3rd Annual e-Crime & Cybersecurity Congress Switzerland

Switzerland under attack

18th September 2024 • Courtyard by Marriott Zurich North, Zurich

It’s been a year of intense cyber bombardment. Is Switzerland doing enough to fight back?

 

A threat to both the public and private sectors

It has been another busy year for cybersecurity professionals in Switzerland as global trends in threats and attacks have played out locally.

 

So, most obviously, the critical danger posed by third parties has been highlighted by two of the most prominent recent breaches:

 

A US security company, providing communication technology to defence firms globally, fell victim to a cyberattack. The Swiss Air Force was among the entities affected. Switzerland’s Federal Department of Defence has officially confirmed the data breach and is currently investigating the incident.

 

Hackers are believed to have stolen tens of thousands of documents from the US company “Ultra Intelligence & Communications”. Around 30 gigabytes of partly sensitive and classified documents are believed to have ended up on the darknet.

 

And investigations into a 2023 attack have finally revealed that sensitive Swiss federal government data, including classified documents and log in credentials, were leaked by the Play ransomware group following an attack on IT service provider Xplain in 2023.

 

Three reports by the FDPIC said that neither the Federal Office of Police (Fedpol) nor the Federal Office of Customs and Border Security (FOCBS) had clearly agreed with Xplain the conditions under which personal data could be stored on the latter’s servers as part of support services.

 

In addition, Xplain had not taken any appropriate measures to ensure data security or information protection, the reports said.

 

As well as breaches, there have been developments in regulations and legislation. The Federal Information Security Act (ISA), which only entered into force on 1 January 2024, is already being amended with an obligation to report cyberattacks for operators of pre-defined ‘critical infrastructures’.

 

The new far-reaching reporting obligation applies to cyberattacks "in Switzerland" even if the IT resources concerned are located abroad — as long as the incident has an impact on Switzerland.

 

So, what are the lessons Swiss CISOs can learn from the last 12 months? And what do the new reporting regulations mean for security and governance functions within Swiss organisations?

 

Come to the e-Crime & Cybersecurity Congress Switzerland to find out:

  • How your fellow cybersecurity professionals are coping with these challenges day-to-day
  • How you can use resilience regulations to build truly risk-based approaches to defend the assets and processes that really matter
  • What practical steps you can take to get better supplier visibility and understanding
  • How to economically enhance the security built into Cloud infrastructure and applications with selected additional technologies

 

The e-Crime & Cybersecurity Congress Switzerland will look at how security should evolve from both a technology and a human perspective. Join our real-life case studies and in-depth technical sessions from the security and privacy teams at some of the country’s leading organisations.

View details of the previous event

  • The rise and rise of effective cybersecurity regulation

    • Data privacy is only a small part of the picture.
    • Regulators are looking at operational resilience in key sectors like finance – securing the wholesale payments market is a priority and others will follow.
    • They are looking at disclosure and fining the miscreants. How to comply with new regimes?

  • Insuring the uninsurable?

    • Cyber-insurers need to understand the risks they are insuring if they are to set premiums at a level that makes sense.
    • They also need to know that they are insuring risks that clients have taken steps to mitigate properly.
    • Why insure those who leave their digital doors open?
    • What can and can’t be insured?

  • Cybersecurity as a service: the pros and cons

    • MSSP, MDR, CSaaS – all of these offer varying degrees of outsourced cybersecurity services
    • So when does it make sense to outsource?
    • And what outsourcing arrangements make sense for which firms?

  • Getting real about cyber risk management

    • Until cybersecurity is truly seen as risk management, hackers will continue to evade outmoded control frameworks.
    • Quantification is key, but so is how it is used.
    • Part of this is down to CISOs, part of it to Boards and part of it to solution providers.
    • The banks have done it. When will the rest of business catch up?

  • Cybersecurity for SaaS/IaaS/PaaS

    • Most companies’ core reliance is now upon a small number of monolithic application suites and Cloud services
    • In addition, they are likely to be developing their own software in the Cloud
    • These and other changes fundamentally alter the IT landscape in which cybersecurity operates
    • So do CISOs need a new model for cybersecurity and are legacy solutions still valid?

  • Making the most of next gen tech: automation, AI and the rest

    • The next 20 years will see an ecosystem of small single-issue vendors slim down to a far less complex set of larger platforms
    • These platforms will be able to invest in continuous development and offer to cover all or large chunks of organisations’ security needs
    • But will the winners in this evolution be those at today’s cutting edge?

  • Developing the next generation of security leaders

    • If cybersecurity is to change to meet the evolution of our digital world, then so must those who implement it.
    • CISOs cannot cling to an IT paradigm and companies must move away from hiring on false pretences (on budget and commitment) and firing at the first breach.
    • What does a next-gen CISO look like and are you one of them?

  • Securing digital currencies and DLT

    • The move towards non-cash payment methods during the crisis has been extreme, and looks irreversible.
    • Many more governments are now looking at developing their own digital currencies.
    • How do we go about securing a world in which most - perhaps all - payments are digital?
    • And what about the blockchain?

  • From smart machines to smart cities - securing the IoT

    • How long will it be before every significant device and location is part of an ecosystem of sensors connected to public and private networks?
    • Driving apps tell insurers what premiums to charge. Packaging machines report their own breakdowns. 
    • But are these devices visible on your network and how are you securing them?

  • Keeping citizens safe

    • The COVID era demands unprecedented levels of citizen engagement. Compromises are inevitable to ensure the safety of all.
    • But the systems required to provide safety also create a huge data security and privacy challenge for both governments and employers alike.
    • Can solution providers help?

  • Reining in BigTech

    • Resilience and security increasingly come down to key dependencies outside the organization.
    • With on prem tech the past and Cloud and external IT the future, how do public and private sector organisations ensure security when they rely on vendors who are vulnerable but above leverage with even their biggest clients?
    • Time for governments to step in?

  • Upskilling security teams

    • Organisations have limited budgets
    • The skills shortage in security staff growing
    • This dynamic affects the type of on prem security operation firms can employ
    • So how can CISOs continuously upskill their teams?

Who attends

Job titles

Chief Information and Digital Officer
Information Security Specialist
IT Security - Wissenschaftlicher Mitarbeiter
Senior Data Privacy Officer
Vice President & Group Data Protection Officer
Information Security Manager
CIO
CISO
Data Privacy and Digital Lawyer, Partner
Director, Senior Cyber Security Program Manager
Enterprise Security Architect
Information Security Officer
Senior Associate Service Manager
Senior IT System Engineer
IT Security Architect
Data Analyst
Deputy Head of IT Infrastructure and Chief Information Security Officer
Head Remote Monitoring & Solution Architecture
Information/Cyber Security Supplier Network
ORM, Global Training, Awareness & Communications Director
Security Awareness Analyst
Senior Full Stack Developer
CISO
CISO
Cybercrime Coordination Unit
Divisional Security Officer
IT Project Manager
Chief Information Security Officer (CISO)
Risk Control Specialist
Teamleiter IT Infrastruktur & IT Security
Academic Director
Anti-Fraud Specialist
CISO
CISO
IAG&GRC Architect
Information Security Manager - EMEA
IT Auditor
IT -Security Manager
Informationssicherheitsbeauftragte CISO
CISO
General Counsel, Chief Information Officer, and Chief of Cybersecurity
Head of Central Delivery, CISO
Head of Cyber Services and Innovation
Head of Internal Audit
Lead Cloud Capability Architect
Head of Operational Risk
SAP Technical Solution Architect
Software Engineering Manager AI & ML, Data, Cloud
Head of IT Systems and Processes
Software Test Engineering Manager
Cyber Security Engineering Manager
Head PCI Compliance
Rechtsanwältin IT-Recht
Security Architect (VP)
Information Security
Global CISO
Senior Cyber Consultant
Abteilungsleiter IT-GRC
Administrator IT Infrastruktur - IT Security Spezialist
Associate Director IT & Security
CISO
CTO Services, Business Area Smart Mobility
Director Global IT Infrastructure and Security
Especialista Cyber
Head eFraud Research & Investigation
Head of Cyber Defence and ISH
Head of Group Security Operations
Head of IT Operation
Information Security Officer
IT Service Manager
Lead Architect
Sales & Partner Manager
Security Manager of Global Digital Consumer Services
Software & Security Engineer
Project Engineer - Infotainment / Diagnostics
Senior Consultant Cybersecurity
CISO
ISO Divisional Information Security Officer
Cyber Risk Engineer
Director Business Transformation
IT-Architect
Security Engineer
Enterprise Security and IaaS Architect
CISO
Cyber Security Officer
Senior IT Risk Manager

Companies

Röchling SE & Co. KG
BMW Group Financial Services
Leibniz-Rechenzentrum
AXA
Habib Bank AG Zurich
Allianz
Intercard
Givaudan SA
Meyerlustenberger Lachenal
UBS
Die Swiss Post
Allianz
PPRO
Marc O'Polo
Credit Suisse
Eurofins
CRX Markets AG
Schindler
BMW Group
Credit Suisse
Amadeus Group
ABB
Julius Baer
TDK Electronics
Swiss Federal Police
Allianz
BMW Group
Siemens Financial Services
UBS
Ehrmann SE
LMU Munich
Scout24
Die Swiss Post
Wealth Management Capital
Hilti
Société Générale Corporate and Investment Banking (SGCIB)
Coop Schweiz
Kraftanlagen Group
University of Basel
CRX Markets AG
Rising Tide GmbH
Credit Suisse
Munich Re
The Coop Group
Credit Suisse
Zurich Cantonal Bank
Richemont
Versicherungskammer Bayern
Webasto Roof & Components SE
Liebherr
MSC Cruises
Six Payment Services
CSW Rechtsanwälte Steuerberater Wirtschaftsprüfer
Credit Suisse
Allianz
Avaloq Group
Munich Re
Union Investment
Ehrmann SE
IWC Schaffhausen
Kanton Aargau
Continental AG
Burckhardt Compression
Santander
Credit Suisse
Flughafen München GmbH
Zurich Insurance Group
Repower
BKW FMB Energy Ltd
PPRO
Union Bancaire Privée UBP
SwissSign
BSH
IWB Industrielle Werke Basel
ABB
Union Bancaire Privée UBP
Allianz
Allianz Technology
AIG Europe
Röchling SE & Co. KG
Versicherungskammer Bayern
Baader Bank
Credit Suisse
AssetMetrix GmbH
Credit Suisse
BMW Group

Industries

Plastics Engineering
Financial Services
Research Institute
Insurance
Commercial Banking
Financial Services
Payments
Food Flavours and Cosmetics
Legal
Investment Banking
Post and Telecoms
Financial Services
Digital Payments
Fashion
Investment Banking
Laboratory Testing
Capital Financing
Engineering
Automotive
Investment Banking
Software
Technology
Wealth Management
Electronics
Law Enforcement
Financial Services
Automotive
Financial Services
Investment Banking
Dairy
University
Digital Real Estate
Post and Telecoms
Wealth Management
Construction
Banking
Retail & Wholesale
Engineering & Design
University
Capital Financing
Philanthropic Foundation
Investment Banking
Insurance
Retail
Investment Banking
Financial Services
Luxury Goods
Insurance
Automotive OEM
Equipment Manufacturing
Cruise Line
Payments
Legal and Tax Consultants
Investment Banking
Financial Services
Software
Insurance
Investment Management
Dairy
Luxury Watches
Government
Automotive Manufacturing
Mechanical Engineering
Financial Services
Investment Banking
Airport
Insurance
Energy
Energy
Digital Payments
Wealth Management
Internet
Home Appliances
Energy
Technology
Wealth Management
Financial Services
Investment
Insurance
Plastics Engineering
Insurance
Investment Banking
Investment Banking
Financial Technology
Investment Banking
Automotive


Venue

Courtyard by Marriott Zurich North

courtyard zurich north

Location:

Courtyard by Marriott Zurich North

Max-Bill-Platz 19, Zurich, Switzerland, 8050
Telephone: +41 44-564 04 04


Accommodation:

Please contact the venue for further information.


Directions:

Please click here