CISO Open Mic Toronto

AI Hallucinations and Security Nightmares

When Your Security Tools Lie: Large Language Models are prone to hallucination and bias. How can we trust AI-driven security tools, and what safeguards are needed to prevent false positives or, worse, false negatives?

AI Gone Wild

When ChatGPT Meets InfoSec Share your thoughts on AI's impact on cybersecurity - from AI-powered attacks to defensive capabilities, and how to prepare for a future where both sides have super-intelligent allies.

Cyber Cold War 2.0

Geopolitical Tensions and Their Impact on Cybersecurity Strategy: From nation-state attacks to supply chain risks, how are global events shaping your security posture? How are you preparing for the evolving threat landscape?

Digital Cold Wars

Navigating Cybersecurity in a Fractured World How to manage security when your supply chain crosses three competing digital sovereignty zones and your DNS provider just got sanctioned.

Breach Post-Mortems

Unpacking the Big Ones (Without Naming Names): Let's analyze recent high-profile breaches (anonymously, of course) and discuss the lessons learned. What could have been done differently, and how are you applying those lessons in your own organization?

The Human Element

Why Social Engineering Still Works and How to Fight Back: Despite all our technological defenses, social engineering remains a potent threat. Share your experiences and strategies for building a human firewall.
 
Quantum Quandaries

Preparing for a Post-Quantum World: While still a future threat, quantum computing could break current encryption methods. How are you starting to think about quantum-safe security, and what steps are you taking today?
 
The Ethics of Security

Balancing Privacy, Surveillance, and Protection: Security measures can sometimes conflict with privacy rights. How do you navigate these ethical dilemmas, and what principles guide your decision-making?

Burnout and the CISO

Strategies for Staying Sane in a Stressful Role: Let's talk about the real challenges of the CISO role and the importance of mental health. Share your tips for managing stress, preventing burnout, and building a supportive work environment.

Confessions of a CISO

The Security Nightmares That Keep Us Up at Night (And the Hilarious Mistakes We've Made Along the Way): A chance for CISOs to share their vulnerabilities (pun intended!). Let's get real about the challenges, the fears, and the funny stories that come with the job.

Vendor Vetting

Separating the Snake Oil from the Security Solutions: A humorous and practical discussion on navigating the crowded cybersecurity vendor landscape. How do you cut through the marketing hype and identify solutions that actually deliver value?

Regulatory Whack-a-Mole

Navigating Global Compliance Chaos: Challenges of managing conflicting regulations (GDPR, CCPA, etc.) and aligning C-suite expectations for cross-border compliance. (Credit: Ken, Teij)

Breach PR 101

When Security Meets Reputation Management: Strategies for post-incident communication, rebuilding stakeholder trust, and collaborating with marketing/PR teams. (Credit: David)

From War Rooms to Boardrooms

Translating Cyber Risks into Business Language: Bridging the gap between technical risks and board-level priorities, including culture-building and framing quantum/AI risks as strategic opportunities. (Credit: Dave, Vivek)

Third-Party Risk in the Age of AI and Ransomware Cartels

Evolving TPRM strategies to address AI-driven supply chain attacks, ransomware-as-a-service, and compliance pitfalls. (Credit: Amyn)

Cyber Talent Drought

Inspiring the Next Generation of Defenders: Addressing the workforce gap through mentorship, outreach programs, and rethinking hiring practices to attract younger talent. (Credit: Jason)

Security Leadership Gym

Building Mental Muscle for High-Stakes Scenarios: Professional development for CISOs—crisis leadership, negotiation tactics, and fostering resilience in teams. (Credit: Greg)
 
The Tariff-Security Nexus

When Trade Wars Create Cyber Blind Spots: How global trade conflicts (e.g., semiconductor bans, sanctions) impact supply chain visibility and vulnerability management. (Credit: Jason)

Resilience ≠ Prevention

Designing Orgs to Fail Gracefully: Moving beyond avoiding breaches to building systems that minimize disruption and accelerate recovery. (Credit: Vinay)
 
Cyber Karma

Balancing Self-Interest with Community Defense: Ethical obligations of CISOs to share threat intel, contribute to open-source tools, and uplift smaller organizations. (Credit: Jason)
 
Strategic Misalignment

When Security Clashes with Business Ambition: Resolving conflicts between security priorities and organizational growth (e.g., mergers, rapid cloud adoption). (Credit: Milos)