The session deals with the typical defensive reactions of a company's business functions to the CISOs request for security measures and proposes ways to counter them creatively. The dialogue becomes even more difficult with obscure topics, such as generative AI. In the second half of the session or so, basic insights of experts such as Andrej Karpathy are summarized: Insights on how the transformer models underlying the large language models work and what implications that has.
The Future of IT & Cybersecurity
CIO & CISO Think Tank
November 21, 2023 - Munich, Germany
Attend this event
Visionaries
Florian Jörgens
CISO
Vorwerk SE & Co. KG
Think Tank Speaker
Florian Jörgens initially developed his professional interest in information technology in 2002. Whilst working as an IT specialist for system integration at T-Systems International GmbH, in application and system support he earned his BSc. in Business Information Systems. Gaining further experience in IT auditing at PricewaterhouseCoopers and completing a MSc. in IT Management, Florian Jörgens then worked for E.ON in Essen as a manager leading information security for their entire German sales organization. In March 2019, as Chief Information Security Officer at LANXESS AG in Cologne, he took over holistic responsibility for the Group's information security. Today, he is Chief Information Security Officer of the Vorwerk Group. Additionally, he is active as a keynote speaker, lecturer, author and research assistant at various universities. Furthermore, he gives expert lectures on the topics of information security, awareness and cyber security. Florian Jörgens was awarded the Digital Leader Award in the category "Cyber-Security" by CIO magazine in September 2020.
Alexander Zhitenev
Group CISO
IFCO
Klaus Klingner
ISO
ASAMBEAUTY GmbH
Matthias Jungkeit
CISO/DPO
Münchener Hypothekenbank eG
Max Imbiel
CISO
Bitpanda
Matthias Orthwein
Lehrbeauftragter f? IT und Datenschutzrecht /Lecturer for IT and data protection law
SKW Schwarz Rechtsanwälte
Thomas Zeulner
CISO
TDK Electronics
Berthold Panzner
Chief Architect
Nike
Ilona Simpson
CIO EMEA
Netskope
Think Tank Speaker
Ilona Simpson serves as Chief Information Officer EMEA for Netskope. A seasoned CIO, she brings to the table over 20 years’ experience of initiating and leading the implementation of new business / technology strategies and operating models. During her career, she has delivered value through all phases of a business: high growth, downturns, new business integration, and divestments. She was named one of 4 women to make waves in IoT by Silicon Republic in 2016. In 2021, Constellation Research named Simpson a member of the Business Transformation 150, an elite list that recognizes the top global executives leading business transformation efforts in their organizations. Prior to Netskope, Simpson served as VP, CIO & Transformation Office at adidas, and Head of Cross Functional Services (CIO) for INNOGY (E.ON), where she initiated and led data-driven, service-led transformation of the technology function. Simpson has also held regional, divisional, and global CIO roles at Porsche, DHL Supply Chain and Aston Martin where she also was a member of Executive Committees. Simpson is active in a number of technology and industry advisory boards. She holds an MBA from IESE Business School and is a guest lecturer on technology and business topics. She is also an angel investor and volunteers her time to mentoring early stage technology-focused start ups.
Roberto Avanzi
Senior Principal Security Architect
Arm
Agenda
All times Central European Time
10:30 AM-10:45 AM
Welcome & Registration
10:45 AM-11:15 AM
Morning Networking
11:15 AM-11:20 AM
Opening Remarks
11:20 AM-11:35 AM
Striking a Balance: AI Information Security in the Organization – Navigating the Landscape Between Complain and Comply
Matthias Jungkeit
CISO/DPO
Münchener Hypothekenbank eG
11:40 AM-12:15 PM
Fireside Chat
Bridging the Gap Between IT and the Business
Bridging the gap between business and technology is not easy and requires discipline and balance between technology, people, and the business. For so many organizations today, technology is the business. Technology needs to be understood as a critical enabler in every part of the organization from the front line to the back office. It creates new value by crunching data to deliver new insights, it spurs innovation, and it disrupts traditional business models.
For business and technology leaders alike, new actions and behavioral changes can help their organizations make this shift. CIOs must take responsibility for problems, they should convey that when technology fails, many people typically share responsibility.
12:20 PM-12:35 PM
Is the AI smart enough for EU data protection regulation?
While human brains already struggle sometimes with the compliance requirements of EU data privacy regulations (GDPR), the combination with the use of artificial intelligence does not necessarily make it easier. This session explores the practical impacts that GDPR has on the use of generative AI solutions in the daily use of companies. Through the example of practical use cases, it will be demonstrated where the most dangerous pitfalls are and how experienced legal experts recommend to deal with them.
Matthias Orthwein
Lehrbeauftragter f? IT und Datenschutzrecht /Lecturer for IT and data protection law
SKW Schwarz Rechtsanwälte
12:40 PM-1:00 PM
Keynote
Digital Transformation: Why IT and Security Have To Join Forces to Succeed
Many drivers such as Digital Transformation, ubiquitous working environments as well as the need to protect organisations in an ever increasing level of sophistication in Cyber attacks have led to unprecedented complexity, high cost and inadequate governance. In her session, Ilona will explore how-not-to and how to deliver value through convergence and modernisation, and how to break out of the cost/risk/value trade off dilemma by joining forces of IT and security teams.
1:00 PM-2:00 PM
Lunch & Networking
2:00 PM-2:35 PM
Fireside Chat
Social Engineering: New in 2023
Social engineering attacks are a growing concern for businesses and individuals alike, as cybercriminals continue to use advanced techniques to trick people into divulging sensitive information or performing actions that can lead to data breaches. In 2023, these attacks are expected to become even more sophisticated, making it increasingly challenging for individuals and businesses to identify and prevent them. To protect themselves, individuals and businesses must be vigilant and aware of these tactics. They must also implement comprehensive security measures, such as security awareness training, anti-phishing software, two-factor authentication, and access controls. Additionally, businesses must establish policies and procedures for responding to social engineering attacks, including incident response plans, data backup and recovery, and regular security assessments. By taking these proactive steps, businesses and individuals can better protect themselves from the risks associated with social engineering attacks in 2023 and beyond.
2:40 PM-2:55 PM
Poor Cyber Hygiene
In the digital age, practicing good cyber hygiene is essential to maintaining the security and integrity of personal and business data. However, in 2023, the lack of basic cyber hygiene practices will continue to be a major cause of cyber incidents. Cybercriminals exploit these vulnerabilities to gain unauthorized access to sensitive information, steal data, and launch damaging cyber attacks. It's crucial for individuals and businesses to prioritize basic cyber hygiene practices, such as using strong passwords, regularly updating software, and backing up data. Additionally, individuals and businesses must educate themselves and their employees on cybersecurity best practices and the latest threats to stay ahead of the evolving threat landscape. By taking these proactive steps, individuals and businesses can protect themselves from cybercriminals who prey on poor cyber hygiene practices.
Max Imbiel
CISO
Bitpanda