ROCon'26: The Risk Operations Conference Public Sector

As cyber threats grow more sophisticated and attack surfaces continue to expand, public sector organizations are being asked to protect critical missions in an environment defined by constant change. Federal leaders are navigating a delicate balance, meeting compliance mandates while managing real-world risk, modernizing legacy systems, expanding cloud and hybrid environments, and advancing Zero Trust, all without slowing the mission. At the same time, agencies are exploring how artificial intelligence and autonomous capabilities can strengthen cyber defense while maintaining governance, public trust, and mission assurance. These decisions are unfolding as the pace of threats accelerates, complexity increases, and operational demands remain relentless.

ROCon: Public Sector brings senior federal and defense leaders together for a practitioner-led forum focused on operationalizing cyber risk management in support of mission success. The discussions center on how agencies are moving beyond static security models and compliance-heavy checklists toward continuous, risk-driven operations that evolve with the threat landscape. Public sector leaders will offer a candid look at how federal organizations are strengthening cyber resilience, aligning technical risk with business and mission outcomes, and building a more adaptable foundation for the future of public sector cyber operations.

Key themes include:

• Modernizing Governance: Rethinking authorization, continuous monitoring, and automated compliance to better align security with mission demands.
• Operationalizing Zero Trust: Advancing identity-centric security across diverse, hybrid mission environments.
• Applying AI with Intent: Using automation and autonomous capabilities to accelerate detection and response while preserving oversight and accountability.
• Simplifying the Attack Surface: Reducing technical debt and complexity to focus resources on protecting what matters most.