Picking the right fight: security priorities for 2018

7th e-Crime & Cybersecurity Paris, 11th April 2018

 

"If I were to give one piece of advice it is this: decision-makers, cybersecurity is your business. You have to look at it and ask questions about the risks and the threats,” Guillaume Poupard, Director General, l’Agence Nationale de la Sécurité des Systèmes d’Information (ANSSI)

 

2017 has been a tipping point in French cybersecurity. As elsewhere, ransomware attacks hit high-profile companies, such as Renault, Paribas and Air France.
 
The Bank of France has warned recently of an explosion of emails and telephone calls falsely attributed to the country's central bank, as criminals use phishing attacks including the Bank of France's name, logo, and also phone numbers and email addresses that are similar to its own.
 
And Guillaume Poupard, head of national cybersecurity agency ANSSI, has warned that the world is heading towards 'permanent cyber war’.
 
That’s the "F.U.D".

At the same time, CISOs face difficult, practical challenges. If organised criminals have access to nation-state level exploits, who is safe and what solutions make sense?
 
How can the current threat landscape be translated into a risk management framework – that is, how can security professionals assign probabilities of loss to cybercrime that allow boards to set budgets and risk appetites?
 
And how can companies combine human and cultural initiatives with technological solutions to create a holistic cybersecurity defence?
 
That’s the challenge.

 

The 7th e-Crime Cybersecurity France will cover these and other key subjects for its audience of professionals tasked with safeguarding digital assets and sensitive data. There will be real-life case studies, strategic talks and technical break-out sessions. It will provide an opportunity for local firms to compare domestic solutions with international best cyber-security practice while networking with industry peers, suppliers and law enforcement.

  • Containing the rising costs of security

    • Utilising methods for evaluating and prioritising threats based on potential financial implications
    • Understanding potential insurance options which can reduce financial concerns
    • Finding solutions which are cost-effective and integrate into existing systems effectively
    • Identifying and containing breaches quickly to prevent APTs consuming valuable staff time
  • Next generation data analytics

    • How to stop relying on outdated tools like Excel and Access
    • Leveraging continuous monitoring solutions: beyond SAP, SAI Global and Oracle
    • Text analytics, social media/web monitoring solutions, visualization and reporting tools
    • Big Data, voice search and artificial intelligence in unstructured data
  • Employee awareness and engagement

    • How to automate and engineer out as many human decision points as possible
    • Maximising employee engagement: turn liabilities into assets
    • Turning employees into a cyber-security positive
    • Cyber-security training: what works and what doesn’t?
    • What about dishonest insiders? How to monitor, detect and defeat
  • Securing enterprise data

    • Conforming to changing legislation such as the EU GDPR, which impacts the way enterprise data needs to be secured
    • Identifying gaps in end-to-end protection spread over databases, applications, networks and endpoint devices
    • Understanding the breadth of the security implications of different IaaS, PaaS and SaaS possibilities working with the cloud
    • Finding methods of encryption which are effective, yet do not reduce the working efficiency of employees
    • Protecting data in legacy systems and managing transfer to the cloud
  • Securing email and social media

    • Phishing is still the primary attack vector, because it works. What works against it?
    • Social media provides attack intel and is the perfect malware delivery system. How can employees protect themselves?
    • How can companies protect honest employees against increasingly sophisticated attacks?
    • Using positive social engineering to fight back
  • Securing industrial control systems

    • Protecting core industries including energy, logistics, transport and manufacturing
    • How to upgrade ICS, building control and SCADA systems without shutting down your core processes
    • Ensuring cyber-security concerns are understood by analysts using SCADA systems
    • Retrofitting ICS to cope with increased concerns about cyber-security
  • Optimise your incident response plan

    • Identifying and valuing critical assets
    • Ensuring plans are fit for real-world deployment
    • Containing, slowing and stopping a breach and managing post-incident fallout
    • Communicating with stakeholders and partners to respond smartly as events develop
    • Understanding the role that cyber insurance could play in mitigating the cost of a data breach
  • Containing the rising costs of security

    • Utilising methods for evaluating and prioritising threats based on potential financial implications
    • Understanding potential insurance options which can reduce financial concerns
    • Finding solutions which are cost-effective and integrate into existing systems effectively
    • Identifying and containing breaches quickly to prevent APTs consuming valuable staff time
  • Next generation data analytics

    • How to stop relying on outdated tools like Excel and Access
    • Leveraging continuous monitoring solutions: beyond SAP, SAI Global and Oracle
    • Text analytics, social media/web monitoring solutions, visualization and reporting tools
    • Big Data, voice search and artificial intelligence in unstructured data
  • Employee awareness and engagement

    • How to automate and engineer out as many human decision points as possible
    • Maximising employee engagement: turn liabilities into assets
    • Turning employees into a cyber-security positive
    • Cyber-security training: what works and what doesn’t?
    • What about dishonest insiders? How to monitor, detect and defeat
  • Securing enterprise data

    • Conforming to changing legislation such as the EU GDPR, which impacts the way enterprise data needs to be secured
    • Identifying gaps in end-to-end protection spread over databases, applications, networks and endpoint devices
    • Understanding the breadth of the security implications of different IaaS, PaaS and SaaS possibilities working with the cloud
    • Finding methods of encryption which are effective, yet do not reduce the working efficiency of employees
    • Protecting data in legacy systems and managing transfer to the cloud
  • Securing email and social media

    • Phishing is still the primary attack vector, because it works. What works against it?
    • Social media provides attack intel and is the perfect malware delivery system. How can employees protect themselves?
    • How can companies protect honest employees against increasingly sophisticated attacks?
    • Using positive social engineering to fight back
  • Securing industrial control systems

    • Protecting core industries including energy, logistics, transport and manufacturing
    • How to upgrade ICS, building control and SCADA systems without shutting down your core processes
    • Ensuring cyber-security concerns are understood by analysts using SCADA systems
    • Retrofitting ICS to cope with increased concerns about cyber-security
  • Optimise your incident response plan

    • Identifying and valuing critical assets
    • Ensuring plans are fit for real-world deployment
    • Containing, slowing and stopping a breach and managing post-incident fallout
    • Communicating with stakeholders and partners to respond smartly as events develop
    • Understanding the role that cyber insurance could play in mitigating the cost of a data breach

Who attends

Job Titles

Directeur de mission
RSSI
Ingénieur SSI
PCI Manager
Chargé de mission
RSSI
I.T. Security Architect
Legal Counsel
Ingénieur de Production
Directeur Général
CISO/RSSI
Chargé de mission SSI
Chargé de Mission
InformationSecurity Expert
Directeur informatique
RSSI
CISO
Responsable Sécurité
Responsable Support
RSSI
CISO
RSSI
RSSI
IT Security Architect
CISO - RSSI
Global Securite de Production
Cybersecurity Director
RSSI
IT Manager
Responsable écurité
Information Security Manager
RSSI
Expert Sécurité SI
RSSI
I.T. Security Officer
RSSI
Risk Manager
RSSI
Group Deputy CSO
RSSI
Cellule Anti Abus
Data Privacy & Security
Product manager
Information Security Officer
RSSI Groupe
Vice-Président
CISO
Manager, IT Advisory
RSSI
Industry Relations
RSSI / CISO
I.T. & Security Internal Auditor
Responsable de la gouvernance SSI
Responsable cellule e-fraude
CISO
Operations Manager
Risk Manager
Réseau SSI
RSSI
Group Information Security Officer
Chef de projet sécurité
Responsable du SOC
RSSI
Head Cyber and Tech
IT Security
RSSI
Head of software engineering
Group Information Security Officer
Head of Content Security
Investigateur
RSSI
Senior IT Security Consultant
Chef de Projets SOC
CISO
IT Manager
RSSI, Directeur IT
RSSI
RSSI
RSSI
Ingénieur
Head of Anti-Fraud
Head of Professional I & M
Expert Sécurité
Group IT Security Officer
Access Solution Service Manager
RSSI
Directeur Infogérance
Expert SSI
RSSI
RSSI
IT Project Manager
Responsable ADV & Logistique
Chef de projet Sécurité
Responsable Global Cyber Securite
SI Security Expert
Directeur de l'Innovation
RSSI-CIL
E-Payment Project Manager
RSSI
Directeur Sécurité
Directeur Sécurité du SI
Information Security & Risk
Expert Technique
Cellule e-Fraude
Business Security Officer
IT Auditor
Global CISO
RSSI-O
IT Security Officer
Group CISO
RSSI
Direction des Systèmes d'Information
IT Security Consultant
Chief Security Officer
RSSI
Architecte SI
Inspecteur, auditeur en SI
RSSI
RSSI/CISO & PMO
Directeur Risques et Securité
RSSI
M2M Partnership Manager
Project Manager
IT Security Consultant
Information Security Manager
CSO - Responsable Securité
RSSI
RSSI
CISO - RSSI
CISO
Cybercrime Director
Network & Security Engineer
Senior legal counsel
I.T. Senior Risk Advisor
Directeur
CISO
Directeur des Opérations
RSSI
Ingénieur sécurité réseau
Directeur programme SSI
RSSI
Chief Information Security Officer
Sécurité des Systèmes d'Information
IT Security Expert
Information Security Risk Manager
Security Manager
Police officer
Head of IT Infrastructure
Directeur cyber-défense
Lutte contre la Fraude
Group Security Officer
Product Manager
Sécurité Opérationnelle Internet
Trustee
RSSI
Network & Security Engineer
CSIRT
Equipe RSSI
RSSI
RSSI

Companies

SNCF
Camaïeu SA
CNES
Credit Mutuel
SNCF
Council of Europe
Air France-KLM
Crédit Agricole
CDC Arkhineo
SnapElite
Coface
UGAP
Préfecture de Police
BNP Paribas
FlightSafety
Neuflize OBC
Banque Privée 1818
GMX
Ministère de la Justice
BNP Paribas Wealth Management
AREVA
Prosodie
Euromaster
BNP Paribas
Viadeo
BNP Paribas
AXA
Armatis-LC
Euler Hermes
Groupe Beaumanoir
Sodexo
vivarte
Auchan
Groupama Asset Management
BNP Paribas
Éditions Gallimard
Université Paris Dauphine
Fondation de France
GDF SUEZ
Clarins Group
La Poste
GE Capital
LCL
Staples
BNP Paribas
EESTEL
Assistance Publique - Hôpitaux de Paris
Deloitte & Touche
Voyages-SNCF
La Poste
EQIOM
LCH Clearnet
Société Générale
Société Générale
Groupe Galeries Lafayette
La Française des Jeux
Vies De Paris
SNCF
Pari Mutuel Urbain
Air France-KLM
Arval
CNAMTS
Xerox
Swiss Re
STET
Veolia Eau
GMX
Mondial Assistance
Orange
GAPA Investigations Privées
AREVA
Total
CNAMTS
Groupe Pasteur Mutualité
NEVA GROUP
Assistance Publique - Hôpitaux de Paris
Université Paris Dauphine
La Banque Postale
Generali
Enterprise Holdings
Société Générale
Zurich Financial Services
Kering
ArcelorMittal
Sanofi-Aventis
Norauto
La Poste
Pari Mutuel Urbain
SnapElite
Ministère de l'Economie et des Finances
EDF Energy
SFR
Vente-privee.com
BNP Paribas
Société Générale
Monext
Promod
Parkeon
Institut National de l'audiovisuel
L'Oréal
Crédit Foncier
BNP Paribas
La Poste
Société Générale
Automatic Data Processing
Société Générale
Chanel
Boursorama
Delta Lloyd Group
Plastic Omnium
EuropCar
Aéroports de Paris
GDF SUEZ
Coface
Société Générale
Camaïeu SA
Banque de France
Mairie de Paris
Auchan
La Poste
Groupe Samse
SFR
La Poste
STET
Heineken
AXA
Banque de France
Partecis
Adisseo
Les Echos
Police Nationale
Publicis
Crédit Agricole
Chubb (ACE Group)
NEVA GROUP
Radio France
Orange
Humanis
Publicis
EDF Energy
Conseil Général de la Manche
DAHER
MMA
La Française des Jeux
Bombardier
Renault
Police Nationale
Société Générale
Faurecia
Société Générale
EDF Energy
Monext
HSBC
CLUSIF
Recylum
Kering
BNP Paribas
Boursorama
Sodexo
Monext

Industries

Transportation/Shipping
Retail
Central Government
Banking
Transportation/Shipping
Central Government
Transportation/Shipping
Banking
Security Product Vendor
Software
Insurance
Retail
National Law Enforcement
Banking
Aerospace/Defence
Banking
Banking
Software
Central Government
Banking
Construction
Banking
Retail
Banking
Media
Banking
Insurance
Telecommunications
Banking
Manufacturer
Travel/Leisure/Hospitality
Manufacturer
Retail
Banking
Banking
Media
Education
Charity
Oil/Gas
Pharmaceuticals
Transportation/Shipping
Industrial Engineering
Banking
Retail
Banking
Association
Healthcare Services
Accounting/Auditing
Travel/Leisure/Hospitality
Transportation/Shipping
Construction
Banking
Banking
Banking
Retail
Casinos/Gaming
Other Industry
Transportation/Shipping
Casinos/Gaming
Transportation/Shipping
Automobiles/Parts
Insurance
Electronic/Electrical Equipment
Insurance
Banking
Water/Sewage
Software
Insurance
Telecommunications
Consultancy
Construction
Oil/Gas
Insurance
Healthcare Services
Consultancy
Healthcare Services
Education
Banking
Insurance
Transportation/Shipping
Banking
Insurance
Retail
Industrial Engineering
Pharmaceuticals
Automobiles/Parts
Transportation/Shipping
Casinos/Gaming
Software
Central Government
Electricity
Retail
Retail
Banking
Banking
Banking
Retail
Electronic/Electrical Equipment
Media
Household/Personal Products
Banking
Banking
Transportation/Shipping
Banking
Software/Hardware
Banking
Retail
Banking
Insurance
Manufacturer
Automobiles/Parts
Transportation/Shipping
Oil/Gas
Insurance
Banking
Retail
Banking
Regional Government
Retail
Transportation/Shipping
Construction
Retail
Transportation/Shipping
Banking
Food/Beverage/Tobacco
Insurance
Banking
Banking
Food/Beverage/Tobacco
Media
Central Government
Media
Banking
Insurance
Consultancy
Media
Telecommunications
Banking
Media
Electricity
Regional Government
Aerospace/Defence
Banking
Casinos/Gaming
Manufacturer
Automobiles/Parts
Central Government
Banking
Automobiles/Parts
Banking
Electricity
Banking
Banking
Association
Other Industry
Retail
Banking
Banking
Travel/Leisure/Hospitality
Banking


Venue

New Cap Event Center

new cap

Emplacement: New Cap Event Center
3 QUAI DE GRENELLE - 75015 PARIS
Telephone: +33 (0) 1 44 37 42 00

La description:

Les Espaces CAP15 benefits from an exceptional location. Bordering the River Seine and at the foot of the Eiffel Tower, this high-tech venue offers 1,500m² of space which can be divided into 17 rooms. Its capacity enables it to host your seminars, conventions, gala dinners, etc.
 

Directions:
Cliquez ici