Agenda

Registration and Networking Break 

Chairman’s welcome

► Collaboration is Key: Balancing regulation/compliance and security

Claudia van den Beld, Advisor International Cooperation, National Cyber Security Centre of the Netherlands

• We strive to encapsulate the current threat landscape in laws and regulations, and the need for coordination is ever more relevant.
  - Case study: From star-gazing to law-gazing — the Observatory
• We are trying to navigate this landscape through cross-border alliances which we sorely need.
  - Case study: Choosing your cross-border partners — the Consortium
• Finally, there is a great deal we can learn from each other once we appreciate the need to share information.
  - Case study: Lowering the thresholds to heighten the insight — the Platform

► Human Machine Teaming: The Indispensable Human Element of Cybersecurity

Sjoerd de Jong, Senior Sales Engineer, SentinelOne

Artificial Intelligence is a pervasive part of our lives today and cybersecurity teams and adversaries alike have learned to harness the speed and power of machines to strengthen their capabilities. With machine learning becoming one of the most important tools of defense, leaders must balance the overwhelming speed and accuracy advantage of AI with the need for measured and intuitive interactions with a real-world human element.

• What these trends mean for the hands-on practitioner 
• When velocity of innovation outpaces the capabilities of human intellect 
• The role of automation in the effective practice of securing our digital world

► Keeping your data incidents from becoming data breaches with Data Security Posture Management

Filip Verloy, Field CTO EMEA & APJ Rx, Rubrik

• Data Security Posture Management (DSPM) is essential for securing data across diverse environments.
• DSPM enables organizations to discover, protect, and manage data assets in on-premises, cloud, and SaaS environments.
• Discover how by using DSPM, organizations can enforce security policies, ensure data sovereignty, and meet governance, risk, and compliance (GRC) requirements.

► NIS2: Beyond compliance, a catalyst for transformation

Arash Rahmani, CISO a.i., Nederlandse Zorgautoriteit

• The transformative opportunity of NIS2
• The strategic impact of NIS2
• The evolving role of the Chief Information Security Officer (CISO) in the age of NIS2

► Education Seminar Session 1

Delegates will be able to choose from the following education seminars:

• Generative AI: Amplifying attackers and defenders, Lewis Brand, Senior Sales Engineer, Recorded Future
• Hack the brain – Social Engineering Innovation in 2023, Bas van Erk, Director Benelux & Nordics, SoSafe

Networking Break

► Implementing Robust Measures to Secure the Supply Chain 

Siegfried Moyo, Head of Cybersecurity EU, APAC, & LATAM, Americold Logistics

• Identifying Potential Threats & Implementing Physical Security Measures 
• Conducting Supplier and Partner Due Diligence: Visibility and Traceability 
• Business Continuity Planning & employee awareness 
• Compliance with Regulations 

► Living in a world of fakes

Jelle Wieringa, Security Awareness Advocate, EMEA, KnowBe4

Deepfakes are here, and they are here to stay. And with technology ever advancing, it is no longer a matter of simply knowing what a deepfake is. Organisations will have to actively decide how they can utilise them to grow their business, and at the same time defend against the malicious use of this technology.

In this talk, we'll be looking at:

• The evolving role of deepfakes in our lives
• What you can do with them
• How you can protect against them

► Nowhere to hide – Key Insights into Adversary Tradecraft 2023

John Spencer, Sales Engineering, Crowdstrike

Get a frontline snapshot of the current threat landscape, threat actors and their victims.

• Learn about the latest trends in adversary operations and tradecraft
• Understand why the human factor is more relevant than ever before
• Explore the 5 key steps to stay ahead of the threat actor

► NDR and NIS2: How to turn your compliance obligation into an opportunity

Jürgen Verniest, Sales Director Benelux & Nordics, Gatewatcher

In this presentation, we will tackle:

• How we allow organisations, both essential and critical, to meet the NIS 2 compliance requirements by providing full network and cloud visibility
• An unparalleled detection including the support of AI and ML, quick and effective response and compliancy support 
• Concluding NDR serves as a key tool to enable a more secure and resilient infrastructure and ensure the desired business continuity and competitive edge

► Education Seminar Session 2

Delegates will be able to choose from the following education seminars:

• The Future of Security Operations, Rasham Rastegarpour, ReliaQuest
• ​​​​The Cyber Arms Race: Staying Ahead, Martijn Hoogesteger, Head of Cybersecurity, S-RM

Lunch Break

► How to build a highly automated third-party security risk management (TPSRM) programme

Elli Tsiala, Product Owner of Supply Chain Security, ABN AMRO Bank

• How to start your TPSRM with resources you already have
• How to increase your automation and minimise onboarding effort
• Lessons learned from our journey 

► Using Zero Trust to Improve Cyber-resilience in the age of AI

Trevor Dearing, Global Director of Critical Infrastructure Solutions, Illumio    

As we transform our business models to deliver more agile services the increasing threat of AI generated attacks on critical infrastructure can potentially disrupt services causing an impact on society. Complying with any changes potentially coming with implementations of NIS2 could be complex and add cost. Taking a Zero Trust approach can simplify compliance and reduces costs.

In this session we will address the following topics:

• How to identify and define risk
• How to reduce the attack surface
• How to contain a attacks
• How to respond and restore services during an attack

► Network evidence for defensible disclosure

Nico Roosenboom, Systems Engineer, Corelight

• Do you consider network evidence a crucial part of your SOC strategy?
• How do you really know which alerts are the most serious?
• What’s the best way to shift from responding to alerts to hunting for threats?
• Understand how to stay ahead of ever-changing attacks by using a data-first approach for detection and response

► Education Seminar Session 3

Delegates will be able to choose from the following education seminars:

• The Future of the Human Risk Reduction, Petri Kuivala, Strategic Advisor, Hoxhunt
• Defending with an Attacker's Mindset, Boudewijn van Lith, Senior Manager Technical Sales, Proofpoint 

Networking Break

► CISO Panel Discussion

Peter Avamale, Director, Cyber Strategy & Transformation Practice, PwC — Netherlands, (Moderator);
Marc Berns, CISO, Allianz Benelux;
Marnie Wilking, CISO, Booking.com;
Mario Beccia, Deputy CIO for Cybersecurity, NATO;
Daniela Lourenço, CISO, Tinka B.V

• Becoming a more strategic partner to the business
• Integrating cybersecurity into wider enterprise risk management frameworks
• Building resilience against third-party security threats
• Enabling the organisation to leverage AI while managing the associated risks

► Bypassing Multi-Factor Authentication (MFA) via Phishing Techniques

Manit Sahib, Ethical Hacker & Raj Sandhu, Ethical Hacker

• Introduction to MFA Bypass Phishing Techniques
• Live Demonstration of MFA Bypass Attack
• Countermeasures and Best Practices
• Conclusion of Demo and Presentation

Conference Close