CUNA Technology Council Security Summit

6th Annual CUNA Technology Council Security Summit

September 10-11, 2019 | Chicago, IL

Meet with fellow CIOs and IT professionals in this face-to-face learning and networking event.


CUNA Council Members $215 / CUNA Members $265 / Non-CUNA Members $530


You may register for the Security Summit only, or it may also be added when registering for the 2019 CUNA Technology Council Conference

Please make your choice below:

Register for: Security Summit Only:  Register

Register for: Both Conference AND Security Summit:  Register

GIAC CPE CreditsThe CUNA Technology Council is proud to offer up to
9 CPE Credits for the Security Summit.



Downloadable Agenda

Day One

Tuesday, September 10, 2019

12:30 p.m. Registration for Security Summit
1:00 p.m.
Introduction of Team and Agenda Review

Thomas Lea, VP- IT Infrastructure & Security, Royal CU
Bill Podborny, Chief IS Officer, Alliant CU
Mark Reed, SVP Technology, American Airlines CU
Pete Sedgwick, CIO, Deere Employees CU

1:30 p.m. Trust but Verify (Identify, Protect)

Moderators:  Pete Misurek, Royal Credit Union and
Dave Rebman, Alliant Credit Union

How do you know your internal controls are effective? During this informative technical session, you will learn Red Team/Blue Team testing techniques to evaluate your internal controls and gain valuable insight into the gaps you may have in your environment. 

2:45 p.m. Networking Break
3:00 p.m. Identify and Access Management Panel (Protect)

Moderator:  Charlie Melidosian, Alliant Credit Union
Panel Participants: Tess Balzer, Alliant CU, Peter Misurek, Royal CU, Nicole Tutt, Spokane Teachers CU and Clifton Van Scyoc, PSECU

Proper Identity and Access Management is increasingly becoming more table stakes versus the nice to have. In this interactive panel session, you will hear from your peers about the challenges, tips for success, and methods for program adoption.

4:00 p.m. Open Topic Roundtable (Identify, Detect, Protect, Respond, Recover)

Moderator:  Mark Reed, American Airlines CU

During this session we will open the discussion to the most popular topics identified by the group earlier today.  Learn from your peers about how to solve challenges in your environment and share your top pain points (and successes) with the group.

4:45 p.m. Wrap-up of Day 1

Discussion of day’s learnings. Overview of various actionable items that CU’s can apply when they return to their organizations.

Day Two

Wednesday, September 11, 2019

7:30 a.m. Breakfast
8:00 a.m. Effective Reporting (BOD, Management, Metrics, Dashboards) (Identify, Detect, Protect, Respond, Recover)

Scott Davis, PSECU and James Dipasupil, Alliant CU

Boards, Executive Management, and regulatory agencies are increasingly challenging risk-based functions to measure performance and effectiveness. This presentation will focus on how to establish metrics and reporting that speaks to these different audiences.

9:00 a.m. Part 1 - Breach Handling (States, Vendors, Insurance, Technology, Business Units)

Moderator:  Jesse Davis, American Airlines CU and Marty Hetzel, BCU

It is not a matter of If but When a breach will impact your organization.  In this breach discussion we will highlight the steps and resources required to manage an incident. Across the enterprise resources come together to respond to the situation.

10:00 a.m. Networking Break
10:15 a.m. Part 2 - Breach Exercise (Respond, Recover)

Moderator:  Jesse Davis, American Airlines CU and Marty Hetzel, BCU

As a follow up to Part 1 - Breach Handling, this session will walk through a breach response table top exercise where we can practice incident response in a controlled environment. The facilitator lead interactive exercise will outline best practices that you can take back and implement at your credit union.

11:30 a.m. Lunch
12:30 p.m. Securing Applications in the Cloud (Detect)

Panelist: Scott Perry, ENT CU, Mike Parks, Sun Coast CU and Marty Hetzel, BCU
Moderator: Pete Sedgwick, Deere Employees CU

A high-level discussion of securing application and infrastructure in the cloud with detailed specifics on various tools, solutions, and ideas to make your cloud presence more secure.  A how to guide on various aspects of cloud security.

1:30 p.m. Networking Break
1:45 p.m. Mind of a Security Professional Panel (Identify, Detect, Protect, Respond, Recover)

Moderator:  Mark Reed, American Airlines CU

Underlying all the emerging technology, evolving processes, and threat intelligence lies perhaps the most complicated aspect of security – people. Whether it’s privacy, awareness training, regulatory bodies, or change management, the human element of security is a constant variable. In this interactive peer-to-peer session, we will share challenges, stresses, and even triumphs on connecting with and leading the people to create the secure enterprise.

2:45 p.m. Wrap up of Day 2

Discussion of day’s learnings.  
Survey discussion.
Introduction to conference.

3:00 p.m. CUNA Technology & Operations & Member Experience Council Conference begins