Agenda

Breakfast Networking & Registration

Chair's Welcome

►Strengthening Cybersecurity Competence in Austria and the EU

Marlies Hofmann, Legal and Policy Officer, NCC-AT 
Lydia Lindner, Programme Manager, FFG & NCC-AT

• The National Coordination Centre for Cybersecurity in Austria: Roles, Impact, and Strategic Vision
• The European Cybersecurity Competence Centre: Mission, Objectives, and Governance
• Unlocking Opportunities: EU Funding for Cybersecurity Innovation and Collaboration

►How Turkish Escort Websites Made Protecting the Eurovision Song Contest Possible. Cybersecurity in a Globally Connected World

Matthias Lutz, Senior Account Manager, Cloudflare

The true art of cybersecurity lies in recognising patterns within complex contexts. Discover the story that links Turkish escort websites, the Eurovision Song Contest, the head of Iran’s state-backed cyber attack unit, and the entry ban of our CEO into Russia. Learn why it’s essential for even regional companies to implement global security mechanisms.

• Uncover the hidden connections between Turkish escort sites, Eurovision, and international cyber warfare
• Explore how a regional incident led to a geopolitical ripple effect — including our CEO’s ban from Russia
• Learn why global security strategies are crucial, even for locally operating companies

►Cyber Resilience for the Cloud

Jerry Rijnbeek, Vice President Cloud & Security Technology, Rubrik

• Cloudfocus: How to implement robust cyber recovery and threat containment across your cloud environments
• Beyond prevention: ensure rapid response and recovery to minimise downtime and business disruption
• Stay operational under attack: How zero-trust architecture helps you maintain control and protect critical data—even during ransomware events

►AI-Enhanced Cybersecurity at Banco Sabadell   

 Eduardo Gonzalez, Global Advanced Cybersecurity Director, Banco Sabadell

• AI as the new Gold Rush
• Impact on Cybersecurity
• Regulations and Frameworks for AI
• Leveraging AI for Cybersecurity
• Creating a custom Machine Learning model

Networking Break

►Fireside Chat: Mitigating Personal Liability: The Changing Climate for Security Professionals

Jonathan Armstrong, Partner, Punter Southall Law

• The changing politics of security
• Current cases
• Social Media scrutiny
• Insurance options for CISOs
• Golden parachutes and legal support

►Cybersecurity in the age of genAI - Human Centric Security to Protect Against Modern Cyber Risks Proofpoint-Customer Session

Michael Krüger, Senior Sales Engineer, Proofpoint

In this session we will uncover hidden risks of GenAI and inform you how to protect your employees & data.

• The risks associated with GenAI and how GenAI can be misused by threat actors and by employees
• How to gain insight into the use of GenAI in your organisation, enforce acceptable use policies and train employees
• How a human-centered approach to security can prevent the loss of sensitive data

►Education Seminars

Delegates will be able to choose from a range of topics:

• Protection of Service Accounts: A Luxury or an Urgent Necessity for Highly Privileged Non-Human Identities? Michael Lindner, Regional Sales Manager, Silverfort  
   
• Understanding DORA – Aligning Cybersecurity and Compliance, Nico Richters, Account Director, Recorded Future 

Lunch & Networking Break

►Herding Cats: Building a Security Governance Structure That Actually Works

Florian Polt, Head of Group Security & Resilience, UNIQA Insurance Group

• Navigating conflicting legal requirements and diverse stakeholders
• Creating a governance blueprint and aligning roles across entities
• Tackling legal complexities while maintaining sanity
• Real-world insights, practical lessons, and governance war stories

►Defending against multi-channel and multi-media AI-fuelled social engineering

Dr. Martin Krämer, Security Awareness Advocate, KnowBe4

Phishing emails are a popular choice for social engineering but by far not the only one. Messaging services, social media platforms, corporate communication channels, and online meetings are all communication channels leveraged to manipulate people. Attackers increasingly launch multi-channel attacks. No longer are cybercriminals limited to text-based communication. Voice and even video are frequently used in business contexts to communicate information. Thanks to new AI capabilities, text, voice, and video can now be easily manipulated or synthesised. Cybercriminals leverage the power of AI and multi-channel communication to step up their manipulation game.

Join this session,

• To learn how cybercriminals are changing tack
• What that means for your organisation
• How you should prepare for it
   

►How CyberProof and Google Transformed a Healthcare Provider’s Security Operations with Adaptive MxDR

Christopher Schrauf, Senior SIEM & Cybersecurity Architekt, CyberProof

Healthcare organisations face unique cybersecurity challenges that require innovative solutions. In this session, CyberProof and Google will show how their partnership delivered adaptive MxDR services for a leading healthcare provider. We’ll walk you through a real-world case study, showing how we overcame security challenges and achieved significant business outcomes.

Learn about:

• The client’s business problem statement and security challenges
• How CyberProof and Google collaborate to deliver better security, together 
• Business outcomes, including measurable improvements in security and higher ROI 

►Panel Discussion: Future-Proofing Security Architectures

Marian Kühnel, Information Security Architect, ÖBB
Philipp Amann, Group CISO, Austrian Post (Post AG) 
Daniele Sangion, CISO, UniCredit Bank Austria

• How can security teams design resilient architectures to accommodate and leverage new technologies like AI, quantum computing, and IoT?
• What role does AI play in developing proactive, rather than reactive, security postures?
• Best practices for integrating AI without disrupting legacy systems or existing workflows
• How can organisations implement zero-trust principles and adaptive access controls to secure evolving environments driven by AI and edge computing?

Networking Break

►Securing Critical Infrastructure with IAM in an elevated threat landscape

Sachin Loothra, Lead Solutions Architect, Telia

• Evolving threat landscape and its impacts on critical infrastructure
• Regulations on critical infrastructure and demands towards IAM
• How IAM solutions can be setup to meet the demands
   

►Panel Discussion: Battling Nation-State Hackers: Winning the Cyber War 

Utz Nisslmueller, Security Specialist, City of Vienna 
Nikolaus Brandstetter, CISO, MM Group 
Florian Polt, Head of Group Security & Resilience, UNIQA Insurance Group

• How can organisations effectively leverage threat intelligence to proactively counter nation-state attacks? Can they?
• Do regulatory standards actually enhance defense against nation-state actors, or do they merely add compliance burdens without improving security?
• Are we doing enough to address supply chain vulnerabilities, or is this an overlooked entry point for nation-state threats?
• What strategic, forward-looking investments are essential for effectively countering the evolving tactics of APTs?

Chair's Closing Remarks