14 July 2016 London
The growth and value of every enterprise depends on its ability to combine talent and technology for value creation. Business innovation is helped by IT as this is rapidly becoming an enabler.But conventional IT now includes a wide world of cloud, mobile devices and apps.This diffusion of information and communications technology (ICT) in society and everyday life has significantly increased the volume, velocity and variety of production of data. But this volume and ready accessibility brings in the question of accountability, governance and security.
This conference bring together thought leaders who discuss various aspects on this theme and offer solutions for the problems raised. The format of the day is a mixture of hour long in-depth presentations from these thought leaders and then supporting case studies. Also the programme has two panel sessions where there is the opportunity to ask further questions to all the speakers, making this a fact finding and interactive day.
Simon Marvell, CEO, Acuity Risk Management
Due to the high level of threat there is an urgent need for organizations to truly understand their cyber security risk status so that, where necessary they can take urgent remedial actions to rectify weaknesses.This presentation will show how to model cyber security threats and controls, measure risk status and react to change.
Jean Lehmann, CEO and founder, Cyber Capital HQ
Cyber Security is often perceived as a technology issue. Although technology is of paramount importance to help protect organisations from cyber attacks and meet company’s security needs, both internally and externally, the evolving regulatory and compliance landscape in relation to cyber security and data protection will force organisations to revisit their operating models and business processes by enhancing security controls across the entire organization. Compliance and data protection regulation will increasingly become a board level matter. We will look into how technology can help companies achieve a higher degree of compliance and monitoring in the context of an enterprise wide risk management framework.
Dai Davis, Percy Crow Davis & Co Ltd
Data protection is undergoing a seismic change. In a judgment last October the European Court of Justice roundly condemned the “fiddle” that had operated for years allowing data to be freely exported to the US by way of the “Safe Harbour” arrangements. Those arrangements are in the process of being replaced by the new Privacy Shield backed up by the new SU Judicial Redress Act. In addition the new European General Data Protection Regulation is about to be enacted paving the way for more fundamental changes in data protection legislation, including “privacy by design” obligations. Dai Davis will give a brief tour of the changes and what companies should be doing to prepare for those changes.
All speakers with questions from the floor.
The dual-issues of users' perceived weaknesses and lack of information/cyber security awareness are regarded by many as ever-increasing problems within organisations, backed up in a number of recent surveys. This webinar will explore the issue of social engineering and discuss attack motivations, methods and approaches, and why social engineering attacks work. Given that many organisations use security awareness/education programmes to mitigate the perceived problems, a case will be made as to why awareness/education courses on their own will not solve the problem.
Andrew Fielder, Institute for Security Science and Technology, Imperial College London
All organisations want to be secure, however it is not always clear how to make appropriate decisions. We present an approach to optimising the defences of SMEs based on user capability. The approach is demonstrated using a case study of a company comprising of remote workers and cloud based resources.
Liz Bacon, University of Greenwich
This talk will look at the increasing impact of cybercrime on organisations and the consequence of the growing shortage of cybersecurity professionals. A key part of the solution to this shortage depends on the knowledge and skills of university computing graduates, not just those specialising in cybersecurity degrees. Recent curriculum changes at all educational levels, such as a joint initiative between industry and academia to specify cybersecurity degree accreditation requirements, will be discussed. The talk will also look at societal trends, the implications for cybersecurity and the educational needs of the population, both now and in the future.
All speakers with questions from the floor.