IN-PERSON

France CISO Community
Executive Summit

30 November 2022 | Hyatt Regency Paris Étoile

30 November 2022
Hyatt Regency Paris Étoile

Governing Body Agenda Location Partners Contact

Governing Body Co-Chairs

Eric Singer

Schneider Electric
CISO EMEA

What to Expect

Interactive Sessions

Hear from CISO practitioners and thought leaders on how they're solving critical challenges impacting your role today in Keynote sessions, and join smaller, interactive discussions with your peers in Breakout and Boardroom sessions.

Community Networking

Make new connections and catch up with old friends in casual conversations during dedicated time for networking designed to better acquaint you with your France CISO community.

Peer-to-Peer Meetings

Connect with like-minded peers in a private, one-on-one setting through Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

Agenda

CISO AGENDA CIO AGENDA

29 November 2022

afternoon

30 November 2022

mid-afternoon morning afternoon

18:00 - 21:00 Governing Body Welcome Reception

Governing Body Private Dinner

Exclusive to Governing Body members and select guests, this dinner is a can’t-miss opportunity to connect with your peers prior to tomorrow’s Executive Summit. Please join your colleagues for an evening of good food, wine, and lively networking.

11:30 - 12:15 Breakout Session

Achieving the Balance — Addressing Security in IT & OT Worlds

Eric Singer

CISO EMEA

Schneider Electric

Finding the bridge between IT & OT is a struggle for CISOs. With mounting pressure to increase security, CISOs must effectively measure processes and landscapes to navigate what works well in their strategies. Join Eric Singer at Schneider Electric as he shares his journey in finding a balance between IT & OT and collaborating outside the organisation to ensure the protection of the security ecosystem.

In this session you will learn more on:

Using a risk-based approach to address convergence in the IT and OT worlds and build an OT cybersecurity framework
Outlining the strongest risk metrics that will help you craft a compelling business case for the board
Collaborating at an industry-wide level to strengthen OT projects

11:30 - 12:15 Executive Boardroom

Creating a Zero Trust Strategy for CISOs to Compliment User Experience

Eric Vedel

Director, CISO Advisory - EMEAR

Cisco Secure

Frédéric Dru

Sales Manager, Continental Europe, Duo Security

Cisco Systems

Fabien Schwebel

CISO

Europcar Mobility Group

Many organisations understand Zero Trust Network (ZTN) strategies as a way to overcome unauthorised system access created by remote working. However, embedding Zero Trust into company culture is an additional challenge towards creating a security-aware mindset.

Join this conversation to explore:

Implementing, managing and communicating a Zero Trust approach across the business
Integrating IAM tools which positively impact user experience and reduce reliance on technical skills
Comparing ZTN implementation success stories

**This session is for CISOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 CISO attendees.

12:15 - 13:15 Lunch Service

13:15 - 13:50 Keynote

Third-Party Cyber Risk — Zero-Day Findings and Mitigation

Dan Vasile

Vice President, Cyber Strategy

BlueVoyant

Managing distributed risk is today’s defining cybersecurity challenge. Mitigation of zero-day vulnerabilities is critical as adversaries exploit supply chain entities. This session explores how to identify all third parties impacted by zero-day vulnerabilities and guide their mitigation efforts. Your vendor, supplier, and partner ecosystem is now your enterprise attack surface.

Join this session to learn:

How to manage distributed risk associated with hundreds and even thousands of vendors, suppliers, and partners
Approaches to identify, prioritise, and mitigate active threats and critical/zero-day vulnerabilities
Strategies to reduce supply chain/external ecosystem risk associated with zero-day

13:50 - 14:00 Break

08:00 - 09:00 Registration & Breakfast

09:00 - 09:45 Keynote

Crédit Agricole’s IT Vision 2025: Putting People at the Heart of Digital Transformation

Jean-Paul Mazoyer

Deputy General Manager, Technology & Digital Division

Groupe Crédit Agricole

Undergoing a digital transformation within a traditional financial institution is no easy feat. It requires a comprehensive restructuring of an organisation’s architecture, starting with business needs and finishing with IT systems and cybersecurity. Join Jean-Paul Mazoyer, as he shares how Crédit Agricole has embraced a transformation culture to compete in an ever-increasing digital environment.

In this keynote, Jean-Paul will share how to:

Define and communicate a roadmap for digital transformation
Transform IT and cybersecurity to reach your target
Determine the role of the CISO in championing digital culture

09:45 - 10:00 Break

10:00 - 10:45 Breakout Session

Tackling Enterprise Cybersecurity — How Can We Address Evolving Threat Landscapes?

Jennifer Langholz

Global Lead, Chrome Browser Enterprise

Google Chrome Enterprise

As digital business continues to accelerate and cloud work continues to grow, many enterprise assets live outside the traditional “walls'' of the organisation. The role of the browser is changing rapidly. It’s now a critical endpoint; a strategic productivity and security layer in the enterprise tech stack. CIOs and CISOs alike must now ensure they have enterprise-grade security for their browser, speed and stability to empower the workforce and mitigate the risk of harmful web-based threats.

Join this session to hear more on:

Thinking differently about building a browser strategy to tackle new security challenges
Collaborating with industry players to create a safer web environment for your business and employees

10:00 - 10:45 Executive Boardroom

The Modern CISO’s API Security Strategy — What’s Next?

Stephane Benfredj

Director Solution Architecture

Noname Security

Pierre-Emmanuel Leriche

Group CISO

Rexel

In today’s climate, having a holistic view on API security is key to protecting organisations from the ever-expanding API attack surface. Proactively securing your environment from API security vulnerabilities, misconfigurations, and design flaws are among the biggest challenges that security leaders face. How can CISOs identify and eliminate attack surfaces before an incident, and actively test APIs for vulnerabilities throughout the lifecycle, in addition to preventing real-time attacks?

Join this session to discuss:

Remediating management and configuration issues before they become a problem
Security testing for DevOps that integrate into the tools your team is already using
How to build a framework and network architecture to support the rise in remote employees

**This session is for CISOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

10:45 - 11:30 Networking Break

10:55 - 11:20 Peer-to-Peer Meetings

Peer-to-Peer Meetings

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

14:00 - 14:45 Executive Boardroom

Communicating Risk — How can CISOs Translate Insight Into Action

Rudolphe Proust

Chief Global Risks Group

ALTAREA

Henri Hemery

CISO

GRDF

Measuring and communicating security risk is integral to reducing an organisation’s vulnerability to attack. However, other Lines of Business may not be aware of the role they can play to lower this threat. The CISO must excel at communicating metrics and KPIs to overcome technical debt and lack of skills from non-IT functions.

In this session, you learn how to:

Refine the ‘what’ ‘why’ and ‘how’ of your cybersecurity strategy to translate its value for non IT-focused teams
Outline strongest risk metrics that will help you craft a compelling business case to the board
Debate communication strategies that encourage trust, ability and action

**This session is for CISOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

14:00 - 14:45 Executive Boardroom

Could XDR be the Answer to Improving Threat Detection and Response?

Mo Cashman

Principal Engineer

Trellix

Thomas Leveque

Group CISO

Bonduelle

Marc Tournier

Group CISO

Eramet

CISOs today are looking for more proactive and adaptive approaches to threat detection, attack surface reduction and response. Understanding what threats are out there by increasing visibility across all data, including endpoint, network, and cloud data, whilst staying ahead of threats are amongst the most vital priorities that CISOs have to address. So what are the key elements needed to approach threat detection in a truly effective way?

Join this boardroom to hear how with XDR, cybersecurity teams can:

Identify hidden, stealthy and sophisticated threats proactively and quickly
Consolidate alerts and enable teams to do more with less
Learn what other CISOs are doing to adapt posture with insights and new technologies

**This session is for CISOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

14:45 - 15:30 Networking Break

14:55 - 15:20 Peer-to-Peer Meetings

Peer-to-Peer Meetings

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

15:30 - 16:15 Breakout Session

Thinking Outside the Box — Discussing Disruptive Ideas to Talent Shortages

Nicolas Drapier

Chief Digital & Technology Officer

Compass Group France

Amel Mekhinini

CISO

Compass Group France

Cyber & IT wages are inflating at an exponential rate, and new employees are being poached days before they start their new roles. Recruitment and retention require out-of-the-box thinking to stay ahead of the curve. In this interactive session, CISOs and CIOs will come together to discuss lessons learnt and strategies to apply in the months to come. You will brainstorm:

Understanding what makes your employees happy and strategies to combat staff turnover
Fostering a culture which nurtures and rewards existing talent
Rethinking your job requirements to diversify the entry point for the IT and security professions

16:15 - 16:25 Break

16:25 - 17:00 Keynote

Demystifying Security Ratings to Communicate Cyber Awareness

Laurent Amsel

Group CISO

Carrefour

Alain Rogulski

Group CISO

Sodexo

As cyberattacks become more sophisticated, so must a company’s security profile. Security ratings can give good insight into an organisation’s behaviour towards cyber risk and ultimately help to protect the security framework when an attack does occur. Join Laurent Amsel, Group CISO at Carrefour and Alain Rogulski, Group CISO at Sodexo as they share their experiences with security ratings as a tool to increase cyber awareness.

Join this keynote to explore:

Why CISOs use security rating tools and how they form part of a unified security framework
How these tools can be used as an efficient way to communicate cyber awareness to COMEX
How to navigate the vendor landscape and understand the value of the rating market

17:00 - 18:00 Closing Reception & Prize Drawing

11:30 - 12:15 Executive Boardroom

Smarter, Better, Faster, Stronger — How can CIOs win the war on Talent

Sophie Troistorff

France Country Manager

Citrix Systems, Inc.

Bastien Mirault

Group IT Director

Unibail-Rodamco-Westfield

Christopher Tollnert

Group CIO

GSF

In fast-changing business environments, you need to move fast, be more resilient and become a magnet for top talent. For CIOs, it’s more important than ever to understand your digital capabilities and use them to create a winning culture. But what else can CIOs do, apart from higher salaries, to attract top talent into their organisation?

Join this boardroom to discuss:

Rethinking technology and talent in a remote work world
Providing workspaces that help attract and retain top talent
Collaborative strategies to drive meaningful ways of working

**This session is for CIOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

12:15 - 13:15 Lunch Service

13:15 - 13:50 Keynote

Third-Party Cyber Risk — Zero-Day Findings and Mitigation

Dan Vasile

Vice President, Cyber Strategy

BlueVoyant

Join this session to learn:

How to manage distributed risk associated with hundreds and even thousands of vendors, suppliers, and partners
Approaches to identify, prioritise, and mitigate active threats and critical/zero-day vulnerabilities
Strategies to reduce supply chain/external ecosystem risk associated with zero-day

13:50 - 14:00 Break

08:00 - 09:00 Registration & Breakfast

09:00 - 09:45 Keynote

Crédit Agricole’s IT Vision 2025: Putting People at the Heart of Digital Transformation

Jean-Paul Mazoyer

Deputy General Manager, Technology & Digital Division

Groupe Crédit Agricole

In this keynote, Jean-Paul will share how to:

Define and communicate a roadmap for digital transformation
Transform IT and cybersecurity to reach your target
Determine the role of the CISO in championing digital culture

09:45 - 10:00 Break

10:00 - 10:45 Breakout Session

Tackling Enterprise Cybersecurity — How Can We Address Evolving Threat Landscapes?

Jennifer Langholz

Global Lead, Chrome Browser Enterprise

Google Chrome Enterprise

Join this session to hear more on:

Thinking differently about building a browser strategy to tackle new security challenges
Collaborating with industry players to create a safer web environment for your business and employees

10:00 - 10:45 Executive Boardroom

The Changing Face of the Digital CIO

Pierre Gousset

Vice President, Presales

Workday

Stéphane Deux

Group Digital, Data and IT Director

Transdev

Marc Lemke

EVP CIO

Delfingen

The focus of the CIO role is now on broader strategic projects and aligning an organisation's IT infrastructure with its business goals. Liberated of some “lights on” concerns, today’s CIOs can directly influence product and service development by interacting with internal business partners and customers to better understand their needs. Some IT Leaders have the full backing of the board, and some are still leveraging newly found influence to find their seat at the table. But what are the key skill sets CIOs need to foster to ensure success and adapt at a time when business needs are quickly changing?

Join this boardroom to discuss:

The need for CIOs to shift their mindset to focus on driving true business change and the vital role culture plays in this shift
The importance for CIOs to forge stronger relationships across the business
Practical steps CIOs can take to make digital journeys take hold, with a focus on harnessing data effectively, and gaining buy-in from other business leaders

**This session is for CIOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

10:45 - 11:30 Networking Break

10:55 - 11:20 Peer-to-Peer Meetings

Peer-to-Peer Meetings

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

14:00 - 14:45 Breakout Session

Remodeling an IT Ecosystem to Drive Transformational Change

Daniel Cukier

Director of IT, Infrastructure, Operations, & Cyber Resiliency

Banque de France

Rebuilding an infrastructure network, migrating legacy technology and maintaining existing systems are large undertakings when considered individually. Where do you begin when these projects launch simultaneously? Join Daniel Cukier, Director of IT, Infrastructure, Operations & Cyber Resiliency at Banque de France as he shares his team’s efforts to overhaul IT infrastructure to ensure cyber resiliency.

In this session, Daniel will share how to:

Identify IT migration, maintenance and renewal priorities to translate into budget requests for senior stakeholders
Determine existing directories and structures to integrate into new networks which streamline processes and efficiencies and maintain service quality
Execute an IT and Operational strategy which balances an ecosystem renewal with a system phase-out to overcome glitches at the point of transition

14:45 - 15:30 Networking Break

14:55 - 15:20 Peer-to-Peer Meetings

Peer-to-Peer Meetings

Connect with like-minded peers in a one-on-one setting through Evanta’s Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

15:30 - 16:15 Executive Boardroom

Overcoming Hurdles to Cloud Migration

Vincent Bertin

CIO

Groupe SOS

Sabina Stoilova

IT Director, EMEA

ITW

Amaël Chamayou

CISO

TERREAL

One critical hurdle IT and security teams face when overseeing cloud migration is achieving buy-in from the leadership team. The shift to cloud is often costly and may require an overhaul in IT infrastructure and collaboration with other business units. For cloud migration to be a success, CIOs must consider how to streamline IT processes in conjunction with the business motivations for migrating their company's digital assets to the cloud.

During this peer-discussion you will:

Justify the business case for cloud migration and align it with wider company objectives
Discuss methods to enhance cross-functional collaboration which strengthens existing IT infrastructure and security
Share strategies to overcome challenges on your cloud migration journey

**This session is for CIOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

15:30 - 16:15 Breakout Session

Thinking Outside the Box — Discussing Disruptive Ideas to Talent Shortages

Nicolas Drapier

Chief Digital & Technology Officer

Compass Group France

Amel Mekhinini

CISO

Compass Group France

Understanding what makes your employees happy and strategies to combat staff turnover
Fostering a culture which nurtures and rewards existing talent
Rethinking your job requirements to diversify the entry point for the IT and security professions

15:30 - 16:15 Executive Boardroom

Cybersecurity is also a CIO Responsibility

Jan-Willem Goedvree

CIO

GE Renewable Energy

Stephane Carteron

Group CIO

Korian

Alice Guehennec

Group Chief Digital & Information Officer

SAUR

Michel Tournier

IT Operating Partner & Digital Director

Wendel

Cybersecurity is a continuous battle for CIOs; both from external threats and internal users’ IT hygiene. CIOs must work across business units to communicate an education strategy which integrates IT hygiene into an organisation’s culture. Improving internal resiliency is one step closer to the goal of mitigating cyber risk.

Join this boardroom to discuss how to:

Embed IT risk into organisation culture to elevate users’ accountability in protecting the business
Upskill teams to demonstrate the value strong IT hygiene brings to an organisation
Pressure-test applications and network capabilities to keep up with an ever-changing security landscape

**This session is for CIOs only. Please contact Chloe.Stevenson@gartner.com if you have any queries**

16:15 - 16:25 Break

16:25 - 17:00 Keynote

Demystifying Security Ratings to Communicate Cyber Awareness

Laurent Amsel

Group CISO

Carrefour

Alain Rogulski

Group CISO

Sodexo

Join this keynote to explore:

Why CISOs use security rating tools and how they form part of a unified security framework
How these tools can be used as an efficient way to communicate cyber awareness to COMEX
How to navigate the vendor landscape and understand the value of the rating market

17:00 - 18:00 Closing Reception & Prize Drawing