2nd Annual e-Crime & Cybersecurity Congress Switzerland

21st September 2023 • Courtyard by Marriott Zurich North, Zurich

Switzerland under attack

It’s been a year of intense cyber bombardment. Is Switzerland doing enough to fight back?

 

In June, a pro-Russian hacking group took down several major websites, including key government sites such as parliament and the federal administration sites, as well as the one for Geneva Airport.

 

The country’s National Cyber Security Centre (NCSC) described the intensity of the DDoS attack as "exceptionally high" and warned some government websites could remain inaccessible. The attack coincided with preparations by the Swiss parliament for a video address by Ukrainian President Volodymyr Zelenskiy and with Switzerland's adoption of a EU sanctions package against Russia.

 

These were just the latest in an accelerating burst of attacks in the country. Earlier, hackers published data from the Federal Office of Police (Fedpol) and the Federal Office for Customs and Border Security (FOCBS) on the Darknet, after exploiting a vulnerability on the servers of the company that hosted it. Cantonal police and the army were also indirect victims of the cyberattack. The attack highlighted the vulnerability of IT service providers and those who rely on them.

 

In fact, in May figures revealed by the National Centre for Cyber Security have shown that cybercrime incidents in Switzerland are rising sharply. With more than 13,000 cyberattacks already than reported since the beginning of 2023, more attacks have been reported in just a few months than in all of 2020. And while most attacks are on private individuals, it is the targeting of larger businesses and critical infrastructure which should worry both government and private sector bosses.

 

As well as the attacks mentioned, victims this year have included Swiss public transport provider Swiss Federal Railways (SBB) and sewing machine manufacturer Bernina, and the NZZ and CH Media group. Hackers have also recently published data from the Education Department in Basel and the municipality of Saxon in Canton Valais. Other victims include defence contractor RUAG and the International Committee of the Red Cross (ICRC).

 

These attacks have exposed weaknesses in Switzerland’s cybersecurity readiness. One security solution provider recently reported that it had found 106,000 security holes among 3.5 million servers in Switzerland. It rated 50,000 weak points as extremely serious.

 

From the start of next year, Switzerland’s National Cyber Security Centre (NCSC) will become a new federal office, reporting to the defence minister, and its budget will rise from CHF13.7 million to CHF14.5 million ($16.2 million). However, few believe this is enough to keep up with the rate of growth in attacks.

 

In the private sector, just over half of Swiss firms told a survey that they plan to boost their cyber security budgets for 2023, as they expect a rise in ransomware and other attacks next year. That said, globally 65% of firms say that their budgets will rise and the willingness of Swiss firms to release sensitive information about hacks was lower than the global average.

 

So, what should Switzerland’s public and private sector be doing next to counter these growing threats? How can firms build resilience quickly? Can third-party vulnerabilities be defended? And what about new AI-based challenges?

 

The e-Crime & Cybersecurity Congress Switzerland will look at how security should evolve from both a technology and a human perspective. Join our real-life case studies and in-depth technical sessions from the security and privacy teams at some of the world’s most admired brands.

  • Getting real about cyber risk management

    • Until cybersecurity is truly seen as risk management, hackers will continue to evade outmoded control frameworks.
    • Quantification is key, but so is how it is used.
    • Part of this is down to CISOs, part of it to Boards and part of it to solution providers.
    • The banks have done it. When will the rest of business catch up?
  • Insuring the uninsurable?

    • Cyber-insurers need to understand the risks they are insuring if they are to set premiums at a level that makes sense.
    • They also need to know that they are insuring risks that clients have taken steps to mitigate properly.
    • why insure those who leave their digital doors open?
    • What can and can’t be insured?
  • Cybersecurity as a service: the pros and cons

    • MSSP, MDR, CSaaS – all of these offer varying degrees of outsourced cybersecurity services
    • So when does it make sense to outsource?
    • And what outsourcing arrangements make sense for which firms?
  • Cybersecurity for SaaS/IaaS/PaaS

    • Most companies’ core reliance is now upon a small number of monolithic application suites and Cloud services
    • In addition, they are likely to be developing their own software in the Cloud
    • These and other changes fundamentally alter the IT landscape in which cybersecurity operates
    • So do CISOs need a new model for cybersecurity and are legacy solutions still valid?
  • Making the most of next gen tech: automation, AI and the rest

    • The next 20 years will see an ecosystem of small single-issue vendors slim down to a far less complex set of larger platforms
    • These platforms will be able to invest in continuous development and offer to cover all or large chunks of organisations’ security needs
    • But will the winners in this evolution be those at today’s cutting edge?
  • Upskilling security teams

    • Organisations have limited budgets
    • The skills shortage in security staff growing
    • This dynamic affects the type of on prem security operation firms can employ
    • So how can CISOs continuously upskill their teams?
  • The rise and rise of effective cybersecurity regulation

    • Data privacy is only a small part of the picture.
    • Regulators are looking at operational resilience in key sectors like finance – securing the wholesale payments market is a priority and others will follow.
    • They are looking at disclosure and fining the miscreants. How to comply with new regimes?
  • Keeping citizens safe

    • The COVID era demands unprecedented levels of citizen engagement. Compromises are inevitable to ensure the safety of all.
    • But the systems required to provide safety also create a huge data security and privacy challenge for both governments and employers alike.
    • Can solution providers help?
  • From smart machines to smart cities - securing the IoT

    • How long will it be before every significant device and location is part of an ecosystem of sensors connected to public and private networks?
    • Driving apps tell insurers what premiums to charge. Packaging machines report their own breakdowns. 
    • But are these devices visible on your network and how are you securing them?
  • Reining in BigTech

    • Resilience and security increasingly come down to key dependencies outside the organization.
    • With on prem tech the past and Cloud and external IT the future, how do public and private sector organisations ensure security when they rely on vendors who are vulnerable but above leverage with even their biggest clients?
    • Time for governments to step in?
  • Developing the next generation of security leaders

    • If cybersecurity is to change to meet the evolution of our digital world, then so must those who implement it.
    • CISOs cannot cling to an IT paradigm and companies must move away from hiring on false pretences (on budget and commitment) and firing at the first breach.
    • What does a next-gen CISO look like and are you one of them?
  • Securing digital currencies and DLT

    • The move towards non-cash payment methods during the crisis has been extreme, and looks irreversible.
    • Many more governments are now looking at developing their own digital currencies.
    • How do we go about securing a world in which most - perhaps all - payments are digital?
    • And what about the blockchain?

Who attends

Job titles

Chief Information and Digital Officer
Information Security Specialist
IT Security - Wissenschaftlicher Mitarbeiter
Senior Data Privacy Officer
Vice President & Group Data Protection Officer
Information Security Manager
CIO
CISO
Data Privacy and Digital Lawyer, Partner
Director, Senior Cyber Security Program Manager
Enterprise Security Architect
Information Security Officer
Senior Associate Service Manager
Senior IT System Engineer
IT Security Architect
Data Analyst
Deputy Head of IT Infrastructure and Chief Information Security Officer
Head Remote Monitoring & Solution Architecture
Information/Cyber Security Supplier Network
ORM, Global Training, Awareness & Communications Director
Security Awareness Analyst
Senior Full Stack Developer
CISO
CISO
Cybercrime Coordination Unit
Divisional Security Officer
IT Project Manager
Chief Information Security Officer (CISO)
Risk Control Specialist
Teamleiter IT Infrastruktur & IT Security
Academic Director
Anti-Fraud Specialist
CISO
CISO
IAG&GRC Architect
Information Security Manager - EMEA
IT Auditor
IT -Security Manager
Informationssicherheitsbeauftragte CISO
CISO
General Counsel, Chief Information Officer, and Chief of Cybersecurity
Head of Central Delivery, CISO
Head of Cyber Services and Innovation
Head of Internal Audit
Lead Cloud Capability Architect
Head of Operational Risk
SAP Technical Solution Architect
Software Engineering Manager AI & ML, Data, Cloud
Head of IT Systems and Processes
Software Test Engineering Manager
Cyber Security Engineering Manager
Head PCI Compliance
Rechtsanwältin IT-Recht
Security Architect (VP)
Information Security
Global CISO
Senior Cyber Consultant
Abteilungsleiter IT-GRC
Administrator IT Infrastruktur - IT Security Spezialist
Associate Director IT & Security
CISO
CTO Services, Business Area Smart Mobility
Director Global IT Infrastructure and Security
Especialista Cyber
Head eFraud Research & Investigation
Head of Cyber Defence and ISH
Head of Group Security Operations
Head of IT Operation
Information Security Officer
IT Service Manager
Lead Architect
Sales & Partner Manager
Security Manager of Global Digital Consumer Services
Software & Security Engineer
Project Engineer - Infotainment / Diagnostics
Senior Consultant Cybersecurity
CISO
ISO Divisional Information Security Officer
Cyber Risk Engineer
Director Business Transformation
IT-Architect
Security Engineer
Enterprise Security and IaaS Architect
CISO
Cyber Security Officer
Senior IT Risk Manager

Companies

Röchling SE & Co. KG
BMW Group Financial Services
Leibniz-Rechenzentrum
AXA
Habib Bank AG Zurich
Allianz
Intercard
Givaudan SA
Meyerlustenberger Lachenal
UBS
Die Swiss Post
Allianz
PPRO
Marc O'Polo
Credit Suisse
Eurofins
CRX Markets AG
Schindler
BMW Group
Credit Suisse
Amadeus Group
ABB
Julius Baer
TDK Electronics
Swiss Federal Police
Allianz
BMW Group
Siemens Financial Services
UBS
Ehrmann SE
LMU Munich
Scout24
Die Swiss Post
Wealth Management Capital
Hilti
Société Générale Corporate and Investment Banking (SGCIB)
Coop Schweiz
Kraftanlagen Group
University of Basel
CRX Markets AG
Rising Tide GmbH
Credit Suisse
Munich Re
The Coop Group
Credit Suisse
Zurich Cantonal Bank
Richemont
Versicherungskammer Bayern
Webasto Roof & Components SE
Liebherr
MSC Cruises
Six Payment Services
CSW Rechtsanwälte Steuerberater Wirtschaftsprüfer
Credit Suisse
Allianz
Avaloq Group
Munich Re
Union Investment
Ehrmann SE
IWC Schaffhausen
Kanton Aargau
Continental AG
Burckhardt Compression
Santander
Credit Suisse
Flughafen München GmbH
Zurich Insurance Group
Repower
BKW FMB Energy Ltd
PPRO
Union Bancaire Privée UBP
SwissSign
BSH
IWB Industrielle Werke Basel
ABB
Union Bancaire Privée UBP
Allianz
Allianz Technology
AIG Europe
Röchling SE & Co. KG
Versicherungskammer Bayern
Baader Bank
Credit Suisse
AssetMetrix GmbH
Credit Suisse
BMW Group

Industries

Plastics Engineering
Financial Services
Research Institute
Insurance
Commercial Banking
Financial Services
Payments
Food Flavours and Cosmetics
Legal
Investment Banking
Post and Telecoms
Financial Services
Digital Payments
Fashion
Investment Banking
Laboratory Testing
Capital Financing
Engineering
Automotive
Investment Banking
Software
Technology
Wealth Management
Electronics
Law Enforcement
Financial Services
Automotive
Financial Services
Investment Banking
Dairy
University
Digital Real Estate
Post and Telecoms
Wealth Management
Construction
Banking
Retail & Wholesale
Engineering & Design
University
Capital Financing
Philanthropic Foundation
Investment Banking
Insurance
Retail
Investment Banking
Financial Services
Luxury Goods
Insurance
Automotive OEM
Equipment Manufacturing
Cruise Line
Payments
Legal and Tax Consultants
Investment Banking
Financial Services
Software
Insurance
Investment Management
Dairy
Luxury Watches
Government
Automotive Manufacturing
Mechanical Engineering
Financial Services
Investment Banking
Airport
Insurance
Energy
Energy
Digital Payments
Wealth Management
Internet
Home Appliances
Energy
Technology
Wealth Management
Financial Services
Investment
Insurance
Plastics Engineering
Insurance
Investment Banking
Investment Banking
Financial Technology
Investment Banking
Automotive


Venue

Courtyard by Marriott Zurich North

courtyard zurich north

Location:

Courtyard by Marriott Zurich North

Max-Bill-Platz 19, Zurich, Switzerland, 8050
Telephone: +41 44-564 04 04


Accommodation:

Please contact the venue for further information.


Directions:

Please click here