Enterprise Security

Security has become an essential business consideration for organizations of all sizes and stages. GGV Capital’s Oren Yunger shares the baseline security requirements expected from startups, including an introduction to risk classification, and examples of the investments and tradeoffs founders make in designing for security.

In this session Lisa Hawke, VP of Security and Compliance for Everlaw, demystifies the enterprise vendor risk assessment process and shares how to understand the real needs of customers. She covers topics including identifying internal champions, navigating enterprise security orgs, when and how to work on security policies and compliance (SOC 2, ISO/IEC 27001, etc.), and the secondary benefits that certifications present to your startup.

CISOs from Atlassian, Segment and Splunk come together to discuss the role of the CISO in developer and enterprise software startups. They share thoughts on topics including when founders should plan to bring in a CISO, what their role at startups pre- and post-IPO is, and how CISOs can increase your growth velocity and total valuation.

Shruti Gupta of Brex and Lisa Hall of PagerDuty discuss how founders should approach security before hiring a dedicated professional, identify the key traits of a great security team member, and the tenets of security org design.

As security trends towards a culture of ‘everyone does security’, identifying the threats that your company faces and communicating the importance of building securely to your team is critical. Security leaders from Domo, Medallia and strongDM share how teams can approach democratizing security and what they should consider as they grow their security team.

As security trends towards a culture of ‘everyone does security,' identifying the threats that your company faces and communicating the importance of building securely to your team is critical. Security leaders from Domo, Medallia and strongDM share how teams can approach democratizing security and what they should consider as they grow their security team.

Security incidents are inevitable, the only thing you’re in complete control of is how you respond to them, and a well managed response can save your company from destruction. In this session Zendesk CISO and First.org Director Maarten Van Horenbeeck explores the anatomy of an incident response through real-world case studies and shares tips on developing an effective incident response plan before you need one.