Skip to content

UPCOMING EVENTS

Enterprise Risk / Security Management: Chicago (Rosemont/O’Hare), Illinois

Strategies for reducing risk to the enterprise.

October 7, 2025

9:00am-5:00pm

7 CPE / 0.7 CEU / CISSP / 7 PDU Credits Awarded

Conference location: Donald E. Stephens Convention Center Rosemont (O’Hare) Illinois

  

Overview

In today’s highly regulatory environment it is essential that you have a clear understanding of risk across the enterprise. A risk management framework can bring visibility to key business and compliance risks and enable a company to make decisions on where to prioritize its limited resources. It is through a risk management framework that real value to the business can be achieved.

With all of these challenges, how do you make this happen?

In this one day conference, attendees will be provided with examples of approaches to managing information and compliance risk through a risk management framework.

What You Will Learn

In this one day conference attendees will learn:

  • Designing a Resilient Enterprise Risk Management Strategy: The Boardroom to the Firewall
  • Quantifying Cyber Risk: Turning Security into Business Intelligence
  • Building a Threat-Informed Defense: Leveraging Threat Intel and MITRE ATT&CK
  • Third-Party Risk and Software Supply Chain Attacks: Mitigating the Invisible Threat
  • Insider Risk & Data Governance: Balancing Trust and Oversight
  • AI, Automation & InfoSec: A New Attack Surface or a Strategic Advantage?
  • CISO Panel – Modernizing Risk & Security Leadership for the Next Five Years

Conference Price: $349.00 per person

Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.

 

CONFERENCE AGENDA

8:00am – 9:00am: Registration and Continental Breakfast

9:00am – 9:50am

Designing a Resilient Enterprise Risk Management Strategy: The Boardroom to the Firewall

As cyber threats escalate and regulatory expectations grow, enterprise risk leaders must bridge business context with IT security measures. This session will outline a modern ERM framework integrating business continuity, data protection, and threat intelligence. Learn how to align your InfoSec and risk posture with board-level risk appetite and governance.

9:50am – 10:20am  Refreshment & Exhibit Break

10:20am – 11:10am

Quantifying Cyber Risk: Turning Security into Business Intelligence

Cyber risk is no longer just an IT concern—it’s a business metric. This session will explore how organizations are adopting quantitative risk analysis (QRA), cyber risk modeling, and FAIR methodology to prioritize controls, drive executive conversations, and justify InfoSec investments.

11:10am – 12:00pm

Building a Threat-Informed Defense: Leveraging Threat Intel and MITRE ATT&CK

This tactical session focuses on how security teams are operationalizing threat intelligence using MITRE ATT&CK and other frameworks to build proactive defenses. Learn how threat-informed approaches can improve incident response, SOC efficiency, and overall cyber readiness.

12:00pm – 1:45pm: Lunch & Exhibit Break

Third-Party Risk and Software Supply Chain Attacks: Mitigating the Invisible Threat

Recent breaches have exposed the risk of trusting external software and service providers. This session will examine methods to evaluate, monitor, and mitigate third-party and supply chain risks. Attendees will take away risk-rating techniques, contract governance tips, and real-world mitigation strategies.

1:35pm – 2:05pm

Refreshment & Exhibit Break

2:05pm – 2:55pm

Insider Risk & Data Governance: Balancing Trust and Oversight

Insider risk—from negligence to malicious actions—remains a major blind spot. This session will explore how to create a data-centric security culture, deploy data loss prevention (DLP) solutions, and apply behavioral analytics without eroding employee trust.

2:55pm – 3:45pm

AI, Automation & InfoSec: A New Attack Surface or a Strategic Advantage?

The use of AI in security operations is growing—but so is its use in cyberattacks. This session covers how InfoSec leaders can harness AI and automation for anomaly detection, response acceleration, and reducing false positives—while managing emerging AI-related risks.

3:45pm – 4:50pm

CISO Panel – Modernizing Risk & Security Leadership for the Next Five Years

CISOs from diverse industries will share lessons learned in maturing their security programs, working with executive teams, managing hybrid workforces, and preparing for future regulatory and threat landscapes. Bring your questions for an open dialogue on leadership, alignment, and next-gen risk strategies

Conference Price: $349.00 per person

Each attendee will receive a certificate awarding 7 CPE credits for CISSP continuing education, in addition to 0.7 CEUs and 7 PDUs. CISSP is a registered certification mark of (ISC)², Inc.

 

Exhibits

As is always the case at CAMP IT Conferences events, the talks will not include product presentations. During the continental breakfast, coffee breaks, and the luncheon break you will have the opportunity to informally meet representatives from the following sponsoring companies, who have solutions in the area of the conference.