Date & Time:
Tuesday, May 19, 2026
08:30 - 17:00

Venue:
The Carlyle Venue
1919 Piedmont Road NE
Atlanta, GA 30324

A Different Kind of Security Event

The Infosec Anti-Summit challenges the status quo by creating a space for CISOs and security leaders to engage, collaborate, and share real-world experience.

Through a series of hands-on workshops, tabletop exercises, mock scenarios, and peer-led discussions, the Anti-Summit encourages maximum exchange of ideas in a setting built for trust, candor, and community.

This is not about watching from the sidelines, it is about being part of the conversation. It's not about people on stage talking at the audience, it's about getting people around the table talking with each other.

Identify the challenges. Understand how others are solving them. Develop a strategy to safeguard.

Welcome to the Anti-Summit.

What to Expect at the
Anti-Summit

CISO-Led Agenda

Step into the action with a collaborative TTX simulation designed to test response, resilience, and teamwork. Continue your day with hands-on sessions built around real-world challenges, led by peers who’ve been in the hot seat.

The Cyber Arcade

A live, interactive space where emerging founders, security innovators, and practitioners collide. Test-drive new ideas, swap feedback, and see what’s next without the sales pitch.

Connection Over Convention

Honest, peer-drive discussions about what’s working and what’s not in today’s security landscape. From hallway chats to post-session conversations, it’s all about the people at the InfoSec Anti-Summit.

Full Agenda Coming Soon

Registration & Breakfast

08:30 - 09:30

Opening Remarks

09:30 - 09:40

Tabletop Exercise

09:40 - 10:40

Ghost in the Machines: AI Threat Response
This interactive tabletop exercise challenges participants to respond to a sophisticated, multi-vector incident that targets their AI infrastructure through unexpected attack surfaces. Your customers look to you, to lead in times of disruption and crisis. This exercise will challenge traditional thinking and disrupt the approach to incident and crisis management.

Workshops (Choose Your Adventure)

10:50 - 11:20

Workshop #1: PAM is Broken
Legacy PAM is a bottleneck. Vaults, bastions, and static credentials don't scale - they just create friction and hidden risk. If your security controls are slowing down production, the business will bypass them. This session guts the traditional approach to focus on Zero Standing Privilege. We’re ditching manual workflows and static secrets for a centralized authorization control plane that handles users, NHIs, and agents natively. Learn how to enforce just-in-time, short-lived access across cloud and on-prem without breaking the development cycle. Stop managing passwords and start managing authorization.

Workshop #2: Fighting AI with AI
Social platforms have become the primary attack surface, and manual moderation can’t keep up with the scale of agentic AI threats. Relying on static rules and human review in a world of automated, adaptive attacks is a losing game. This session breaks down how to deploy agentic AI to secure modern digital trust. We’ll look at using advanced search and real-time classification to identify and kill threats as they evolve. Move past reactive security and learn how to implement self-improving AI agents that learn, adapt, and automate responses at the same speed as the attackers.

Anti-Roundtable

11:35 - 12:20

SaaS Security is Failing the AI Sprawl
The explosion of AI-driven SaaS has outpaced every traditional security control we have. If you’re still relying on static discovery and manual audits, you’ve already lost visibility. This session cuts through the "enablement" fluff to address the mechanics of securing a fragmented SaaS stack. We’re breaking down how to implement a dynamic security layer that scales alongside rapid AI adoption without killing business velocity. Learn how to map complex app relationships, identify shadow AI, and enforce governance over the sprawl before it becomes unmanageable technical debt.

CISO-Led Workshops (Choose Your Adventure)

12:30 - 13:00

Workshop #1: The CIO is Your Greatest Untapped Ally
Most CISOs have a CIO story. Often, it’s complicated.
You’ll get clarity on what CIOs actually need from you - and why what you’re currently pitching probably isn’t it. We’ll get into the dynamics most people won’t say out loud: when priorities conflict, who wins and why, and how to shift that. You’ll walk away with practical language for aligning security to business goals, a sharper read on the relationship, and an honest look at your own leadership readiness.
Whether you’re trying to get more out of you current seat or position your self for a bigger one, this session is built for practitioners who are done navigating it alone.

Workshop #2: The People Are Still The Point. Talent, Trust, and Leadership in An AI-Driven World
Tech gets most of the attention, but people are doing the real work. As AI changes the shape of entry-level roles and automates the tasks many teams used to rely on for training, security leaders are asking a new set of questions: How do we grow talent now? What should the first years of a security career look like? And how do we build programs that rely more on partnership with the business than deep technical specialization?
This session digs into the leadership challenges ahead, including how to develop employees when early tasks are automated, how to find talent in unconventional places, how to shape a security program around human strengths such as creativity and empathy, and how to guide responsible AI use without slowing the business down. If you prioritize the “people side” of cyber, this is your room.

Lunch

13:00 - 14:00

Anti-Roundtable

14:05 - 14:50

Manual Pentesting is Obsolete
Relying on a twice-a-year manual pentest is a liability. By the time you get the PDF, the results are already stale. This session ditches the "check-the-box" compliance mindset to focus on agentic AI-powered offensive security. We’ll break down how to augment human expertise with AI agents that think like adversaries in real-time. Learn how to move from static, expensive engagements to continuous, tailored testing that adapts as fast as your attack surface changes. Stop waiting for the next report and start seeing exactly what an attacker would do today.

Workshops (Choose Your Adventure)

15:00 - 15:30

Workshop #1: Escaping the Past for the Agentic GRC Era
Traditional GRC breaks down under pressure... So let's put it under pressure. Participants will move through hands-on challenges that mirror real life challenges that they need to pass to free a team mate from "Audit Hell". By working physically, collaboratively, and under time constraints, this session shows how AI agents can transform slow, manual compliance into fast, data-driven decision-making. Come ready to move, build, and escape outdated GRC thinking.

Workshop #2: The IOC Half-Life Problem: Threat Hunting Nation-State Actors When the Ground Keeps Shifting
Iran-nexus threat actors don't wait, and neither can your SOC. In this hands-on workshop, you'll step into the role of a security leader at a large healthcare device company facing an active intrusion. Starting with Day 1 indicators, you'll work through how the threat picture shifts over 10 days as the attacker evolves their TTPs and burns old IOCs. We'll walk through a realistic attack chain spanning phishing, EDR telemetry, and SaaS activity, and tackle the hardest practical question. The scenario will keep updating and changing. Visibility gaps, stale intel, and alert fatigue are features, not bugs. You'll leave with a repeatable framework for staying current on fast-moving threats without drowning your team.

CISO-Led Workshops (Choose Your Adventure)

15:45 - 16:15

Workshop #1: Managing Risk by the Dollar, Not the Color
The Board is officially deaf to "Red/Yellow/Green" heat maps and 1,000-page vulnerability reports that offer no business context. This session is a masterclass in the brutal translation of cyber risk into financial exposure. Move beyond the jargon to see how top-tier CISOs use risk quantification to win budget battles and force the business to own the decisions they make. It’s time to stop reporting on activity and start driving the ROI of enterprise resilience.

Workshop #2: The Personal Liability Survival Guide
In 2026, the era of the "corporate shield" is over. With regulators increasingly targeting individual executives for systemic security failures, a CISO’s personal assets and career are now part of the risk equation. This is a closed-door tactical session on how to audit your own D&O insurance, document "informed dissent" without losing your job, and protect yourself in a legal landscape that is looking for a scapegoat. Stop being the fall guy and start building a defensible career.