CUNA and NAFCU are now America’s Credit Unions,
a unified voice for the credit union industry.
The summit provides a platform for Credit Union industry leaders, experts, and practitioners to share their knowledge and experience, as well as network and collaborate with others in the field. It is made up of presentations, panel discussions, workshops, and breakout sessions, covering a wide range of topics such as cybersecurity threats, data protection, compliance regulations, emerging technologies, and best practices for securing critical infrastructure.
The purpose of the annual information security summit is to create awareness about the importance of information security, promote collaboration among industry peers, and foster a culture of continuous learning and improvement. It is a valuable event for anyone involved in information security, including executives, managers, or technicians who are interested in staying up-to-date with the latest developments and trends in the field.
12:45 – 1:00 p.m. - Registration
Pick up your badge outside of the meeting room.
1:00 – 2:00 p.m. - Welcome and Introductions - Fraud: Phishing and Social Engineering
Moderator: Scott Lenker, Manager of Information Security, PSECU
Location: Magic Kingdom Ballroom 2
Cybercriminals frequently use phishing and social engineering techniques to gain access to sensitive information. Let’s talk about the risks and how you and your credit union can protect against it.
2:00 – 3:00 p.m. - How Artificial Intelligence Can Augment an Information Security Program or Team
Moderator: Tyler VanCamp, CISO, Empeople CU
Location: Magic Kingdom Ballroom 2
It’s hard to make it through the day without hearing how Artificial Intelligence (AI) can solve our problems. In this interactive session, we’ll explore how AI can be used to help bridge the knowledge gap for developing information security professionals.
3:00 – 3:15 p.m. - Networking Break
3:15 – 4:00 p.m. - Protect Yourself from Yourself - Insider Threats
Moderator: Richard Roark, SVP/Chief Technology Officer, Bay Federal Credit Union
Panelists
- Tom Kuang, SVP, IT Data, Security & Development, SchoolsFirst FCU
- Ryan Lemere, Sr. Cloud Solutions Architect, Bay Federal CU
- Mike McCarthy, EVP/Chief Technology Officer, SAFE CU
Location: Magic Kingdom Ballroom 2
Malicious and Negligent Insiders: Employees or contractors with malicious intent can cause significant damage by misusing their access to sensitive information. From privileged access to data center control let's talk about how to control risks inside our organization.
4:00 – 5:00 p.m. - Common Vulnerabilities Identified at Credit Unions
Moderators
- David Anderson, CLA
- Randy Romes, Principal, CLA
Location: Magic Kingdom Ballroom 2
CLA will provide an overview of common vulnerabilities that they notice in credit union environments. These will include network vulnerabilities and physical security vulnerabilities that allow the tester to elevate privileges, access systems, or access sensitive data.
5:15 – 6:30 p.m. - Security Summit Reception
Location: Sleeping Beauty Pavilion
Sponsored by CLA
7:30 – 8:00 a.m. - Breakfast
8:00 – 9:30 a.m. - Defense Tactics all Credit Unions should look at Implementing
Moderator: Tres Coker, VP Network Administration, Listerhill Credit Union
Location: Magic Kingdom Ballroom 2
We will examine current defense tactics that have seemed effective at reducing risks associated with threats seen at financial institutions. This will include discussion so other credit unions can offer ideas on what has been successful at their locations.
9:30 – 9:45 a.m. - Networking Break
9:45 – 10:45 a.m. - Navigating Vendor Risks: Securing Partnerships in a Challenging Information Security Landscape (Panel Discussion)
Moderator: Eric Starkey, Chief Technology Officer, Neighbors Federal Credit Union
Location: Magic Kingdom Ballroom 2
Risks and concerns with 3rd party vendors including their ability to deliver solutions considering the talent pool available.
10:45 – 11:30 a.m. - Open Topic Roundtable
Moderators
- Mark Reed, SVP Technology, American Airlines CU
- Pete Sedgwick, CIO, Empeople CU
Location: Magic Kingdom Ballroom 2
During this session, we will open the discussion to the most popular topics. Learn from your peers about how to solve challenges in your environment and share your top pain points (and successes) with the group.
11:30 a.m. – 12:30 p.m. - Networking Lunch
Location: Magic Kingdom Ballroom 1
12:30 – 2:45 p.m. - NCUA Panel
Moderators
- Mark Reed, SVP Technology, American Airlines CU
- Pete Sedgwick, CIO, Empeople CU
NCUA Panelists
- Peter Seidl, Regional Information Systems Officer, NCUA
- David Shaffer, Director of Specialist Resource, NCUA
Location: Magic Kingdom Ballroom 2
The NCUA examination team sees many different credit unions each year and has great knowledge and insight into control gaps and improvements credit unions can make to improve their security posture based on what they see in the field. This moderated NCUA Regional Information Security Officer (RISO) panel discussion will be an opportunity to hear from Regional Information Security Officers who will provide insight into their examination process, and trends they are seeing at Credit Unions, and will host a Q&A session with attendees.
2:45 – 3:00 p.m. - Wrap up
Location: Magic Kingdom Ballroom 2
We will end with a discussion of the day’s learnings and an overview of various actionable items that CU’s can apply when they return to their organizations.
