RadarFirst Blog

5 Sessions We’re Excited About at IAPP’s Privacy. Security. Risk. Conference

Next week, 1500+ security, legal, risk, and regulatory professionals will gather in San Jose for the third annual IAPP Privacy. Security. Risk. event.

Where Privacy and Security IntersectPresented by the IAPP Privacy Academy and CSA Congress, P.S.R. is the result of two organizations coming together to explore where privacy and security intersect. The IAPP Privacy Academy focuses on privacy tools, guidance, and technology, while the CSA Congress works to educate IT security professionals about cloud security and its application in the field.

Privacy and security officers often work under different circumstances, stakeholders, and responsibilities. As these roles evolve, privacy and security professionals are finding more and more ways in which their interests overlap. They’re also finding that collaboration is critical is reaching their end goal: regulatory compliance.

This intersection of privacy and security is also a meeting point for interesting updates, challenges, and innovations happening within the field of compliance. Exploring this year’s program, you’ll see many sessions with topics pulled directly out of today’s headlines.

Below are five sessions we’re excited to follow next week at IAPP Privacy. Security. Risk.


Tips for U.S. Companies in the Age of the GDPR and Privacy Shield

Thursday, September 15, 2:30 PM - 3:30 PM
Speakers: Don Aplin, Managing Editor, Privacy and Data Security News, Bloomberg Law; Lothar Determann, Partner, Baker & McKenzie; Todd M. Hinnen, Partner, Privacy and Security, Perkins Coie; Phil Lee, CIPM, CIPP/E, Partner, Fieldfisher;

With a 2018 effective date looming, the General Data Protection Regulation (GDPR) privacy framework is top of mind for US companies looking to transfer personal data in and outside of the EU. The Privacy Shield framework is poised to replace Safe Harbor, but is still in its early days. This session will discuss the questions surrounding GDPR compliance and specifically what steps US companies can take now.

All You Need to Know About the EU–US Privacy Shield Agreement

Thursday, September 15, 11:00 AM - 12:00 PM
Speakers: D. Reed Freeman, CIPP/US, Co-Chair, Cybersecurity and Privacy Practice Group, WilmerHale; Maureen Ohlhausen, Commissioner, Federal Trade Commission;

The details of the EU-US Privacy Shield have been revealed, and companies are beginning to certify with this framework. But what are organizations obligated to do? What remedies are available for violators of the Privacy Shield? How will this framework uphold what Safe Harbor could not? When it comes to cross-border data transfer, many questions persist. This session will speak to how an organization may participate in the program at this early stage.

Women Leading Privacy and Security

Friday, September 16, 8:15 AM - 9:15 AM
Moderator: Jenn Behrens, CIPM, CIPP/G, CIPP/US, FIP, Partner, EVP Privacy, Kimble & Associates
Speakers: Amanda Bell Smith, CIPP/E, VP, Workforce Data Privacy Officer, Fidelity; Juanita Koilpillai, President, Digital Risk Management Institute and CEO, Waverley Labs; Chenxi Wang, Chief Strategy Officer, Twistlock;

Gender bias is an issue that plagues many industries – and a challenge many companies are eager to address. According to a 2015 study from the IAPP Salary and Governance Survey, privacy is one field that has maintained an equal percentage of male and female leaders. This breakfast networking opportunity and roundtable offers an opportunity to learn from top female leaders in the field, and discuss what it is about the privacy industry and the professionals working in it that have managed to achieve this feat, and what challenges may still persist.

Data Breach Alert: Break Down the Silos, the Regulators Are Watching

Friday, September 16, 1:15 PM - 2:15 PM
Moderator: Paul G. Nikhinson, CIPP/E, CIPP/US, Privacy Breach Response Services Manager, Beazley
Speakers: Patricia Higgins, U.S. Department of Health and Human Services Office for Civil Rights; Molly McCoy, CIPP/US, CPO, Privacy Counsel, Blue Shield of California; David Navetta, CIPP/US, Partner, Norton Rose Fulbright;

A lot of attention has been paid to the latest round of OCR audits, from the new ransomware guidance and focus on buttoning up business associate agreements, to the very real cost of failure. Address your OCR audit anxiety in this session with a representative from the U.S. Department of Health and Human Services Office for Civil Rights, and learn how cross-departmental coordination over established internal processes can help your organization prepare.

SaaS and Security: Better Together

Friday, September 16, 2:30 PM - 3:30 PM
Speakers: Shaun Gordon, VP, CISO, New Relic; Jeffrey Hammond, VP, Principal Analyst, Forrester Research

How long has the SaaS vs. on-premise argument gone on? Using cloud technology to address very real business problems allows for efficiency in work and rapid software development. So why are some security professionals hesitant to hop on the cloud? This panel will address concerns surrounding Software as a Service (SaaS) and aims to “advance the point-of-view that the security maturity of any service, whether SaaS or on-premise, should be evaluated based on three key metrics: people, process and data.”

Let’s Connect at the Conference.

While at IAPP P.S.R., there will be multiple opportunities to connect with the RADAR team and experience RADAR live. Visit us in booth #18 on the exhibit floor or attend our Little Big Stage session, “How to Use Automation to Determine if Your Incident is a Data Breach” with Doug Kruger, SVP Sales and Business Development, during the welcome reception on Wednesday night.


Related Reading: 

Topics: Events, GDPR, Breach Notification Laws