8:00AM - 9:00AM
MAIN SESSION
Banking on Chaos and Disorder
Tim Leonard
, Executive CIO,
Commercial Bank of Texas NA
Community bankers are bombarded with challenges like generational disruption, competing Fintech/Defi, regulation and cyberattacks. This talk uses beloved science fiction movies to show how chaos is part of the natural order and laced through every story and hero's journey. Creativity and imagination are what's needed now to compete and survive in this most wicked environment.
9:10AM - 9:50AM
TANDEM
Training Your Employees with Tandem
Alexandria Fontana
, Software Specialist,
Tandem
So you’ve made your Acceptable Use Policy, successfully phished your employees, and written your Incident Response Plan. Now what? Training your employees on your organization’s information and security best practices shouldn’t be difficult. Join this session to learn how Tandem Training can help you easily train your employees over the content that is important to you.
9:10AM - 9:50AM
RISK & COMPLIANCE
Common Mistakes When Reviewing SOC Reports
Leticia Saiid,
Chief of Staff, CoNetrix
/ Tandem
SOC Reports give us a great shortcut to understanding the stability of a vendor. But there are a few common mistakes that derail all the time and effort you put into reading the SOC Report. Join Leticia in this session to get a clear picture of what a SOC can and can’t tell you and common mistakes to avoid in the review process.
9:10AM - 9:50AM
CYBERSECURITY
Virtualized End User Computing & Security
Brian Thomas, VP IT,
First National Bank of Central Texas
Work-from-home has become an essential option for today’s agile workforce,
not to mention a compelling recruiting tool in the competitive search
for employees. In this session, attendees will get an overview of
the operational and security benefits that virtualized desktops bring
to an organization. Brian will share about lessons learned and what
his bank has gained in improvements to efficiency, security, and
management of a growing virtual workforce.
10:10AM - 10:50AM
TANDEM
Up and Running with Audit Management Pro
Christopher Hidalgo
, Audit & Security Consultant, CoNetrix Security
Audit Management Pro gives you the tools to conduct audits from start to finish, but how do you build an audit from scratch? In this discussion, Chris will walk through the readily available work programs, like the FFIEC’s recently released AIO handbook, and how it could be created using Tandem Audit Management.
10:10AM - 10:50AM
RISK & COMPLIANCE
How to Write a Policy
Alyssa Pugh
, GRC Content Manager, Tandem
Policy writing can be a headache, but it doesn’t have to be. This interactive session will walk through the process of researching and writing an information security policy. Together, we will decide what policy we want to write, research what guidance and frameworks say on the topic, and walk through drafting the essential elements of the policy.
10:10AM - 10:50AM
CYBERSECURITY
Best Practices for Mitigating Risks of a Digital Experience Platform
Brad Hunt
, President, Smooth Fusion
Dusty Ellis
, Customer Success Manager, Smooth Fusion
Have you ever thought about the risk that your website poses to your organization? As more financial institutions transition to Digital Experience Platforms, the benefit of the added functionality and integrations can increase risk and add to the complexity of managing your site securely. In this session, we will discuss the risks involved in moving to a DXP, questions you should ask a potential website partner, and best practices for a secured Digital Experience Platform.
11:00AM - 11:40AM
TANDEM
Creating an Effective Incident Response Plan
Lindsey McReynolds, Support Manager, Tandem
As cyber incidents continue to increase in number and complexity, so does the need for an effective incident response plan. Creating a comprehensive plan can be daunting, and even more challenging to maintain when using Excel spreadsheets and Word documents. Join this session to learn more about Tandem’s flexible framework for creating your own plan that includes actionable steps for responding to an incident, designating an incident response team, as well as communication plans for relevant third parties (e.g., regulators, law enforcement, forensic agencies, etc.).
11:00AM - 11:40AM
RISK & COMPLIANCE
CoNetrix Security Auditors: A Panel Discussion
Facilitated by BJ Taylor
, Information Security & Compliance Consultant, CoNetrix Security
Mark Faske, Audit & Security Consultant, CoNetrix Security
Bret Mills
, Audit & Security Consultant, CoNetrix Security
Mark Riff
, Audit & Security Consultant, CoNetrix Security
Ty Purcell, Audit & Security Consultant, CoNetrix Security
During this session, you will have the opportunity to ask questions and discuss answers with the IT auditors from CoNetrix Security. Join this facilitated conversation with several of our excellent Security Auditors to discuss common issues encountered during IT audits and provide tips for how you can improve your security.
11:00AM - 11:40AM
CYBERSECURITY
Understanding the Value of Your SIEM and SOC
Mike Richline
, Area Manager,
CoNetrix Technology
To stay in compliance, you probably have a security information and event management (SIEM) system in place to collect important event log data. And you have a handful of smart folks managing a 24/7 Security Operations Center (SOC). Or maybe you are outsourcing both to a trusted vendor. Besides the satisfaction of checking a box, why have them? Join Mike to unpack how your SIEM and SOC should help to protect against and respond to threats.
11:50AM - 12:30PM
TANDEM
Testing Your Operational Resilience
Brady Cook
, General Manager,
Tandem
Creating an effective incident response plan is only half the battle if you haven’t also established a process for evaluating its effectiveness. One way to measure your plan’s effectiveness is to create an exercise and test plan which can identify strengths as well as areas for improvement. Join this session to learn how Tandem can help with testing incident response plans, training your employees, and sharing meaningful results with your Management team, Board of Directors, and examiners.
11:50AM - 12:30PM
RISK & COMPLIANCE
A Chat with Your Friendly Examiner
Ruth Norris
, Chief IT Security Examiner, Texas Department of Banking
Ruth Norris has spent 13 years with the Texas Department of Banking, concentrated in IT, Cybersecurity, and operational risk. Join this session for a facilitated conversation where Mrs. Norris will provide insight and explanation to the questions you want to ask an examiner.
11:50AM - 12:30PM
CYBERSECURITY
ISO Panel Discussion with Boost Consulting
During this session, we will hear from a panel of ISO consultants from the CoNetrix Boost Consulting team. They will give insights into the most common problems financial institutions are facing. You will get the opportunity to ask all your questions concerning compliance, and will leave with tips on how to stay on top different aspects of your compliance program such as risk assessments, vendor management, BCP, and more.
1:30PM - 2:10PM
TANDEM
Many Birds, One Stone: Using Asset-Based Risk Assessments for More Than Your Assets
Samantha Torrez
, Software Specialist, Tandem
Assets are typically defined as anything that stores, transmits, and protects information for your organization. What other processes in our organization function similarly, and how can we properly assess their risk? Join Samantha as she discusses how you can use the asset-based risk assessment features in the Tandem Risk Assessment product to create risk assessments over business applications, departments, and more.
1:30PM - 2:10PM
RISK & COMPLIANCE
Phishing Psychology
Leticia Saiid
, Chief of Staff, CoNetrix
/ Tandem
Why does security awareness training not seem to make a dent in employees' ability to spot phishing emails? We keep sending them test emails, but why do they continue to fail? According to data from the Tandem Phishing community, the most frequently failed tests are not from the messages most people think they will be. Join Leticia in this session to explore various types of phishing messages, identify why some are more problematic (or successful) than others, and leverage the science of education to build a more security conscious staff.
1:30PM - 2:10PM
CYBERSECURITY
The ISO's Guide to Managing Ransomware
Alyssa Pugh, GRC Content Manager, Tandem
Ransomware is a big problem, and there are no signs of it going away anytime soon. Join this interactive session for all things ransomware. In this session, we’ll review some of the high profile ransomware incidents from last year; discuss what information about ransomware you should share with senior management; and learn how to develop a plan that will help you most effectively prevent, detect, and respond to a ransomware incident.
2:20PM - 3:00PM
TANDEM
So You're An Admin…
Cory Faust, Development Lead, Tandem
This session will explore some of the features Tandem provides to assist Admins in managing their Tandem account. Join Cory as he discusses some of the latest security features, explains how you can limit access to Tandem, and covers your notification options. After attending this session you’ll have a better understanding of the security options available and how Tandem can assist you in your role as an Admin.
2:20PM - 3:00PM
RISK & COMPLIANCE
CoNetrix Technology Engineers: A Panel Discussion
Rob Garrison
, Chief Technology Officer,
CoNetrix Technology
Brad Copeland
, Technology Consultant,
CoNetrix Technology
Mike Richline
, Area Manager,
CoNetrix Technology
The CoNetrix Technology Engineers have experience on both sides of
the aisle. They have spent time becoming professionals in IT networking,
and now focus on managing IT networking staff, all while finding
the most secure and effective solutions for their clients. During
this session, you will have the opportunity to ask these engineers
questions about your technology and networking operations. Join the
CoNetrix Technology Engineers to learn more about the technology
side of running a financial institution.
2:20PM - 3:00PM
CYBERSECURITY
Better Your Communication Between Technical & Non-Technical People
Brad Landis, Software Developer,
Tandem
Brian Whipple
, Marketing Manager,
CoNetrix
/
Tandem
Communication with your fellow employees is hard. It can be even harder if the person you are communicating with works and thinks completely different than you. Join Brad (a technical person) and Brian (a non-technical person) as they share the challenges and lessons they have experienced working with each other. When you leave this discussion, you’ll have a better understanding of how your coworkers think and work so you can become a better team member.
3:20PM - 4:40PM
MAIN SESSION
Recent Releases and Future Growth + Tandem User Group Discussion
Facilitated byAlyssa Pugh, GRC Content Manager, Tandem
Cory Faust, Development Lead,Tandem
Lindsey McReynolds, Support Manager, Tandem
Brady Cook, General Manager, Tandem
Tandem is constantly growing and changing to meet users’ needs, YOUR needs. Join Tandem leadership in this three-part interactive session to hear about the exciting and innovative changes Tandem has experienced the past year, hear about future growth plans, and participate in user group discussions about your biggest pain points and potential solutions Tandem could provide! Don’t miss this opportunity to talk to other users who are going through similar experiences. Come, learn, connect, and let your voice be heard!