More than 100 CISOs and security specialists are lining up to speak out at Infosecurity Europe 2013.
Over the past year, we have witnessed even more catastrophic security attacks against the world's largest organisations, but it is a moot point whether they have started to take the threat more seriously.
The government certainly seems to have upped its game, with plans to develop a cyber crime emergency response unit and a reserve force. Whether the same can be said for the enterprise is a key question up for debate at this year's Infosecurity Europe.
Opening its doors at London's Earls Court Exhibition Centre from 23-25 April, the show – with more than 300 exhibitors, many of which are launching new products and services – provides delegates with analysis, end-user experience, strategic advice and predictions from leading figures about the big issues for the coming year.
Now in its 18th year, the show serves an audience of more than 12,000 visitors, of which 46 per cent are decision makers and influencers from every segment of our industry. This year, more than 70 vendors will attend from overseas, including France, Israel, the US and Scandinavia, while the New Exhibitor Zone will house at least 50 stands.
Debate and education programme
Infosecurity Europe is well regarded for its unrivalled education programme, with its on-trend breadth of subjects – and this year promises to deliver more exceptional speeches on thought-provoking topics.
The compelling speaker line-up features senior executives from end-users to policy makers, creating an unparalleled opportunity to access the latest thinking from some of the greatest minds in information security. With panel discussions, presentations, interviews and Q&A sessions, the programme will provide strategic insight, best practice, industry analysis and end-user experience.
Delegates will leave sessions with new knowledge, business intelligence and practical tips that will assist them with developing and implementing a robust information security strategy for the next 12 months.
The keynote theatre agenda has been developed following extensive consultation with the information security end-user community, as well as an advisory council of CISOs, to identify the most critical issues, topics and challenges for them in 2013. The topic highlights include:
Fostering a risk-based approach to information security. This session will look at strategies for risk management to protect your information assets in a way that reflects the value of the information in your organisation.
Delegates will be able to discover how to integrate information security risk into an enterprise risk management framework, and understand how to communicate risk to the board and gain best practice hints and tips on how to de-risk IT provision.
Panellists include: Amar Singh, CISO of a large multinational; Michael Paisley, head of operational risk at Santander; Serge Baudot, head of information security and business continuity at easyJet; Bob Mann, chief security officer, information management and technology at Ofgem; and Andrew Rose, principal analyst, security and risk at Forrester Research.
Changing perceptions: embedding information security in the business. Information security is more than an IT issue – it is an integral aspect of the effectiveness and success of an organisation, helping gain consumer trust and enabling the business to profit from new business channels. In this panel, delegates will understand how to drive and manage cultural change so the business recognises the value of data, and can navigate the challenges of changing behaviour to drive awareness and buy-in from staff.
Panellists include: Brian Brackenborough, CISO at Channel 4; Simon Lambe, head of global IT security at Dyson; and Phil Cracknell, head of information security at TNT Express.
Securing data in the supply chain. Supply chains are integral to how businesses operate today and are becoming increasingly complex. As organisations share more and more information with third parties and offer multiple communication channels to clients, they are at increased risk of compromise. Third parties have their own supply chains, over which you have no control. If a third party supplier or one of their own third parties suffers a breach, you are still liable for your data. Do you know where your data is stored and what the implications are for data protection and compliance? How do you manage your third-party suppliers and enforce your standards and controls? And do you really know where the end of your supply chain is?
This session will provide you with a checklist of practical hints and tips to enable you to assess the security of your supply chain and identify practical measures to secure it. Panellists include: Mark Pearce, head of information security at the Post Office; Mark Jones, CISO, IT security director at BAA; Alistair Wardell, head of client and supply chain security – UK/EMEA at Aon; and Andrew Davis, principal research analyst at the Information Security Forum. There will also be a keynote interview with David Smith, deputy commissioner and director of data protection at the Information Commissioner's Office.
Battling cyber crime: attack techniques, motivations and threats and how to defend against them. Who is the cyber criminal: a financially motivated, disgruntled employee; a supplier; a politically motivated hacktivist; a terrorist; or a member of an organised crime syndicate? This session will assess current cyber threats, help you to understand the motivations driving cyber crime, the methodologies and attack vectors of choice and the strategy and architecture you need in place to protect your organisation. Highlights of the session include: insight into the motivations of the cyber criminal; assessing the level of threat from APTs, AETs, state-sponsored cyber crime and organised crime; and understanding the reality of the insider threat and how to deter, detect and prevent it.
Panellists include: Adrian Price, head of information security at the Ministry of Defence; Arnie Bates, CISO at Scotia Gas Networks; and detective superintendent Charlie McMurdie, head of the Police Central e-Crime Unit at the Metropolitan Police.
Other keynote sessions include:
The programme also includes:
The Business Strategy Theatre. This theatre will focus on how the strategic challenges and issues facing management, CEOs and other board-level directors can impact the way an organisation effectively protects itself against the latest security threats.
The Technical Theatre. This theatre will cover the impact of information security issues and technical advances on how an organisation protects itself from the latest threats. The sessions target information security, IT and R&D/engineering practitioners who are responsible for executing and implementing an IT security strategy.
The Security Workshops. An educational forum for both discussion with peers and individual learning, facilitated by an industry expert.
The Information Security Exchange. Offering both high-level debate around the latest, cutting-edge technical developments and challenges, as well as insight into the most controversial and difficult business issues currently faced within the end-user community, the IS Exchange offers a combination of
end-user and leading industry developments and experiences, in a host of varying formats.
For free entry and further information, visit www.infosec.co.uk.