Agenda

Chair's welcome

►An Insight into Securing Healthcare CNI

Prakhar Chandra, Cyber Security Business Partner, CISO Function, NHS England

• How do we identify our CNI/ Mission Critical systems
• The 3 Line of Defense Model
• Major threats and challenges facing our CNI

►Post-Market Cyber Transparency for Medical Devices

Dr. Hans-Martin von Stockhausen, Principal Key Expert for Cybersecurity, Siemens Healthineers

• Demystifying "shared responsibility" for the cybersecurity of medical devices
• Why can't we have patches for our device on patch Thursday?
• About the importance of communication in vulnerability management

►The Hidden Perimeter: Managing Third-Party Risk in Connected Care

Ty Greenhalgh, Industry Principal – Healthcare, Claroty

• Third-party access is one of the most exploited threat vectors in healthcare — find out why it’s escalating, especially through IoMT, IoT, and OT ecosystems that blur the boundaries of traditional network security
• Examine real-world attack data, including volume, breach frequency, and operational consequences linked to unauthorised external access across connected medical and operational devices
• Learn how NIS2 and the UK’s Cyber Assessment Framework are reshaping expectations around third-party risk and secure connectivity in hospitals and critical care environments
• Contrast global approaches, including lessons from the U.S. healthcare sector’s ongoing struggle to manage secure third-party access amid rising digital complexity

►People, Pressure, and Possibility in Cyber Response

Martin Jarvis, Incident Management Lead, Cyber Security Operations Centre, NHS England

• What Trips You Up - lessons learned from navigating real-world cybersecurity incidents and how to get ahead of them
• Managing an incident in unfamiliar environments
• Why your team is your greatest asset, and how to build it, keep them motivated and mission-ready
• Embracing opportunities for growth, improvement, and transformation that can emerge from a cybersecurity breach

Comfort break

►Is there really a cyber security skills gap?   

Nasser Arif, Cyber Security Manager, LNWUH NHS Trust & THH NHS Foundation Trust

• Addressing the so called cyber security skills gap within the healthcare sector
• Highlighting the benefits of focusing on transferrable skills
• Practical tips and tricks to improve the security culture within your organisation

►Securing Healthcare: How Attack Surface Management Protects Critical Systems & Digital Frontline

Nick Palmer, Technical Lead, EMEA, Censys

• Healthcare organisations face an expanding digital attack surface, making full visibility into internet-exposed assets critical
• Attack Surface Management (ASM) is essential to identifying security blind spots and mitigating cyber threats in real time
• Leading healthcare providers are integrating ASM with existing security stacks to proactively defend against attacks
• Real-world use cases show how ASM helps reduce risks, enhance security operations, and protect patient data

►Information Governance & Cyber Security: Guardians of the Data

Seema Srihari, Information Governance Manager & DPO, North East Ambulance Service NHS Foundation Trust (NEAS)

• How do we ensure compliance, policies, and training protect NHS data?
• Safeguarding patient data while embracing digital transformation
• Cyber security and IG : two sides of the same coin
• AI governance

►Email Security in Healthcare: From Threat to Trust

Eltjo Hofstee, Global Director Sales, EasyDMARC

• Covering the latest email security and deliverability challenges in the healthcare sector
• The latest research from May 2025 on DMARC adoption and phishing, and how public and private sector healthcare organisations need to comply with the latest directives and regulations 
• Showing the best practice example for successfully securing your healthcare domain and email infrastructure

►Ransomware in Healthcare: The Growing Threat to Patient Safety

Manit Sahib, Ethical Hacker, The Global Fund

• Why healthcare is the #1 ransomware target – why attacks are increasing and how ransomware gangs break in more easily than expected
• Real-world hacking insights – firsthand stories from ethical hacking operations and the biggest security gaps in healthcare, including legacy tech, access control, and the lack of real-world testing
• Why traditional security fails – the limitations of compliance checklists and why conventional security tools don’t stop ransomware
• Building real ransomware resilience – What healthcare CISOs and IT leaders must do NOW to avoid becoming the next headline

Chair's closing remarks