Agenda

►Fireside chat: Beyond Compliance: Building Resilient Cyber Risk Management

Simon Brady, Event Chairman (Moderator) 
Athina Syrrou, Senior Director Tech Risk Operations, Booking.com

• How can organisations turn risk appetite statements and metrics into practical decision-making tools?

• With NIS2 and similar regulations, what does “appropriate and proportionate” really look like in practice — and how can risk management guide the response?

• What makes for strong cyber risk metrics, and how can CISOs and CSOs give the Board real confidence in the organisation’s risk posture?

• How does a resilience-first mindset shift culture — from blame and prevention to acceptance, preparedness, and recovery?

►Cyber Leadership in an era of Dis-Cooperation

William Dixon, Associate Fellow, Royal United Services Institute and Senior Technology Cyber Fellow, The Ukraine Foundation

• How global trade fragmentation impacts the community.
• How the "America First" Foreign Policy is leading to cyber instability.
• Actions the Cyber C-Suite can take

►Crypto-Agility in the Cyber Domain

Elif Yesilbek, Cryptography & Senior Software Engineer, ABN AMRO

• How cryptography secures digital communications, data, and trust in cyberspace

• The impact of quantum computers on classical cryptography and PQC

• What is crypto-agility and why we need it?

►Ransomware 3.0: Weaponizing AI for the Next Generation of Ransomware Attacks

Manit Sahib, Ethical Hacker, Cytadel & Former Head of Penetration Testing & Red Teaming, Bank of England

• LIVE DEMO - Inside the first AI-powered ransomware attack — See how my custom Agentic Ransomware Gang can take down a network in under 8 minutes

• Firsthand insights from real-world red team ops — from legacy tech and broken access controls to the critical lack of real-world security testing

• Why traditional security fails — compliance checklists and conventional tools don’t stop modern ransomware

• What CISOs and security leaders must do now — real-world, field-tested steps to prove your controls work before attackers do it for you

►The Risks and Opportunities that AI brings to Cybersecurity

Gustavo Maniá, Information Security and Risk Manager (Regional CISO), HEINEKEN (AME)

• Real-world AI-driven cyber risks—from phishing automation to deepfakes and agentic AI threats 
• Learn how HEINEKEN manages emerging AI risks while harnessing AI to strengthen defence 
• Gain practical insights to help your organisation embrace AI securely and strategically

►Panel Discussion: Securing Future Architectures 

Simon Brady, Event Chairman, (Moderator) 
Martin Dimovski, Senior DevOps/DevSecOps Engineer, ABN AMRO Bank 
Gustavo Mania, Information Security and Risk Manager (Regional CISO), HEINEKEN (AME)

• How can security teams design resilient architectures to integrate and leverage emerging technologies such as AI, quantum computing, and IoT?

• What role does AI play in developing proactive rather than reactive security strategies?

• What are the best practices for integrating AI without disrupting legacy systems and existing workflows?

• How can organisations implement zero-trust principles and adaptive access controls to secure ever-evolving environments driven by AI and edge computing?

►Insights from the 2025 Threat Hunting Report

Vincent Nieuwenburg, Senior Sales Engineer, CrowdStrike Benelux

• The CrowdStrike 2025 Threat Hunting Report reveals how today’s most advanced adversaries weaponise AI not only for social engineering but also for reconnaissance, malware enhancement, and vulnerability research, while executing malware-free and cross-domain attacks to bypass defences

• With 81% of hands-on-keyboard attacks malware-free and 320+ organisations infiltrated by AI-enabled insider threats, rapid response is critical

• CrowdStrike’s AI-native Falcon platform empowers organizations to detect, disrupt, and stop modern threats