Register
About Speakers Schedule Venue
About Speakers Schedule Venue

Essential Rules of Risk Governance

Risk governance occurs before the moment of impact. Leadership defines direction. Consequence follows authority.

About the Conference

The Cyber Strategy Retreat is an executive education program produced by CLASS-LLC for board directors, corporate officers, and senior leaders who are accountable for enterprise risk outcomes.

The program is designed around a clear distinction between risk governance and risk management. It focuses on how leadership defines risk boundaries, assigns decision rights, and accepts accountability for consequences when uncertainty intersects with strategy, technology, law, and operations. The Retreat does not exist to showcase tools, promote vendors, or teach tactical cybersecurity practices. It exists to strengthen the capacity of leadership to govern risk deliberately and defensibly at the enterprise level.

Purpose of the Program

The 2026 Cyber Strategy Retreat centers on the Essential Rules of Risk Governance, a governance-first lens for understanding how organizations should make and oversee risk decisions that are material to enterprise value, stakeholder trust, and long-term resilience.

The program is intended to support leaders who must decide what risks are acceptable, which risks require action, and where authority and accountability ultimately reside. Emphasis is placed on judgment under uncertainty, clarity of ownership, and the consequences of implicit risk acceptance by leadership. Cybersecurity, technology, data, and operational risks are treated as governance concerns, not engineering problems.

Speaker Perspective

Speakers at the Cyber Strategy Retreat are selected for their direct experience exercising authority and accountability when risk decisions carry material consequences for the enterprise, its stakeholders, or the public. They are invited not to represent products, firms, or viewpoints, but to contribute disciplined judgment shaped by responsibility to boards, regulators, courts, investors, or mission outcomes. Their role is to help leaders see more clearly where risk governance succeeds, where it fails, and what changes when risk is treated as a leadership responsibility rather than a technical problem.

The opening day of the program is deliberately dedicated to Legal Incident Response and effective executive communication. Speakers on Day 1 address how organizations prepare for and govern through incidents that trigger legal exposure, regulatory scrutiny, disclosure obligations, and public consequence. The focus is not on operational response mechanics, but on how leadership defines escalation thresholds, exercises decision rights, coordinates with counsel, and communicates with confidence when uncertainty, time pressure, and accountability converge. These sessions reflect the reality that incidents test governance long before they test controls.

Days 2 and 3 shift the conversation to the Essential Rules of Risk Governance. Speakers explore how boards and senior executives define acceptable risk, set and reinforce risk boundaries, and authorize or withhold risk acceptance in pursuit of enterprise objectives. Presentations are grounded in experience where failures of governance—unclear ownership, deferred decisions, misaligned incentives, or implicit acceptance of exposure—preceded failures of performance. The emphasis remains on how leaders govern risk over time, not how risk is managed in isolation.

Each speaker delivers a 30-minute, TED-style presentation aligned to the program’s focus, followed by facilitated discussion intended to translate insight into executive judgment. Collectively, these contributions anchor the Retreat in practical governance experience rather than theory, ensuring the conversation remains centered on authority, accountability, and consequence.

Speakers are expected to operate under a shared readiness and media discipline to preserve the integrity and seriousness of the program. This consistency allows participants to engage in candid, peer-level dialogue about how risk is actually governed when decisions must be made and consequences must be owned.

Speakers featured in the 2026 Cyber Strategy Retreat include Keyaan Williams, Roy Hadley, Ian Hall, Daniel Pietragallo, Klint Walker, Ron Ross, Diana Kelley, Daniel “Rags” Ragsdale, Chris Yadon, Blake Holman, and Al Mead.

Program Structure

Each speaker delivers a 30-minute, TED-style presentation aligned to one of the Essential Rules of Risk Governance. These presentations are designed to surface how risk boundaries are defined, tested, and reinforced within organizations, and how failures of governance often precede failures of control.

Presentations are followed by facilitated discussion intended to translate insight into executive judgment. The Retreat favors structured dialogue and peer exchange over passive consumption, reinforcing the program’s role as a working environment for leaders rather than a traditional conference.

The program begins on 20 July with a half-day workshop focused on legal incident response and effective executive communication. These sessions address how leaders prepare for and govern through incidents that carry material legal, regulatory, and reputational implications. On 21 and 22 July, featured presentations, roundtable conversations, and executive panels continue in alignment with the conference theme.

Intended Audience

Attendance is intentionally limited to preserve the quality and seriousness of discussion.

Participants include board directors, CEOs, C-suite executives, senior legal and risk leaders, and enterprise decision-makers who are responsible for setting strategy, defining acceptable risk, and overseeing outcomes. The program is designed for leaders who already hold authority, not for those preparing to enter executive roles.

This shared level of responsibility enables frank dialogue about accountability, tradeoffs, and consequence that is difficult to achieve in broader, open-registration events.

Venue

The 2026 Cyber Strategy Retreat will be hosted at Buckhead Club Atlanta, a private business and social club known for its executive-level environment and discretion.

Located at 3344 Peachtree Road NE, Suite 2600, in the Sovereign Building directly across from the Atlanta Financial Center, the venue sits on the 26th floor and is accessed via the high-rise elevator bank. The setting supports focused discussion among senior leaders while remaining consistent with a business-casual standard of dress.

Conference Character

The Cyber Strategy Retreat is intentionally educational, independent, and sponsor-free.

There is no exhibit hall and no sales programming. The absence of sponsorship preserves the integrity of the discussion and ensures the focus remains on governance, judgment, and leadership accountability rather than commercial influence.

Executives attend not to be marketed to, but to think clearly about how risk should be governed within their organizations when decisions matter.

Reach out to our program executive at keyaan.williams@class-llc.com for more information.