XPand Live 2022 Logo

ARIA Resort & Casino | Las Vegas
September 27-29, 2022

Xpand Live 2022 Logo

September 27-29, 2022
Aria Hotel & Casino

Trellix Xpand LIVE 2022

On January 19th of this year, Trellix was born. Over 40,000 customers of both McAfee Enterprise and FireEye became part of one family – all committed to the same mission: To power a resilient, thriving world.

On September 27-29, at the Aria Hotel in Las Vegas, Trellix Xpand Live will share our vision for a new kind of defense. Cybersecurity that’s alive and embedded, that learns and adapts as fast as threat actors do - and can turn today’s threats into tomorrow’s advantage.

Through compelling keynotes to over 60 sessions of best practices, case studies, technical training, speaker panels, product demonstrations and our Innovation Xpo – you will learn our platform and product roadmap for bringing security to life.

Live Keynotes  |  3 Full Days of Content  |  Final Night Celebration

Sessions

Discovery Themes

Arranged across five key areas of modern security – all content of Xpand Live will dig deep, both strategically, and technically.

Threats have evolved, but security hasn’t - until now. Learn how XDR will be a key driver for the Security Operations Center (SOC) of the future.

Key use cases, practical guidance, what to expect from XDR – and how it makes your SOC more efficient, empowers your security practitioners and analysts, and automates and drives your end-to-end detection and response workflows.

Future-proof your defenses and build resilience with unified endpoint protection.

Accelerate detection and response with the context, visibility, and capabilities to uncover, investigate, and act on threats with increased speed and accuracy. Proactively protect every endpoint, prevent ransomware and other advanced threats, and find how to easily scale and manage all your endpoints.

Get an in-depth look at the most comprehensive set of security controls and control points in the industry – all designed to provide you with earlier, better protection across all phases of the attack chain.

Network, Email, Data and Cloud Security – learn deployment and operational best practices and use-cases.

Learn the depth and breadth of our visibility, research, and thought leadership in the threat intelligence space.

Whether it’s the bad actors we track, specific takedowns of cyber criminals, discovered vulnerabilities – we will share how research and innovations make it from the lab and into our products.

The cybersecurity industry is seeking 2.72 million professionals, and that number is only continuing to grow. For decades, we have relied on the same tactics to close the talent gap.

We need to rethink who we view as talent and work together as an industry to solve this talent shortage. Collectively, we can make a difference. Hear from customers on their challenges and successes in the human element of cybersecurity.

Breakout Sessions

Discovery Themes Session Title Presenter(s) Session Abstract
SecOps Revolution Best Practices of Today’s SOC

Riana Smallberger, Director, Advanced Cyber Threats, Trellix

Mark Boltz-Robinson, Manager, Advanced Cyber Threats, Trellix

Why is a Cyber Security Operation Center so important?

A SOC exists with the core mission to monitor a wide range of possible threats against an organization. During this session we will discuss some of the best practices, procedures, and processes to modernize a SOC. We will also cover the importance of incorporating Threat Intelligence as a requirement to be successful.

SecOps Revolution Making Security Staff Effective in the Cloud with XDR

Martin Holste, Chief Technology Officer, Cloud, Trellix

What information do security staff have to do their job? When they get an alert, do they understand what is affected, who is involved, a timeline of what happened, and what normal behavior looks like? It’s hard enough for SOC operators to get quality alerts, it’s even harder for them to know what to do with them, and impossible to make thousands of good decisions every day without being armed with the insights they need.

Learn how Trellix Helix is the truly open managed XDR platform that incorporates over a hundred vital integrations to collect raw event telemetry from things like cloud infrastructure, directories, security products, and source code repositories and forges it into meaningful models and timelines. This session will detail how Helix Cloud Connect makes integrating data sources quick and easy and shows the power of what can be done when defenders are armed with answers. It will dive into the different types of data Helix can collect, how they are used in detection and response, and advanced hunting use cases.

SecOps Revolution Enterprise ePO, DXL and TIE Infrastructure Designs

Steen Pedersen, Principal Architect, CISSP, Trellix

This session will take a look at enterprise designs for ePO infrastructures with Data Exchange Layer (DXL) and Threat Intelligence Exchange (TIE).

Several real-world examples of infrastructure architectures will be showcased, as will how a current ePO, DXL and TIE infrastructure can transform to include cloud servers located in AWS, AZURE and more, to create a hybrid ePO architecture.

SecOps Revolution Invasion of the Information Stealers

Taylor Mullins, Sales Engineer, Trellix

Information stealers have become one of the most utilized, damaging, and simplest to acquire variants of malware observed today. The effects of a successful information stealer attack can lead to access of company accounts, deployment of ransomware, and widespread data exfiltration.

In this presentation, we will unveil how threat intelligence and utilizing an open XDR framework can help a security team proactively apply countermeasures to prevent, detect an ongoing activity, and monitor the aftermath of a successful attack across their security solutions.

SecOps Revolution How XDR is a Game Changer for SecOps

Deepak Seth, Director, XDR Platform Services, Trellix

In the current threat environment, SOC teams continuously face the pressure of detecting an intrusion as quickly as possible before it becomes a major security incident. With so many point products in use in a typical organization, it is often very time consuming and challenging for the SOC team to search through the noise to find important alerts that may indicate the presence of a threat in the environment.

XDR can enable a SOC team to detect, respond to and remediate threats across all attack channels. These include Email, Endpoint, Network and Cloud - without the inefficiencies of switching between multiple point solutions, and with the ability to work with relevant data that is actionable.

This session will highlight different phases of a malware attack, the challenges SecOps face in these phases and how Trellix XDR can help in each of these phases. We want to help the SecOps team ultimately achieve a stress-free life. We will demonstrate through a live example of an Advance Persistent Threat, how various attack phases map to the MITRE/ATT&CK Framework - and how Trellix XDR enables the SecOps team in each of these phases of the attack kill chain.

SecOps Revolution Automated Responses - Out of the Box!

Simon Tiku, Snr Director, Engineering, Trellix

We want to make life simpler for security analysts. This session will share templated security playbooks, task flows and scripts that can be easily tailored to your organization’s needs.

Built by Trellix security experts, this template library takes the work out of developing things from scratch for common use cases. For example, a task flow that covers common functionality and processing related to specific plugins, which can then be inserted into a multi plugin playbook.

Unifying Endpoint Advanced Forensics

Ryan Fisher, Senior Engineer, Trellix

Fred House, Director, Engineering, Trellix

The Endpoint Security Research and Custom Engineering (RACE) team has been operating since 2015 with the mission of building rapid-response endpoint capabilities in support of Mandiant Incident Response engagements. The team has built over 50 forensic capabilities that enable advanced endpoint forensic investigations at scale. These forensic capabilities have been used on thousands of IR engagements, including some of the most high profile breaches around the world.

The RACE team’s recently released Extended Forensics module, gives customers, partners, and other IR firms access to this advanced forensic tool set.

In this session, the RACE team will dive into the advanced forensics capabilities, describing why they are relevant to forensics, how to run them, and how to analyze the results. We will cover common investigative workflows such as frequency analysis (stacking), indicator searching (sweeping), YARA hunting, live response, and timelining across the enterprise.

Unifying Endpoint Endpoint Efficacy and Coverage Reporting

Chris Ubando, Senior Principal Architect, Trellix

Charles Wiggins, Principal Architect

How do we prove to the business the value of any cyber security investment?

Attend this session and learn ways to build reporting within ePO that can be used to present to the business to the value the Trellix solutions are providing across the environment.

We will show how to report on the coverage of protection features that help protect against common malware attacks like Ransomware. We will also discuss how to use ePO with Active Directory and SCCM to provide clear reporting on the coverage of the Trellix solutions on systems within the environment - and highlight systems that are potentially at risk of being targeted by malware that are unprotected.

Unifying Endpoint Leveraging EDR Integrations into SOC Processes to Build a Better Defense

Matt Smith, Snr Manager, Professional Services, Trellix

Adding another SecOps tool into the day-to-day mix of tools and techniques used during investigation and triaging threats creates a common concern for the SOC. How can that tool be incorporated into existing processes so that it does not duplicate functions provided by an assortment of free and commercial tools? Is the full value of the new data collected used to pre-emptively block attacks before they need to be triaged?

Trellix EDR offers several features natively - and externally through via API integration - which can provide the SOC the ability to consolidate their tools and techniques used during investigation and triage. It also enables direct integration with the defense layer to save the business both on time and costs when tackling threats.

Learn how Trellix EDR is being used by Trellix Professional Services consultants to enable SOCs to collect information needed during DFIR processes, as well as provide the ability to react to threat activity using a combination of Trellix EDR, DXL, ePO and other tools found in many SOC toolkits. We will also explain how EDR can serve as a data stream to enrich other threat intelligence, data analysis and defense platforms.

Unifying Endpoint Trellix Endpoint Security for Breach Investigations

Vinoo Thomas, Principal Product Manager, Trellix

Learn how Trellix Endpoint Security can handle investigating 1000’s of endpoints in a security breach. Get an inside look into how breaches are discovered and how one compromised endpoint can turn a company upside down.

We will demonstrate how Endpoint Security unleashes world class forensics - from detection to containment. From detecting data theft, credential harvesting, compromised assets, actioning alerts, new features and much, much more!

Unifying Endpoint Trellix Unified Endpoint: An Architectural Overview

John Teddy, Engineering, Trellix

This session will preview the architecture of the upcoming Trellix Unified Endpoint – bringing together the best capabilities of FireEye and McAfee technologies into an endpoint framework with a common agent serving protection, detection, and forensics.

We will cover the design goals, the elements that comprise the platform, the phases of implementation, with some minor deep dives into event handling, orchestration, and reputations.

Securing the Ecosystem Accelerating Transformation with Detection-as-a-Service

Arthur Cesar Oreana, Account Manager, Trellix

In a Digital Transformation journey, meeting the demands of business areas quickly is essential for survival in a competitive and connected world. With businesses needing to launch products quickly - security cannot be an impediment. Security can be a facilitator and a great ally to business agility.

Attend this session to learn how one of the largest Brazilian digital banks managed to address the risks of analyzing all files received from external sources, quickly and easily, positively impacting the customer experience.

Securing the Ecosystem Data Security: The Trellix Roadmap

Data Protection is a top priority for today’s organizations. In addition to adhering to constantly changing regulatory requirements, there are continuous concerns over external and internal threats. Any breach can have an impact beyond just the cost of clean-up. Fines can add up, and the loss of trust can take a very long time to overcome.

In this session, we will discuss the Trellix Data Security portfolio. We will show the challenges faced by administrators today and illustrate how Trellix Data Protection products help customers classify, monitor, and protect their most sensitive data. We will also highlight recent features that have been added to the products and give a forward-looking view of plans that are in progress for this suite of products.

Securing the Ecosystem Email Security: The Trellix Roadmap

Email continues to be the top attack vector. It is imperative that customers continue to evaluate their Email security solutions to ensure that they are capable of detecting the latest threats. Many customers must also protect a wide range of email systems including on-premise and Cloud deployments.

In this session we will discuss the Trellix Email Security portfolio of products that provide protection to on-premise and cloud based deployments. We will discuss the deployment challenges customers face today and highlight how Trellix provides the industry’s most comprehensive set of detection engines to keep users safe.

Securing the Ecosystem Network Security: The Trellix Roadmap

With network infrastructure now located on-premise, as well as in private, hybrid and multi-cloud environments - managing and securing them has become increasingly complex.

In this session, we’ll discuss the opportunities and challenges our customers face across a growing variety of use cases, how customers can integrate Trellix detection directly into their custom application, and how they can leverage the Trellix Network Security portfolio to address infrastructure security wherever they need it.

Securing the Ecosystem Achieve a True Zero Trust Architecture with Trellix and Okta

Martin Holste, Chief Technology Officer, Cloud, Trellix

Trellix and Okta have a strong partnership, demonstrated by the popular Helix XDR integration - and advanced anomaly detection for Okta.

Learn how organizations are taking advantage of the ability to analyze identity audit events to find anomalies and correlate those anomalies with a wide range of information, such as application behavior and user roles. This allows the matching of suspicious logins with post-login actions in the context of the person’s role. Response actions can then be taken to limit any potential damage from a compromised identity. This extended detection and response (XDR) forms the basis for a Zero Trust Architecture (ZTA).

But what about ZTA for on-prem? Businesses are operating hybrid environments and manage many endpoints in addition to SaaS and cloud infrastructure. Attend and preview a universal Trellix ePO connector for Helix XDR that will ensure that on-prem solutions are fully cloud-aware. The insights shared in the link between Trellix ePO on-prem and Helix XDR in the cloud lets defenders unlock complete Zero Trust.

Securing the Ecosystem The Cyber EO 14028’s Effect on Software Development

Kent Landfield, Chief Standards and Technology Policy Strategist, Trellix

The US 2021 Executive Order 14028 is changing the way the U.S. Federal government is viewing the software it purchases and deploys. The EO will alter the way the software industry creates and delivers software and services.

From the definition of critical software, to requiring software bill of materials (SBOMs), to documenting secure software development lifecycle practices, and more, the Cyber EO is impacting the way software producers view the way they do business.

This lively panel includes those involved in delivering on the requirements of 14028, from NIST and CISA, and a former Federal CISO who will discuss the EO’s intended impacts and the effect it is having both in and out of government.

Activating Intelligence PhishVision: Caught on Camera

Manoj Ramasamy - Research Scientist, Trellix

Why is a Cyber Security Operation Center so important?

A SOC exists with the core mission to monitor a wide range of possible threats against an organization. During this session we will discuss some of the best practices, procedures, and processes to modernize a SOC. We will also cover the importance of incorporating Threat Intelligence as a requirement to be successful.

Activating Intelligence Catch Me If You Can: Living Off the Land Binaries, and The Adversaries Who Abuse Them

Tim Hux, Security Researcher, Trellix

Alfred Alvarado, Security Researcher, Trellix

The Trellix Threat Intelligence Group collects, correlates, and analyzes attack techniques deployed by threat actors, and their use of malicious and non-malicious tools.

This presentation will detail the most common tools used by threat actors, their associated MITRE techniques, and the countermeasures which can be used to assist organizations defend their network.

Living off the Land (LotL) attacks are increasing, and often going unnoticed during the initial infection phase, due to the method’s use of common non-malicious tools and Windows binaries. You will learn how threat actors may gain initial access via spear-phishing, access brokers or unpatched vulnerabilities, and then use common tools and Windows binaries to allow reconnaissance and persistence phases to remain undetected while additional payloads are retrieved, exfiltration is automated, and the final payload is prepared. Tools such as Rclone can be used to exfiltrate data, PsExec to execute commands and load binaries, and AD Explorer may be used to perform reconnaissance tasks like user and computer asset discovery.

Activating Intelligence US Government Cyber Security and Privacy Policies: What to Expect in 2023

Panel hosted by Kent Landfield, Director, Trellix Public Policy

This panel session will provide a perspective on what public policies to expect from both the White House and Congress in 2023.

Government policies define the contours of the cyber security market. New legislative initiatives will focus on protecting critical infrastructures and government agencies, with a focus on EDR, XDR and Zero Trust solutions. Congress will once again take up national, privacy legislation. These initiatives impact both government and private sector users of cyber security solutions.

Panelists will include former, senior US government officials, a former White House official and federal Chief Information Security Officer, a representative of the Center for Strategic and International Studies, and Tom Gann, Chief Public Policy Officer of Trellix.

Activating Intelligence Cyber Tools Shaping Foreign Policy? A False Chinese APT Responds to Nancy Pelosi’s Visit to Taiwan

Ann An, Security Researcher, Trellix

Trellix endpoint detections reveal cybersecurity and geopolitical activities well before the media begins reporting them.

On July 29, 2022, Trellix telemetry data showed a spike in detections in Taiwan, with over 32,000 detections hitting the self-governed island in one day - well over a typical day range of 9,000 to 17,000 detections. This spike occurred five days before Nancy Pelosi’s visit to Taiwan on August 3, 2022. Telemetry data also showed that a significant portion of detections were directed at Taiwan’s government entities between July 29 and August 6, 2022.

We later noticed an increase in small and medium-sized distributed denial of service attempts against Taiwan’s website that either report on the Pelosi’s visit or are perceived as hostile to China. On August 3, 2022, the day after Pelosi’ visit, one Chinese hacker collective that calls themselves “APT27” announced a special cyber operation against Taiwan’s government services, infrastructure, and commercial organizations.

Trellix analysts will explain these DDoS operations and scrutinize the true identify of APT27 and subsequent activities throughout this Xpand session.
Activating Intelligence The Minority Threat Landscape Report

Christiaan Beek, Snr Principal Engineer, Trellix

In this session we will take you on a trip through parts of the current threat landscape and our predictions for its future. Our research will highlight where we know adversaries are operating now – and our informed position on where they will go next.

We will unveil how Trellix analyzes threats and anticipates them. Learn how we innovate, and adapt, to counter unexpected threats.

Activating Intelligence Using Critical Threat Intelligence Strategically

Panel hosted by Patrick Flynn, Head of Advanced Programs Group, Trellix

The overarching threat facing cyber organizations today is a highly skilled asymmetric enemy, well-funded and resolute in their task and purpose. While you never know exactly how they will come at you, come they will. It’s no different than fighting a kinetic foe in that, before you fight, you must choose your ground and study your enemy’s tendencies.

Much focus has been placed on tools and updating technology, but often we are pushed back on our heels and in a defensive posture.

This panel features senior US government representatives debating that while technology strategy is important, we must embrace and create a thorough Cyber Threat Intelligence (CTI) doctrine which must take many forms.

#SoulfulWork From Books to Beating Bad Guys

Mike Kizerian, Principal Technical Instructor, Trellix

We have long lamented the growing need for soulful cyber security roles to be filled as we struggle to find the experienced hires to fill them.

Ten years ago, Mike was a Team Lead in Kuwait as a contractor for the Army. Although asked for his open requisitions to be filled with candidates that were experienced cyber security professionals, he was constantly given candidates with no security background. But, it did not deter him. Through a careful program of on-the-job training, each of the hires easily filled their cyber security roles. They have gone on to have extremely successful cyber security careers.

Come and learn how the desktop support tech, the developer, the server admin, and anyone with a desire to learn can find rewarding, #soulfulwork in cybersecurity.

#SoulfulWork Panel Session: Cyber Security – the Soulful Profession

Hosted by Michael Alicea, Chief Human Resources Officer, Trellix

There’s a place for people who want to protect others. Who want to contribute to the greater good of society? Who want to keep businesses, essential infrastructure, and vital information safe? That place? Cybersecurity.

If you’re looking for a career that provides you with the opportunity to do meaningful, soulful work that enriches people’s lives—you’ve found it. Michael Alicea will host a thought-provoking panel designed to inspire us to help others blaze their own trail in cybersecurity.

Free Training

What happens in Vegas won’t stay in Vegas with free technical training.

Ranging from 3 hours – to a full day - these sessions combine lectures with demonstrations, and practical lab exercises.

Trellix Data Loss Prevention

Learn the tools you need to design, implement, and configure Trellix DLP to safeguard intellectual property and support compliance.

We share how to monitor and address risky, day-to-day end-user actions such as emailing, web posting, printing, clipboards, screen captures, device control, uploading to the cloud, and more.

Trellix ePolicy Orchestrator - SaaS Introduction

The Trellix ePolicy Orchestrator - SaaS course provides attendees with basic knowledge to support Trellix ePO - SaaS software. In addition, students will learn the benefits of running Trellix ePO - SaaS in their environment, basic configuration information, as well as Protection Workspace functionality.

Product Agnostic Threat Hunting

Many organizations have SIEM technology and a variety of detection points that generate millions, if not billions, of alerts per day. SOC analysts spend time attempting to identify the key alerts indicative of an incident - be it a breach, malware outbreak, or adversary.

During the session we will cover methodologies to enable analysts to effectively hunt for threats in their environment proactively.

Network Hunting

This one-day workshop introduces essential concepts for network hunting and then allows learners to apply techniques to hunt for anomalous activity.

Throughout the course, the instructor will provide hands-on activities that follow real-world use cases using typical security toolsets such as SIEM, packet capture, and EDR. We will leverage Trellix Helix and endpoint logs, such as Endpoint Security (HX) agent logs and Sysmon.

Endpoint Investigations

This one-day workshop introduces essential concepts of endpoint investigations.  Using attack methodologies from the Mitre ATT&CK® framework, you will learn what specific Windows telemetry is critical to a successful investigation.

You will also learn how to pivot out to an endpoint and collect any other necessary data to aid in your investigation

Trellix ENS Expert Rules

Available in both introduction and advanced sessions – we share how building on the ENS Platform with ENS Expert Rules allows the advanced Trellix ENS administrator to add deeper security to their deployment.

Proprietary syntaxes, and a basic view into Operating System concepts and references will be shared - to enable a more customized and secure environment

Capture the Flag – Blue Team

This unique CTF challenges you to uncover adversary TTPs using Trellix Helix and other available endpoint and network tools.

Take on the #SoulfulWork role of a cyber defender. As you come in for your shift, you are hit with an alert! It’s all hands on deck as you dig in to find out who is on your network and what they have done, while ensuring management is well-informed.

We can’t wait to welcome you back in person in Vegas on September 27-29 for Trellix Xpand Live. It will be a lot of learning and, of course, a lot of fun.

Register Now

Registration Now Open!

Save the date and start planning to align with our leadership teams to learn our vision for a new kind of cybersecurity and learn more about our innovations in cyber intelligence and XDR architecture. Beyond hearing from our leadership in General Sessions – other sessions will be truly educational and CPE Credits will be offered for breakout training sessions.

 

LEARN about product roadmaps and how Trellix protects your enterprise against future threats.  Educate & Train yourself on the future of XDR architecture.

LEVERAGE the value of the products and solutions from Trellix that you already own. 

ENGAGE with our ecosystem of security experts and get answers in a face-to-face environment. 

NETWORK with security peers who share your challenges, concerns, and issues. 

 

XPAND LIVE in Las Vegas promises to offer a unique opportunity to learn directly from other Trellix users and discover how they maintain the highest standards of security while reducing costs, streamlining processes, and driving efficiencies in the daily administration of their networks and systems. 

 

We are committed to bringing together the best of the security industry to unite for a cause that is bigger than all of us — the digital safety of our customers, organizations, and future generations. 

 

We invite you to join us in Las Vegas.

September 27-29, 2022
 
Aria Hotel & Casino
3730 S Las Vegas Blvd
Las Vegas, NV 89158


Xpand Live from Vegas

  • Executive Keynotes

  • Partner Summit

  • Solution/Product Sessions

  • Targeted Training Sessions

  • Customer and Partner Testimonials

  • Thought Leadership Presentations

  • Solutions Demos

  • Networking Lounge with Trellix Merchandise Store

  • Subject Matter Expert Meetings

  • Targeted Group Meetings & CABs


Innovation Xpo Hall

  • Trellix Solutions Demos with Live Q&A

  • Live Solutions Theatre

  • Sponsor Booths

  • Innovation Spotlight

  • Subject Matter Expert Meetings

  • Partner Summit & PABs

  • Partner Networking Lounge

  • Partner Summit

Keynote Speakers

Xpand Live 2022 Agenda At-A-Glance

Day 1 – September 27th Activity
9:00AM – 3:00PM CAB
9:00AM – 5:00PM Training Sessions
12:00 Noon – 5:00PM Partner Summit
7:00PM – 10:00PM Partner Summit Poolside Reception
Day 2 – September 28th Activity
7:30AM – 9:00AM Breakfast
9:00AM – 10:30AM General Session Keynote – Main Stage
10:45AM – 11:45AM Technical Breakout Sessions
11:30PM – 1:00PM Lunch in Xpo Hall / Xpo Hall Open
Capture the Flag Challenge - Begins
Trellix Booth with Live Q&A
Solution Demos
Sponsor Booths
UX Team 1:1 Meetings
Innovation Spotlight
#Soulfulwork Luncheon
Women in Security Luncheon
1:15PM – 2:15PM Technical Breakout Sessions
2:30PM – 3:30PM Technical Breakout Sessions
3:45PM – 4:45PM Technical Breakout Sessions
5:30PM – 7:00PM Xpand Welcome Reception in Xpo Hall
Day 3 – September 29th Activity
7:30AM – 9:00AM Breakfast
8:30AM – 10:00AM General Session Keynote – Main Stage
10:15AM – 11:15AM Technical Breakout Sessions
11:30PM – 1:00PM Lunch in Xpo Hall / Xpo Hall Open
Capture the Flag Challenge - Begins
Trellix Booth with Live Q&A
Solution Demos
Sponsor Booths
UX Team 1:1 Meetings
Innovation Spotlight
Capture the Flag Challenge – Closes
1:15PM – 2:15PM Technical Breakout Sessions
2:30PM – 3:30PM Technical Breakout Sessions
3:45PM – 4:45PM Technical Breakout Sessions
7:00PM – 10:00PM Final Night Party at JEWEL Nightclub

Xpand LIVE 2022 Accommodations

ARIA Resort & Casino
3730 Las Vegas Blvd. South
Las Vegas, NV 89158 USA

Questions on Accommodations?
Reservation Questions please email: XpandRegistration@ITAGROUP.com

ARIA Resort & Casino is offering special summit rates to Xpand LIVE 2022 attendees.
ARIA Discounted Room/Suite Rates: Please note-tax is based on current tax and subject to change (Available nights of September 9/23 - 9/30, 2022)

9/23/22: $245 + Resort Fee + tax / night
9/24/22: $245 + Resort Fee + tax / night
9/25/22: $169 + Resort Fee + tax / night
9/26/22: $169 + Resort Fee + tax / night
9/27/22: $245 + Resort Fee + tax / night
9/28/22: $245 + Resort Fee + tax / night
9/29/22: $169 + Resort Fee + tax / night
9/30/22: $169 + Resort Fee + tax / night

Room Cost Per Day 23-Sep 24-Sep 25-Sep 26-Sep 27-Sep 28-Sep 29-Sep 30-Sep
Deluxe King @ $245 $245 $245 0 0 $245 $245 0 0
Deluxe King @ $245 0 0 $169 $169 0 0 $169 $169

You can book your Xpand Live 2022 hotel accommodations during Xpand Live 2022 registration. NOTE: Hotel reservations should be made ONLY through the Xpand registration site to secure our special ARIA discounted room rates. Do not accept external solicitations.

About the ARIA Resort & Casino
ARIA Resort & Casino is a stunning AAA Five Diamond resort on The Strip featuring spectacular amenities, high-end service, premium meeting and convention space, striking architecture and sustainable design. Combined with its unparalleled offerings including the luxurious Shops at Crystals and the first-of-its-kind public Fine Art Collection, ARIA sets the bar for a new generation of resort experiences. And because the ARIA Convention Center is hosting Xpand Live 2022, you’ll enjoy the convenience of having the summit all under one roof.

Questions on Accommodations?
Reservation Questions please email: XpandRegistration@ITAGROUP.com