Infosec Anti-Summit San Francisco | No-Stages, No Scripts – Just CISOs, November 4, 2025

Date & Time:
Tuesday, November 4
08:30 - 17:00

Venue:
Coming Soon!

Registration Opening Soon

A Different Kind of Security Event

The Infosec Anti-Summit challenges the status quo by creating a space for CISOs and security leaders to engage, collaborate, and share real-world experience.

Through series of hands-on workshops, tabletop exercises, mock scenarios, and peer-led discussions, the Anti-Summit encourages maximum exchange of ideas in a setting built for trust, candor, and community.

This is not about watching from the sidelines, it is about being part of the conversation. It's not about people on stage talking at the audience, it's about getting people around the table talking with each other.

Identify the challenges. Understand how others are solving them. Develop a strategy to safeguard.

Welcome to the Anti-Summit.

Agenda

Registration & Breakfast

08:30 - 09:30

Opening Remarks

09:30 - 09:40

Tabletop Exercise

09:40 - 10:40

Omni-Channel Threat Response: A Tabletop Exercise for Business Resilience
Organizations are global engines with many disparate systems and critical moving parts. The threat landscape is vast and the attack surface is growing in complexity. Your customers look to you, to lead in times of disruption and crisis. This exercise will challenge traditional thinking and disrupt the approach to incident and crisis management.

Workshops (Choose Your Own Adventure)

10:50 - 11:20

Workshop #1: Security That Moves at the Speed of SaaS
SaaS adoption is growing at a breakneck pace, and traditional security models aren’t built to keep up. Every new tool, user, and integration introduces more complexity—and new opportunities for risk.

This session explores how dynamic SaaS security can provide continuous visibility, adapt to rapid change, and scale with your business. Learn how to stay ahead of SaaS sprawl without slowing down your organization’s momentum.

Workshop #2: Turning Chaos into Clarity During Security Incidents
When incidents hit, most teams scramble. Between shifting regulations, overlapping responsibilities, and mounting pressure, even well-prepared organizations can lose control.

This session explores how to build a more agile, resilient approach to incident response. Learn how automated, tailored playbooks and real-time guidance can align stakeholders, streamline communication, and ensure compliance—before, during, and after a breach.

It’s time to move from reactive firefighting to proactive control.

Anti-Roundtable

11:35 - 12:20

Rethinking GRC with Actionable Data
GRC programs are often weighed down by disjointed tools and outdated workflows. Static reports and manual processes make it difficult to keep pace with today’s dynamic risk environment.

This session explores how a modern Compliance OS can bring structure and clarity to your GRC strategy. Learn how continuous monitoring, integrated applications, and real-time data can streamline audits, improve decision-making, and unlock greater value from your compliance investments.

Walk away with a clearer path to building a GRC program that works with your tech stack, not against it.

Workshops (Choose Your Own Adventure)

12:30 - 13:00

To Be Announced

Lunch

13:00 - 14:00

Anti-Roundtable

14:05 - 14:50

Securing Secrets in a Cloud-First World
As organizations grow more cloud-native, secrets—API keys, tokens, and other programmatic access—have become one of the most overlooked yet critical attack surfaces. Traditional tools often fail to provide full visibility or control.

This session explores a more holistic approach to secrets management and cloud access security. Learn how to gain comprehensive oversight across your environment, reduce exposure, and protect the systems that power your business from the inside out. It’s time to treat secrets like the first-class security assets they are.