All 2026 Conference Sessions

Gartner Security & Risk Management Summit 2026 dove deep into key topics for security & risk management around the latest AI, cybersecurity strategy and innovation, risk management, business engagement, and cloud and data security areas.

Session Takeaways

Dive into some of the key takeaways you may have missed from the Gartner Security & Risk Management Summit 2026.

The Real Cost of Cybersecurity

Speakers: 

  • Christopher Mixter, VP Analyst, Gartner 

Key takeaways

  • The cybersecurity budget doesn’t represent the real cost of protecting an organization. The real cost of cybersecurity is the all-in cost of delivering protection: technology, labor and the business friction that results from controls.

  • Knowing the real cost of cybersecurity supports an outcome-driven approach because it gives business leaders transparency into the tradeoffs between protection, spend and business enablement.

  • Outcome-driven metrics must be the starting point for measuring the real cost of cybersecurity. They measure control performance, offer a forward-looking view of exposure, can be influenced by investment and allow benchmarking across organizations and governments.

  • The real cost of cybersecurity isn’t just a way to justify budgets or new resources; it’s a tool to engage executives in active conversation about the value of cybersecurity, how much they want to invest and how much risk they are willing to accept.

  • Effective CISOs and CIOs use the real cost of cybersecurity to negotiate protection level agreements with their executives, increasing transparency of value for cost, clarity of accountability and defensibility in the event of an adverse cybersecurity event.


Outlook for AI & Cybersecurity

Speakers: 

  • Leigh McMullen, Distinguished VP Analyst and Gartner Fellow 

Key takeaways

  • AI has become both the engine of cybersecurity transformation and the accelerant of risk. 87% of leaders identify AI vulnerabilities as the fastest growing and most urgent cybersecurity risk.

  • Unlike previous technology waves, AI timelines are compressed. It’s important to operate in three lanes: act for what’s known now, plan for the next few quarters, and monitor the uncertain horizon. Today’s environment requires thinking in sprints, not program years.

  • Most technologies cybersecurity teams have to secure are deterministic, but AI isn’t. Part of its value comes from unpredictability, making it behave more like humans with all of the challenges of anticipating, shaping and responding to unexpected events.

  • Threat actors and rogue states won’t be limited by regulation, driving damaging AI to evolve without boundaries. Organizations must invest in defensive and offensive technologies as quickly and as broadly as threat actors do.

  • Most vendors are racing toward the vision of an AI security platform, but AI security is still too broad for any single platform to go deep enough. Focus the next 12-18 months on AI usage control and AI application security as the most proven way to secure AI applications and agents.

AI-Enhanced SOC: Bridging the Gap to Advanced Automation

Speakers: 

  • Craig Lawson, VP Analyst, Gartner

Key takeaways

  • Gartner predicts 25% of common SOC tasks will become 50% more cost-efficient due to automation enhancements and hyperscaling strategies by 2027.

  • Bridging the gap to advanced automation in the SOC can only be achieved by progressing through the different stages of AI adoption at a pace the organization can sustain.

  • Determine what can be automated today and strategize about what is coming to enable automation and augmentation in the future. The SOC team can then handle greater workloads through the use of AI and automation.

  • Outcomes are only defensible when supported by metrics that demonstrate improvements in the activities the team is doing today. Without doing so, security operations automation initiatives can never be objectively measured.

  • Continuously validate the outputs of automation and AI tools and use metrics consistently to ensure accuracy and reliability. Rely on existing metrics, rather than inventing new ones.

Top Cybersecurity Trends

Speakers: 

  • Richard Addiscott, VP Analyst, Gartner

Key takeaways

  • Amid regulatory volatility and geopolitical, technological and organizational forces, CISOs must rethink how they approach cyber risk management, resilience and resource allocation by assessing each trend to determine whether to embrace, monitor or deprioritize.

  • Postquantum computing moves into action plans: As quantum computing renders today’s cryptography unsafe by 2030, CISOs must inventory all crypto assets and establish a center of excellence to accelerate crypto‑agile readiness.

  • Agentic AI demands cybersecurity oversight: Identify both sanctioned and unsanctioned AI agents, then enforce robust controls for each based on access and agency.

  • Global regulatory volatility drives cyber resilience efforts: Treat compliance as a strategic advantage, not a checklist to drive cyber resilience.

  • GenAI breaks traditional cybersecurity awareness tactics: Stop relying on general awareness and focus on adaptive training that provides visibility into individual employee behaviors.

How to Increase Board Confidence in Cybersecurity

Speakers: 

  • Kristin Moyer, Distinguished VP Analyst, Gartner

Key takeaways

  • Ninety percent of non-executive board directors lack confidence in cybersecurity value.

  • The key to increase board confidence is to become a sense maker. Sense maker CIOs and CISOs have managed to earn their boards’ trust on “just right” levels of protection and cost.

  • Fewer cybersecurity breaches won’t earn board trust – business alignment will.

  • Being transparent about actual exposure levels and revealing uncomfortable truths builds board confidence.

  • Real cybersecurity leadership means protecting what the organization values, from managing cost and reducing risk, to safeguarding revenue.

Outlook for Human Factors in Cybersecurity: Adapt to Optimise

Speakers: 

  • Mia Yu, Director Analyst, Gartner

Key takeaways

  • The greatest – and most neglected – opportunity to reduce cyber risk in any organization is harnessing the human element.

  • Mounting pressure is driving employees to insecure behavior. Cybersecurity isn’t at the top of their minds and they’re looking for any way to make their lives easier, resulting in 41% intentionally bypassing cybersecurity controls.

  • Burnout quietly shapes the daily reality of cybersecurity teams – how they respond to threats, enable secure design and control implementation. Those that don’t address it risk losing their most valuable assets and make their organizations more vulnerable.

  • Only CISOs carry the triple AI mandate: secure AI, defend against AI-enabled attacks and use AI to do both. Upskilling isn’t optional; it’s the only way to survive this pressure.

  • Employees are humans, not risks. Mindsets must change from treating them as risks and investing in them to become a more valuable part of the cybersecurity program.

Be the first to receive the 2027 conference agenda

Get the latest details around the 2027 conference agenda, speakers, and more straight to your inbox.

By clicking the "Continue" button, you are agreeing to the Gartner Terms of Use and Privacy Policy.

Contact Information

All fields are required.

      By clicking the "Sign Up" button, you are agreeing to the Gartner Terms of Use and Privacy Policy.

      Back
      Look back at 2026 conference sessions

      Hundreds of conference sessions were presented each day at the 2026 Gartner Security & Risk Management Summit. While we work to develop this year's agenda, filter to see sessions that align with your role and interests.

      Show Filters

      Filter Sessions Cancel
      Clear All See 4 Sessions No Results
      Showing 4 Sessions
      Clear All
      Monday, 16 March, 2026

      09:00 AM - 09:45 AM AEDT

      Gartner Opening Keynote: Seize the Moment
      Richard Addiscott, VP Analyst, Gartner
      It feels like everything is happening, everywhere, all at once. But amidst the chaos, there are opportunities, “moments” that we can seize, to ensure Cybersecurity’s success. What if we could use our organizations’ rush to AI as an opportunity to modernize both human and machine identity? What if we could turn the inevitability of cyber-attacks into a learning cycle that continuously makes us smarter, stronger, faster and more resilient? What if we could monetize our innovation with a cycle of continuous learning to fund even more innovation? Join this keynote and learn how to seize these moments! ... Show More Show Less

      04:30 PM - 05:15 PM AEDT

      Guest Keynote: Anna Meares — A Masterclass in Leadership, Resilience and High Performance
      Anna Meares, The Greatest Australian Olympic Cyclist of All Time
      Drawing from her illustrious career as one of the most decorated female cyclists in history, Anna Meares will reveal the secrets to achieving marginal gains, understanding the psychology of success, and executing winning strategies. She will explore the crucial role of data collection and analysis in attaining peak performance under pressure, transforming challenges from perceived barriers into catalysts for growth. Through her inspiring narratives, including her remarkable comeback from a severe neck injury to Olympic triumph, Anna will provide a fresh perspective on sportsmanship, accountability, and authenticity. Her insights are designed to empower individuals and teams to foster a culture of excellence and resilience. ... Show More Show Less
      Tuesday, 17 March, 2026

      09:00 AM - 09:45 AM AEDT

      Guest Keynote: 537 Days of Winter — Leading Through Adversity
      David Knoff, Antarctic Expedition Leader, Adventurer, Isolation & Resilience Expert
      What does it take to lead through adversity when the stakes are at their highest—isolated for 537 days at the edge of the world, with nearly a year cut off from resupply, all while watching a global pandemic unfold from afar? David Knoff delivers the incredible story of leading an Antarctic expedition through relentless challenges and uncertainty. As the team endured the harsh Antarctic environment, navigated a complex medical evacuation, and faced a shipboard fire just days from returning home, David’s leadership was tested in ways few can imagine.
      David explores the human side of resilience, decision-making under pressure, and the importance of adaptive leadership in times of crisis and rapid change. David’s insights offer practical lessons on leading teams through adversity, fostering innovation, and emerging stronger in a world of constant uncertainty. 537 Days of Winter is a story of endurance, adaptability, and the leadership required to thrive when the future is anything but certain.       ... Show More Show Less

      04:15 PM - 05:00 PM AEDT

      Gartner Closing Keynote: The Top Predictions of Cybersecurity
      Christopher Mixter, VP Analyst, Gartner
      Every year, Gartner produces impactful predictions across all practices. This session will compile the top predictions prepared by our cybersecurity experts. Security and risk management leaders should monitor these trends to be successful in the digital era, especially when most recognize that global change could potentially be one crisis away. ... Show More Show Less

      ... Show More Show Less
      Items per page: 19 of 4 Items
      1 of 0 Pages

      Sorry, no sessions match your criteria. Please refine your filters to display sessions.

      “Quality presentations with incisive and interesting topics. Would recommend to cyber and risk professionals alike.”

      Craig Thompson
      IT Risk Manager, Hollard

      Discover what it’s like to experience Gartner Security & Risk Management Summit.