RSAC 2020: Everything You Need To Know

RSA Conference is quickly approaching, and the #HWCyberSquad is getting its ducks in a row. For close to 30 years, the week-long conference has drawn the best and brightest in cybersecurity to discuss current trends and challenges impacting the space. 

This year, RSAC’s theme is The Human Element, which will explore how even though an automated future is inevitable, our most valuable weapon is and will always be ourselves. While artificial intelligence and machine learning are expected to fight against threats better than we ever could, humans will always be needed when it comes to making challenging ethical decisions. RSAC believes that “when we recognize that cybersecurity is, fundamentally, about people protecting people, the world becomes a better, more secure place.” 

The Human Element isn’t the only thing that will be talked about, though — topics like DevSecOps, AI and ML, and insider threats are set to take center stage alongside even more pressing conversations around election security, ransomware threats, 5G, and privacy. This year, we expect to hear compelling conversations about modern approaches to security as we enter into a new decade — how are we approaching security in new and different ways? 

 

Security Then and Now

As we head full force into 2020, a number of sessions will focus on how security strategies have changed and where they are going. Akamai’s talk on Security’s Grand Challenges, Then and Now will look at where we came from, and how our biggest challenges have shifted, and Forcepoint’s talk on Modern Strategies for Protecting Users and Data in a Borderless World will highlight why modern cybersecurity needs a mindset change. Splunk will be moderating a panel with experts from Intel and Starbucks on Modernizing the Security Operations Center, and Illumio will be highlighting why we need to approach the more powerful threats that we are seeing with a new approach — more powerful segmentation. Each of these sessions hits on a key theme that cybersecurity strategies are not what they used to be — and we need to take a new approach. 

As attackers become increasingly sophisticated, we’re also seeing researchers share in-depth insights into some of the most impactful attacks. In a session, SonicWall shares insights into a Two-Week Conversation with a Ransomware Cell which begins with the young leader of a Russian ransomware cell. Nicknamed “Twig,” SonicWall’s confidential contact unveils how alarmingly easy it is for their cell to find, target and attack modern networks.

 

The Era of DevSecOps

We are continuing to see the security and developer world overlap, as businesses look to shift left and make the transition from DevOps to DevSecOps. We’ll see a number of sessions providing businesses with best practices on bringing security into the development process, from GitLab’s talk on Best Practices for Adding Security to DevOps, to Veracode’s session on helping developers to understand security,  A Security Pro in Developer’s Clothing. From base-level “how to’s” to more technical instruction, the DevSecOps movement is here to stay, and security practitioners will be sharing their unique insights for businesses to be set up for success, including How to Harness Dev and Their Native Tools to Accelerate DevSecOps.

 

How Identity Impacts Security Strategies

Coinciding with RSAC’s human element theme, Code42 and One Identity will both host talks focused on how identity impacts the ways we approach cybersecurity. Insider threats aren’t going anywhere anytime soon, and they’re continuing to impact businesses — Code42 and One Identity outline how practitioners can better secure their organizations by mitigating these risks. 

 

AI and Machine Learning

New technologies are continuing to impact the ways organizations stay secure — particularly machine learning. Intel will focus on how ML can help from two different angles: how we can use ML to protect privacy in a data-driven world and How HW Telemetry and ML Can Make Life Tough for Exploits. They’ll share the benefits of implementing ML technologies into security frameworks and how it can better protect businesses.  

The #HWCyberSquad will be at RSAC to learn from the experts, connect with reporters and industry influencers, and gain an even deeper understanding of the pressing issues facing businesses in 2020 and beyond. 

Want to catch up at the show? Email secleads@highwirepr.com, and stay tuned for more RSA content as we get closer to the event.

 

Be sure to stop by the Expo Hall to learn more about each of our clients, listed below: 

Client Booth Locations

  • Akamai: Booth #6153, North Expo
  • BitSight: Booth #1167, South Expo
  • Code42: Booth #6079, North Expo
  • Forcepoint: Booth #5965, North Expo
  • GitLab: No booth but see above for details on speaking sessions
  • Illumio: Booth #5459, North Expo
  • Intel Security: No booth but see above for details on speaking sessions
  • Interos: No booth, but will be on the show floor
  • MobileIron: Booth #1727, South Expo
  • One Identity: Booth #6271, North Expo
  • Qualys: Hosting QSC 2020 at Four Seasons on 2/25
  • SonicWall: Booth #5559, North Expo
  • Splunk: Booth #5865, North Expo
  • Veracode: Booth #5553, North Expo
  • vArmour: No booth, but will be on the show floor

Additionally, check out all of our clients’ events, parties, and speaking sessions throughout the week, listed below:

Events/Parties

  1. Forcepoint RSA Welcome Reception 
    • Location: The St. Regis San Francisco, 125 3rd St, San Francisco, CA 94103, Yerba Buena Terrace, 4th Floor
    • Date: Monday, February 24
    • Time: 7:00 – 9:00 p.m. PT
  2. vArmour Concert Party with Nothing But Thieves
    • Location: The Grand, 520 4th Street, San Francisco, CA 94107
    • Date: Monday, February 24
    • Time: 8:30 p.m. – 12:00 a.m. PT
  3. vArmour + Digital Shadows Security Leaders RSA Party
    • Location: City View at Metreon, 135 4th St #4000, San Francisco, CA 94103, USA
    • Date: Wednesday, February 26
    • Time: 6:00 – 9:00 p.m. PT
  4. Qualys QSC Private Reception
    • Location: Veranda Ballroom on the 5th Floor, Four Seasons Hotel, San Francisco
    • Date: Wednesday, February 26
    • Time: 6:00 – 9:30 p.m. PT
  5. Securosis Disaster Recovery Breakfast
    • Location: Tabletop Tap House, 175 4th St, San Francisco, CA 94103, USA
    • Date: Thursday, February 25
    • Time: 8:00 – 11:00 a.m. PT

Speaking Sessions

  1. Veracode’s Javier Perez Talk on “Time to Spell Out Open Source Software Security”
    • Location Moscone West, 3022
    • Date: Tuesday, February 25
    • Time: 1:00 – 2:00 p.m. PT
  2. Qualys Security Conference 2020 San Francisco
    • Location: Veranda Ballroom on the 5th Floor, Four Seasons Hotel, San Francisco
    • Date: Tuesday, February 25
    • Time: 8:30 a.m. – 4:00 p.m. PT
    • Register here
  3. Splunk’s Oliver Friedrichs, Jac Noel, and Lee Peterson Talk on “Modernizing the Security Operations Center: A Security Leader Panel:
    • Location: Moscone South
    • Date: Tuesday, February 25
    • Time: 3:40 – 4:30 p.m. PT
  4. Code42’s Talk on “The Insider Threat: You’re Flying Blind”
    • Location: Moscone North Expo
    • Date: Tuesday, February 25
    • Time: 4:20-4:50 p.m. PT
  5. One Identity’s Talk on “Security Starts Here…Identity”
    • Location: Moscone South
    • Date: Tuesday, February 25
    • Time: 2:10 – 2:30 p.m. PT
  6. Intel’s Casimir Wierzynski Talk on “Protect Privacy in a Data-Driven World: Privacy-Preserving Machine Learning”
    • Location: Moscone West
    • Date: Tuesday, February 25
    • Time: 1:00 – 1:50 p.m. PT
  7. Intel’s Rahuldeva Ghosh and Dr. Zheng Zhang Talk on “Nowhere to Hide: How HW Telemetry and ML Can Make Life Tough for Exploits”
    • Location: Moscone West
    • Date: Tuesday, February 25
    • Time: 3:40 – 4:30 p.m. PT
  8. Forcepoint’s Homayun Yaqub Talk on “Modern Strategies for Protecting Users and Data in a Borderless World”
    • Location: Moscone South, 207
    • Date: Wednesday, February 26 
    • Time: 2:50 – 3:40 p.m. PT
  9. Veracode’s Chris Wysopal and Jay Jacobs Talk on “8 Million Findings in 1 Year: Fresh Look at the State of Software”
    • Location: Moscone West, 3014
    • Date: Wednesday, February 26
    • Time: 9:30 – 10:00 a.m. PT
  10. SonicWall’s Brook Chelmo Talk on “Mindhunter: My Two-Week Conversation with a Ransomware Cell”
    • Location: Moscone North Expo
    • Date: Wednesday, February 26
    • Time: 10:30 – 11:00 a.m. PT
  11. GitLab’s Cindy Blake Talk on “Best Practices for Adding Security to DevOps”
    • Location: Moscone West
    • Date: Wednesday, February 26
    • Time: 9:20 – 10:10 a.m. PT
  12. GitLab’s Cindy Blake Talk on “How to Harness Dev and Their Native Tools to Accelerate DevSecOps”
    • Location: Moscone West
    • Date: Thursday, February 27
    • Time: 1:30 – 2:20 p.m. PT
  13. Akamai’s Andy Ellis Talk on “20 Years In: Security’s Grand Challenges, Then and Now”
    • Location: Moscone West Street Level
    • Date: Thursday, February 27
    • Time: 10:35 – 10:55 a.m. PT
  14. Illumio’s Talk on “More Powerful Segmentation for More Powerful Threats”
    • Location: Moscone North Expo
    • Date: Thursday, February 27
    • Time: 10:30 – 11:00 a.m. PT
  15. Veracode’s Ryan O’Boyle Talk on “A Security Pro in Developer’s Clothing”
    • Location: Moscone North Expo
    • Date: Thursday, February 27
    • Time: 12:40 – 1:10 p.m. PT
  16. BitSight’s Jake Olcott Talk on “Do Investors Care About Cyber Risk?”
    • Location: Moscone West
    • Date: Thursday, February 27
    • Time: 2:50 – 3:40 p.m. PT
  17. Veracode’s Chris Wysopal and Katie Moussouris Talk on “Coordinated Vulnerability Disclosure – You’ve come a long way baby”
    • Location: Moscone South Esplanade
    • Date: Friday, February 28
    • Time: 8:30 – 9:00 a.m. PT

A Non-technical Guide to Breaking into Tech PR

Tech PR is a bustling, innovative and ever-changing field – but it’s not one I ever foresaw myself going into. As a journalism and Spanish double major whose most relevant workplace experience was working for a lifestyle magazine conglomerate, I didn’t really know what I’d be getting myself into at a tech PR agency. Luckily, it’s been one of the most wonderful experiences I could imagine, and I’ve grown and learned every day at Highwire. Now, a year into my tech PR career, I have a few tips to share for anyone entering the space who thought they never would:

Read all day long

Read as much as you can. Obviously not all day because there’s also work to be done, but take the time at the beginning of your career to get familiar with the industry. Read everything from breaking news to industry term definitions. It’s okay not to know what a cloud data warehouse off the bat – chances are you’ve never had to think about it before – so just look it up! You’re not expected to be an expert from day one, and that’s an advantage. Knowing what you don’t know allows you to prioritize learning while you get your feet wet before you’re expected to dive into the deep end. 

To narrow down your reading list, consider what specific news will be most relevant to you. There are numerous credible and interesting tech publications to use as resources including TechCrunch, WIRED, Fast Company and ZDNet. It’s worth considering what publications your client is most interested in getting featured in to understand the components of a story in that outlet. If your clients are focused on leadership in the industry, add Entrepreneur and Business Insider to your reading list. Alternatively, if they’re more focused on a technical audience, try TechTarget or InformationWeek.

Additionally, reading regularly will make you better at creating informed pitches, knowing where your client can contribute to news trends and holding stimulating conversation at dinner parties (joking, mostly). But don’t limit your reading extravaganza to the beginning of your career. The 24-hour news cycle means not only is news happening every day, but it’s happening every minute, so spend time every day dedicated to digging in – even if you think you know everything there is to know.

Ask anything

Your brain will be buzzing with a million questions. Don’t be scared to ask! At any good agency, there will be people who know the answers and are happy to help teach you. It can be nerve-racking to ask questions because you might think you should already know the answer, but no one is expected to know everything. Asking informed questions shows that you’re interested, invested and taking the time to think critically. And trust me, it’s better to ask a question about a project before you take it on than to get in too deep and realize you should have come prepared with more intel.

As far as best practices for asking questions, if you’re genuinely lost and it’s time-sensitive, fire away! If you have some time to look into the topic, do a bit of research and see what you can find. Anyone you ask will be grateful that you were considerate and thoughtful enough to give it a shot on your own. Additionally, figure out the right person to ask. If you’re confused about a client’s product, ask one of the experienced members of your team. If you’re not sure about a specific assignment, ask the reviewer. 

The best part about asking questions is that the answers you get give you an arsenal of knowledge that you can implement the next time around – and even use to answer questions for the people following in your footsteps. 

Understand goals

As you break into tech PR, you’ll realize that all of these general guidelines and best practices are great, but they only go so far. In client relations, team dynamics and personal career growth, there are a bevy of contributing factors that make each situation unique. 

For your career, ask your manager what goals you’re tracking toward at your level. You can’t prove your success if you don’t know what you’re measuring against. Once you understand your personal career goals, make a plan for how to achieve them. Discuss them with your teams and ask what you can contribute to that will put you on the right track.

For each team, you will have a separate set of goals. Internally, your managers will set expectations and that will often track to the goals of the client. You might be wondering why you get a certain request, and it’s fair to ask! Often, you’ll find that a project you’re working on is essential to a certain business or measurement goal that the client needs. Remembering that everyone you’re working with – inside and out of the agency – is working toward a North Star will help you understand their motivation.

Take it one day at a time

If you’re considering a career in tech PR, but have only ever written articles about engagement announcements and restaurant openings like me, don’t be scared off. There are a few key practices that can help you get started, and while the industry may seem overwhelming, you’ll learn day-by-day and the experience will be invaluable.