizing Cyber Resilience—Embedding It into Your Organization and Security Culture

From the big picture to the front line, this second session will look at what cyber exercises are currently being used in three of Canada's critical sectors: the financial, hydro, and tech sectors. Panelists from different organizations will discuss which cyber security exercises they're using in their organizations and why they've chosen those exercises from the diverse options available. Panelists will also explore some of the challenges they've experienced while using those exercises, and what best practices might be of interest to practitioners across other domains.

10:30 a.m.

Lightning Talk
DNS Networks Are More Vulnerable Than Ever
(They're also difficult to exercise for resiliency)

Increasingly, enterprise Domain Name System Networks are being targeted and compromised. Reported DNS hijacking, phishing, and man-in-the-middle exploits are up in 2019. The DNS is vulnerable because organizations have hundreds or thousands of domains with multiple registrars, dozens of DNS providers, thousands of zone file endpoints, and many IP addresses. It's a hacker's paradise.

Exercising a complex DNS network for resiliency can be a daunting challenge. This session will describe typical enterprise DNS conditions and identify the most common breach-response exercise scenarios. Step-by-step best practices will help IT security assess and test this critical digital infrastructure.

10:45 a.m.

Networking Break

11:15 a.m.

Plenary Session 3
Security Driven Networking – Getting Cyber Right

Today, security is more than just compliance, indeed it’s viewed as a reasonable level of due care balancing security, resilience and compliance. The presentation will outline distributed network segmentation and virtualization addressing risk management and continuity-of-operations strategies – moving the focus from disruptive to normative risk.

12:00 p.m.

Networking Luncheon

1:00 p.m.

Plenary Session 4
Panel Discussion: Building Capacity Through Exercising—Building Multifunctional Teams Through Exercising to Increase Organizations Resilience

Cyber resilience cannot be undertaken by one department alone. Multifunctional teams are the key to ensuring success in developing, implementing, and practicing cyber security policies for ensuring business continuity and organizational resilience. Exercising is an important way to bring this team together, and to ensure that roles and responsibilities are clearly defined for when the real crisis comes.

1:45 p.m.

Lightning Talk
Building Cyber Resilience: A Spotlight on IBM's Inclusion and Outreach Programs

This quick-fire presentation will highlight one method organizations can use to conduct cyber exercises, the pros and cons of this approach, and how it can best be leveraged to increase resilience.

2:00 p.m.

Plenary Session 5
Cybersecurity and Cybercrime in Canada—Where We Are and Where We're Going

Private and public sector organizations are not solely responsible for fostering and improving Canada's cyber resilience; individual Canadians, non-profit organizations, and academic institutions have roles to play in this domain, too. In this session, members of The Standing Senate Committee on Banking, Trade and Commerce will discuss their recent ground-breaking report Cyber Assault: It Should Keep You Up at Night, and the recommendation it makes to increase Canada's cyber posture.

2:30 p.m.

Networking Break

3:00 p.m.

Plenary Session 6
How One Organization is Exercising, Why They are Doing It This Way, and How They are Measuring Success

This plenary session will present a case study of how one organization is exercising its cyber security, highlighting the methodology they chose and how they are measuring success in increasing their cyber resilience.

3:45 p.m.

Plenary Session 7
International Perspective

This presentation brings an international perspective to the day's agenda, and focuses on cyber resilience and exercising in our current global context. Our speaker—an internationally renowned cyber security expert—will draw on their depth of experience working in the international cyber security space to describe some of the imminent and future challenges facing organizations.

4:30 p.m.

Closing Remarks from the Co-Chairs

4:45 p.m.

Conference Adjourns

Benefits of Attending

By attending this event, you will have the opportunity to:

  • Learn from Conference Board research, experts in the field, and practitioners implementing best practices around exercising for cyber resilience.
  • Identify best practices that can be implemented in your organization to strengthen your cyber security posture.
  • Expand your professional network by meeting representatives from other sectors working in this space.

What last year’s attendees told us

“Great event for 2018, and increased attendance this year. Amazing topics and awareness for future cybersecurity with Quantum Counting talk. Amazing!”
“A sincerely great conference.”
“Once again, an excellent job of organizing and content.”
“This is the first time I attend this event. I really enjoyed it and am impressed by the quality of the speakers overall.”
“I would participate again. Availability of presentations was a great idea. I could view them on my computer while attending the conference. Great that I didn't have to carry papers/presentations.”
“Good sessions inter-connecting and building on each other.”

Networking Opportunities

Individual Tickets

Before Mar. 27


After Mar. 27


Rates for groups of 5 or more are available upon request, please contact our marketing team.


Doug Black

Doug Black

Senator Senate of Canada

Rachael Bryson

Michael Burt

Executive Director, Global, Industrial and Education Economics The Conference Board of Canada

Heather Ricciuto

Heather Ricciuto

Global Leader, Academic Outreach Program IBM Security

Peter LaMantia

Peter LaMantia

Founder and Chief Executive Officer Authentic Web


Sarah Jamie Lewis

Executive Director Open Privacy Research Society

Vanessa Thomas

Vanessa Thomas

Senior Research Associate, Technology and Innovation Policy The Conference Board of Canada

Other Speakers 



Marketing Partners

Authentic web

Preferred Airline Partner

Air Canada logo

Sponsor This Event

Associate your brand with the solutions, and position your organization as a leader in its field. Connect with your top prospects, and collaborate with senior executives, practitioners, and thought leaders.

To learn more about exclusive sponsor benefits, please contact Tracie Jones at 613-862-1566 or by e-mail, or visit our Sponsorship Benefits page.


Conference Venue

The Globe and Mail Centre
351 King St E (17th Floor)
Toronto Ontario M5A 0N1


Sheraton Centre Toronto Hotel
123 Queen St W
Toronto ON M5H 2M9

Conference fees don't include accommodations. Please contact the hotel directly for reservations, and mention The Conference Board of Canada to receive the preferred rate of $229.00, available until Thursday, May 2, 2019.

Cancellation: 48 hours prior to arrival with no penalty.

We are pleased to be partnering with Air Canada to offer 10% discounts on flex fares and up for Cyber Security 2019: Exercising the Fitness of your Cyber Resilience Strategy.

Simply add the code 7F84KXQ1 in the promotion box when you book your flight at and the discounts will automatically calculate for you. Discounts also apply 7 days pre and post the event dates to provide more flexibility. Enjoy your flight.


Program or Registration Questions?

Send us an e-mail

Insights. Understanding. Impact.

Facebook logo inside a circle Twitter logo inside a circle LinkedIn logo inside a circle

© Copyright 2019 The Conference Board of Canada*
255 Smyth Road, Ottawa ON K1H 8M7 Canada
*Incorporated as AERIC Inc. Agreement No. 40063028

The details of this event are subject to change. Please revisit this page periodically for updated information.