Loading…
This event has ended. Visit the official site or create your own event on Sched.
Developing Collective Resilience for Industry 4.0
CYBER SECURITY FOR CRITICAL INFRASTRUCTURE

March 26th and 27th Amsterdam 2019

Log in to bookmark your favorites and sync them to your phone or calendar.

Tuesday, March 26
 

8:45am

Welcome from the Cyber Senate and our Chairman
Speakers
avatar for Chris Blask

Chris Blask

Director, Industrial Control Systems Security Unisys, Unisys
Chris Blask has been involved in the industrial control system and information security industries for more than twenty-five years, spanning the breadth of the cybersecurity spectrum. He invented one of the first commercial firewall products, built a multi-billion dollar firewall... Read More →


Tuesday March 26, 2019 8:45am - 9:00am
Crowne Plaza Amsterdam Schiphol

9:00am

Quickfire Presentations and Discussion: How are we Going to meet our key Cyber Security Objectives?
This session will give insights into differing national approaches to Cyber Regulation and Frameworks including the various European implementations of the NIS Directive and the Cyber Security Act and NIST guidelines, and how they are helping to meet the cybersecurity objectives laid out for our global critical infrastructure.

Following quickfire presentations (7 minutes each), we will discuss how we can work towards developing outcome-oriented cybersecurity frameworks.

  • How are we going to prove compliance to Cyber Security Regulations?
  • How are the various frameworks and methodologies effective and where are they deficient?
  • Are we on track to reduce our cyber risk profile?

Speakers
avatar for Ragnar Õun

Ragnar Õun

Head of Critical Information Infrastructure Protection Department, Estonian Information System Authority
Ragnar has  worked for the Estonian Information System Authority since December 2016. The Information System Authority (https://www.ria.ee/en.html) coordinates the development and administration of information systems ensuring the interoperability of the state’s information system, organises activities related to information security, and handles security incidents in Estonian computer networks. The Critical Information Infrastruc... Read More →
avatar for Meha Shukla

Meha Shukla

Cyber Security Risk Assesment Consultant/PhD Candidate, physical & cyber security of smart street infrastructure, UCL
Meha Shukla is a senior business transformation and assurance manager with 27 years of global experience in shaping, planning, executing and reviewing technology based business change programmes across various industry sectors (Finance, Title insurance, Telecom, Manufacturing, Automotive... Read More →
avatar for Jalal Bouhdada

Jalal Bouhdada

Founder, Principal ICS Security Consultant, Applied Risk
Jalal Bouhdada is Founder and Principal ICS Security Consultant for Applied Risk. He has over 15 years’ experience in Industrial Control Systems (ICS) security assessment, design and deployment with a focus on Process Control Domain and Industrial IT Security. Jalal has led several engagements for major clients, including many of the top utilities in the wor... Read More →
avatar for Phil Cracknell

Phil Cracknell

Cyber Security Specialist, UK Central Government
Cyber-security personality of the year 2015/16 - http://cybersecurityawards.com/cyberwinners2015/Runner-up - 2017 SC Awards - CISO of the yearBCS Information Security Professional of the year - 2014Phil is a highly technical, business-focussed CISO/Information Security Specialist... Read More →
avatar for Matias Krempel

Matias Krempel

Critical Cyber Infrastructure Protection, DFS Deutsche Flugsicherung GmbH
Setup of the company's project management organisation (deputy head of Project Office) Technical project management (Installation of new ATC towers)Concept and implementation of a project management training schemeDevelopment and operation of the company security management system... Read More →


Tuesday March 26, 2019 9:00am - 11:00am
Crowne Plaza Amsterdam Schiphol

11:00am

Networking Break
Tuesday March 26, 2019 11:00am - 11:30am

11:30am

Emerging Cyber Security Regulations – How new and Upcoming Requirements Impact Critical Infrastructures
Critical Infrastructure has been increasingly facing Cyber Security regulations on national and international level. Next to this, stakeholders have been paying more attention to compliance to external standards and have been using it as both a benchmark and competitive differentiator. But to the organizations this may feel like more effort and attention is put on achieving compliance than actually improving cyber security.
In this talk, Applied Risk will present:
  • What new regulations mean for Critical Infrastructure
  • How to stay on top of compliance requirements
  • Why compliance for compliance sake isn’t the answer
  • How to use compliance to drive improvement
  • Case study: What does the journey to compliance look like for the example of the NIS Directive   

Speakers
avatar for Anne Klebsch

Anne Klebsch

Senior ICS Security Consultant, Applied Risk
Anne Klebsch is a Senior Security Consultant for Applied Risk; An established leader in Industrial Control Systems security protecting operations technology globally. As a certified Global Industrial Cyber Security Professional and Information Systems Auditor holding a MSc degree... Read More →


Tuesday March 26, 2019 11:30am - 12:00pm
Crowne Plaza Amsterdam Schiphol

12:00pm

Cybersecurity from an Engineer’s Perspective
Cybersecurity is a new risk that engineers must address, but are they equipped or supported for this challenge? In this presentation, key findings are presented on how to address this challenge by supporting engineers in understanding cybersecurity and sharing information on best practices both inside and outside the organization.

Speakers
avatar for Jeroen Gaiser

Jeroen Gaiser

Senior Security Advisor, Rijkswaterstaat
Rijkswaterstaat is responsible for the design, construction, management and maintenance of the main infrastructure facilities in the Netherlands. I’m a senior advisor in the Security Centre of Rijkswaterstaat, tasked with policy creation and operational/tactical governance tasks... Read More →


Tuesday March 26, 2019 12:00pm - 12:30pm
Crowne Plaza Amsterdam Schiphol

12:30pm

Overcoming the Communication Challenges Around Security
  • How have we managed to refine the art of addressing specific stakeholder groups to deliver a common cyber-security message with the right level of granularity?
  • How can we translate standards like NIST to the correct language for specific use cases of stakeholder groups?
  • What are our success stories and the methodologies that have been effective in overcoming cultural barriers to addressing cyber risk?
  • How can we leverage existing skill-sets, tools and methodologies within our organisation to develop a culture of cyber security?


Speakers
avatar for Ivo Maritz

Ivo Maritz

CSO/CISO, BKW
Ivo Maritz works for BKW since March 2014. He led the ICT as the Group CIO and Head of the ICT Business Unit until the end of 2016 and heads Cyber Security as the CSO/CISO since January 2017. In both functions he reported and reports to the CFO and Member of the Group Management... Read More →
avatar for Jeroen Gaiser

Jeroen Gaiser

Senior Security Advisor, Rijkswaterstaat
Rijkswaterstaat is responsible for the design, construction, management and maintenance of the main infrastructure facilities in the Netherlands. I’m a senior advisor in the Security Centre of Rijkswaterstaat, tasked with policy creation and operational/tactical governance tasks... Read More →
avatar for Gabor Varjas

Gabor Varjas

CISO, MOL Group
Eighteen years of international enterprise experience in Information Security and Network fields.Proven strength managing IT operations and multicultural teams in a mission critical environment. Expertise in leading IS Global projects and implementations and handling cyber threats... Read More →


Tuesday March 26, 2019 12:30pm - 1:00pm
Crowne Plaza Amsterdam Schiphol

1:00pm

Lunch Break
Tuesday March 26, 2019 1:00pm - 2:00pm
Crowne Plaza Amsterdam Schiphol

2:00pm

Cyber Exercising for Critical Infrastructure
·         How to teach crisis management
·         Interacting on a trans-national and trans-organisational level
·         How to effectively operate cyber exercises across different industries at a national level

Speakers
avatar for Matias Krempel

Matias Krempel

Critical Cyber Infrastructure Protection, DFS Deutsche Flugsicherung GmbH
Setup of the company's project management organisation (deputy head of Project Office) Technical project management (Installation of new ATC towers)Concept and implementation of a project management training schemeDevelopment and operation of the company security management system... Read More →


Tuesday March 26, 2019 2:00pm - 2:30pm
Crowne Plaza Amsterdam Schiphol

2:30pm

Attack Case Study: How NPC Ukrenego has Responded to the 2016 Cyber Attack
  • A view of systems pre-2016 and how the attack unfolded
  • What has been done in the two years since the attack?
  • What is the strategy for hardening resilience for the future?

Speakers
avatar for Sergey Galagan

Sergey Galagan

CIO, NPC Ukrenego
Mr Galagan has been involved in the Information Technology business since the late 1990s. He has excellence in project management, implementing ERP, optimizing infrastructure, and reengineering business processes. His position as CIO of a major metallurgical enterprise afforded him... Read More →


Tuesday March 26, 2019 2:30pm - 3:00pm
Crowne Plaza Amsterdam Schiphol

3:00pm

Industrial Cyber Security Threat Intelligence
  • What does threat intel mean to private corporations?
  • What are the risks of privatised threat intelligence?
  • How can it be useful to cybersecurity professional?
  • How can intelligence be shared in the private sector?
  • The future?


Speakers
avatar for Franky Thrasher

Franky Thrasher

Manager Nuclear Cybersecurity, Engie Electrabel


Tuesday March 26, 2019 3:00pm - 3:30pm
Crowne Plaza Amsterdam Schiphol

3:30pm

4:00pm

Case Study: Securing the Oil and Gas Supply Chain
Speakers
avatar for Gabor Varjas

Gabor Varjas

CISO, MOL Group
Eighteen years of international enterprise experience in Information Security and Network fields.Proven strength managing IT operations and multicultural teams in a mission critical environment. Expertise in leading IS Global projects and implementations and handling cyber threats... Read More →


Tuesday March 26, 2019 4:00pm - 4:30pm
Crowne Plaza Amsterdam Schiphol

4:30pm

Why secure Digitization needs to be integral part of Business Strategy
- Developing and leveraging a secure cloud strategy
- Security by design, building security into all phases of application and IT infrastructure development
- Using a block chain to provide supply chain transparency
- How augmented reality can be used to optimise maintenance

Speakers
avatar for Menno Vlietstra

Menno Vlietstra

CIO, Urenco
Menno Vlietstra is Group Chief Information Officer of URENCO, the market leader in uranium enrichment services with manufacturing facilities in Germany, the Netherlands, the UK and the U.S.With 20 years of technology leadership experience, he drives forward the state-of-the-art IT... Read More →


Tuesday March 26, 2019 4:30pm - 5:00pm
Crowne Plaza Amsterdam Schiphol

5:00pm

Anatomy of an OT Information Security Management System: Dissecting ISO27001
  • Information Security Management System building blocks – how the different pieces fit together
  • The certification roadmap: phased approach and strategy
  • Challenges of pursuing a certification framework in an OT environment
  • Leading an organizational transformation for Cybersecurity

Speakers
avatar for Eduardo Novato Silva Boratto

Eduardo Novato Silva Boratto

Cyber Security Officer, EDP DISTRIBUIÇÃO – ENERGIA
Eduardo Boratto is a Cybersecurity Officer for the energy sector, whose main responsibilities include Governance, Risk and Compliance support at EDP Distribuição. He recently coordinated the implementation and certification of a mission critical Information Security Management... Read More →


Tuesday March 26, 2019 5:00pm - 5:30pm
Crowne Plaza Amsterdam Schiphol
 
Wednesday, March 27
 

9:00am

Surfing the Inevitability Curve of IT/OT Convergence
Converging IT and OT networks provide fundamental economic advantages


Those who best navigate the journey from policy by network configuration will lead their fields


Security leadership must provide business leadership with options that address associated risks


Looking at the shape of the wave ahead frames the options available


Speakers
avatar for Chris Blask

Chris Blask

Director, Industrial Control Systems Security Unisys, Unisys
Chris Blask has been involved in the industrial control system and information security industries for more than twenty-five years, spanning the breadth of the cybersecurity spectrum. He invented one of the first commercial firewall products, built a multi-billion dollar firewall... Read More →


Wednesday March 27, 2019 9:00am - 9:30am
Crowne Plaza Amsterdam Schiphol

9:30am

Taking a top-down Approach to Organisational Cyber Risk Ownership and Governance
We don't need to look very far in any direction to see organisations who have been the victim of attempts by sophisticated attackers to disrupt operations, steal money or data, undermine public confidence or cause physical damage. When the assets we protect are critical to the functioning of society, livelihoods and public safety, the repercussions of failure can be severe. Ultimately, somebody will be to blame... so who is jumping at the chance to own cyber risk?
 ·         Effective escalation of operational to strategic risk
·         The importance of a clear and coordinated strategy to attributing responsibility
·         Proactive and considered approaches and the danger of overreacting to high profile cyber attacks
·         What needs to be better understood by senior management before setting out a fit for purpose cyber governance strategy and what part do you play?

Speakers
avatar for Michalis Kamprianis

Michalis Kamprianis

Strategic Security Adviser, European GNSS Agency
Michalis has built a career of more than 20 years working for well known organizations, in a wide spectrum of industries. With deep technical know how, combined with his business acumen, he has extended experience in building and leading IT and security teams, developing information... Read More →
avatar for Bobby Singh

Bobby Singh

CISO and Global Head of Infrastructure Services, TMX
Bobby Singh, CISO and Global Head of Infrastructure, is responsible for delivering secure and highly available common technology services across TMX. As a member of the executive leadership team, Bobby is defining TMX's cyber security and technology vision and strategy, to advance... Read More →


Wednesday March 27, 2019 9:30am - 10:00am
Crowne Plaza Amsterdam Schiphol

10:00am

Case Study: Managing GDPR from a Cyber Security Team Perspective
  • How should GDPR be managed in a corporate organisation?
  • What are the main impacts of GDPR on operational realities of a cyber team?
  • Examples of overcoming GDPR compliance challenges

Speakers
avatar for Yakup Güneyli

Yakup Güneyli

Manager Cyber Security Team and Crypto Team, Swedbank


Wednesday March 27, 2019 10:00am - 10:30am
Crowne Plaza Amsterdam Schiphol

10:30am

Developing Effective Information Sharing Mechanisms for Critical Infrastructure
·         The ISAC Model, the power of anonymised information sharing and limitations
·         How can cross-sector and transnational information sharing be improved?
·         Intelligence sharing vs information sharing
·         What does good look like for the future of critical infrastructure information sharing?

Speakers
avatar for Jim Linn

Jim Linn

CIO/Executive Director, American Gas Association/DNG-ISAC
Jim has spent the past 30 years of his career in Information Technology and Cybersecurity management with several non-profit organizations in the Washington, DC area. He is currently Chief Information Officer for the American Gas Association (www.aga.org), and has worked there for the past twenty years.  Prior to that he spent eight years as IT Director for the Chemical Manufacturers Association.  He planned IT projects and set technical direction for both of these organizations.  In addition, he is a Certified Chief Information... Read More →
avatar for Bill Nelson

Bill Nelson

Chair and CEO, Global Resilience Federation
Bill Nelson is the CEO of the Global Resilience Federation (GRF).  GRF is a non-profit association dedicated to help ensure the resilience and continuity of vital infrastructure and individual organizations against threats, incidents and vulnerabities. GRF is comprised of nine information... Read More →
avatar for Florian Pennings

Florian Pennings

Seconded National Expert, ENISA
Florian Pennings is an expert in industry collaboration and content stakeholder management at ENISA, the European Cybersecurity Agency. He has experience in setting up and managing Information Sharing and Analysis Centers on national and European level. Besides his work on ISACs... Read More →
avatar for Johan Rambi

Johan Rambi

EE-ISAC Member, EE-ISAC
Johan Rambi is strategic Privacy & Cyber Security advisor and he is specialized in development and implementation of corporate Privacy & Security policies, guidelines and governance structure. Furthermore Johan supports organizations with Privacy & Data Protection (Impact) assessments... Read More →


Wednesday March 27, 2019 10:30am - 11:00am
Crowne Plaza Amsterdam Schiphol

11:00am

Networking Break
Wednesday March 27, 2019 11:00am - 11:30am
Crowne Plaza Amsterdam Schiphol

11:30am

In Blockchain - Can We Trust or Not?
The key paradigm of blockchain is the assertion that two parties that do not trust or know each other can transact directly in a secure manner. No need for a central authority or middle person. In this presentation, we analyze the trust model of blockchain in more details taking into account needs and impacts of both blockchain technology components as well as the role of all the participants including application developers, miners, and public oversight.  

Speakers
avatar for Bobby Singh

Bobby Singh

CISO and Global Head of Infrastructure Services, TMX
Bobby Singh, CISO and Global Head of Infrastructure, is responsible for delivering secure and highly available common technology services across TMX. As a member of the executive leadership team, Bobby is defining TMX's cyber security and technology vision and strategy, to advance... Read More →


Wednesday March 27, 2019 11:30am - 12:00pm
Crowne Plaza Amsterdam Schiphol

12:00pm

Case Study: Protecting Electrical Energy and Power Grid Environments
·         Involve the BoD and the Top Management on an ongoing basis
·         Address Human Factors with the Highest Priority
·         Protect IT and OT – although different - with an integrated hybrid virtual SOC approach


Speakers
avatar for Ivo Maritz

Ivo Maritz

CSO/CISO, BKW
Ivo Maritz works for BKW since March 2014. He led the ICT as the Group CIO and Head of the ICT Business Unit until the end of 2016 and heads Cyber Security as the CSO/CISO since January 2017. In both functions he reported and reports to the CFO and Member of the Group Management... Read More →


Wednesday March 27, 2019 12:00pm - 12:30pm
Crowne Plaza Amsterdam Schiphol

12:30pm

An Holistic Approach to Technology Security
Arguably, we can no longer separate our strategy into operational and information technology, or cyber and physical security. With the rapid uptake of IoT devices and connected systems, the attack surface has grown and converged; so must our defensive strategy.
 
To what extent should we maintain separate approaches?
How can we get better at aligning stakeholders behind the common goal of efficient and secure operations of our technology as a whole?        
Where have we had success in collaborative approaches to Technology Security?
How should we be challenging traditional approaches to IT security to take into account the changes in our ecosystem?


Speakers
avatar for Rafael Company Peris

Rafael Company Peris

Director of Innovation Europe/SAURON's Project Coordinator, Valenciaport Foundation
Rafael Company (1971) // SAURON’s project coordinator.Rafael is Environmental, Chemical and Biology Senior graduated by the University of Valencia (1995), Spain. He has a large experience (over 15 years) as responsible for the Environmental, Safety and Security International Projects... Read More →
avatar for Sergey Galagan

Sergey Galagan

CIO, NPC Ukrenego
Mr Galagan has been involved in the Information Technology business since the late 1990s. He has excellence in project management, implementing ERP, optimizing infrastructure, and reengineering business processes. His position as CIO of a major metallurgical enterprise afforded him... Read More →
avatar for Tahir Saleem

Tahir Saleem

Senior Specialist OT Security, DEWA
Extensive experience in the development, management and execution of cyber security strategy and assurance engagements within large organisations across several industry verticals: critical infrastructure (energy & water), mining, transport, banking & finance, hospitality and Government.ICS... Read More →
avatar for Franky Thrasher

Franky Thrasher

Manager Nuclear Cybersecurity, Engie Electrabel


Wednesday March 27, 2019 12:30pm - 1:15pm
Crowne Plaza Amsterdam Schiphol

1:15pm

Lunch Break
Wednesday March 27, 2019 1:15pm - 2:15pm
Crowne Plaza Amsterdam Schiphol

2:15pm

Developing Trust Across the Supply Chain
Quickfire presentations followed by discussion of:
How are suppliers able to demonstrate an adequate level of compliance to Cyber Security regulations and standards?
Where do we need uniformity in our approach to securing critical infrastructure and where is diversity a strength?
What can be done to collaborate more closely across the supply chain?

Speakers
avatar for Jaya Baloo

Jaya Baloo

CISO, KPN Telecom
Jaya Baloo the CISO of KPN Telecom in the Netherlands. She is recognized in 2017 as one of the top 100 CISO's globally. Jaya works with an amazing information security team of highly driven specialists.  Working in the information security arena for the past 18 years, she has worked... Read More →
avatar for Bill Nelson

Bill Nelson

Chair and CEO, Global Resilience Federation
Bill Nelson is the CEO of the Global Resilience Federation (GRF).  GRF is a non-profit association dedicated to help ensure the resilience and continuity of vital infrastructure and individual organizations against threats, incidents and vulnerabities. GRF is comprised of nine information... Read More →
avatar for Andre Ristaino

Andre Ristaino

Managing Director, ISCI
Andre Ristaino is the Managing Director of the ISA Automation Standards Compliance Institute (ASCI) based in Research Triangle Park, N.C. He provides staff leadership for ISA’s conformance certification programs, including the ISASecure IACS certification program managed under the... Read More →


Wednesday March 27, 2019 2:15pm - 3:00pm
Crowne Plaza Amsterdam Schiphol

3:00pm

Debate: This house believes that we need to more heavily regulate the components used in critical infrastructure and 5G architectures
Speakers
avatar for Wouter Vlegals

Wouter Vlegals

Defence Contractor
avatar for Ivo Maritz

Ivo Maritz

CSO/CISO, BKW
Ivo Maritz works for BKW since March 2014. He led the ICT as the Group CIO and Head of the ICT Business Unit until the end of 2016 and heads Cyber Security as the CSO/CISO since January 2017. In both functions he reported and reports to the CFO and Member of the Group Management... Read More →
avatar for Jaya Baloo

Jaya Baloo

CISO, KPN Telecom
Jaya Baloo the CISO of KPN Telecom in the Netherlands. She is recognized in 2017 as one of the top 100 CISO's globally. Jaya works with an amazing information security team of highly driven specialists.  Working in the information security arena for the past 18 years, she has worked... Read More →


Wednesday March 27, 2019 3:00pm - 3:45pm
Crowne Plaza Amsterdam Schiphol
 

Twitter Feed