arrow-circle-full-right arrow-circle-full-up arrow-circle-up arrow-down arrow-right calendar calendar-done facebook flickr home linkedin login pin reload search share signin star twitter video video youtube nav star-plus info signout double-arrow arrow-up checked
Telecoms, Media and Technology

FT Cyber Security Summit Europe 2016

Fighting back against the cyber aggressors

London |
Speakers include:
Heli  Tiirmaa‐Klaar

Heli Tiirmaa‐Klaar

European External Action Service

Yves  Bigot

Yves Bigot

TV5Monde

Commander Christopher  Greany

Commander Christopher Greany

National Police Chief’s Council (NPCC).

Overview

Europe’s businesses face major threats in cyberspace. A frightening range of malign forces are pitched against them, and they have many harmful motives – fraud, personal identity theft, intellectual property theft, industrial espionage, service disruption, physical damage, blackmail and more.

Corporate boards and senior management teams are struggling to keep up with the ever-changing situation. As soon as their information security specialists put new defences in place, attackers seem to find a way through or around them. Despite the expertise and assistance available from external security experts, government departments and law enforcement agencies, corporate Europe has its back to the wall in the fight against cyber crime.

The third annual FT Cyber Security Summit Europe will explore the dangers facing companies large and small. It will provide a platform for experts from businesses, software firms, public sector organisations, consultants and research institutes to discuss the big question of the day: how do you protect corporate systems, communications and information (including customer data) from cyber aggressors?

The Financial Times’ coverage of cyber security is extensive and ground-breaking. Our journalists write about it every day. They will be at the summit to chair it, introduce speakers, moderate panels discussions, conduct on-stage interviews and, importantly, get the audience involved in the Q&A sessions.

To encourage an open exchange of ideas and open debate, some of the presentations and panels may be held under the Chatham House Rule and will be clearly indicated as such on the agenda.

fallback
fallback Add to my Calendar 09/21/2016 08:00:0009/21/2016 16:50:00trueFT Cyber Security Summit Europe 2016Europe’s businesses face major threats in cyberspace. A frightening range of malign forces are pitched against them, and they have many harmful motives – fraud, personal identity theft, intellectual property theft, industrial espionage, service disruption, physical damage, blackmail and more.Corporate boards and senior management teams are struggling to keep up with the ever-changing situation. As soon as their information security specialists put new defences in place, attackers seem to find a way through or around them. Despite the expertise and assistance available from external security experts, government departments and law enforcement agencies, corporate Europe has its back to the wall in the fight against cyber crime.The third annual FT Cyber Security Summit Europe will explore the dangers facing companies large and small. It will provide a platform for experts from businesses, software firms, public sector organisations, consultants and research institutes to discuss the big question of the day: how do you protect corporate systems, communications and information (including customer data) from cyber aggressors?The Financial Times’ coverage of cyber security is extensive and ground-breaking. Our journalists write about it every day. They will be at the summit to chair it, introduce speakers, moderate panels discussions, conduct on-stage interviews and, importantly, get the audience involved in the Q&A sessions.To encourage an open exchange of ideas and open debate, some of the presentations and panels may be held under the Chatham House Rule and will be clearly indicated as such on the agenda.FT-Cyber-Security-Summit-Europe-2016129d2252a8f070ede29f4b2d2cbf6ac0MM/DD/YYYY

FT Cyber Security Summit Europe Brochure Download

FT Cyber Security Summit Europe Brochure Download

Download now

Event Brochure

To download the event brochure please fill in the form below. All fields are required

Please complete all the highlighted fields

Form submission failed. Please retry.

Data Protection

By submitting this form you consent to being contacted by FT Live about this event by phone and email.

Thank you for submitting your details. Please download the event brochure.

Speakers (26)

Heli  Tiirmaa‐Klaar

Heli Tiirmaa‐Klaar

Head of Cyber Policy Co‐ordination
European External Action Service

Heli Tiirmaa-Klaar is currently a Head of Cyber Policy Coordination at the European External Action Service, the EU’s diplomatic service. She has been working on cyber security issues since 2007 when she led the development of the Estonian Cyber Security Strategy. In 2008-2010 she coordinated the implementation of the Estonian strategy, managed the National Cyber Security Council and led the development of Estonia’s National Cyber System as well as public-private partnerships for cyber security. In 2011-2012 she was assigned to the NATO International Staff to develop the new NATO Cyber Defence Policy. Earlier in her career she held various managerial positions at the Estonian Ministry of Defence and Tallinn University.

Yves  Bigot

Yves Bigot

Managing Director
TV5Monde

Yves Bigot has been Managing Director of TV5Monde – the French language global television network based in Paris – since 2012. Before that he was Deputy Managing Director of Endemol France, the television production company. He has worked for several other companies in a television career dating back to 1985 when he started as a reporter. He has also worked as a journalist in radio and the written press, and has published several books. His voluntary work includes being the CEO of Initiative Rock and Chairman of the Festival du Cinéma Francophone d’Angoulême

Commander Christopher  Greany

Commander Christopher Greany

National Coordinator for Economic Crime, City of London Police; and Lead, Identity Crime, Cyber Protect and Counterfeit Currency
National Police Chief’s Council (NPCC).

Commander Christopher Greany joined the City of London Police in September 2015 and is the Police National Coordinator for Economic Crime. He is also the National Police Chiefs’ Council (NPCC) lead for Identity Crime, Cyber Protect and Counterfeit Currency. He has 30 years policing experience and has spent much of his career working on counter terrorism, protective security and intelligence. He first joined the Metropolitan Police Force in 1987. He transferred to the City of London Police in 2007 and returned to the Metropolitan Police in 2011. He was promoted to Commander in the Metropolitan Police in 2014 where he was appointed Strategic Lead for the National Police Coordination Centre (NPOCC) a UK unit that coordinates the UK policing response together with government during times of crisis, disaster, national and international emergency. He has worked in the UK and overseas including a posting at NATO in Brussels where he was an adviser to the Secretary General. He has been responsible for the international security and protection of two Foreign Secretaries, and held key roles in the delivery of the security strategy for the 2004 Athens and 2012 London Olympic Games. In 2011 he was the senior police officer responsible for leading the investigation into the London-wide criminality committed during the 2011 riots. 

Jan Philipp  Albrecht

Jan Philipp Albrecht

MEP for Germany, Member of the Group of the Greens/European Free Alliance, and Vice-Chair of the Committee on Civil Liberties, Justice and Home Affairs
European Parliament

Jan Philipp Albrecht is a German MEP, spokesperson for Justice and Home Affairs of the Greens/EFA in the European Parliament, and the vice chair of the Committee on Civil Liberties, Justice and Home Affairs (LIBE). He is also a substitute member of the Committee on the Internal Market and Consumer Protection (IMCO). During his first term as an MEP between 2009 and 2014 he was a member of the Committee on Civil Liberties, Justice and Home Affairs (LIBE) and a substitute member of the Committee on Legal Affairs (JURI). From December 2012 to October 2013 he was the Green group’s coordinator in the Special Committee on Organised Crime, Corruption and Money Laundering (CRIM). He was rapporteur for the opinion of the Committee on Legal Affairs on the proposal for a directive on the right of access to a lawyer in 2011. Since March 2012, Mr Albrecht has been the rapporteur of the European Parliament for the data protection regulation. From 2003 until his election to the European Parliament in 2009, he studied law in Bremen, Berlin and Brussels and specialised in IT law at the Universities of Hanover and Oslo. Since 1999 he has committed himself to the Greens in a wide range of contexts. Thanks to his efforts to promote data protection, and as the federal spokesman of the Young Greens in Germany from 2006 – 2008, he has gained a reputation within the European Parliament as an expert on home affairs, justice and legal affairs. 

Jaya  Baloo

Jaya Baloo

Chief Information Security Officer
KPN Telecom

Jaya Baloo is Chief Information Security Officer for KPN Telecom, the Dutch landline and mobile telecommunications company. Her focus is on secure network architecture design, and she has completed projects ranging from Lawful Interception, Deep Packet Inspection, VoIP & Mobile Security to designing national MPLS infrastructures and ISP architectures. She has been working internationally in information security for 15 years and has worked for other telecom providers including Verizon and France Telecom. 

Morgan  Bone

Morgan Bone

Head of Corporate Media Relations
HSBC

As Head of Corporate Media Relations for HSBC, Morgan Bone is responsible for corporate news management and financial calendar events and has primary accountability for global media relations strategy and governance. He also leads the social media and speechwriting teams. He joined HSBC from Hammerson where he was Director of Corporate Communications. Prior to Hammerson, he was a co-head of the financial practice at Fishburn Hedges and before that was a Partner at Finsbury where he was responsible for the financial institutions and utilities teams. He started his career as an auditor at PwC.

Nausicaa  Delfas

Nausicaa Delfas

Director of Specialist Supervision
Financial Conduct Authority

Deputy Comptroller for Operational Risk, Office of the Comptroller of the Currency,

US Department of the Treasury

Beth Dugan is the Deputy Comptroller for Operational Risk at the Office of the Comptroller of the Currency (OCC), in the US Department of the Treasury. She oversees policy and examination procedures development addressing operational risk, bank information technology, cyber security and critical infrastructure, payments systems, and corporate and risk governance. She assumed these responsibilities in November 2014. Throughout her career at the OCC, Ms Dugan has held a variety of leadership roles in supervising large complex financial institutions as well as mid-size and community banks and technology service providers. She has significant examination experience in technology, operations, audit, Basel II, enterprise governance, systems integration, and credit, capital markets, and trading platforms. She also participated in the OCC’s initial reviews of major service providers based in India. She joined the OCC in West Virginia where she assisted in supervising all aspects of community and mid-size national banks throughout the southeastern and mid-Atlantic region. Prior to this she served as Examiner-In-Charge of Citizens Bank, in Providence, Rhode Island, where she managed a team of examiners covering all disciplines, activities, products and aspects of the bank. She is a commissioned National Bank Examiner and Certified Information Systems Auditor. She holds a master of business administration and a bachelor of arts in English and a master of business administration, both from West Virginia.

Alain Desausoi

Alain Desausoi

Deputy Chief Information Security Officer
SWIFT

Alain Desausoi has been SWIFT’s Deputy Chief Information Security Officer since October 2016. He joined SWIFT in 1988 in the customer product software development group as lead architect of the Alliance Access product family. He later held a number of IT strategy roles and became lead architect of SWIFTNet. In 2003, he joined the Security group of SWIFT where he established and led the overall information security program, including SWIFT’s security risk management practices. Prior to SWIFT, Mr Desausoi worked as a software engineer, delivering software and hardware development of autonomous systems like EFTPOS, as well as industrial automation and digital telephony systems. He is a civil engineer in electronics and computer science, with a degree from l’Université Libre de Bruxelles, Belgium.

Beth  Dugan

Beth Dugan

Deputy Comptroller for Operational Risk, Office of the Comptroller of the Currency
US Department of the Treasury

Beth Dugan is the Deputy Comptroller for Operational Risk at the Office of the Comptroller of the Currency (OCC), in the US Department of the Treasury. She oversees policy and examination procedures development addressing operational risk, bank information technology, cyber security and critical infrastructure, payments systems, and corporate and risk governance. She assumed these responsibilities in November 2014. Throughout her career at the OCC, Ms Dugan has held a variety of leadership roles in supervising large complex financial institutions as well as mid-size and community banks and technology service providers. She has significant examination experience in technology, operations, audit, Basel II, enterprise governance, systems integration, and credit, capital markets, and trading platforms. She also participated in the OCC’s initial reviews of major service providers based in India. She joined the OCC in West Virginia where she assisted in supervising all aspects of community and mid-size national banks throughout the southeastern and mid-Atlantic region. Prior to this she served as Examiner-In-Charge of Citizens Bank, in Providence, Rhode Island, where she managed a team of examiners covering all disciplines, activities, products and aspects of the bank. She is a commissioned National Bank Examiner and Certified Information Systems Auditor. She holds a master of business administration and a bachelor of arts in English and a master of business administration, both from West Virginia.

David  Emm

David Emm

Senior Security Researcher
Kaspersky Lab

David Emm is Senior Security Researcher at Kaspersky Lab,a provider of security and threat management solutions.He joined the company in 2004 and is a member of its Global Research and Analysis Team. He regularly delivers presentations on malware and other IT security threats at exhibitions and events, highlighting what organisations and consumers can do to stay safe online. He also provides comment to broadcast and print media on the ever-changing cyber-security and threat landscape. He has a strong interest in malware, ID theft and the human aspects of security, and is a knowledgeable advisor on all aspects of online security. He is regularly mentioned in national print press as a cyber security expert and has a wealth of experience in being filmed for such programmes as Good Morning Britain and BBC News. He has worked in the anti-malware industry since 1990 in a variety of roles, including that of Senior Technology Consultant at Dr Solomon's Software, and Systems Engineer and Product Manager at McAfee.

David  Francis

David Francis

European Cybersecurity Officer
Huawei Technologies

David Francis is Huawei’s Cyber Security Officer for Europe. He started his career with British Telecom as an engineer and has held several positions in the IT sector in the UK and the US since. Prior to joining Huawei he was a Chief Operating Officer with an eCommerce platform. He has worked for Symantec for over nine years, the last five of which as Vice President of Operations. At Symantec, he was responsible for the SaaS/cloud operations unit, consisting of over 300 staff globally. Working closely with government and local authority customers, he has a vast experience with cyber security challenges and requirements for both the public and the private sector.

John  Higgins

John Higgins

Director General
Digital Europe

John Higgins CBE was appointed Director General of Digital Europe, the association for the digital technology industry in Europe, in November 2011 following nine years leading its UK member association, Intellect. He is the public face of the digital sector in Europe and speaks regularly at conferences worldwide. Mr Higgins was a member of the governing body of the University of Warwick for 12 years until 2015 and was chair of its audit committee. He is President of the European Commission’s Strategic Policy Forum on Digital Entrepreneurship and was recently elected to the Board of the European Internet Foundation. His other committee chair roles include the cross-industry association council of the CBI, a government/industry space committee and the global policy action committee of the World IT Services Association (WITSA). He was board member of e-skills, the UK’s digital sector skills council and is a Fellow of the Royal Society of Arts. He was presented with two personal awards for outstanding contributions; first to the association sector in 2004 and then to the IT industry in 2008. The Queen appointed him a Commander of the British Empire (CBE) in 2005 for his services to the UK IT industry. After graduating from the University of East Anglia with an honours degree in Mathematics and then gaining a post graduate Diploma in Accounting and Finance, he began a career in IT. 

Ardi Kolah

Ardi Kolah

Co-Programme Director, GDPR Transition Programme
Henley Business School

Ardi Kolah is the Co-Programme Director of the GDPR Transition Programme at Henley Business School, along with Professor Andrew Kakabadse. Mr Kolah is also the founder and Editor-in-Chief of the Journal of Data Protection and Privacy that will launch in October 2016 and speaks extensively on data protection at seminars and conferences across Europe. A trained lawyer, he has marketing and executive education experience in the financial services sector. He held senior positions at the BBC in network TV and radio, and at Accenture, and was Director of the Defence Academy of the UK where he launched the National Resilience Centre. Mr Kolah holds an LL.M degree from King’s College London and is a fellow of several institutes as well as a visiting lecturer at Cass Business School, London University.

Ilia Kolochenko

Ilia Kolochenko

Chief Executive Officer and Founder,
High-Tech Bridge

Ilia Kolochenko is the CEO and founder of the European web security company High-Tech Bridge. The company has offices in Geneva and San Francisco and customers in more than 40 countries. Mr Kolochenko is a recognised web security and cybercrime expert, and a contributor to SC Magazine UK, CSO, DarkReading and Forbes. In July 2016, he was became a member of the Forbes Technology Council. In May 2016 he was on the list of "Forum des 100", a list of the 100 best entrepreneurs, politicians and personalities in the French-speaking part of Switzerland. He served his military service in the Swiss artillery and has a BSc in Computer Science and Mathematics with honors.

Ben  Lindgreen

Ben Lindgreen

Head of Security Delivery
Payments UK

Ben Lindgreen is Head of Security Delivery at Payments UK, which he joined in 2011 when it was the Payments Council. He has 15 years’ technical and managerial experience gained while working in consultancy and in-house roles. In addition to his current role at Payments UK, he holds the same role in Bacs, Faster Payments, the Cheque and Credit Clearing Company and Paym. During his time at Payments UK he has delivered a number of key initiatives, notably providing strategic advice to UK and European industry bodies and leading the security workstream for the successful launch of Paym in 2014. 

Helena  Lindberg

Helena Lindberg

Director General
Swedish Civil Contingencies Agency (MSB)

Helena Lindberg is the first Director General of the Swedish Civil Contingencies Agency (MSB), was established in January 2009. She was previously the Director General for the Swedish Emergency Management Agency and the Swedish Rescue Services Agency. Ms Lindberg has a Master's Degree in Law. She has worked as an Associate Judge of Appeals, and served as the Deputy Director at the Ministry of Justice and as the Director General for Legal and Administrative Affairs at the Ministry of Defence. 

Andrew  Nanson

Andrew Nanson

Chief Technology Officer
Corvid

Andrew Nanson is CTO of Corvid, the cyber security department of Ultra Electronics, a British FTSE-250 company. He is responsible for protecting Ultra Electronics and other companies against all external cyber threats. Corvid manages sophisticated attack threats through the application of cyber intelligence at multiple technical layers, with business-focused response and mitigation. Mr Nanson was previously the Chief Architect for Security and Resilience at Vega (now part of Selex ES) where he developed secure systems and solutions for sensitive government agencies and the Ministry of Defence. While at Vega he was the overall technical lead for the provision of the NATO Computer Incident Response Capability (NCIRC). Additionally, he designed and implemented the Metropolitan Police Counter-Terrorism Hi-Tech Forensic laboratory. Mr Nanson has worked in the provision of secure and sensitive systems for over 20 years. He has represented UK government interests internationally, provided strategic, operational and tactical information systems and provided guidance and solutions to government departments and organisations with national and international remits.

Troels Oerting

Troels Oerting

Chief Information Security Officer, Global Information Security (GIS)
Barclays

Troels Oerting joined Barclays as Group Chief Information Security Officer (CISO) in February 2015. Reporting to the Group Chief Operations and Technology Officer, he is a member of the Operations & Technology Executive Committee. Before joining Barclays, he was Director of the European Cybercrime Centre (EC3) in Europol’s HQ, helping law enforcement agencies protect the EU’s 500m citizens in the 28 EU member states from cybercrime or loss of privacy. 

As an expert in cyber security, Mr. Oerting has constantly been looking for new legislative, technical or co-operational opportunities to efficiently protect privacy and security for users of the Internet and has been pioneering new methodologies to prevent crime in cyberspace and protect innocent users from losing their digital identity, assets or privacy online. As director of EC3 he also initiated the establishment of the International ‘Joint Cybercrime Action Task Force’ (JCAT) including global leading law enforcement agencies, prosecutors and Interpol's Global Centre of Innovation and the J-CAT has since been recognised as the leading international response to the increasing threat from Organised Cyber Criminal networks.

He has been cyber advisor for the EU Commission and Parliament and has been a permanent delegate in many governance organisations i.e. ICANN, ITU and The Council of Europe and used by several governments and organisation as an advisor in cyber related questions. He also established a vast global Outreach program including; law enforcement, NGO’s, key tech companies and industry who together with Academic Research Institutes established a multifaceted global coalition against cybercriminal syndicates and networks, with the aim to enhance online security without harming privacy and to invent new ways of protecting internet users.

Before joining Europol, as Director for EC3 Mr. Mr. Oerting held the position as Assistant Director for Europol Organised Crime department as well as the Counter Terrorist Department and he also held positions as Director for Operation in the Danish Security Intelligence Service and Director for the Danish Serious Organised Crime Agency (SOCA).

Mr. Oerting has been an external lecturer in cybercrime and has been acknowledged by global law enforcement agencies for his leadership in fighting cyber and organised crime. He holds a number of International advisory roles, amongst them special advisor to: INTERPOL, The Global Cyber Alliance (GCA), Global Agenda Council on Cyber Security of the World Economic Forum (WEF) and to Global Cyber Security Capacity Centre at the University of Oxford. He is also the author of a Thriller: ‘Operation Gamma’ published in Denmark.

Kevin  O’Rourke

Kevin O’Rourke

General Manager and Chief Risk Officer, Mizuho Bank (Europe); Advisory Board Member, European Risk Management Council
Mizuho Bank (Europe)

Kevin O’Rourke is General Manager and Chief Risk Officer of Mizuho Bank (Europe) and a Board member of Mizuho Bank Nederland. He is based in London and his responsibilities cover all aspects of risk oversight including market, credit, liquidity and operational risks. Although focussing on the EMEA region, he has a truly global view on risk management and risk regulation given that he works for a global systemically important financial institutions(G-SIFI). Mr. O’Rourke has worked in the industry for over 25 years and has gained experience through a variety of roles, but his primary focus and discipline for the past 20 years has been in the area of risk management. He is a member of the PRMIA London Advisory Committee and a regular contributor and Advisory Board Member of the European Risk Management Council (ERMC), a think tank of risk executives from leading financial institutions and global corporations operating in Europe.

Dave Palmer

Dave Palmer

Director of Technology
Darktrace

Dave Palmer is a cyber security technical expert with over ten years' experience at the forefront of government intelligence operations. He has worked across UK intelligence agencies GCHQ and MI5, where he delivered mission-critical infrastructure services, including the replacement and security of entire global networks, the development of operational internet capabilities and the management of critical disaster recovery incidents. At Darktrace, Dave oversees the mathematics and engineering teams and product strategy. He holds a first class degree in Computer Science and Software Engineering from the University of Birmingham.

Arne  Schönbohm

Arne Schönbohm

President
Federal Office for Information Security, Germany
Nick Strange

Nick Strange

Head of Risk Infrastructure, Liquidity and Capital Division, Prudential Regulation Authority
Bank of England

Nick Strange is the Head of the Risk Infrastructure, Liquidity & Capital Division at the Prudential Regulation Authority in the Bank of England. In addition to liquidity and capital management, the team covers operational risk and resilience at both firm and sector level. Mr Strange has now been at the PRA (including its predecessor, the Financial Services Authority) for 12 years. He was previously a Director in KPMG’s Financial Risk practice. He is also a member of the Global Association of Risk Practitioners’ (GARP) Financial Risk Management examination committee, a qualified Chartered Accountant and a holder of the Institute of Directors’ Certificate of Company Direction. He has a BSc in Accounting and Data Processing (Computer Science) from Leeds University.

Eduardo  Ustaran

Eduardo Ustaran

Member and Former Director
International Association of Privacy Professionals

Eduardo Ustaran is an internationally recognised expert in privacy and data protection law. He is a Member and Former Director of the International Association of Privacy Professionals and a partner in the global privacy and cyber security practice of law firm Hogan Lovells. He is a dually qualified English solicitor and Spanish abogado, based in London. He is also the author of The Future of Privacy (DataGuidance, 2013), a ground-breaking book where he anticipates the key elements that organisations and privacy professionals will need to tackle to comply with the regulatory framework of the future. He advises some of the world's leading companies on the adoption of global privacy strategies and is closely involved in the development of the new EU data protection framework.  He has been named by Revolution magazine as one of the 40 most influential people in the growth of the digital sector in the UK and is ranked as a leading privacy and internet lawyer by prestigious international directories. Mr Ustaran is co-founder and editor of Data Protection Law & Policy and a member of the panel of experts of DataGuidance. He is executive editor of European Privacy: Law and Practice for Data Protection Professionals (IAPP, 2011), and co-author of Beyond Data Protection (Springer, 2013), E-Privacy and Online Data Protection (Tottel Publishing, 2007) and of the Law Society’s Data Protection Handbook (2004).  He has lectured at the University of Cambridge on data protection as part of its Masters of Bioscience Enterprise, and regularly speaks at international conferences.

Ollie  Whitehouse

Ollie Whitehouse

Technical Director
NCC Group

Ollie Whitehouse it Technical Director of NCC Group, the FTSE-250 listed company specialising in cyber security and risk mitigation, working with businesses to protect their brand, value and reputation against the ever-evolving threat landscape. Mr Whitehouse is responsible for a number of departments and technical innovation in NCC’s  security consulting division. Prior to this role, he was responsible for technical delivery in the South of England for the company’s security testing practice. Before he joined NCC, he was a manager for security research and assessment at RIM (BlackBerry) in EMEA for four years and was responsible for establishing and growing the firm’s European software security research department. Over the past 14 years Mr Whitehouse has worked at a number of multinationals in a variety of cyber security consultancy, research and management roles providing advice on the modern challenges faced by end-user organisations, governments and larger software vendors.

Katie  Wiggins

Katie Wiggins

Director, Head of Crisis Management, Information and Resilience Risk Management
Deutsche Bank

Katie Wiggins is Director, Head of Crisis Management, Information and Resilience Risk Management, at Deutsche Bank. Crisis Management is responsible for the development, awareness and training of crisis management practices throughout the bank. The team prepares, coordinates and executes scenario-based exercises to test the readiness of the bank’s business and infrastructure functions. Crisis Management forms part of the bank’s Information & Resilience Risk Management function, responsible for the management of non-financial risks related to information, health and safety, building and IT resilience, business continuity, information security, records management and vendor engagements. Ms Wiggins was previously Global Operations Manager for Crisis Management and Regional Head of Crisis Management for UKMEAR, where she coordinated the bank’s response to the Ukraine-Russia crisis and delivered a number of high profile exercises. Prior that she worked for a UK-based consultancy providing resilience services for a range of national and international companies. 

Steven  Wilson

Steven Wilson

Head, European Cyber Crime Centre (EC3)
Europol

Steven Wilson was appointed Head of Europol (EC3) in 2016. During his 30-year career as a police officer, he has held a variety of senior detective roles and was responsible for Scottish national units delivering witness protection, covert technical policing, fugitives, undercover policing, assisting offender programme and all forms of cybercrime and cyber enabled crime including online child protection.

He has served with Strathclyde Police, Scottish Crime and Drug Enforcement Agency, Her Majesty’s Inspectorate of Constabulary and, from 2013 to 2015, with the reorganisation of policing in Scotland into a national force. Mr Wilson was also the Scottish representative on UK cyber governmental and policing groups and led on industry and academic partnership groups on cyber resilience in Scotland. He has worked in covert policing, major investigations, sex offender management, Counter Terrorism investigations and represented the UK on International policing matters.

fallback

Chair and Moderators (3)

Sam Jones

Sam Jones

Defence and Security Editor
Financial Times

Sam Jones is the Financial Times’ Defence and Security Editor, leading the FT’s coverage on global defence issues, intelligence, cyber warfare and terrorism. He has been with the newspaper since 2007, when he joined as one of the founding writers on FT Alphaville, the markets and finance blog. He has also written for the paper extensively on markets, and on global finance as the paper’s hedge fund correspondent. He was highly commended as Young Journalist of the Year at the British Press Awards in 2009 for investigative work into the rating agencies and their role in the financial crisis. He has also been recognised as a promising journalist by the Harold Wincott Awards and in 2012 was listed as one of MHP’s top 30 journalists to watch. Prior to joining the Financial Times, he was a reporter with Euromoney. He is a graduate of the London School of Economics, from where he has a first class honours degree in History.

Hannah Kuchler

Hannah Kuchler

San Francisco Correspondent
Financial Times

Hannah Kuchler is a San Francisco Correspondent for the Financial Times, writing about technology with a particular focus on cyber security and social media. She enjoys telling the story of the Silicon Valley to the FT's broad international audience, wading through the complex world of cyber security to warn about the threats and attacks faced by companies and the new generation of start ups springing up to protect them. Ms Kuchler has worked for the FT for six years in the US, Europe and Asia, covering everything from Chinese Internet companies to British politics.

Kara Scannell

Kara Scannell

Investigations Correspondent
Financial Times

Kara Scannell is the Investigations Correspondent for the Financial Times. Formerly, as US Regulatory Correspondent, she covered US financial regulation and enforcement, including the US Securities and Exchange Commission, the US Department of Justice and state attorney generals’ offices. She is based in New York.  Prior to joining the FT in 2010, Ms Scannell served as a Washington-based SEC and Financial Regulation Reporter for the Wall Street Journal, where she covered Congress’ passage of the financial regulation bill and probes into Goldman Sachs Group, Lehman Brothers, Countrywide and Galleon Group. She has also served as Private Equity Reporter and White Collar Crime Reporter for the Journal, covering criminal trials such as Martha Stewart, Enron and Tyco. She holds a BA in Media Studies and Economics from Fordham University.

Agenda - 21st Sep

  • 8:00am
    Registration and networking
  • 9:00am
    Conference chair’s opening remarks

    Sam Jones, Defence and Security Editor, Financial Times

  • 9:15am
    Panel discussion: Defending Europe's businesses from cyber aggressors

    Cyber attacks on businesses are on the increase throughout Europe and their security is constantly being breached. Even the best counter measures have their vulnerabilities.

    • Just how serious is the threat? How is corporate security being compromised, and what is the actual and potential scale of financial loss and reputational damage?

    • How do you best prevent, detect and respond to cybercrime?

    • How do the board and senior management team develop an effective cyber security strategy? What should be its key components?

    • Working with other organisations: how important is it that companies liaise with governments, software vendors, consultants, researchers and others to bolster their defences?

    • EU developments: how will the Network and Information Security (NIS) Directive improve security? This legislation will have undoubted benefits for Europe’s businesses and citizens, but what will be the disadvantages? 

    Yves Bigot, Managing Director, TV5Monde

    Arne Schönbohm, President, Federal Office for Information Security, Germany

    Heli Tiirmaa-Klaar, Head of Cyber Policy Co-ordination, European External Action Service

    Ollie Whitehouse, Technical Director, NCC Group

    MODERATOR

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 10:10am
    Presentation: "Cybernomics" – building a business-driven corporate security system

    Advanced cyber protection capabilities are essential to prevent, detect and respond to sophisticated cyber attacks. But too many companies buy complex, off-the-shelf cyber security solutions without really understanding what their specific needs are, and without vendors trying to understand those needs.The economics of cyber security require an objective, focused approach where financial and performance metrics are combined with common sense. 

     Andrew Nanson, Chief Technology Officer, Corvid

  • 10:25am
    Networking refreshment break
  • 10:50am
    On-stage interview: Learning from others

    Learning from the experience of others is invaluable. Here we discover how SWIFT, the international bank payment messaging service, is working with financial institutions to reinforce and evolve their security to deal with emerging threats.

     

    Alain Desausoi, Chief Information Security Officer, SWIFT

    INTERVIEWER

    Kara Scannell, Investigations Correspondent, Financial Times

  • 11:10am
    Panel discussion: Protecting banks in cyberspace

    Banks are one of the biggest targets for cyber criminals. Hackers’ motives range from identity theft and service disruption, to defrauding the bank and its customers.

    • What are the main forms of attack?

    • How do banks defend against these attacks?

    • Why is it impossible to build an impregnable cyber fortress without any weaknesses?

    • What is the role of the board and senior management team in developing a cyber strategy?

    • Crisis management: how do you develop a security breach response programme that will enable the bank to manage the operational, legal, financial and other consequences of a damaging attack?

    • How will the EU’s Network and Information Security (NIS) Directive affect banks? What will be the advantages and disadvantages?

    David Emm, Senior Security Researcher, Kaspersky Lab

    Troels Oerting, Chief Information Security Officer, Barclays

    Kevin O’Rourke, General Manager and Chief Risk Officer Mizuho Bank (Europe); Advisory Board Member, European Risk Management Council

    Katie Wiggins, Director, Head of Crisis Management, Information and Resilience Risk Management, Deutsche Bank

    MODERATOR
    Kara Scannell, Investigations Correspondent, Financial Times

  • 11:50am
    Presentation: Why we still cannot stop cybercrime – a global overview

    The growth of global cybercrime is significantly outperforming the growth of effective cyber security. More companies are becoming victims of this type of crime despite rising security budgets. This presentation will review the causes of cybercrime, and discuss how companies can mitigate the risks in a simple, efficient and effective way without spending a fortune on vendors' solutions.

    Ilia Kolochenko, Chief Executive Officer and Founder, High-Tech Bridge

     

  • 12:00pm
    Triple Presentation: Supervising the financial sector’s approach to cyber crime

    Financial regulators play an important role in how banks, insurers, market infrastructure providers and other firms guard against cyber risks, but their emphasis is on guidance and co-operation rather than on rules and coercion.

    Nausicaa Delfas, Director of Specialist Supervision, Financial Conduct Authority

    Beth Dugan, Deputy Comptroller for Operational Risk, Office of the Comptroller of the Currency, US Department of the Treasury

    Nick Strange,Head of Risk Infrastructure, Liquidity and Capital Division, Prudential Regulation Authority, Bank of England

    MODERATOR

    Kara Scannell, Investigations Correspondent, Financial Times

  • 12:40pm
    Dialogue: Managing the news … keeping the media and others informed in the wake of a security breach

    When a company’s security is compromised it is essential to tell staff, customers, the media and others about the problem. They need to know how it might affect them, and what they should do.

    • What does an effective crisis communications strategy look like?  

    • Who do you tell first when responding to a breach, and how do you do it?

    • Best (and worst) practices: real life examples of how companies have responded to cyber attacks, and how well (or badly) they did.

    Morgan Bone, Head of Corporate Media Relations, HSBC

    INTERVIEWER

    Sam Jones, Defence and Security Editor, Financial Times

  • 1:00pm
    Lunch
  • 2:00pm
    Dual Presentation: The long arm of the law – how police forces are co-operating domestically and internationally to combat cyber crime

    Sharing intelligence, methodologies and resources is the key to effective law enforcement in all walks of life, and cyber crime is no exception.

    • How the British police are coordinating efforts to understand, deter and apprehend cyber criminals in the UK. How they are working with law enforcers in Europe, the US and elsewhere to address the problem further afield.

    • The European perspective: how Europol pools cyber intelligence and resources to fight organised cyber crime networks in Europe and beyond.

    • The Global Cyber Alliance is an international security initiative founded last year by the New York County District Attorney’s Office, the Center for Internet Security in Albany, NY, and the City of London Police. Its remit is to protect individuals and businesses from identified threats – what has it achieved so far?

    Commander Christopher Greany, National Coordinator for Economic Crime, City of London Police; and Lead, Identity Crime, Cyber Protect and Counterfeit Currency, National Police Chief’s Council (NPCC)

    Steven Wilson, Head, European Cyber Crime Centre (EC3),Europol

    MODERATOR

    Kara Scannell, Investigations Correspondent, Financial Times

  • 2:30pm
    Presentation: Intrusion v Breach – your fate will be determined by your speed of detection and response

    A security intrusion does not necessarily lead to a breach. If you can detect, prioritise and neutralise cyber threats in real time you will reduce the risk of a breach and all the damage that would entail, such as data loss, business interruption and reputational damage. This presentation will show how organisations can use a clearly defined Security Intelligence Maturity Model to assess their ability to detect and react to intrusions before they become breaches.

    Edward Carolan, Security Consultant, LogRhythm

  • 2:45pm
    Dialogue: Encryption – its strengths and its weaknesses

    Encryption is an important tool for protecting communications and data from prying eyes. However, criminals are getting better at code cracking. Moreover, governments and law enforcement agencies are putting pressure on communications, social media and IT companies to give them the access keys to help them gather evidence against criminals and terrorists, as in the FBI v Apple case.

    • What are the latest trends in encryption software and techniques?

    • Where do the great vulnerabilities lie, and how is cryptography developing to eradicate them?

    • Should companies open up their encryption/decryption methods and codes to government and law enforcement?

    Jaya Baloo, Chief Information Security Officer, KPN Telecom

    Ben Lindgreen, Head of Security Delivery, Payments UK

    MODERATOR

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 3:05pm
    Presentation: A shift to self-learning and self-defending digital businesses

    The exploding diversity and complexity of modern digital businesses has outpaced the ability of human defenders to understand what is normal and anticipate 100% of potential attacks or disruptions. Alongside this, the risks from the digital era have changed. Intellectual property and financial theft have been a frustration, but we should also expect long-term “trust attacks” on enterprises, which aim to undermine the integrity of data or strategic business decisions. Machine learning developments and artificial intelligence offer new opportunities for resilience across the whole digital business – but will this aid defenders or attackers the most?

    Dave Palmer, Director of Technology, Darktrace

  • 3:15pm
    Networking refreshments break
  • 3:35pm
    Dialogue: The Internet of Things – the next battleground

    As more people use devices connected to the internet, the Internet of Things (IoT) poses new risks. Cars, televisions, central heating systems, fridges, office lighting, locks, security cameras, industrial control systems – all of these objects and more can now be connected to the internet and controlled remotely. This is of obvious benefit to IoT service providers and their customers, but a successful hack could cause untold chaos, damage and financial loss.

    • How well advanced is the IoT? Where will it be five years from now, and what benefits will it offer to communications and other businesses providing IoT-enabled devices and their customers?

    • How serious is the cyber threat in this area? Are the high-profile hacks we have heard of – such as on the one last year that disabled a Jeep Cherokee on a public road – minor one-offs, or sophisticated and dangerous harbingers of worse to come?

    • What security measures are being developed by IoT providers that will prevent and detect such attacks? And what can IoT users do to reduce the risks?

    David Francis, European Cyber Security Officer, Huawei Technologies

    Helena Lindberg, Director General, Swedish Civil Contingencies Agency (MSB)

    INTERVIEWER

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 4:00pm
    Debate: “The European Union's new data protection rules will impose unnecessary burdens on businesses – Yes or No?”

    Business leaders are worried that the European Union's General Data Protection Regulation (GDPR), scheduled to come into effect in early 2018, will seriously harm their commercial interests. It will force them to improve the privacy rights of EU citizens and report data breaches within three days, rules that will be difficult and costly to comply with. Penalties for non-compliance could be as high as 4% of global turnover. However, British businesses could be spared the hassle if Brexit means the UK does not implement the Regulation.

    In what promises to be a contentious debate, two teams of experts will go head-to-head to argue For (“Yes”) or Against (“No”) the Motion. The winning team will be decided by an audience vote.

    Speakers For the Motion (“Yes”)

    John Higgins, Director General, Digital Europe

    Ardi Kolah, Co-Programme Director,  GDPR Transition Programme, Henley Business School

    Speakers Against the Motion (“No”)

    Jan Philipp Albrecht, MEP for Germany, European Parliament; Member of the Group of the Greens/European Free Alliance, and Vice-Chair of the Committee on Civil Liberties, Justice and Home Affairs, European Parliament

    Eduardo Ustaran, Member and Former Director, International Association of Privacy Professionals

    DEBATE CHAIR

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 4:40pm
    Conference chair’s summary and closing remarks

    Sam Jones, Defence and Security Editor, Financial Times

  • 4:50pm
    Networking drinks reception

WHY ATTEND

  • Find out from Europe’s business leaders what they regard as the main threats facing them in cyberspace, and the counter measures they are developing
  • Discover how the Internet of Things is going to be one of the next big battlegrounds in the cyber wars
  • Meet information security experts from software solutions developers 
  • Hear what the UK and other European governments are doing to foil cyber attackers, including cyber terrorists
  • Learn more about the implications for firms of the European Commission’s General Data Protection Regulation and Network and Information Security (NIS) Directive
fallback

ATTENDEE PROFILE AND NETWORKING OPPORTUNITIES

Sectors:

  • Businesses – especially Critical Infrastructure Companies in sectors such as Communications, Financial Services, Transportation and Energy
  • Policymakers – European Commission and other EU Institutions, National Governments, Supranational Bodies
  • Public Sector Organisations – Police, Security and Intelligence Services, Healthcare, Emergency Services, Industry Regulators
  • Service Providers – Software Vendors, Telecommunications Companies, Law Firms, Consultancies
  • Other Influencers – NGOs, Universities, Research Institutes, Industry Associations 

Job Titles:

  • Chief Executive Officer
  • Chief Information Officer, Chief Technology Officer, IT Director
  • Chief Security Officer, Chief Information Security Officer, Director of Security/Information Security/Digital Security
  • Chief Risk Officer, Chief Compliance Officer, Director of Risk/Crisis Management/Business Continuity Planning
  • Head or Director of Fraud Prevention, Intelligence, Forensics or Investigations
  • Chief Financial Officer
  • General Counsel, Head of Legal Affairs, Chief Legal Officer
  • HR Director
  • Head or Director of Corporate Communications, Media Relations, Public Relations, Government Affairs, Customer Services or Marketing
  • Network Architect, Head of Database Systems/Cloud Computing

2015 Attendees Included:

ABN AMRO ACE Group Aegon UK Amlin Plc Avecto Aviva BAE Systems Balfour Beatty Bank Of America Merrill Lynch Barclays Bird & Bird BlueBay Asset Management BNY Mellon BP British Embassy BT Capita Asset ServicesCarillion Carphone Warehouse Citigroup Close Brothers Group CVC Capital Partners Deutsche Bank DMGT Dubai Financial Services Authority Embassy of Israel Embassy of the Federal Republic of Germany Equifax EUROJUST European Banking Authority (EBA) European Commission European Parliament Exane BNP Paribas Experian EY FCA Federal Foreign Office, Germany Foster Wheeler EnergyFreshfields Bruckhaus Deringer Genus Green Investment Bank GSK Heathrow Airport Holdings Home Retail Group HSBC Private Bank Hutchison Whampoa ICAPING Bank International Cyber Security Protection Alliance Investec ITV J Sainsburys Jaguar Land Rover JLT Management Services KPMGKudelskiSecurity LCH.Clearnet Lloyds Banking Group Lombard Street ResearchMcAfee Intel Security Misys MoneySuperMarket.com National Australia Bank Group National Grid NATO Network Rail NHS TrustDevelopment Authority NominetNorthrop Grumman Norton Rose Fulbright Office for Cyber Security and Information Assurance (OCSIA) Ofgem Pearson Philips PI Capital Prudential Rexam RockspringSantander Save the Children Schroders Security Intelligence Department, ItalyStandard Life  Stroz Friedberg Tellurian Capital The Co-operative Bank The John Lewis Partnership Thetrainline.com Tindall Riley TNO UBS Unilever United Nations Office for Disaster Risk Reduction (UNISDR) US Government Virgin Atlantic Airways Vodafone Western Union

Networking Opportunities:

The programme has been carefully designed to allow plenty of networking opportunities throughout the day including refreshment breaks, lunch and a drinks reception at the end of the day.  By registering you will also be given access to a secure online attendee directory 2 weeks before the Summit, which will allow you to see who else is attending and to send messages to other participants, before, during and after the Summit.

fallback

EVENT BACKGROUND

Building safe and resilient businesses
Cyber attacks against companies are on the increase. They are becoming more sophisticated, destructive and costly. Cyber security is no longer an IT problem, it is major boardroom concern. The risks posed by cyber criminals are enormous – theft of money and data from corporate and customer accounts, disrupted services, sabotaged IT systems and damaged reputations. The most serious attacks can hit revenues and profits so hard that a company’s very existence is threatened.

An effective cyber security strategy is therefore essential. A company’s defences are intended to detect and prevent every assault, but no system is perfect so procedures need to be in place to deal with any breaches quickly and efficiently. There must be risk mitigation and business continuity plans in place to ensure that disruption is minimised, and post-event investigative tools to help law enforcers track down the perpetrators. But even the biggest and best-prepared businesses remain vulnerable. No matter how robust their counter measures, hardly a week goes by without a successful attack on a multi-national corporation hitting the headlines.

The FT Cyber Security Summit Europe 2015 will bring together boardroom directors, chief executives, senior management and chief information security officers to discuss the current threats in cyberspace and what more should be done to build safer and more resilient businesses. Following on from the inaugural FT Cyber Security Summit 2014, and the FT Cyber Security Summit USA 2015, this third in the series will continue to examine the threats facing businesses, not only those in critical infrastructure sectors such as communications and financial services, but in other areas too.

Chaired and moderated by senior FT journalists, the speakers and panellists will include senior officials from government departments responsible for helping public and private sector organisations manage their cyber risks. It will also include consultants, security solutions vendors, researchers and other experts in this area. To encourage an open exchange of ideas and frank discussion, some of the presentations and panel sessions may be held under the Chatham House Rule.

fallback

Lead Sponsor (1)

CORVID, intelligent cyber defence, reduces risk, hastens recovery and prevents reinfection.

 Our intelligence-led analysts are experts in threat actor attribution, reverse engineering malware and host & network analytics, enabling CORVID to provide defence against a wide range of threats.

When a compromise occurs, CORVID rapidly identifies how it happened, what was affected and ensures swift return to operation, defensively adapting to ensure no repetition.

Developed by Ultra Electronics, CORVID protects highly sensitive data and secures some of the most targeted networks world-wide. Proven in operations across five continents, it is available to provide proactive security services for your business.

Associate Sponsors (6)

NCC Group is a FTSE 250 listed global expert in cyber security and risk mitigation, working with businesses to protect their brand, value and reputation against the ever-evolving threat landscape.
With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face.
We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security.
Headquartered in Manchester, UK, with over 30 offices across the world, NCC Group employs more than 1,850 people and is a trusted advisor to 15,000 clients worldwide.

LogRhythm, a leader in security intelligence and analytics, empowers organisations around the globe to rapidly detect, respond to and neutralise damaging cyber threats.  The company’s patented award-winning platform uniquely unifies next-generation SIEM, log management, network and endpoint monitoring, and advanced security analytics.  In addition to protecting customers from the risks associated with cyber threats, LogRhythm provides unparalleled compliance automation and assurance, and enhanced IT intelligence.

LogRhythm is consistently recognised as a market leader.  The company has been positioned as a Leader in Gartner’s SIEM Magic Quadrant report for four consecutive years, named a ‘Champion’ in Info-tech Research Group’s 2014-15 SIEM Vendor Landscape report, received SC Labs ‘Recommended’ 5-Star rating for SIEM and UTM for 2016 and earned Frost & Sullivan’s 2015 Global Security Information and Event Management (SIEM) Enabling Technology Leadership Award.  LogRhythm is headquartered in Boulder, Colorado, with operations throughout North and South America, Europe and the Asia Pacific region.

Huawei is a leading global information and communications technology (ICT) solutions provider. Through the dedication to customer-centric innovation and strong partnerships, Huawei has established end-to-end advantages in telecom networks, devices and cloud computing. Huawei is committed to creating maximum value for telecom operators, enterprises and consumers by providing competitive solutions and services. Its products and solutions have been deployed in over 170 countries, serving more than one third of the world’s population.

Kaspersky Lab is one of the world’s fastest-growing cybersecurity companies and the largest that is privately owned. The company is ranked among the world’s top four vendors of security solutions for endpoint users (IDC, 2014). Since 1997 Kaspersky Lab has been an innovator in cybersecurity and provides effective digital security solutions and threat intelligence for large enterprises, SMBs and consumers.

Kaspersky Lab is working closely with car manufacturers and manufacturers of key connected car components to develop technologies that will address cybersecurity issues without damaging the experience, performance and safety of driving.

High-Tech Bridge is a leading web security company with offices in Geneva and San Francisco, currently serving customers from over 40 countries. High-Tech Bridge’s award-winning web security platform ImmuniWeb® allows companies of all sizes to monitor, detect, mitigate and prevent all cybersecurity risks related to corporate web applications. Last year High-Tech Bridge and PwC announced a strategic partnership in the domain of web application security, integrating ImmuniWeb into PwC´s Threat and Vulnerability Management (TVM) Framework. Being a winner of numerous prestigious international awards, ImmuniWeb is based on the unique technology of machine learning (neural networks) and hybrid security assessment model. 

Named Technology Pioneer by The World Economic Forum, Darktrace is one of the world’s leading cyber threat defence companies. Its Enterprise Immune System technology detects previously unidentified threats in real time, powered by machine learning and mathematics developed at the University of Cambridge, which analyse the behaviour of every device, user and network within an organisation. Some of the world’s largest corporations rely on Darktrace’s self-learning appliance in sectors including energy, finance, telecommunications, healthcare, and transportation. The company was founded in 2013 by leading machine learning specialists and government intelligence experts, and is headquartered in Cambridge, UK and San Francisco.

Supporting Partner (4)

Founded in 1989, the Information Security Forum (ISF) is an independent, not-for-profit association of leading organisations from around the world. It is dedicated to investigating, clarifying and resolving key issues in cyber, information security and risk management and developing best practice methodologies, processes and solutions that meet the business needs of its Members.

ISF Members benefit from harnessing and sharing in-depth knowledge and practical experience drawn from within their organisations and developed through an extensive research and work program.

European Risk Management Council is a think tank of Chief Risk Officers and risk management executives from banks, insurances, asset management firms and other financial institutions, consultancies and global industrial companies operating in Europe. The Council operates in London since 2011 and representatives of more than 90 organisations participated in the Council’s think tank meetings. Focusing on the key themes in risk management, regulation and compliance, the Council provides an opportunity for industry discussions and facilitates professional communication and knowledge sharing in the risk management, regulation and compliance. The Council’s mission is to create an environment that allows effective sharing of the best industry practice in risk management and building trusted working relationships with regulators and policy makers.

ETNO represents Europe’s leading telecommunications network operators, who provide European citizens with innovative digital communication and services. ETNO, founded in 1992, is the principal policy group for European network operators and it aims at supporting a positive policy environment to deliver the best quality services to consumers and businesses. ETNO brings together the major investors in innovative and high-quality e-communications platforms and services, representing over 70% of the total sector investment in Europe’s main markets.

For more information, see www.etno.eu or follow us on Twitter: @ETNOAssociation

DIGITALEUROPE represents the digital technology industry in Europe. Our members include some of the world's largest IT, telecoms and consumer electronics companies and national associations from every part of Europe. DIGITALEUROPE wants a European Union that nurtures and supports digital technology industries, and that prospers from the jobs we provide, the innovation and economic benefits we deliver and the societal challenges we address.

Venue

Marriott Grosvenor Square
Grosvenor Square
(Entrance on Duke Street)
London W1K 6JP

United Kingdom

Tel: +44 (0) 20 7499 6363

fallback

CONTACT US

Funmbi Adenubi
Ticket And General Enquiries
Financial Times
Toufique Khan
Sponsorship Opportunities
Financial Times
Eleni Vatyliotis
Marketing and Media Enquiries
Financial Times

Agenda - 21st Sep

  • 8:00am
    Registration and networking
  • 9:00am
    Conference chair’s opening remarks

    Sam Jones, Defence and Security Editor, Financial Times

  • 9:15am
    Panel discussion: Defending Europe's businesses from cyber aggressors

    Cyber attacks on businesses are on the increase throughout Europe and their security is constantly being breached. Even the best counter measures have their vulnerabilities.

    • Just how serious is the threat? How is corporate security being compromised, and what is the actual and potential scale of financial loss and reputational damage?

    • How do you best prevent, detect and respond to cybercrime?

    • How do the board and senior management team develop an effective cyber security strategy? What should be its key components?

    • Working with other organisations: how important is it that companies liaise with governments, software vendors, consultants, researchers and others to bolster their defences?

    • EU developments: how will the Network and Information Security (NIS) Directive improve security? This legislation will have undoubted benefits for Europe’s businesses and citizens, but what will be the disadvantages? 

    Yves Bigot, Managing Director, TV5Monde

    Arne Schönbohm, President, Federal Office for Information Security, Germany

    Heli Tiirmaa-Klaar, Head of Cyber Policy Co-ordination, European External Action Service

    Ollie Whitehouse, Technical Director, NCC Group

    MODERATOR

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 10:10am
    Presentation: "Cybernomics" – building a business-driven corporate security system

    Advanced cyber protection capabilities are essential to prevent, detect and respond to sophisticated cyber attacks. But too many companies buy complex, off-the-shelf cyber security solutions without really understanding what their specific needs are, and without vendors trying to understand those needs.The economics of cyber security require an objective, focused approach where financial and performance metrics are combined with common sense. 

     Andrew Nanson, Chief Technology Officer, Corvid

  • 10:25am
    Networking refreshment break
  • 10:50am
    On-stage interview: Learning from others

    Learning from the experience of others is invaluable. Here we discover how SWIFT, the international bank payment messaging service, is working with financial institutions to reinforce and evolve their security to deal with emerging threats.

     

    Alain Desausoi, Chief Information Security Officer, SWIFT

    INTERVIEWER

    Kara Scannell, Investigations Correspondent, Financial Times

  • 11:10am
    Panel discussion: Protecting banks in cyberspace

    Banks are one of the biggest targets for cyber criminals. Hackers’ motives range from identity theft and service disruption, to defrauding the bank and its customers.

    • What are the main forms of attack?

    • How do banks defend against these attacks?

    • Why is it impossible to build an impregnable cyber fortress without any weaknesses?

    • What is the role of the board and senior management team in developing a cyber strategy?

    • Crisis management: how do you develop a security breach response programme that will enable the bank to manage the operational, legal, financial and other consequences of a damaging attack?

    • How will the EU’s Network and Information Security (NIS) Directive affect banks? What will be the advantages and disadvantages?

    David Emm, Senior Security Researcher, Kaspersky Lab

    Troels Oerting, Chief Information Security Officer, Barclays

    Kevin O’Rourke, General Manager and Chief Risk Officer Mizuho Bank (Europe); Advisory Board Member, European Risk Management Council

    Katie Wiggins, Director, Head of Crisis Management, Information and Resilience Risk Management, Deutsche Bank

    MODERATOR
    Kara Scannell, Investigations Correspondent, Financial Times

  • 11:50am
    Presentation: Why we still cannot stop cybercrime – a global overview

    The growth of global cybercrime is significantly outperforming the growth of effective cyber security. More companies are becoming victims of this type of crime despite rising security budgets. This presentation will review the causes of cybercrime, and discuss how companies can mitigate the risks in a simple, efficient and effective way without spending a fortune on vendors' solutions.

    Ilia Kolochenko, Chief Executive Officer and Founder, High-Tech Bridge

     

  • 12:00pm
    Triple Presentation: Supervising the financial sector’s approach to cyber crime

    Financial regulators play an important role in how banks, insurers, market infrastructure providers and other firms guard against cyber risks, but their emphasis is on guidance and co-operation rather than on rules and coercion.

    Nausicaa Delfas, Director of Specialist Supervision, Financial Conduct Authority

    Beth Dugan, Deputy Comptroller for Operational Risk, Office of the Comptroller of the Currency, US Department of the Treasury

    Nick Strange,Head of Risk Infrastructure, Liquidity and Capital Division, Prudential Regulation Authority, Bank of England

    MODERATOR

    Kara Scannell, Investigations Correspondent, Financial Times

  • 12:40pm
    Dialogue: Managing the news … keeping the media and others informed in the wake of a security breach

    When a company’s security is compromised it is essential to tell staff, customers, the media and others about the problem. They need to know how it might affect them, and what they should do.

    • What does an effective crisis communications strategy look like?  

    • Who do you tell first when responding to a breach, and how do you do it?

    • Best (and worst) practices: real life examples of how companies have responded to cyber attacks, and how well (or badly) they did.

    Morgan Bone, Head of Corporate Media Relations, HSBC

    INTERVIEWER

    Sam Jones, Defence and Security Editor, Financial Times

  • 1:00pm
    Lunch
  • 2:00pm
    Dual Presentation: The long arm of the law – how police forces are co-operating domestically and internationally to combat cyber crime

    Sharing intelligence, methodologies and resources is the key to effective law enforcement in all walks of life, and cyber crime is no exception.

    • How the British police are coordinating efforts to understand, deter and apprehend cyber criminals in the UK. How they are working with law enforcers in Europe, the US and elsewhere to address the problem further afield.

    • The European perspective: how Europol pools cyber intelligence and resources to fight organised cyber crime networks in Europe and beyond.

    • The Global Cyber Alliance is an international security initiative founded last year by the New York County District Attorney’s Office, the Center for Internet Security in Albany, NY, and the City of London Police. Its remit is to protect individuals and businesses from identified threats – what has it achieved so far?

    Commander Christopher Greany, National Coordinator for Economic Crime, City of London Police; and Lead, Identity Crime, Cyber Protect and Counterfeit Currency, National Police Chief’s Council (NPCC)

    Steven Wilson, Head, European Cyber Crime Centre (EC3),Europol

    MODERATOR

    Kara Scannell, Investigations Correspondent, Financial Times

  • 2:30pm
    Presentation: Intrusion v Breach – your fate will be determined by your speed of detection and response

    A security intrusion does not necessarily lead to a breach. If you can detect, prioritise and neutralise cyber threats in real time you will reduce the risk of a breach and all the damage that would entail, such as data loss, business interruption and reputational damage. This presentation will show how organisations can use a clearly defined Security Intelligence Maturity Model to assess their ability to detect and react to intrusions before they become breaches.

    Edward Carolan, Security Consultant, LogRhythm

  • 2:45pm
    Dialogue: Encryption – its strengths and its weaknesses

    Encryption is an important tool for protecting communications and data from prying eyes. However, criminals are getting better at code cracking. Moreover, governments and law enforcement agencies are putting pressure on communications, social media and IT companies to give them the access keys to help them gather evidence against criminals and terrorists, as in the FBI v Apple case.

    • What are the latest trends in encryption software and techniques?

    • Where do the great vulnerabilities lie, and how is cryptography developing to eradicate them?

    • Should companies open up their encryption/decryption methods and codes to government and law enforcement?

    Jaya Baloo, Chief Information Security Officer, KPN Telecom

    Ben Lindgreen, Head of Security Delivery, Payments UK

    MODERATOR

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 3:05pm
    Presentation: A shift to self-learning and self-defending digital businesses

    The exploding diversity and complexity of modern digital businesses has outpaced the ability of human defenders to understand what is normal and anticipate 100% of potential attacks or disruptions. Alongside this, the risks from the digital era have changed. Intellectual property and financial theft have been a frustration, but we should also expect long-term “trust attacks” on enterprises, which aim to undermine the integrity of data or strategic business decisions. Machine learning developments and artificial intelligence offer new opportunities for resilience across the whole digital business – but will this aid defenders or attackers the most?

    Dave Palmer, Director of Technology, Darktrace

  • 3:15pm
    Networking refreshments break
  • 3:35pm
    Dialogue: The Internet of Things – the next battleground

    As more people use devices connected to the internet, the Internet of Things (IoT) poses new risks. Cars, televisions, central heating systems, fridges, office lighting, locks, security cameras, industrial control systems – all of these objects and more can now be connected to the internet and controlled remotely. This is of obvious benefit to IoT service providers and their customers, but a successful hack could cause untold chaos, damage and financial loss.

    • How well advanced is the IoT? Where will it be five years from now, and what benefits will it offer to communications and other businesses providing IoT-enabled devices and their customers?

    • How serious is the cyber threat in this area? Are the high-profile hacks we have heard of – such as on the one last year that disabled a Jeep Cherokee on a public road – minor one-offs, or sophisticated and dangerous harbingers of worse to come?

    • What security measures are being developed by IoT providers that will prevent and detect such attacks? And what can IoT users do to reduce the risks?

    David Francis, European Cyber Security Officer, Huawei Technologies

    Helena Lindberg, Director General, Swedish Civil Contingencies Agency (MSB)

    INTERVIEWER

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 4:00pm
    Debate: “The European Union's new data protection rules will impose unnecessary burdens on businesses – Yes or No?”

    Business leaders are worried that the European Union's General Data Protection Regulation (GDPR), scheduled to come into effect in early 2018, will seriously harm their commercial interests. It will force them to improve the privacy rights of EU citizens and report data breaches within three days, rules that will be difficult and costly to comply with. Penalties for non-compliance could be as high as 4% of global turnover. However, British businesses could be spared the hassle if Brexit means the UK does not implement the Regulation.

    In what promises to be a contentious debate, two teams of experts will go head-to-head to argue For (“Yes”) or Against (“No”) the Motion. The winning team will be decided by an audience vote.

    Speakers For the Motion (“Yes”)

    John Higgins, Director General, Digital Europe

    Ardi Kolah, Co-Programme Director,  GDPR Transition Programme, Henley Business School

    Speakers Against the Motion (“No”)

    Jan Philipp Albrecht, MEP for Germany, European Parliament; Member of the Group of the Greens/European Free Alliance, and Vice-Chair of the Committee on Civil Liberties, Justice and Home Affairs, European Parliament

    Eduardo Ustaran, Member and Former Director, International Association of Privacy Professionals

    DEBATE CHAIR

    Hannah Kuchler, San Francisco Correspondent, Financial Times

  • 4:40pm
    Conference chair’s summary and closing remarks

    Sam Jones, Defence and Security Editor, Financial Times

  • 4:50pm
    Networking drinks reception