The 13th Annual DC Metro Official Cybersecurity Summit is the must-attend event for CISOs and senior leaders looking to strengthen resilience, reduce risk, and align security with business goals. Join top executives, innovators, and experts for a full day of actionable insights, cutting-edge solutions, and high-impact networking. Experience interactive panels, exclusive solution showcases, and strategic discussions that go beyond theory to deliver real-world results, all complemented by a catered breakfast, networking lunch, and closing cocktail reception.

Featured Speakers

Key Issues Covered at The Official Cybersecurity Summit

AI, Automation, and Emerging-Tech Risk (and Opportunity)

As artificial intelligence, automation, and new digital technologies accelerate across every industry, cybersecurity leaders face both unprecedented risk and powerful opportunity. The summit will explore how Cybersecurity leaders and their teams can harness emerging technologies to strengthen resilience, streamline operations, and stay ahead of adversaries who are equally quick to innovate. Attendees will gain insight into real-world applications of AI for threat detection, incident response, and decision intelligence, while learning how to identify and mitigate the new classes of vulnerabilities these tools introduce.

From generative AI and large language models to autonomous security systems and deepfake detection, these discussions will separate hype from reality. Experts will share practical frameworks for governing AI responsibly, managing data integrity, and aligning innovation with enterprise risk management. The conversations will help cybersecurity executives navigate the complex balance between embracing emerging technology for competitive advantage and ensuring it doesn’t become their next threat vector.

Key Takeaways:
• Learn how AI and automation are transforming threat detection, incident response, and security operations in measurable ways.
• Practical strategies for managing and mitigating new risks created by emerging technologies like generative AI and autonomous systems.
• Frameworks for responsible AI governance, including data integrity, transparency, and regulatory alignment.
• Real-world examples of organizations balancing innovation with security and risk management priorities.
• Actionable insights cybersecurity leaders can take back to their teams to prepare for the next wave of AI-driven threats and opportunities.

Supply Chain, Third-Party Ecosystem, and Identity Attack Surface

As organizations expand their digital ecosystems, the lines between internal and external risk are rapidly disappearing. Today’s threat actors know that the fastest way into a network isn’t always through the front door. From compromised vendors and cloud integrations to weak identity controls, attackers are exploiting every link in the chain. The summit brings cybersecurity leaders together to unpack how supply chain vulnerabilities, third-party dependencies, and identity-based risks are converging to create a complex and often underestimated attack surface.

Cybersecurity executives will explore real-world examples of cascading breaches, lessons learned from managing large vendor ecosystems, and emerging frameworks for continuous third-party risk monitoring. The discussions highlight strategies for mapping hidden connections, enforcing stronger identity governance, and building resilience through transparency and collaboration. Attendees will walk away with practical insights for reducing exposure and strengthening trust across every part of their digital supply chain.

Key Takeaways:
• Understand how interconnected supply chains and third-party vendors expand your organization’s attack surface.
• Learn proven methods to assess, monitor, and mitigate risks across your extended digital ecosystem.
• Explore best practices for managing identity as the new security perimeter, including zero trust and access governance strategies.
• Gain insights from real-world breach scenarios that reveal common breakdowns in vendor and identity controls.
• Leave with an actionable framework to improve third-party risk visibility, strengthen resilience, and build more secure partnerships.

Resilience, Risk, and Results: Aligning Security with Business Outcomes

In today’s threat landscape, resilience is more than just recovery - it’s readiness, adaptability, and alignment with the business mission. The summit explores how forward-thinking cybersecurity executives are quantifying cyber risk to drive smarter investments and communicate value in business terms. By translating technical controls into measurable business impact, cybersecurity leaders are helping their organizations make data-driven decisions that balance protection with performance.

Join top executives and thought leaders for in-depth discussions on the frameworks, metrics, and real-world practices shaping the next generation of cyber resilience. From risk quantification models to boardroom-ready reporting, this conversation will reveal how leading security teams are reframing cybersecurity as a strategic business enabler - bridging the gap between risk reduction and results.

Key Takeaways:
• Learn how to translate cybersecurity metrics into meaningful business outcomes that resonate with executive leadership and the board.
• Explore practical approaches to cyber risk quantification that help prioritize investments and justify budget decisions.
• Understand how resilience strategies can align with overall business continuity and growth objectives.
• Gain insights from leading CISOs on how they communicate security value across the organization to drive engagement and accountability.
• Discover frameworks and tools that connect operational security performance with measurable business impact.

Top 6 Reasons to Attend the Cybersecurity Summit

1
Learn

Learn from renowned experts from around the globe on how to protect & defend your business from cyber attacks during interactive panels & fast track discussions.

2
Evaluate Demonstrations

Evaluate and see demonstrations from dozens of cutting-edge cybersecurity solution providers that can best protect your enterprise from the latest threats.

3
Time, Travel & Money

Our mission is to bring the cyber summit to the decisionmakers in the nation’s top cities. Our events are limited to one day only and are produced within first-class hotels, not convention centers.

4
Engage, Network, Socialize & Share

Engage, network, socialize and share with hundreds of fellow business leaders, cybersecurity experts, C-Suite executives, and entrepreneurs. All attendees are pre-screened and approved in advance. On-site attendance is limited in order to maintain an intimate environment conducive to peer-to-peer interaction and learning.

5
CEUs / CPE Credits

By attending a full day at the Cybersecurity Summit, you will receive a certificate granting you Continuing Education Units (CEU) or Continuing Professional Education (CPE) credits. To earn these credits you must participate for the entire summit and confirm your attendance at the end of the day.

6
A Worthwhile Investment

By investing one day at the summit you may save your company millions of dollars, avoid stock devaluation, and potential litigation.

Questions

For any questions, please contact our
Registration Team.

Sponsor

To sponsor at an upcoming summit, please fill out the
Sponsor Form.

Admission to the Cybersecurity Summit is reserved exclusively for active cybersecurity, IT, Information security practitioners tasked with safeguarding their enterprises against cyber threats and managing cybersecurity solutions. All registrations are subject to review.
 
Students, interns, educators, individuals not currently employed in IT, and those in sales or marketing roles are not eligible to attend.
 
Additionally, if we are unable to verify your identity with the information you provided during registration, your attendance may be cancelled.
 
Please note these qualifications pertain to all attendees, including members of our partner organizations.

Agenda

The Official Cybersecurity Summit delivers high-impact sessions designed to help leaders strengthen resilience, protect critical infrastructure, and align security with business goals.

Attendees will gain actionable insights from expert panels, explore cutting-edge solutions, and connect directly with top industry innovators - making this a can’t-miss agenda for CISOs and security executives.

8:00-9:00
Networking Breakfast
9:00-9:05
Welcome Remarks
9:05-9:10
Welcome Remarks with Island
9:10-9:40
Keynote Presentation with Island: Crawl, Walk, Run, Sprint: How Enterprise's can keep up with AI

Generative AI and enterprise platforms continue to reshape the workplace and produce crazy headlines, CIOs and CISOs are under increasing pressure to enable innovation while maintaining operational integrity and governance. With rapid adoption of GenAI applications — often outside of IT oversight — organizations are facing growing challenges around data exposure, policy enforcement and unmanaged AI usage. This keynote will explore: Aligning AI adoption with business objectives while maintaining governance and control Mitigating risks associated with shadow AI and unmanaged applications Designing scalable policies and controls to support secure AI adoption across the enterprise


9:40-9:45
Welcome Remarks with IBM
9:45-10:15
IBM Presentation: Preparing for 2030: Quantum Safe Readiness for National, Financial, and Mission-Critical Infrastructure

Quantum resilience is no longer a distant technology discussion; it is a national imperative. As quantum computing advances and 2030 readiness expectations accelerate, federal agencies, financial institutions, and mission-critical infrastructure organizations must prepare now to protect the cryptographic systems that secure identities, transactions, communications, data, software, and digital trust. This keynote will explore how cybersecurity leaders can move from awareness to action through discovery and inventory, risk assessment and prioritization, remediation and governance. Attendees will learn how to align cybersecurity strategy with emerging federal direction, NIST standards, risk governance, and operational resilience goals.


10:15-10:25
Innovation Spotlight - Kindo: AI Security That Fights Back

Attackers are using AI to move like coordinated swarms, compressing weeks of work into hours. This talk covers why traditional security stacks can't keep up and what it looks like when defenders start fighting back at machine speed.


10:25-10:45
Sonatype Presentation: Mythos-Ready: Building a Security Program for the AI Vulnerability Storm

The arrival of Anthropic Mythos has fundamentally altered the cyber threat landscape. We have moved from theoretical risk to real-world acceleration, where AI vulnerability discovery is now fully operational. While traditional security cycles of research, disclosure, and patching once took months or years, AI now enables simultaneous discovery paths that rapidly compress the time to exploit.  

This session explores why humans can no longer keep up with this machine speed of autonomous discovery and exploitation. With vulnerability volumes predicted to increase by 2x to 10x, and the National Vulnerability Database (NVD) under significant pressure to prioritize only known exploited vulnerabilities, the public signals organizations rely on are falling further behind.    

Attendees will learn a new architectural model for defense. By shifting control to the start of the software supply chain—at the point of component selection—organizations can block risky or malicious components before they ever enter the build


10:45-11:05
Rubrik Presentation: When Agents Go Wrong: How to Rewind, Recover, and Stay Resilient

As AI agents proliferate across the enterprise, the attack surface is expanding faster than most security teams can track. This session explores how organizations can secure agentic workflows without sacrificing the speed and autonomy that make AI valuable — and what a governed, resilient AI security architecture actually looks like in practice.


11:05-11:30
Networking Break
11:30-12:00
Panel: AI and Emerging Tech at the 2026 Security Frontline

Abstract
AI and new digital technologies will continue to shift the cybersecurity landscape in 2026. This session explores how modern tools can enhance detection, response, and decision making while introducing new risks tied to generative systems, data integrity, and fast moving threat innovation. Leaders will gain a clear view of how to adopt emerging technology in a responsible and strategic way that supports resilience and aligns with enterprise risk goals.

Key Takeaways
• How AI and emerging tech are reshaping core security functions
• The new risks created by generative models and evolving attack techniques
• Practical governance steps that support responsible AI use
• Examples of organizations pairing innovation with disciplined risk management


12:00-12:20
Arctic Wolf & Attack Surface Management

Stop attacks before they start by discovering your entire attack surface, identifying the exposures that matter, and remediating the most important business risks.


12:20-12:40
Specops Software Presentation: The Real Story Behind Zero Trust, Identity, and Device Security From Identity to Workforce Trust: Securing Workforce Access End-to-End

Workforce access has never been more dynamic or more unpredictable. Users connect from anywhere, on devices that shift daily between personal, managed, trusted, and unknown, and security teams are expected to make the right call every time. Identity tells you who is connecting, but today’s environments make it equally critical to understand what they’re connecting with.  

Because if you don’t trust the device, you can’t trust the access. This session explores how identity and device trust come together to meet the real access challenges organizations face and why this perspective is essential for secure, resilient workforce access. Curious how this story shapes the future of secure access in 2026? Join us to find out.


12:40-1:30
Lunch
1:30-1:50
Trend AI Presentation: AI vs AI: How the Cyber Arms Race Is Redefining Defense

AI is now both a weapon and a shield. TrendAI™ research shows malicious actors using large language models to do reconnaissance, craft convincing phishing lures, automate vulnerability research, and generate malware at scale, lowering the barrier for even less sophisticated threat groups. At the same time, defenders are using AI to correlate signals across massive attack surfaces, surface behavioral anomalies, and respond with a speed and precision that simply wasn't possible before. I'll share what we're seeing in active campaigns and how AI is fundamentally shifting the economics of defense in our favor


1:50-2:10
Presentation with Stephen Craig, Senior Technical Architect, New York Presbyterian Hospital: Legacy Systems in an Age of Evolution

Healthcare organizations and many enterprises like them-are built on decades of mission-critical systems that were never designed for today’s threat landscape, regulatory scrutiny, or cloud-centric operating models. These legacy platforms often remain indispensable, yet increasingly indefensible.    

This presentation examines the real risks posed by aging systems in modern hybrid environments, particularly when budgets, clinical dependencies, and regulatory constraints limit replacement options. Drawing on lessons learned from large healthcare environments, we will explore pragmatic, cost-conscious strategies to reduce exposure without disrupting patient care or business operations.    

Attendees will gain a clear understanding of why legacy systems remain one of the highest risk areas in the enterprise, how attackers exploit them, and what leadership can do today to contain that risk. The session concludes with concrete executive-level actions to initiate risk reduction, align stakeholders, and begin a realistic modernization roadmap that balances security, compliance, and operational reality.


2:10-2:20
Innovation Spotlight - Netskope: Seeing the Invisible: AI Visibility Across Your Enterprise

You cannot protect what you cannot see — and right now, most organizations can't see their AI.  

According to the 2026 Netskope AI Risk and Readiness Report, 94% of organizations have gaps in AI visibility, 88% can't tell personal AI accounts from corporate ones, and only 6% have full visibility into their AI pipeline. That's not a minor gap. That's a blindfold.  In this session, we'll cover three things:  Why your current tools might be failing you. Traditional security tools weren't built for AI environments — they create dangerous blind spots across managed, shadow, and personal AI instances.  What complete visibility actually looks like. Not just knowing what AI tools exist, but who's using them, what data is flowing through them, and what attack paths are hiding in plain sight—including MCP and SaaS AI usage.  Where to start. You don't need a perfect program on day one. You need a governance baseline — and we'll show you how to build one fast using the Netskope One AI Command Center, the industry's first unified view across all AI states and contexts.


2:20-2:40
Presentation with Ambericent Cornett, President, Association for Women in Science: Cybersecurity as a Systemic Risk: From Infrastructure to Human Impact

As organizations expand their digital ecosystems, cybersecurity risk is no longer confined to networks, it has become a systemic threat impacting critical infrastructure, public safety, and operational continuity. From healthcare disruptions to supply chain compromise, cyber incidents now produce cascading effects that extend beyond technical systems into real-world consequences. This session examines cybersecurity through a systems-level lens, connecting infrastructure risk, identity compromise, and third-party dependencies to broader organizational and societal impact. Drawing on real-world case studies, including ransomware attacks on healthcare systems, supply chain compromises, and identity-based intrusions, this presentation highlights how interconnected vulnerabilities amplify risk across sectors.

Participants will gain a framework for understanding cyber risk as an ecosystem challenge, not an isolated technical issue. The session also explores emerging risks introduced by advanced technologies, including quantum computing, which has the potential to disrupt current cryptographic standards and redefine long-term security strategies.

Attendees will gain actionable strategies for strengthening resilience through identity-centric security, continuous risk monitoring, and forward-looking approaches such as quantum-resistant cryptography. The session concludes with a strategic perspective on aligning cybersecurity with mission assurance, operational resilience, and human impact in an increasingly complex digital environment.


2:40-3:05
Networking Break
3:05-3:50
Woman in Cyber, Knowledge dropping Tik/Tok style

Cybersecurity challenges are complex, and solving them requires teams with diverse perspectives, skills, and experiences. This panel explores how diversity drives better problem-solving, innovation, and threat detection in security organizations.

Panelists will share strategies for attracting and retaining talent from varied backgrounds, leveraging unique thinking styles, and applying different experiences to uncover blind spots in risk management. Attendees will gain actionable insights for building teams that are not only technically skilled but more adaptive, creative, and resilient in the face of evolving cyber threats.


3:50-4:00
Innovation Spotlight - Dataminr: When AI Writes Exploits in Hours, Faster Patching Isn't a Defense

Frontier AI models can now turn a freshly disclosed vulnerability into a working exploit in hours. In that environment, "patch faster" is a race the defender has already lost. The problem isn't effort; it's the doctrine. CVSS scores don't surface which CVEs are reachable in your specific environment, which have compensating controls, or which carry real business impact. Patching harder at the wrong things isn't a defense strategy — it's a resource drain. This session makes the case for a different posture: filtering from a flood of vulnerabilities down to the exposures that are genuinely material, and acting on those first. We'll cover the signals driving this shift, a real-world example of what that prioritization looks like in practice, and how predictive threat exposure management is changing what effective vulnerability programs actually look like.


4:00-4:10
Innovation Spotlight - Codehunter: The Next Trust Boundary

For forty years, cybersecurity has done one thing each time the threat evolved: moved the trust boundary. Every generation asked the same question: what should we actually trust? — and built a better answer.  

AI has changed the question.   Software is no longer written only by developers. It is generated, assembled, and executed by systems moving faster than any prior trust model was built for. The signals organizations rely on to trust code were designed for a world that no longer exists.  

In this session, Ken Ammon, CEO of CodeHunter, draws on four decades in cybersecurity, from the Air Force and NSA to founding multiple security companies, to make a single argument about where the trust boundary is moving next and why the organizations that learn to answer one question before their adversaries force it will define the next era of security.  Not whether code can execute. Whether it deserves to.


4:10-4:30
Presentation with Jonathan Braley, Executive Director, IT-ISAC: Halfway There: A Midyear Look at the Cyber Threat Landscape

The cyber threat landscape is in constant flux, and staying ahead requires more than reactive defense. In this session, Jonathan Braley, Director of Threat Intelligence at IT-ISAC, will provide a comprehensive midyear overview of the actors and forces reshaping today's threat environment. From the rise of sophisticated nation-state actors and ransomware-as-a-service ecosystems to supply chain vulnerabilities and the growing exploitation of AI-enabled attack methods, this session will map the key threats organizations face in the second half of 2026. Attendees will leave with a clearer picture of where the threat landscape stands today, where it's heading, and what it means for their security posture.


4:30-5:00
Closing Keynote Presentation with John Cohen, Former Top DHS Intelligence Analyst and ABC News Contributor for "Assessing the Threat"; Executive Director, Center for Internet Security

The traditional boundary separating the technical aspects of cyber threats from physical threats has permanently collapsed. The digital and physical environments have become fully intertwined.  This presentation explores why treating cybersecurity as a mere technical issue confined to the IT department is a dangerous, obsolete strategy. Drawing from frontline experience in law-enforcement, counterterrorism, and national security, this presentation explores the dynamic, volatile and rapidly evolving hybrid threat environment facing law enforcement and security professionals where cyber operations, empowered by emerging technologies like advanced computing,  are a part of a multi-dimensional tool box used by foreign and domestic threat actors to carry out geopolitical aggression, acts of terrorism, attacks directed at high visibility events like the World Cup, and target law enforcement and government officials with violence. The presentation  will describe how as a Nation, we are at an inflection point and just as we learned after the attack of 9-11, public and private sector analytic and operational personnel can no longer operate within organizational and disciplinary stovepipes while adversaries exploit the gaps between our physical and technical silos. What applied to counter-terrorism now applies to cyber security and this presentation will also describe emerging strategies to dismantle these barriers, fusing technical defense directly into the daily fabric of law enforcement, national security, and homeland defense operations


5:00-5:30
Networking Reception

Speakers

Our speakers bring unmatched expertise and real-world experience in cybersecurity, risk management, and business strategy. Through engaging keynotes, panels, and discussions, they deliver actionable insights and practical solutions that help CISOs and security leaders stay ahead of evolving threats.

Sponsors

The Official Cybersecurity Summit connects innovative solution providers with the cybersecurity leaders who evaluate and influence purchasing decisions. With a dynamic exhibition hall and a packed agenda of interactive panels and engaging sessions, this event offers unmatched opportunities to showcase solutions and build meaningful connections.

Partners

The Cybersecurity Summit is proud to partner with some of the industry’s most respected organizations in technology, information security, and business leadership.

Admission to the Cybersecurity Summit is reserved exclusively for active cybersecurity, IT, Information security practitioners tasked with safeguarding their enterprises against cyber threats and managing cybersecurity solutions. All registrations are subject to review.

Students, interns, educators, individuals not currently employed in IT, and those in sales or marketing roles are not eligible to attend.

Additionally, if we are unable to verify your identity with the information you provided during registration, your attendance may be cancelled.

Please note these qualifications pertain to all attendees, including members of our partner organizations.