Agenda

Breakfast & Networking Break

Chair's Welcome 

►“If you want to go fast, go alone. If you want to go far, go together” 

Dale Hodgkinson, Head of Strategy and Architecture, Slaughter and May

• Are law firms really CNI?
• Future asks of NIST, DORA, Cyber Essentials Plus, ISO, Operations, Growth, Transformation….
• Building a world-class EA capability

►Is the modern SOC delivering real value?

Jonathan Freedman, Head of Technology & Security, Howard Kennedy - on behalf of Nomios 
Jacob Dobson, Security Operations Centre (SOC) Manager, Nomios

• In this thought-provoking Fireside Chat, Nomios and Howard Kennedy explore the challenges of evolving cyber threats and compliance demands, emphasizing how a true partnership is essential for success. 
• After all, how do you detect the abnormal without first understanding what is normal?

►Panel discussion: Time to think of law firms as CNI? 

Simon Brady, Managing Editor & Event Chairman, AKJ Associates (Moderator)
Julie M. Johnson, Attaché, UK, CISA

• How would classifying law firms as CNI reshape their approach to cybersecurity and resilience?
• What specific threats do law firms face that could justify their inclusion as CNI?
• Do current cybersecurity regulations adequately protect the sensitive data held by law firms?
• How can law firms balance the confidentiality of client data with the transparency required for CNI compliance?

► Education Seminar 1

Delegates will be able to choose from the following education seminars:

• Ransomware 2025: Advanced Threat Tactics Targeting Legal Firms, John Anthony Smith, Information Security Expert, Conversant Group
• Fortem IT - Presentation to be announced 

Networking Break

►AI & Law Firms: 5 minutes to Armageddon? 

Martyn Styles, CISO, Bird & Bird 
Leon Butler, Head of Data Security, Quorum Cyber 

• AI Is a Double-edged Sword
• AI Powered Attacks
• AI Benefits for Security
• AI for Defenders
   

►Taking an Adaptive Approach to Solving the #1 Data Loss Issue of Email Misdelivery

Henry Glynn, Cyber Security Solutions Specialist, Bytes Software Services
Giuseppe Damiano, Senior Pre-Sales Solution Consultant, Bytes Software Services

• Data breach cost and prevalence is at an all time high with malicious insiders being the costliest breach
• Untrained employees are the biggest cyber risk to their business
• People make mistakes – behavioural intelligence and automated detection can prevent these from being costly

►Defence of the Realm: How we ensure that we still have a business tomorrow

Philip Flint, Lead Enterprise Architect, Ampa Group

• Leveraging an Architecture-Based Approach to Enhance Security: Discover how a structured framework can bolster your defences.
• Funding Our Transformation: A Blueprint for Success: Learn how we secured funding for our initiatives and how you can do the same.
• Future Trends and Preparedness: Gain insights into upcoming IT security trends and how they may affect the ongoing business of law.

► Education Seminar 2

Delegates will be able to choose from the following education seminars:

• Exponential-e - Presentation to be announced 
• SASE, Past Present and Future – a new look at what’s important for securing today’s law firms, Greg Duffy, M.Eng., Product Marketing Director, EMEA, Cato Networks, on behalf of Wavenet 

Lunch & Networking Break

►Quantum Leap - Preparing for a quantum-safe future 

Steve Davies, Head of Cyber Security, DLA Piper

• What is quantum computing and what does it mean for the enterprise?
• What are the risks and how serious is the threat from quantum computing? 
• How can you prepare for the post-quantum future, today?
• What does post-quantum readiness look like across technology service providers?

Crowdstrike -  Presentation to be announced

►Mind the Gap: Uncovering Decision Bias in Cybersecurity

Bec McKeown, CPsychol, Mind Science

• Understanding the Role of Cognitive Biases in Security Decisions
• Identifying Key Biases Impacting Security Outcomes
• Mitigation Strategies for Reducing Bias in Security Practices

►Mitigating Concentration Risks in an interconnected Business Landscape

Ethan Duffell, Head of Information Security, Clifford Chance LLP
Simon Brady, Managing Editor & Event Chairman, AKJ Associates (Moderator)

• How do you identify and assess concentration risk within your organization’s vendor and technology ecosystem?
• What strategies do you recommend for balancing operational efficiency with the need to diversify and reduce concentration risk?
• How can CISOs communicate the critical importance of concentration risk to boards and other stakeholders effectively?
• What role does resilience planning play in mitigating concentration risk, especially in today’s cyber threat landscape?
• Key takeaways from recent incidents, including the CrowdStrike outage and the heavy reliance on platforms like Microsoft Office 365.
   

Networking Break

►Partnerships or Pitfalls? Mastering Third-Party Risk in Financial Services Security 

Adam Avards, Principal for Cyber and Third Party Risk Policy, UK Finance (Moderator)
Orlando Fernandez, Senior Technical Specialist at the Recovery, Resolution & Resilience team, Prudential Policy Directorate, Bank of England (BoE)
Peter Smith, Chief Information Security Officer, Allica Bank
Michael Jefferson, Head of Financial Services Public Policy UK, Middle East, Africa and Switzerland, Amazon Web Services (AWS) 
Zsuzsanna Berenyi, Senior Cyber Security Third Party Risk Manager, LSEG 

• Insights from the PRA, end-users, and suppliers on managing third-party risks
• Navigating the evolving regulatory landscape and its influence on third-party partnerships
• Strategies to identify and mitigate third-party risks
• Transforming strong risk management practices into a competitive edge

Drinks Reception & Networking