A new era for cybersecurity professionals?

13th e-Crime & Cybersecurity Mid-Year Summit
October 14th 2021 - Online

Why ransomware changes everything
When the US President signs Executive Orders about cybersecurity, it’s important. Is this the tipping point CISOs have been waiting for?


On Thursday June 3rd, the White House issued an open letter to US executives warning them that they should consider cybersecurity one of their top priorities. The recommendations of the letter may seem rudimentary, but the suggestions to create strong incident response plans, pen testing campaigns and to introduce network segmentation, indicate a change in the sophistication that governments exhibit in the cybersecurity arena.

This letter followed May’s Signing of a presidential Executive Order which sets out a new vision to improve the US’ cybersecurity and protect federal government networks.

And it comes at a time when FBI Director Christopher Wray is comparing the current spate of cyberattacks with the challenge posed by the Sept. 11, 2001, terrorist attacks. As he said: “There are a lot of parallels, there’s a lot of importance… [and]…There’s a shared responsibility, not just across government agencies but across the private sector and even the average American.”

This sudden escalation of language and action is perplexing, given the obvious significance of cybersecurity, but welcome nonetheless.

The DoJ has set up legal teams aimed at prosecuting offenders. Are we witnessing the beginnings of an attempt to take cybercrime seriously? Will it lead to more resources for law enforcement? Will governments start to provide better protection for citizens and organisations? And will they impose standards on the suppliers of critical digital infrastructure additionally exposed by Sunburst and the Fastly error?

But the key takeaway for CISOs is: cybersecurity has finally ‘arrived.’ Cyber-attacks make the front pages of both the tabloids and the broadsheets; a year of digitisation has sent business, government and leisure online; a newly digitised world has made the public ever more cognisant of data privacy. And the US President is on the case.

So, has ransomware, the most lucrative tool for cyber criminals, and a key tool for nation states in cyber warfare, finally put CISOs front and centre?

The 13th e-Crime & Cybersecurity Mid-Year Summit will take place online and will look at how cybersecurity teams are tackling this new world. Join us for real-life case studies, strategic guidance, and in-depth technical sessions from the security and privacy teams behind some of the world's most admired brands.

View details of the previous event here

  • Securing critical national infrastructure

    • Critical national infrastructure is being brought to its knees by successful attacks, harming organisations, supply chains, and the public
    • Resourcing and senior management commitment are important, but what can CISOs do to ensure the resilience of critical national infrastructure?

  • Security on a budget: protecting health and education

    • Healthcare and Education are just two sectors that have been constantly barraged with attacks across the last 12 months
    • These sectors contain vast amounts of data and can be brought to a standstill through a successful attack
    • What can security teams in key sectors do to improve resilience?

  • Can we do better at the basics?

    • As businesses continue to grow and scale to fit post-pandemic environments, security teams must remain vigilant regarding cyber hygiene
    • Email is still the key vector. Patching matters. MFA is essential. And now, as ever, backups are non-negotiable.
    • How can security teams remain vigilant when ensuring cyber hygiene?

  • Maintaining control in the Cloud

    • Most organisations are on the Cloud migration journey - initially perhaps spurred on by the movement to remote work
    • But security teams need to make sure that the core factors of cloud security (access management, visibility, controls) are in place
    • Can CISOs successfully keep ahead in the Cloud?

  • Cyberwarfare: what should CISOs do?

    • The front pages may be laden with stories of cyber warfare and espionage, but this does not help the average CISO take effective control of their organisation's environment
    • Against nation state foes, with seemingly limitless resources, what can the average CISO do to create resilience in their business?

  • Identity is essential

    • Widespread adoption of Cloud infrastructure has transformed identity into the new perimeter, and remote working has accelerated this process
    • With this comes many challenges: tracking identities, high complexity, lack of visibility, and ultimately, lack of security
    • What is the future of identity and access management? Is ZTNA and SASE the answer?

  • Defending against the latest ransomware variants

    • Ransomware is effective precisely because it can exploit whatever weaknesses exist in your security architecture and processes
    • The threat and the actors are constantly evolving, and that evolution is forcing the hand of the government and causing havoc in the insurance market
    • What can CISOs do to better defend against ransomware?

  • Incident response

    • How has the distribution of the enterprise affected teams' ability to respond to incidents?
    • Do businesses have a strategic plan to cope with their core business functions being downed by a successful attack?
    • What gaps are there in your incident response, and do these pose an existential threat to your organisation?

  • IT/OT convergence

    • As businesses reap the benefits of OT innovation, so too cybercriminals use it as a new front door into IT systems
    • The potential risks this poses can be cataclysmic - and few cybersecurity teams have full control
    • In the era of IT/OT convergence, how can CISOs secure this new environment?

  • Maintaining awareness

    • The stakes seem higher for businesses and security teams, but the pointy of entry for many criminals remains the same: email
    • So why is this vector still so vulnerable? Will technology ever be able to plug the gap?
    • How can security leaders maintain awareness in enterprises that are becoming less office-centric?

  • Cybersecurity, resilience and regulation

    • The FCA's PS21/3 and the EU's DORA are key steps to ensuring there is regulatory control over operational resilience
    • US President Joe Biden has also committed to regulating cybersecurity in major pipelines, and other critical sectors are sure to follow
    • But with attacks on the rise, can we expect further regulation from the UK and elsewhere?

  • Why isolation and segmentation are key

    • There has been a shift in recent attacks away from the theft of data - now, threat actors are concerned with interrupting all operation activity
    • It is now critical that business functions are separated, and that internet access to operation networks is limited
    • Can security teams keep up with sophisticated foes?

Who attends

Job titles

Global Manager, Service Continuity
CISO
Head of Payments
Global IS Manager
Head of Digital Risk
Group I.T. Audit Manager
Global Security Supervisor
Head of Penetration Testing
Chief of Cybercrime Section
CISO, Head of Information Security
Global Head I.T. Governance
Head of ISAG
Global Fraud Risk Controller
Head of Global I.T. Security
Head of Data Protection
CISO
Head of I.T. Security Risk Management
Global IS Risk Manager
Global Head of IT Security
Head of Information Security Risk
CISO, Head of Digital Security & Risk
Group Finance & Compliance Director
Chief Security Officer
Chief Information Officer
Head of Cybercrime Unit
Head of Cyber Threat Intelligence
Head of Internal Audit
Head of I.T. Security
Chief Information Security Officer
Group I.S. Manager
Chief Executive
Head of Emergency Response
Head of I.T. Security
Director Of Information Security
Chief Information Security Officer
CISO
Head of Operational Risk Management
Group Data Security Manager
Head of Information Security
CIO
Head of Specialist Crime
Director of Security
Head of Informantion Security Risk
Head of Cyber & Investigations
Chief Information Security Officer
Head of Group I.T.
Head of Information Security
Global Head of Fraud Investigations
Chief Information Security Officer
Global Security Manager
Group CISO
Chief Information Security Officer
Director Global Investigations
Head of Policy & Performance
Head of Information Security
Global Head of Cyber Intelligence
Head of Information Security
Director Cybercrimes
Head of Payments & Fraud
Director of Risk & Compliance
Head of Information Security
Head of I.T. Security Operations
Group Information Security Manager
Head of Operational Security
Head of Payment & Financial Crime
Chief Information Security Officer
Head of Internal Audit
Head of Information Security
Head of IT Risk & Control
Director Enterprise Technology
Head of Business Controls
Director
Director of Security
Head of Cybercrime Investigations
Head of I.T. Security
Director, Global Security
Group I.T. Security Officer
Head of I.T.
Head of Risk & Resilience
Director Group Risk Management
Head of Investigations
Head of Customer Security
Chief Technology Risk Officer
Group Fraud Manager
CISO
Chief, Cyber Crimes
Chief Risk Officer
Head of Business Risk
Group IT Security Analyst
CIO Risk Manager
Group Infrastructure Manager
Head of Operations & Infrastructure
Head of Technical Support
Head Cybersecurity Operations
Head of Fraud Oversight
Director, Technical Investigations
Director
Global I.T. Security & Compliance
Director, Information Security

Companies

Trafigura
GE Capital
Babcock International Group
Scotia Gas Networks
Telefónica O2
Bank of America Merrill Lynch
ING
Catella Bank
Channel 4
H&M
BP
John Lewis Partnership
Royal Canadian Mounted Police
Experian
Jordan Cyber Crime Project
Zamir Telecom
John Wiley & Sons
Halma
Zurich Financial Services
Security Service of Ukraine
HSBC
British Medical Association
Romanian Directorate
TUI Travel
Markit
Western Union
Pennant International Group
TSL Education
Liverpool Victoria
The Finance Practice
Camelot Group
Capital One
Noble Group
HSBC
Dixons Carphone
Halma
Ghana International Bank
British American Tobacco
First Rate Exchange Services
Unum Provident
Santander
Rexam
Matalan
John Lewis Partnership
Home Retail Group
Allen & Overy LLP
ITV
Virgin Money
Spamhaus
Rank Group
EveryMatrix
Shop Direct
Sky
QVC
Lloyds Banking Group
General Motors Corporation
Tullett Prebon
Atcore Technology
Aviva
CIFAS
Premier Oil
HSBC
Rothschild
HSBC
Liverpool Victoria
Permanent TSB
Auto Trader
Public Health England
Selfridges
NBC Universal
Office of Civil Nuclear Security
UBM
Citigroup
SABMiller
Legal & General
Post Office
JD Sports
CERT-UK
Eurostar
Mayer Brown LLP
Swiss Re
UBS
Open University
The Bank of Tokyo - Mitsubishi UFJ
Dixons Carphone
Post Office
JustGiving
Bank of America Merrill Lynch
FIA Pakistan
Norgren
GE Capital
Unipart Group
Heathrow
Inmarsat
Modern Times Group
Ocado
Capital One

Industries

Banking
Industrial Engineering
Industrial Engineering
Oil/Gas
Telecommunications
Banking
Banking
Banking
Media
Retail
Oil/Gas
Retail
National Law Enforcement
Banking
National Law Enforcement
Telecommunications
Retail
Electronic/Electrical Equipment
Insurance
Central Government
Banking
Healthcare
National Law Enforcement
Travel/Leisure/Hospitality
Media
Banking
Aerospace/Defence
Media
Insurance
Banking
Casinos/Gaming
Banking
Mining/Metals
Banking
Retail
Electronic/Electrical Equipment
Banking
Food/Beverage/Tobacco
Banking
Insurance
Banking
Household/Personal Products
Retail
Retail
Retail
Legal
Media
Banking
Charity
Casinos/Gaming
Software
Retail
Media
Retail
Banking
Automobiles/Parts
Banking
Banking
Central Government
Insurance
Central Government
Oil/Gas
Banking
Banking
Banking
Insurance
Banking
Media
Central Government
Retail
Media
Central Government
Healthcare Services
Banking
Food/Beverage/Tobacco
Insurance
Transportation/Shipping
Retail
National CERT
Transportation/Shipping
Legal
Insurance
Banking
Education
Banking
Retail
Transportation/Shipping
Charity
Banking
National Law Enforcement
Industrial Engineering
Industrial Engineering
Regional Law Enforcement
Transportation/Shipping
Transportation/Shipping
Telecommunications
Media
Transportation/Shipping
Banking