Fast-moving cyber-attacks can strike at any time, and security teams are often unable to react quickly enough. Join Hanah Darley, Head of Threat Research at Darktrace, to learn how Autonomous Response takes targeted action to stop in-progress attacks, without disrupting your business. Includes real-world threat finds, case studies and attack scenarios.
Your Vision is our mission
UK Visionaries
Leo Cunningham
CISO
Owkin Inc
Gurinder Singh
Global Head of IT Security & Global Head of Innovation
Deutsche Bank
Sandip Patel
Group Chief Security Officer
APM
Paul Scott
Global CISO
Omnicom Group
Cameron Brown
Director - CyberSecurity - Risk Advisory
Deloitte
Leo Cunningham
CISO
Flo Health Inc.
Troy Cunningham
Head of Information Security
IPONWEB
Balaji Anbil
Lead Enterprise Architect
Ministry of Justice UK
Phil Lea
Chief Privacy Officer
Tenth Revolution
William Davies
Head of Information Security and Assurance
Government Shared Services
Martin Medlycott
Group CIO & CISO
Metropolitan Thames Valley
Adrian Leung
CISO & Data Protection Officer Europe
Equifax
Lyn Webb
CISO
Open University
Amar Singh
CISO
Cyber Management Alliance Limited
Hanah Darley
Head of Threat Research
Darktrace Holdings Limited
Your Vision is our mission
Agenda
May 10, 202212:00 PM-12:45 PM
Welcome & Registration
12:55 PM-1:45 PM
Keynote
Fast and Furious Attacks: Using AI to Surgically Respond
Together with:
1:45 PM-2:40 PM
Fireside Chat
Cloud Security
According to Gartner 79% of companies have experienced at least one cloud data breach during the pandemic. Remote work is here to stay, and the concept of securing a perimeter has essentially ended. Traditional application security measures are broken. The need to innovate faster and shift to cloud-native application architectures isn’t just driving complexity, it’s creating significant vulnerability blind spots also.
Under the thumb of the pandemic, enterprises and IT leaders had to look for tech solutions that were resilient and agile to empower the remote workforce. To sustain business continuity plans, organizations shifted workloads to the cloud. As much as cloud adoption offers flexibility and productivity, it also exposes organizations to cyber threats and data breaches. So the question remains if moving to the cloud is the right thing to do and if so how to protect it from the new risks given that most organizations believe that application security should be completely automated to keep pace with dynamic clouds and rapid software development practices.
2:40 PM-2:50 PM
Networking Break
3:00 PM-3:35 PM
Panel
Guarding the Doors: Navigating 3rd Party Risk
As organizations expand their third-party ecosystem, many are challenged with executing core activities that are critical to operations, risk profiles, and compliance posture without compromising the quality of data collection, evaluation, and mitigation measures increasingly outsourcing business activities to 3rd-party vendors. It is critical for an organization to be vigilant when selecting the right 3rd-party vendor with the appropriate security posture, as many vendors are hosting, processing and transmitting sensitive regulatory information with unrestrained access to our IT assets. At the highest level, third-party incidents can result in reputational damage, non-compliance, or even criminal activity, which can negatively impact earnings and shareholder value. To address this challenge, many organizations are investing in technology to support vendor risk management. Technology isn’t the entire answer to managing third-party risk, however the right technology or collection of technologies, coupled with optimal processes, can enable organizations to bridge the gap.
Panelists
Gurinder Singh
Global Head of IT Security & Global Head of Innovation
Deutsche Bank
Sandip Patel
Group Chief Security Officer
APM
Speaker
Phil Lea
Chief Privacy Officer
Tenth Revolution
Delivery of strategy for senior clients, including outcome-based delivery, interim management and targeted cyber consultancy.
Coaching and mentoring of senior Security and Risk Management clients. Delivering specific value to stakeholders to ensure that key initiatives are on track and have the best possible advice and guidance.
Professional Services and consulting for many clients including central government, local government, financial services, telecommunications and commercial organisations. Bid preparation and production. Network accreditation and production of RMADS and ADS. ISO27001 implementation, management, compliance and review
Development of IPR, risk methodologies, risk assessments
20+ years of IT experience, including 16+ years of Information Security.
3:40 PM-4:15 PM
Building security into DevSecOps
Many organizations struggle with how and where to introduce automation and integrations efficiently. Conventional approaches to application security can’t keep pace with cloud-native environments that use agile methodologies and API-driven architectures, microservices, containers, and serverless functions. Application security testing is evolving to meet the speed at which DevOps teams operate. DevSecOps teams are challenged with how to make sense of the noise their AppSec tools generate once they’ve been automated into DevOps pipelines. Processes and tools are more fast-paced and rely on integration and automation to maintain efficiency throughout the software development life cycle. A new approach to DevSecOps is required addressing a change in the security mindset. How do CISOs achieve this without the buy-in from stakeholders?
4:15 PM-4:35 PM
Networking Break
4:35 PM-5:30 PM
Panel
The Greatest Fears?
The biggest fear is not the technology, it is the potential of human error that could expose your organization to a cyberattack. The majority of CISOs agree that an employee carelessly falling victim to a phishing scam is the most likely cause of a security breach. Most also agree that they will not be able to reduce the level of employee disregard for information security. How do we guard against human error without limiting employee efficiency and productivity?
Panelists
Speaker
Troy Cunningham
Head of Information Security
IPONWEB
I am a passionate information security leader and I enjoy making the technical aspects of security become real for people, especially when it comes to making information security engaging and accessible for the non-specialist community. I frame security in a way that’s relatable across a business, regardless if you’re a lawyer, a developer, a client, an engineer or a C-level executive. As part of that passion I’ve been a moderator and a panellist at security events in Geneva and London. I’ve been a security generalist for years and I pride myself on having learned my craft on the job working my way up through various IT administration and architecture roles.
As part of my current role I'm redefining how security is done at Iponweb, and initiating a large program of security transformation, based on risk and strategy. My remit is all of information security, incorporating all of my previous experience and intra-domain knowledge into a holistic strategy for effective long-term security.
I’m generally known by my colleagues for having a pragmatic, practical approach to security and architecture, which is underpinned by my own technical experience. I’m also upfront about when I don’t know something and open to learning new things regularly on the job. It’s important to me to have a fun and collaborative working relationship with my colleagues, and to share knowledge in an effort to grow myself and my people.
Speaker
Balaji Anbil
Lead Enterprise Architect
Ministry of Justice UK
Successful Technology Leader with a strong track record of delivering complex Digital & Cyber Security transformations in Public & Private Sectors.
An advocate of 'Post-Modern' business models and enabling new age businesses to accelerate growth through better adoption of Data Capabilities. Passionate in shaping organisations through Data & Technology with Resilience at its core.
*Currently building a Data & Cyber Professional Services Start-up - Tenacium DC*
Key Focus Areas: Open Source, Azure, AWS, Cyber Capabilities (NIST/CREST/BSIMM, SOC, SEIM, Executive Cyber Coach), ML, Data & Digital Engineering, Innovation, SAFe, Enterprise & Solution Architecture, Tech Procurement.
Adrian Leung
CISO & Data Protection Officer Europe
Equifax
Speaker
Lyn Webb
CISO
Open University
I am an experienced Chief Information Security Officer with outstanding leadership credentials and broad industry experience. I have a background as a Royal Air Force officer, Director in a Big 4 consultancy and presently, the CISO at The Open University. My passion is leading and growing security functions for complex organisations and embedding a strong security culture that helps to support business outcomes. Having experience of multiple high profile, global organisations, often at Board level and in digital organisations, I am passionate about both optimising and exploiting data, while protecting what is most valuable to an organisation. I am an experienced, media trained incident director with over 25 years experienced of multi-agency incidents. I have a strong network in the security sector and regularly present at, and participate in, national and global forums; in 2020, I was made a Fellow of the British Computing Society. I am also passionate about mentoring the next generation and supporting military veterans in their transition to civilian employment. Overall, I thrive on challenges and relish the opportunity to build new capabilities and lead new teams.
5:30 PM-5:35 PM
Closing Remarks
5:35 PM-6:30 PM
Cocktail Hour
Don't take our word for it
Together With
Don’t take our word for it
Heard In The Room
Partner
The process was very well organized by C-Vision. Perfect organization, honest and authentic speakers of high level.
Visionary
A very warm welcome and interesting speakers. I was very pleased to be among such a dynamic group.
Partner
I love the engaging format of the councils. Very high level discussions and never a sales pitch. The C-Vision staff members are amazing.
Partner
Thoughtful discussion among experienced leaders regarding current challenges and complexities, and valuable exchange of pragmatic approaches and best practices. Well organized and facilitated.
Visionary
C-vision's events combine relevant topics with a suitable audience. I found great value at my last attendance, and would definitely consider upcoming events.
Partner
Intimate, immersive experiences provided by a group of individuals always available to support our needs. Fantastic organization and very high-level executives. The promise was delivered!
Visionary
C-Vision laid out an articulate plan for us to be much more targeted, presented a stronger ROI and on top have come through with the Results they Promised. They really have become an adjunct "team for hire" building trust with us all along the way. There is no second guessing on this relationship and consistently over-deliver. My kind of Partner.
Partner
C-Vision was really professional, responsive, listened and are very thoughtful in their approach. They are very high touch and truly care about the customer and end result. Our speakers were impressed with the format, and who they brought to the table.
