Wednesday 13 November
5.30pm - 6.45pm - Opening Keynote Presentation "The concept of cyber resilience as a model for moving forward"
Opening by a senior representative of the National Cyber Security Centre
Chair: Martin Smith MBE, Chairman and Founder, The SASIG
Cyber security protects our systems, networks and data from the threats in cyberspace. But the dangers are now omnipresent – it’s when not if our organisations are attacked. Forward thinking opinion is now migrating towards cyber resilience, which includes not only the ability to protect but also embraces the need to prepare for, respond to and recover from cyberattacks.
We must continue to defend, of course, but we must also now actively plan to limit the severity and impact of attacks and put in place coordinated, converged measures across all business functions to ensure our organisation’s continued post-incident survival and growth.
- Graham Bastin, Group Head of Resilience, Barclays
- John Lenkart, Managing Partner, Cyber Team Six and former Chief of the FBI's Intelligence Operations Section
- Paddy McGuinness CMG OBE, Senior Adviser, Brunswick Group and former Deputy UK National Security Advisor for Intelligence, Security, and Resilience
- Jim Stokley, Deputy Director, National Cyber Crime Unit, National Crime Agency
8pm onwards - Welcome cocktail evening at Marché de la Condamine by Zscaler
Thursday 14 November
9am - 9.30am: Keynote by Proofpoint
9.30am – 6pm: Forum, One-to-one and workshops
5pm - 5.45pm: The SASIG Workshops
#1 - Benchmarking the CISO by The SASIG
- Alain Bouillé, Director of Information Systems Security, Groupe Caisse des Dépôts and President, Le Cesin (Club of Experts of the Security of Information and Digital)
- Professor Denis Fishbacher-Smith, Research Chair in Risk and Resilience, University of Glasgow
SASIG is a subscription-free networking forum, its membership is drawn from UK CIOs, CISOs and their staff. Le Cesin is the major networking forum for CISOs in France, a place for the exchange of knowledge, sharing of experiences, and cooperation between security professionals. Both organisations work to develop, promote and professionalise the CISO function in France and the UK.
Together, SASIG and Le Cesin are carrying out a joint study of our two communities. We will be considering and comparing the CISO role, what governance is in place, and what budgets do CISOs have (overall and as a portion of the overall IT budget). How does the position and profile of the CISO in each country compare with (for example) reporting lines and reaching the boardroom, and how do levels of qualification differ? Last but by no means least, what about the money - how do salaries stack up against each other? We will announce the results of this exercise at the second edition of Cyber Security Connect UK.
- Robert Coles, Visiting Professor, Royal Holloway College University of London
- Olivier Ligneul, Group Cybersecurity Director, EDF
- Helen Rabe, CISO, Abcam
#2 - Securing the Supply Chain
Every organisation is part of the supply chain, up and down. There is huge interest within the supply, procurement and security communities to mitigate risk exposure for client organisations whilst maintaining effective supplier relationships.
SASIG is working with the National Cyber Security Centre (NCSC) and the Chartered Institute of Procurement and Supply (CIPS) to investigate the challenges being faced by organisations across the board in providing assurance to their clients/prospects about their adherence to adequate security standards to everyone’s benefit. This workshop is an opportunity for interested parties from both sides of the supply and purchase divide to share their experiences, to declare their requirements, and to work closely with all key stakeholders.
- Nathan Hayes, IT Director, Osborne Clarke
- John Lenkart, Managing Partner, Cyber Team Six and former Chief of the FBI’s Intelligence Operations Section
- Mark Johnson, CEO, The Risk Management Group
- Richard Rafferty Global Head of Vendor Risk Control, Deutsche Bank
7.30pm - Business Formal cocktail evening by Palo Alto
Friday 15 November
9am - 9.30am: Keynote by Aruba Networks
9.30am – 4pm: Forum, One-to-one and workshops
3pm - 3.45pm The SASIG Workshops
#3 - Developing the next generation of cyber talent
Surveys consistently show that the cyber security skills shortage is worsening. It is directly affecting organisations of all sizes across all sectors. We are all fishing in the same restricted pool of talent for our skilled staff.
So, how do we attract such talent from the whole range of diverse backgrounds to our own organisation, and then retain it? How important is investment in training, and how do we develop high performing and stable teams? Is there a place for a formal mentoring scheme? How important are contractors to the industry, and what is their future role?
- Rory Alsop, Head of Technology and Cyber Risk, HSBC
- Clare El Azebbi,Head of Cyber Resilience Strategy, Safer Communities Directorate, Scottish Government
- Ameet Jugnauth, Head of IT Risk & Governance, Lloyds Banking Group
- Ed Rogers, Extranet Planner, Ford Motor Company and Chair, SASIG Gateway
#4 - Cyber incident management
It is no longer a case of "if" an organisation suffers a cyber security breach, but rather a case of "when”. But recent studies consistently show that many organisations do not feel they are properly prepared to manage a cyber incident. This vulnerability is caused mainly by the complexity of the modern business and its IT infrastructure, combined with a lack of proper and thorough planning.
Incident response is the core of every cyber security organisation. Get this wrong and reputation, confidence and stock price will be hard hit. This workshop explores the processes of discovery, triage, communications, remediation and recovery.
- Peter Goodman QPM, Chief Constable Derbyshire Constabulary and National Police Chiefs' Council (NPCC) National Lead for Cyber Crime
- Graham Wright CISO, Inmarsat
- Chris Gibson, Executive Director, FIRST
- Maria Vello, COO, Cyber Defence Alliance
4pm - 4.45pm: Closing Conference: "The growing threat from Nation State attacks"
Closing by John Lenkart, Managing Partner, Cyber Team Six and recently Chief, FBI Intelligence Operations Section