Securing operational agility

8th e-Crime & Cybersecurity France

Securing operational agility

From cybersecurity to integrated business risk management


For many CISOs, the biggest cybersecurity challenge is that their organization depends on too many manual or informal processes for cybersecurity. For others, it's the complexity of managing too many disconnected cybersecurity tools.

These issues are essentially about silos, with IT, data and cybersecurity as silos separate from each other, and from other business processes. This is not a sustainable approach.

With digital transformation upending business models and creating additional cybersecurity and data privacy problems, the last thing the business needs is a siloed cybersecurity function.

It needs a department that will enable operational agility by managing cyber risk not as a series of isolated problems, but as a business risk.

But most CISOs have little experience or training in risk management, and few in the CRO's office or other operational risk functions have in-depth IT knowledge.

Bridging this gap is key to ensuring that organisations balance security against the business need to succeed in a digital world.

We'll be looking at the realities of achieving cybersecurity and resilience today, including: 

  • From techie to business partner: how can today's CISOs jump the gap from IT specialist to business risk manager? How do you implement holistic cybersecurity?
  • From bolt-on to built-in: industry and government need to stop thinking about cybersecurity and start thinking about cyber risk management: what is the difference and why does it matter so much?
  • How must CISOs adapt to a new environment of scrutiny? As cyber becomes part of corporate governance and social responsibility, what does this mean for the role?
  • Building a best practice cybersecurity team: how, how much and who?


Staying ahead of the curve is more important than ever. Mandatory disclosure will reveal the true scale of the cybersecurity problem to consumers, to stakeholders and investors, and to the press.

Consumers are already reacting to GDPR with subject access requests and increased complaints. Investors will also be able to see which firms are weak and which strong in terms of information security.

And now, we're seeing how disclosure affects entire business and transaction ecosystems: in the recent Ticketmaster breach, the initial alarm was raised (to Ticketmaster) by digital bank Monzo.

Companies can now compete to show that they disclosed first, winning the reputational battle.

So how should CISOs react? Is this the tipping point at which senior management finally acknowledge that current initiatives and budgets are insufficient? Is it time for a new approach - and if so, how will it affect the role of the CISO?

Join us in April to find out.

  • Cybersecurity: a core risk management discipline

    • Prove your cybersecurity wish-list is appropriate to the business
    • Making cyber part of existing operational risk processes
    • Getting buy-in from the CFO 
  • Making cybersecurity affordable

    • Who is the on-premises enterprise security stack really for?
    • Building the minimum viable cybersecurity infrastructure
    • The wider IT implications of cyber: does anything stay on-premises?
    • The role of automation in creating affordable cybersecurity
  • Ensuring enterprise scalability

    • How to build a scalable technology and team
    • Long-tail, Big Data – solving the core cyber scale problem
    • Do your solutions and stack scale to enterprise and threat?
  • Cybersecurity for the SME

    • Even large SMEs cannot resource large in-house IT/security. Solutions?
    • Cost versus risk: proving the value of cyber for the SME
    • Cloud solutions for ‘normal’ companies – what makes sense?
  • Taking third-party security seriously

    • Going beyond questionnaires – real solutions to the problem
    • Technology versus people versus process
    • Third-party security as a governance issue: helping your supply chain
  • Cyber-physical security: a holistic approach

    • Why physical security and cybersecurity must be managed together
    • The implications for the CISO and the security teams
    • Which solutions recognise the combined nature of next generation cyber-physical risks?
  • Intelligence-based cybersecurity

    • The importance of threat intel in budgeting for cyber risk
    • Matching threat intel with vulnerability assessment
    • Getting solution providers to work together
  • Prepare for transparency now

    • Stakeholders are demanding information today
    • Cybersecurity attitude is untenable from a business perspective
    • Cybersecurity is governance and governance is public

Who attends

Job Titles

Directeur de mission
RSSI
Ingénieur SSI
PCI Manager
Chargé de mission
RSSI
I.T. Security Architect
Legal Counsel
Ingénieur de Production
Directeur Général
CISO/RSSI
Chargé de mission SSI
Chargé de Mission
InformationSecurity Expert
Directeur informatique
RSSI
CISO
Responsable Sécurité
Responsable Support
RSSI
CISO
RSSI
RSSI
IT Security Architect
CISO - RSSI
Global Securite de Production
Cybersecurity Director
RSSI
IT Manager
Responsable écurité
Information Security Manager
RSSI
Expert Sécurité SI
RSSI
I.T. Security Officer
RSSI
Risk Manager
RSSI
Group Deputy CSO
RSSI
Cellule Anti Abus
Data Privacy & Security
Product manager
Information Security Officer
RSSI Groupe
Vice-Président
CISO
Manager, IT Advisory
RSSI
Industry Relations
RSSI / CISO
I.T. & Security Internal Auditor
Responsable de la gouvernance SSI
Responsable cellule e-fraude
CISO
Operations Manager
Risk Manager
Réseau SSI
RSSI
Group Information Security Officer
Chef de projet sécurité
Responsable du SOC
RSSI
Head Cyber and Tech
IT Security
RSSI
Head of software engineering
Group Information Security Officer
Head of Content Security
Investigateur
RSSI
Senior IT Security Consultant
Chef de Projets SOC
CISO
IT Manager
RSSI, Directeur IT
RSSI
RSSI
RSSI
Ingénieur
Head of Anti-Fraud
Head of Professional I & M
Expert Sécurité
Group IT Security Officer
Access Solution Service Manager
RSSI
Directeur Infogérance
Expert SSI
RSSI
RSSI
IT Project Manager
Responsable ADV & Logistique
Chef de projet Sécurité
Responsable Global Cyber Securite
SI Security Expert
Directeur de l'Innovation
RSSI-CIL
E-Payment Project Manager
RSSI
Directeur Sécurité
Directeur Sécurité du SI
Information Security & Risk
Expert Technique
Cellule e-Fraude
Business Security Officer
IT Auditor
Global CISO
RSSI-O
IT Security Officer
Group CISO
RSSI
Direction des Systèmes d'Information
IT Security Consultant
Chief Security Officer
RSSI
Architecte SI
Inspecteur, auditeur en SI
RSSI
RSSI/CISO & PMO
Directeur Risques et Securité
RSSI
M2M Partnership Manager
Project Manager
IT Security Consultant
Information Security Manager
CSO - Responsable Securité
RSSI
RSSI
CISO - RSSI
CISO
Cybercrime Director
Network & Security Engineer
Senior legal counsel
I.T. Senior Risk Advisor
Directeur
CISO
Directeur des Opérations
RSSI
Ingénieur sécurité réseau
Directeur programme SSI
RSSI
Chief Information Security Officer
Sécurité des Systèmes d'Information
IT Security Expert
Information Security Risk Manager
Security Manager
Police officer
Head of IT Infrastructure
Directeur cyber-défense
Lutte contre la Fraude
Group Security Officer
Product Manager
Sécurité Opérationnelle Internet
Trustee
RSSI
Network & Security Engineer
CSIRT
Equipe RSSI
RSSI
RSSI

Companies

SNCF
Camaïeu SA
CNES
Credit Mutuel
SNCF
Council of Europe
Air France-KLM
Crédit Agricole
CDC Arkhineo
SnapElite
Coface
UGAP
Préfecture de Police
BNP Paribas
FlightSafety
Neuflize OBC
Banque Privée 1818
GMX
Ministère de la Justice
BNP Paribas Wealth Management
AREVA
Prosodie
Euromaster
BNP Paribas
Viadeo
BNP Paribas
AXA
Armatis-LC
Euler Hermes
Groupe Beaumanoir
Sodexo
vivarte
Auchan
Groupama Asset Management
BNP Paribas
Éditions Gallimard
Université Paris Dauphine
Fondation de France
GDF SUEZ
Clarins Group
La Poste
GE Capital
LCL
Staples
BNP Paribas
EESTEL
Assistance Publique - Hôpitaux de Paris
Deloitte & Touche
Voyages-SNCF
La Poste
EQIOM
LCH Clearnet
Société Générale
Société Générale
Groupe Galeries Lafayette
La Française des Jeux
Vies De Paris
SNCF
Pari Mutuel Urbain
Air France-KLM
Arval
CNAMTS
Xerox
Swiss Re
STET
Veolia Eau
GMX
Mondial Assistance
Orange
GAPA Investigations Privées
AREVA
Total
CNAMTS
Groupe Pasteur Mutualité
NEVA GROUP
Assistance Publique - Hôpitaux de Paris
Université Paris Dauphine
La Banque Postale
Generali
Enterprise Holdings
Société Générale
Zurich Financial Services
Kering
ArcelorMittal
Sanofi-Aventis
Norauto
La Poste
Pari Mutuel Urbain
SnapElite
Ministère de l'Economie et des Finances
EDF Energy
SFR
Vente-privee.com
BNP Paribas
Société Générale
Monext
Promod
Parkeon
Institut National de l'audiovisuel
L'Oréal
Crédit Foncier
BNP Paribas
La Poste
Société Générale
Automatic Data Processing
Société Générale
Chanel
Boursorama
Delta Lloyd Group
Plastic Omnium
EuropCar
Aéroports de Paris
GDF SUEZ
Coface
Société Générale
Camaïeu SA
Banque de France
Mairie de Paris
Auchan
La Poste
Groupe Samse
SFR
La Poste
STET
Heineken
AXA
Banque de France
Partecis
Adisseo
Les Echos
Police Nationale
Publicis
Crédit Agricole
Chubb (ACE Group)
NEVA GROUP
Radio France
Orange
Humanis
Publicis
EDF Energy
Conseil Général de la Manche
DAHER
MMA
La Française des Jeux
Bombardier
Renault
Police Nationale
Société Générale
Faurecia
Société Générale
EDF Energy
Monext
HSBC
CLUSIF
Recylum
Kering
BNP Paribas
Boursorama
Sodexo
Monext

Industries

Transportation/Shipping
Retail
Central Government
Banking
Transportation/Shipping
Central Government
Transportation/Shipping
Banking
Security Product Vendor
Software
Insurance
Retail
National Law Enforcement
Banking
Aerospace/Defence
Banking
Banking
Software
Central Government
Banking
Construction
Banking
Retail
Banking
Media
Banking
Insurance
Telecommunications
Banking
Manufacturer
Travel/Leisure/Hospitality
Manufacturer
Retail
Banking
Banking
Media
Education
Charity
Oil/Gas
Pharmaceuticals
Transportation/Shipping
Industrial Engineering
Banking
Retail
Banking
Association
Healthcare Services
Accounting/Auditing
Travel/Leisure/Hospitality
Transportation/Shipping
Construction
Banking
Banking
Banking
Retail
Casinos/Gaming
Other Industry
Transportation/Shipping
Casinos/Gaming
Transportation/Shipping
Automobiles/Parts
Insurance
Electronic/Electrical Equipment
Insurance
Banking
Water/Sewage
Software
Insurance
Telecommunications
Consultancy
Construction
Oil/Gas
Insurance
Healthcare Services
Consultancy
Healthcare Services
Education
Banking
Insurance
Transportation/Shipping
Banking
Insurance
Retail
Industrial Engineering
Pharmaceuticals
Automobiles/Parts
Transportation/Shipping
Casinos/Gaming
Software
Central Government
Electricity
Retail
Retail
Banking
Banking
Banking
Retail
Electronic/Electrical Equipment
Media
Household/Personal Products
Banking
Banking
Transportation/Shipping
Banking
Software/Hardware
Banking
Retail
Banking
Insurance
Manufacturer
Automobiles/Parts
Transportation/Shipping
Oil/Gas
Insurance
Banking
Retail
Banking
Regional Government
Retail
Transportation/Shipping
Construction
Retail
Transportation/Shipping
Banking
Food/Beverage/Tobacco
Insurance
Banking
Banking
Food/Beverage/Tobacco
Media
Central Government
Media
Banking
Insurance
Consultancy
Media
Telecommunications
Banking
Media
Electricity
Regional Government
Aerospace/Defence
Banking
Casinos/Gaming
Manufacturer
Automobiles/Parts
Central Government
Banking
Automobiles/Parts
Banking
Electricity
Banking
Banking
Association
Other Industry
Retail
Banking
Banking
Travel/Leisure/Hospitality
Banking