When it comes to information security, many companies still focus on IT security and the technical protection of systems. Employees are often seen as the weakest link in a very complex chain, as 70% of all attacks today are aimed at people and only 30% at systems. However, this is a fallacy. Properly trained, employees can make an essential and valuable contribution to raising the overall level of security and are the most important building block of an all-encompassing security strategy. Therefore, all companies should focus on increasing the awareness of their employees. But how to build a successful awareness campaign that sensitizes employees to the topic of information security in the long term is presented in this session.
Attend this event
Visionaries
Neil Thacker
CISO (EMEA) & DPO
Netskope
Think Tank Speaker
Neil Thacker is EMEA and LATAM CISO for Netskope and holds over 20 years’ experience in the information security industry with previous roles at Swiss Re, Deutsche Bank and Camelot Group. Neil is advisory board member to the Cloud Security Alliance (CSA), advisory board member to NeuroCyber, and co-founder and board member to the Security Advisor Alliance (SAA). Neil is CISSP, CIPP/E and CEH certified and is a frequent speaker and author of cybersecurity, data protection and privacy-related content. In late 2021, Neil was listed as one of CSO Online’s CSO30 which recognises 30 outstanding senior security professionals in the UK for demonstrating outstanding business value and thought leadership within their organisation.
Cameron Brown
Director - CyberSecurity - Risk Advisory
Deloitte
Think Tank Speaker
Cameron is a seasoned cyber defence advisor and information security strategist who has worked for the United Nations, governmental and law enforcement agencies, as well as leading multinational corporations. He consults across verticals to guide his clients in maturing strategic and tactical security capabilities, incident response measures, proactive defence, and resilience investments, and devising effective countermeasures to insider threats. Cameron has also conducted in-depth research into emerging trends in cybercrime offending, forensic science, data protection, and cyber-warfare. He is an author and contributor to books and articles on many aspects of cybersecurity and a regular speaker at international conferences. He holds multiple bachelor and master level degrees in law, behavioural science, international security, policing, intelligence, and counterterrorism, in addition to vendor neutral technical certifications and accreditations. Cameron enjoys working at the intersection of technology, security and law and building capable teams to deliver services that organisations need to operate safely, competitively, and effectively in today’s digital world.
Khadir Fayaz
SVP Digital & Technology
CBRE
Think Tank Speaker
Khadir Fayaz is a progressive Cyber Security Digital Executive Leader with more than 18 years of experience in driving large scale digital security initiatives, cyber resiliency programs and business information security engagements. Delivered successfully global digital security transformational programs with multi-million dollar investments. Transformed security as an enabler and accelerator for the business through frictionless services to meet both compliance & privacy requirements such as PCI DSS and GDPR. Dynamic, metrics-driven leader of international and virtual teams’ adept at integrating people, business processes, and technology assets into effective risk reduction strategies to elevate organizational security posture from external and internal threats. Significantly improved the risk culture and security maturity in some of the world’s largest PropTech, Learning, FMCG, Financial, Manufacturing, Technology Consulting, Hospitality & Travel companies. Built strong customer and business partner relationships, effective teams across the full spectrum of information security services. Hired and developed global talent, and operated truly globally having extensive hands-on experience in Asia Pacific, UK and USA. A highly sought-after speaker who has contributed immensely to the industry through tech start-up mentoring and holding non-executive director roles.
Dorian Skeete
Head, Information Security
boohoo
Think Tank Speaker
Dorian Skeete is the Head of IT Security at Boohoo Group, where he is responsible for IT Security, Data Protection and Privacy across their 13 brands, including household names like Pretty Little Thing, BoohooMAN and Karen Millen. Day to day, Dorian looks after a team of 10, while delivering on a multi-year cybersecurity strategy including advisory for the Boohoo Risk Committee and Board, increasing IT Security capability and professional development of his staff. Prior to Boohoo, Dorian was the IT Security Lead at Advantage Smollan and an Associate Director at Crossword Cybersecurity, while spending his formative years as an RF and Cyber Engineer for the Ministry of Defence. With more than 10 years IT Security experience, Dorian has worked on several valuable projects including IT transformation, ISO 27001 and Cyber Essentials certification, Security Awareness improvement and improving businesses overall IT Security posture. When not dealing with the fast-paced environment of a world-leading fashion brand, Dorian enjoys sport (especially football and F1), travel, exercise and is a self-proclaimed foodie.
Steven Gillham
Cyber Security Specialist
Capital One
Think Tank Speaker
Steve is an experienced Cyber Security Specialist who has worked in many financial organisations. With over 15 years in Cyber Security and a further 25 years in IT in general giving Steve and wide knowledge based to build upon. Steve’s speciality is Vulnerability and Risk Management and is a mentor to junior members of the Security Teams.
Roben Leonard
CISO
Thames Technology
Adrian Leung
Group DPO
Equifax
Mike Backinsell
Global Deputy CISO
ManpowerGroup
Shikha Hornsey
CDIO
Crown Commercial Service
Lorraine Dryland
Global CISO
First Sentier Investors
Think Tank Speaker
Founded in 1988, First Sentier Investors Services is a company that provides investment management services offering assets management, short-term investment, property security, equities, and fixed income. First Sentier Investors Services is located in New South Whales Australia.
Mike Bray
CISO
Monzo
Florian Jörgens
CISO
Vorwerk SE & Co. KG
Think Tank Speaker
Florian Jörgens initially developed his professional interest in information technology in 2002. Whilst working as an IT specialist for system integration at T-Systems International GmbH, in application and system support he earned his BSc. in Business Information Systems. Gaining further experience in IT auditing at PricewaterhouseCoopers and completing a MSc. in IT Management, Florian Jörgens then worked for E.ON in Essen as a manager leading information security for their entire German sales organization. In March 2019, as Chief Information Security Officer at LANXESS AG in Cologne, he took over holistic responsibility for the Group's information security. Today, he is Chief Information Security Officer of the Vorwerk Group. Additionally, he is active as a keynote speaker, lecturer, author and research assistant at various universities. Furthermore, he gives expert lectures on the topics of information security, awareness and cyber security. Florian Jörgens was awarded the Digital Leader Award in the category "Cyber-Security" by CIO magazine in September 2020.
Ludwig Keyser
CISO
Rothesay
Sadiq Sani
Adviser and Senior Lecturer in Cybersecurity
University of Greenwich
Zac Warren
Chief Security Advisor, EMEA
Tanium
Think Tank Speaker
Zac Warren is Chief Security Advisor, EMEA. Zac started his career in IT with a passion for cybersecurity and was a senior security analyst at a leading manufacturer of security platforms and later a cybersecurity architect and consultant for large system integrators. Zac has spent most of his career helping government agencies and several Fortune100 companies reorganize their security architectures, controls, policies, and procedures. Today, Zac is responsible for developing and supporting Tanium's cybersecurity business in EMEA.
Bogdan Grigorescu
Senior Technical Lead, Engineering and Automation
Direct Line Group
Neil Thacker
CISO (EMEA) & DPO
Netskope
Think Tank Speaker
Neil Thacker, a cybersecurity executive and co-founder holds over 20 years’ experience in the cybersecurity and technology industry. As Netskope Chief Information Security Officer EMEA, Neil works alongside product and engineering teams to ensure the secure delivery of Netskope technology and services. With a focus on data protection and regulatory compliance, Neil works with Netskope customers to ensure their security programmes are both optimised and can deliver on their strategic requirements in a cloud-first world. Prior to joining Netskope, Neil served at Swiss Re, Deutsche Bank, Camelot Group and Forcepoint. Neil is co-founder and board member of the Security Advisor Alliance (SAA), a not-for-profit organisation formed to both help security leaders in their role and to promote information security and cybersecurity careers to future generations. Neil is Advisory Board member for the Cloud Security Alliance (CSA) EMEA and member of the ENISA Threat Landscape stakeholder group where he contributes to the EU agency program to position the threat landscape, mitigation advice and threat analysis and innovation. Neil is Advisory Board member to NeuroCyber, supporting and coordinating national activity, awareness, knowledge and action on improving neurodiversity and inclusion in cybersecurity. Neil is CISSP, CIPP/E and CEH certified and is a frequent speaker and writer on cybersecurity, data protection and privacy-related topics.
Charlie Howe
VP EMEA
Cribl
Phil Scully
VP Digital & EMEA Technology
RS Group plc
Shweta Gupta
VP IT
Deutsche Bank
Saul Williams
Regional Director
Safebreach
Agenda
All times United Kingdom Time
10:00 AM-11:05 AM
Welcome & Registration
11:25 AM-12:10 PM
Vision Keynote Panel
CXO’s Role in Employee Retention
Over the last decade, the ability to understand and utilise existing, new and upcoming technologies has been a critical enterprise success factor. As a result, the need for capable and qualified leaders, whether front-line Analysts, mid-level Managers, or top level CXO’s is at an all-time high. However, the availability of personnel with the necessary skills is sinking to an all-time low. There simply is not enough expertise to go around, or is there? In this environment, senior leaders must express creativity in their pursuit of the people, performance, and passion necessary to address this capability shortfall.
Panelists
Shikha Hornsey
CDIO
Crown Commercial Service
Lorraine Dryland
Global CISO
First Sentier Investors
Shweta Gupta
VP IT
Deutsche Bank
12:10 PM-1:10 PM
Lunch & Disruptor Showcase
Lunch & Innovation Showcase
12:45 PM-1:00 PM
Disruptor
The Role of Breach and Attack Simulation in Cybersecurity
Security control validation is a key component of compliance requirements for many organizations. But there are differing opinions about the best way to test controls, including when it should be done, how often, and what tools are most effective to support the process.
In this presentation, SafeBreach Regional Director Saul Williams makes the case for integrating continuous breach and attack simulation (BAS) as a practical approach for programmatic remediation. This presentation will explore:
- BAS fundamentals and objectives
- How to get the most benefit from your security controls
- How BAS can inform and enhance communications with key stakeholders
Saul Williams
Regional Director
Safebreach
1:05 PM-1:20 PM
Disruptor
In Cyber Security, is Prevention Better Than The Cure?
How can organisations stay ready to defend against cyber threats, so they don’t have to respond in a rush?
In a world of increasingly damaging cyber attacks, organisations need effective strategies to stay ahead of threats and drive a proactive security posture. But the nature of the threats can be hard to measure. How can you manage what you don’t know? How can you secure what you don’t manage?
Organisations need to ask key questions. What assets do we have? What is running on our IT estates? What goes in and out of our network? These are hard questions to answer. But to keep safe, visibility is key. We need to know what we look like to an attacker if we are to defend ourselves. Only with this knowledge can we maintain readiness to respond to new and unexpected dangers.
1:25 PM-2:10 PM
Panel
How to Optimize your Security Data and reduce SOC TCO with Data Pipelines
Securing your organisation no longer comes down to acquiring the right tools and building the best policies. Additionally, managing the flood of noisy, high volume security data means the difference between detecting a breach and missing a critical alert. Join this session to learn how data pipelines put choice and control over data back into the hands of security teams, helping get the right data, in the right formats, to the right places, all while reducing your SOC TCO
Panelists
Charlie Howe
VP EMEA
Cribl
Roben Leonard
CISO
Thames Technology
Florian Jörgens
CISO
Vorwerk SE & Co. KG
Khadir Fayaz
SVP Digital & Technology
CBRE
2:10 PM-2:30 PM
Networking Break
2:35 PM-3:20 PM
Panel
Zero Trust Network
A zero trust approach to security has been steadily gaining steam for the last several years. The importance of this approach reached a new level with the May 2021 White House executive order requiring federal agencies to shift to this architecture by fall 2024.
Ransomware continues to grow and clearly as remote work became the new norm, and e-commerce increased. Leaders need to establish a mature level of cyber resilience to better handle ransomware and other potential data breaches. Luckily, zero trust can play a critical part in that strategy as more and more businesses are realizing that to build customer trust they must establish zero tolerance for trust in their security strategy. Will Zero Tolerance for Trust redefine the state of security as government and private industry scrutinize their trusted relationships more, and re-evaluate the ‘who, what, why’ in 2023 more than any other year?
Panelists
Neil Thacker
CISO (EMEA) & DPO
Netskope
Dorian Skeete
Head, Information Security
boohoo
Bogdan Grigorescu
Senior Technical Lead, Engineering and Automation
Direct Line Group
Steven Gillham
Cyber Security Specialist
Capital One
3:25 PM-4:00 PM
Panel
Bridging the Gap Between IT and the Business
Bridging the gap between business and technology is not easy and requires discipline and balance between technology, people, and the business. For so many organizations today, technology is the business. Technology needs to be understood as a critical enabler in every part of the organization from the front line to the back office. It creates new value by crunching data to deliver new insights, it spurs innovation, and it disrupts traditional business models.
For business and technology leaders alike, new actions and behavioral changes can help their organizations make this shift. CIOs must take responsibility for problems, they should convey that when technology fails, many people typically share responsibility.
Chair
Amjad Khan
VP Customer Success and Growth
NewPage Solutions
Panelists
Sachin Gaba
Managing Director-Head of Software Development / Lead Architect
State Street
Sadiq Sani
Adviser and Senior Lecturer in Cybersecurity
University of Greenwich
Phil Scully
VP Digital & EMEA Technology
RS Group plc
Jon Townsend
CIO
National Trust
4:00 PM-4:20 PM
Networking Break
4:25 PM-5:10 PM
Panel
The Greatest Fears?
The biggest fear for CISOs is often human error, typified by a distracted user that falls for a well-crafted social engineering email. Secure email gateways fail to catch business email compromises and security analysts struggle to keep up with the flood of user-reported suspicious emails. How can we truly create a culture of security while also making the best use of a cybersecurity leader’s most precious resource – people?
5:15 PM-6:00 PM
Panel
Promoting & Enabling Women in Tech to Succeed
How do we come together, as a group of professionals, to create and foster an inclusive tech world where all women have a role to play? We know that a major part of this is attracting and retaining talent at every level but how exactly do we do that and where can we use technology to help? Our panelists will discuss how their companies are creating more inclusive environments, the use AI tools to help uncover hidden biases, what flexibility looks like for all team members and how they are advancing women earlier and signing them up for long term success.
Panelists
Shweta Gupta
VP IT
Deutsche Bank
Adrian Leung
Group DPO
Equifax
Lorraine Dryland
Global CISO
First Sentier Investors