Privacy by ReDesign
Information and Privacy Commissioner of Ontario, Canada, Dr. Ann Cavoukian, has taken her concept of Privacy by Design (PbD) to the global stage, to the point where it is now recognized as a Global Privacy Standard. Following this success, Commissioner Cavoukian is now taking her concept "back to the future" by introducing an extension of PbD that she calls Privacy by ReDesign (PbRD): engineering privacy protection into legacy systems to meet the privacy goals of today and the future. Commissioner Cavoukian launched PbRD with the understanding that organizations are operating with existing, mature IT systems and businesses practices, into which years of resources have been invested, and that designing and implementing entirely new systems is not practical in many cases. However, she believes that this challenge can be overcome with innovative solutions which will assist organizations in clearing any perceived roadblock regarding embedding privacy as a default condition, in order to achieve privacy for all. Come hear Commissioner Cavoukian discuss how PbRD can tackle privacy challenges from the past, to ensure that privacy lives on, well into the future.

Dr. Ann Cavoukian, information and privacy commissioner, Ontario

Your PCI-DSS stance
Some card payment experts say that e-discovery will grow more critical in coming months as companies looking to stay in compliance enlist solutions to understand just where critical data is housed. In order to eliminate customers' personally identifiable information that they're not required to store or safeguard, companies must understand all the places such details could be stored, and e-discovery tools, say experts, will prove integral to helping them.

Ricardo Patino, founder and principal security consultant, LayerOne Security Consulting

Continuous controls monitoring (CCM): A tool for secure computing and enterprise risk management
Continuous controls monitoring is the fastest-growing demand in the IT governance, secure computing and enterprise risk management space. It is now emerging as a critical tool helping organizations to identify, manage and reduce business exposure, particularly when it relates to controls and business information processing. It provides knowledge in the form of exceptions and dashboard reporting, and identifies breakdowns of controls in the overall chain of business processes, information technology and enterprise reporting. Automated solutions and continuous monitoring are now a norm for secure computing and enterprise risk management.

Syed M. Ali, senior audit manager, city of Toronto

Lunch keynote: Securing the cyber commons?
Hear about the major driving forces that are shaping cyberspace today, and why incidents of cyberespionage and warfare are becoming more prevalent worldwide. Professors from the Munk School of Global Affairs will discuss how hopes of preserving cyberspace as an open public commons are threatened by these major driving forces, leading to a kind of "perfect storm" in cyberspace. How to secure the cyber commons, and whether cyberspace can be considered a commons at all, will be analyzed.

Ron Deibert, professor of political science and director of the Canada Centre for Global Security Studies, and the Citizen Lab at the Munk School of Global Affairs, University of Toronto
Rafal Rohozinski, senior fellow, Munk School of Global Affairs, and CEO, SecDev Group

Keynote panel: Information sharing: A government perspective
The topic of information sharing has been played over and over again, and yet it remains of paramount importance until we have policies and processes in place to make this 'behavior'

Howard Cox, assistant deputy chief, computer crime & intellectual property section, U.S. Department of Justice

It's all about the risk
As a senior security professional, you need to start talking about risks facing the enterprise, instead of security threats and vulnerabilities. Business owners understand risk, they don't always understand security threats. How do you change your approach when dealing with business units? How do you translate a threat to a risk facing the business, and get the business teams on your side?

Lyndon Dubeau, manager, enterprise information security office, Cancer Care Ontario

Sponsored keynote
Anatomy of a data breach: Exploring the current threat landscape
IT Security Professionals have more threats to deal with today than at any previous point in history; and it is only going to get worse.  There is more malware, more threats (spam, botnets, etc.) and more potential areas of risk as we expand our need to collaborate either socially or for business efficiency to achieve a competitive edge. 

Additionally, more and more IT Security Professionals are starting to realize that some of the traditional methodologies for protecting and securing the infrastructure are no longer enough to protect what's really important and the lifeblood of any organization: their information - which continues to grow for most organizations at significant double digit rates. Learn about recent activities in the threat landscape and how a properly planned and executed security strategy will help organizations effectively defend themselves in this ever changing world.

Laurence Chin, security architect, Symantec

The Anti-Counterfeiting Trade Agreement
Learn about the origin, policy reasons, scope and consequences of the Anti-Counterfeiting Trade Agreement (ACTA). Also discussed will be the cryptic nature of the agreement, as well as Canada's involvement. Most importantly, however, learn how to protect your enterprise from the long reach of this sweeping contract.

Sharon Polsky, president, AMINA Consulting Corp; national chair of the Canadian Association of Professional Access and Privacy Administrators (CAPAPA)

Threat of the hour
Hear from a leading security expert on what they are seeing as the latest, most dangerous cyber threat, how it was found and what is being done about it.

Rich Baich, principal, Deloitte & Touche LLP