Agenda

►Quantum leap – Preparing for a quantum-safe future

Steve Davies, Head of Cyber Security, DLA Piper

• What is quantum computing and what does it mean for the enterprise?
• What are the risks and how serious is the threat from quantum computing? 
• How can you prepare for the post-quantum future, today? 
• What does post-quantum readiness look like across technology service providers?

►Fireside Chat: Mitigating Concentration Risks in an Interconnected Business Landscape

Simon Brady, Event Chairman, AKJ Associates (moderator)
Ethan Duffell, Head of Information Security, Clifford Chance LLP

• Identifying and assessing concentration risk across vendors and technology ecosystems
• Balancing operational efficiency with diversification and risk reduction
• Communicating the importance of concentration risk to boards and stakeholders
• Embedding resilience planning to address concentration risks in today’s threat environment
• Lessons from recent incidents such as Microsoft 365/Azure outages (2024), the 2024 CrowdStrike disruption, and the June 2025 Google Cloud outage

►Evolving Threats to Law Firms: Adversary Tactics, Detection, and Defense

Ekow Oduro, IT Security Operations Lead, Forsters LLP

• How emerging threat actors are evolving their methods against the legal sector
• How to uncover vulnerabilities across the wider legal supply chain
• How to spot and disrupt hidden data exfiltration and C2 activity
• How to strengthen resilience through threat-led testing and simulation

►Internal Audit – Bridging the Gap Between Aspirations and Reality

Mark Penlington, Head of Risk, Resilience and Internal Audit, Irwin Mitchell LLP

• Why Internal Audit Is Important: Learn why Internal Audit is essential to providing the assurance and confidence senior executives need to understand how teams actually operate in practice
• What Internal Audit Is: Understand the role of Internal Audit as an objective, constructive process that strengthens governance and accountability
• How It Enhances Risk Management and Governance: Discover how Internal Audit bridges the gap between stated controls and actual practice by validating control effectiveness, uncovering hidden risks, and driving better decision-making
• How to Embed Internal Audit in a Practical Way: Learn practical approaches to implement and integrate Internal Audit to deliver meaningful insight, drive activity and provide lasting value

►Collaborating Securely: Addressing Cyber Risks in Chambers Partnerships

Eleanor Ludlam, Partner - Cyber, Privacy and Technology Litigation, Pinsent Masons (Moderator)
Adam Speker KC, Barrister, 5RB

• Supply chain risks when engaging barristers
• Technical challenges of securing chambers
• Navigating breach of confidence during a cyber incident
• Injunctive relief as a legal remedy

►Panel Discussion: Beyond Compliance — Building Cyber Resilience That Actually Works

Simon Brady, Event Chairman, AKJ Associates (moderator) 
Jonathan Freedman, Head of Technology & Security, Howard Kennedy 
Jonathan Turner, Head of Cyber Security, Farrer & Co

• How do we turn risk appetite statements into real decision levers instead of paperwork?
• With NIS2 and similar rules, what does “appropriate and proportionate” really mean on the ground — and how can risk management steer the response?
• What cyber metrics really matter — and how do we prove our risk posture to the Board, to clients, and across the entire supply chain, right down to nth-party dependencies?
• How does a resilience-first mindset transform culture — moving from blame and unrealistic prevention to readiness, adaptability, and fast recovery?