Agenda

Registration and Networking Break

Chairman's Welcome

► Cost, Agility and Completeness; what to sacrifice when building a modern vulnerability management program

Georgios Kryparos, CISO, Einride

• How broad is the scope of vulnerability management in a modern enterprise?
• Where to start and how?
• Which areas will give you the most bang for the buck?
• How to unify all the information in 1 dashboard and make it concrete and actionable?

► API Security – a new paradigm in Application Security

Sachin Thombre, Senior Cybersecurity Solutions Specialist, Imperva

• Understand exactly what is involved in securing APIs
• Why current security solutions are insufficient
• 3 recommendations to ensure a sound API Security strategy

► Do you Know What Information Your APIs are Leaking?

Jason Kent, Hacker in Residence, Cequence Security

Attend this session to fully understand the API security risks your organization faces. Topics include:

• Security risks associated with the increased use of health monitoring APIs, API specifications, and GraphQL.
• Compliance and governance risks related to APIs that may inadvertently expose sensitive data.
• Why APIs used to facilitate account login/registration and inventory lookups are more susceptible to automated attacks.

► Combatting Financial Crime in The Digital Age

Mads Syska Hasling, Chief Information Security Officer (CISO) & Head of Financial Crime Prevention, Saxo Bank

• Breaking down silos to ensure best in class capabilities (tactical and strategic) to identify, prevent, detect and respond to the growing threat of Cyber Crime
• Benefits of joining our people, processes and technology within Cyber, Fraud, AML and MAR Surveillance teams under one department
• Lessons learnt from the ongoing cyber journey at Saxo Bank

► Education Seminar Session 1

Delegates will be able to choose from the following education seminars:

• A day in the life of a hacker, Cher Lingord,TI analyst and SE, Cybersixgill
• Harness the Crowd: It’s your best chance of finding every vulnerability that matters, Martin Szabo, Sales Director Nordics & Benelux & Matthew West, Solutions Architect Benelux and Nordics, Synack

Networking Break

► Panel: Financial Institutions

Magnus Jacobson (Moderator), Cyber Security Senior Adviser, Swedish Bankers' Association (SBA); Lena Stenberg Domeij, Director of Compliance, Bank of China (Europe) S.A; Frederik Malmstrom, Head of Group Information Security and Data Privacy, Handelsbanken; Mads Syska Hasling, CISO & Head of Financial Crime Prevention, Saxo Bank; Navaz Sumar, CISO, TF Bank 

• What are the most worrying threats you see against financial institutions? 
• How do new resilience regulations help in the battle against cybercriminals?  
• Does cybersecurity fit naturally into the three lines of defence model  
• How secure are the market infrastructures upon which the financial institutions rely (e.g. payment systems like SWIFT or Fedwire or CHAPs or even central banks)? 

► Fast and Furious Attacks: Using AI to Surgically Respond

Linnea Skärdin, Cyber Technology Specialist, Darktrace 

• Today’s cyber security teams are overwhelmed; threats are simply spreading too quickly
• The rear-view approach is no longer enough
• Autonomous Response uses self-learning AI to effectively contain and combat a cyberattack
• Darktrace protects entire digital ecosystems and equips security teams for the future
• Learn about key threat finds: Sodinokibi and Log4Shell

► Secure the digital front doors of your organization and the sensitive data inside

Adam Hellstrom, Territory Account Manager, Lookout

•  Modernize secure web access with a zero trust approach
• Transform secure connectivity to private apps in your data centre and public cloud
• Gain visibility & control, and protect your data as you enable SaaS apps
• Secure the endpoints you use the most

► How to Make Your SOC Run More Effectively in 2022

Sebastian Engström, Regional Sales Director, Nordics, Hunters

The shift to the cloud and the extension of the attack surface requires new approaches for threat detection and response.

During this session, you’ll learn:

• The definition of a SOC Platform and how it can help security teams 
• Strategies to empower your security team mitigate real threats faster and more reliably than SIEMs to incidents that matter across the attack surface#
• How Fortune 1000 companies are using Hunters’ SOC Platform to ingest, cross-correlate, prioritize and investigate incidents

► Education Seminar Session 2

Delegates will be able to choose from the following education seminars:

• Implementing an Adaptive Email Security Architecture with Cofense, Alain Salesse, Senior Sales Engineer Cofense
• Finding the Leaky Data Links In Your Supply Chains - Data Security Beyond Perimeters, Vijay Kishnani, Lead Cyber Security Engineer, CybelAngel

Lunch and Networking Break

► Panel: Priorities for 2022/23 

Dimitrios Stergiou (Moderator), CISO, Trustly; Sofia Staaf Frederiksen, Chief Information Security Officer, Apoteket AB; Bjorn Johren, CISO, Max Matthiessen AB; Emma Johansson, Senior Security Advisor, Swedenergy; Antje Schütt, Group IT Security Officer, Vattenfall Group

• Data privacy or security? How will companies view ‘security’ in the post-pandemic world?   
• Hybrid working: problem solved, or problem postponed?  
• The issue of ‘basic’ cyber hygiene (or ‘why can’t we stop ransomware?’)  
• Is 2022 the year of Cloud? And have the security implications of Cloud been exaggerated?   

► The Power of Deception Tech: Uncovering Russian TTPs targeting Ukrainian Infrastructure

Daniel Brett, CSO and co-founder, CounterCraft

• How our deception environments uncovered a February attack involving threat actors attempting to attack Ukrainian government infrastructure 
• an in-depth analysis of this attack, how it was discovered, and the intel gathered
• The importance of being prepared for cyberwarfare on the back of global events
• Takeaways for the financial sector and critical infrastructure

► CIO Forum Cyber Security 2022 

Durval Batista, Regional Manager, LastPass & Jonas Hedquist on behalf of Last Pass

• Security risks associated with poor password hygiene at the workplace
• Passwords are one of the weakest links in the cybersecurity chain - what actions should business take to improve this?
• Benefits of implementing a organisation wide Password Manager

► Education Seminar Session 3

Delegates will be able to choose from the following education seminars:

• How isolation stops the spread of ransomware, Trevor Dearing, Director of Critical Infrastructure Solutions, Illumio
• Detecting Threat Actors that others miss - Real world examples, Teppo Halonen, Regional Director Northern Europe, Vectra AI

Networking Break 

► Regulation panel

Fredrik Hertz (Moderator), Financial Services Cybersecurity Lead, Consulting, EY Sweden; Elin Ryrfeldt, CISO, Axfood; Jan Willekens, Head of Cyber Defense Center, Ericsson; Magnus Jacobson, Cyber Security Senior Adviser, Swedish Bankers' Association (SBA)

• What is the global regulatory direction? Do we see a pattern across sectors?
• We all assume resilience is key for service providers. Do we need regulations?
• How far should companies plan for disruption? When does it become someone else’s problem?
• What are the evolving operational models for resilience? How can we integrate different competencies?

► Does cybersecurity fit naturally into the three lines of defence model?  

Navaz Sumar, CISO, TF Bank

• How to tackle Cyber Risks in 3LoD 
• To whom should you report cybersecurity Risk
• How do you communicate cybersecurity and Risks 
• The Convergence of Operational Risk and Cyber Security.

► Third Party Risk: Governance, Monitoring, Auditing 

Dimitrios Stergiou, Group Chief Information Security Officer, Trustly Group AB

• Third party everywhere: third party components that make me lose sleep
• Assuming control: How we approach the cloud services monster 
• Conclusions

Conference Close