IN-PERSON

Nordic CISO Executive Summit

16 May 2023 | Elite Hotel Marina Tower, Stockholm

16 May 2023
Elite Hotel Marina Tower, Stockholm

Governing Body Agenda Location Partners Contact

Governing Body Co-Chairs

Lars Falch

Novo Nordisk
CISO/CVP, Global Information Security

Lance McGrath

Danske Bank
Chief Security Officer

Robert Mungenast

Electrolux
CISO

Bjørn Watne

Telenor Group
Senior Vice President and Chief Security Officer

What to Expect

Interactive Sessions

Hear from CISO practitioners and thought leaders on how they're solving critical challenges impacting your role today in Keynote sessions, and join smaller, interactive discussions with your peers in Breakout and Boardroom sessions.

Community Networking

Make new connections and catch up with old friends in casual conversations during dedicated time for networking designed to better acquaint you with your Nordic CISO community.

Peer-to-Peer Meetings

Connect with like-minded peers in a private, one-on-one setting through Evanta's Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

Agenda

CISO AGENDA CIO AGENDA

15 May 2023

afternoon

16 May 2023

morning mid-afternoon afternoon

18:00 - 21:00 Governing Body Welcome Reception

Governing Body Welcome Reception

Exclusive to Governing Body members and select guests, this dinner is a can’t-miss opportunity to connect with your peers prior to the Executive Summit. Please join your peers for an evening of good food, wine, and lively networking.

Hotel Berns is a historical boutique hotel and house of entertainment since 1863.

To join the Welcome reception, please RSVP to dariush.kashani@gartner.com

08:15 - 09:00 Registration & Breakfast

09:00 - 09:45 Keynote

Driving the Business Value of IT

Tommi Tuovila

CIO

Neste

CIOs understand that bringing IT closer to the business will enable better, faster decision-making. How often do organisations recognise the value IT can bring to the wider business? What is the business value of IT? Join Tommi Tuovila, CIO at Neste as he shares his vision on how to govern and deliver a business-led IT strategy.

In this keynote, Tommi will share how to:

Define, measure and report the business value of IT to senior stakeholders
Streamline the IT operating model to enable value creation
Upskill IT team to develop competencies and roles for the future of IT delivery

09:45 - 10:00 Break

10:00 - 10:45 Breakout Session

Novo Nordisk’s Journey Towards Zero Trust

Lars Falch

CISO/CVP, Global Information Security

Novo Nordisk

More details coming soon!

10:00 - 10:45 Executive Boardroom

Strategic Pitfalls in Third-Party Risk Management

Jarle Eek

Regional Director

RiskRecon

Björn Sjölund

Director Information & Security (CISO)

Vattenfall

Lars-Gunnar Marklund

CISO

Boliden

Managing cyber risk across an enterprise IT infrastructure has never been harder. Remote workers, advancing attack methods, and an ever-expanding vendor network are challenging every firm, as total visibility into threats has become nearly impossible. As digital business strategy matures, more organisations are becoming dependent on the cyber posture and protection of third parties. How are you mitigating the associated risks and demonstrating this to the business to ensure effective security programmes?

Join our session to hear about:

Common failings across TPRM programs that led to breach events
How executives can provide strategic direction for third-party risk teams
Key practices being implemented by leading vendor risk firms to maintain strong supply chain risk management

**This session is for CISOs only. Please contact Dariush.Kashani@gartner.com if you have any queries**

Executive boardrooms are intimate and interactive sessions designed to foster dynamic dialogue around a specific, strategic topic. These private, closed-door discussions encourage attendee participation and are limited to 15 CISO attendees.

10:55 - 11:15 Peer-to-Peer Meetings

Peer-to-Peer Meeting 1

11:20 - 11:40 Peer-to-Peer Meetings

Peer-to-Peer Meeting 2

10:45 - 11:45 Networking Break

11:45 - 12:30 Breakout Session

Communicating Risk to Fuel Data-Driven Security Posture

Melissa Gilbert

BISO

Verizon Business Group

Phillip Larbey

Head of Threat Research Advisory Center EMEA,

Verizon Business

In today’s complex cyber threat landscape, understanding the speed of change and current trends is paramount. Collaboration between CISOs and CIOs and using data to support a threat-based approach to risk management is becoming essential for an effective security posture. By translating risk into a business need, IT and Security teams can enable leadership to make data-driven decisions that strengthen security resilience.

Join this session to learn how CISOs and CIOs can collaborate to:

Utilise cyber trend data and quantitative risk metrics to evolve your security strategy and prioritise investments
Apply Cyber Risk Quantification model to effectively manage risk
Understand how to translate risk into a business need

11:45 - 12:30 Executive Boardroom

Getting Ahead of the Compliance Game to Achieve Resilience

Christian Borst

CTO, EMEA

Vectra AI

Timo Laakso

CISO

Finnair

Albin Zuccato

CISO

ICA Gruppen

New regulations coupled with an evolving geopolitical landscape are resulting in governments and regulatory bodies having more oversight of cybersecurity incidents than ever before. CISOs must balance competing priorities and lack of resources to remain compliant and ensure resiliency to attack.

Join this boardroom to discuss strategies on how to:

Gather a complete view of the business environment to link regulatory milestones and KPIs to achieve compliance
Streamline resources to create flexibility when acting on a threat and still remain compliant
Leverage data to identify risk as early as possible to increase preparedness against attack

**This session is for CISOs only. Please contact Dariush.Kashani@gartner.com if you have any queries**

12:30 - 13:30 Lunch Service

13:30 - 14:05 Keynote

Building a Business Case for Secure Digital Transformation

Nathan Howe

VP, Emerging Technology

Zscaler

CIOs and CISOs may have different motives for pursuing digital transformation. Whether the ultimate goal is simplifying connectivity to critical business resources or protecting against cyber threats, it's important to frame discussions with boards and executives in terms of business needs.

Join this session and learn to:

Calculate hard and soft costs
Quantify risk reduction and business productivity gains
Recruit business champions for zero trust transformations

14:05 - 14:15 Break

14:15 - 15:00 Breakout Session

Converging Internal and External Cyber Defence to Build Resiliency

Dan Vasile

Vice President, Strategic Cyber Advisory

BlueVoyant

Focusing on three critical pillars of any security programme: Security Operations, Third Party Risk Management and Digital Risk Protection, this session examines real-world examples of cybersecurity incidents and explores the practices that could have prevented or reduced the impact of the events. Join Dan Vasile, Vice President, Strategic Cyber Advisory at BlueVoyant as he delves into the opportunities presented by the convergence of internal and external cyber defence capabilities.

In this session you will learn how to:

Leverage automation to alleviate pressure on SOCs and coordinate activities between different areas of cybersecurity
Why stakeholders' alignment on objectives and operational practices is paramount for risk reduction
Understand gaps in security operations, threat intelligence and third-party risk management practices

14:15 - 15:00 Executive Boardroom

Embedding a Proactive Security Culture Within Your Organisation

Sharon Kriss

CISO

Svenska Spel

Jesper Laurin

CISO

Husqvarna

Sebastian Mabillon

CSO & Vice President

Nuuday

Despite efforts from phishing simulations and security awareness campaigns, the human factor remains a key vulnerability in organisations’ line of defence. CISOs must execute a cross-functional educational strategy to shift employee behaviour from reactive to preventive.

Join this conversation to explore:

Implementing, managing and measuring a security-first mindset across the business
Tailoring your awareness campaigns to prioritise prominent and complex threats
Upskill teams to improve cyber resiliency and demonstrate the value strong IT hygiene brings to an organisation

**This session is for CISOs. Please contact Dariush.Kashani@gartner.com if you have any queries**

14:15 - 15:00 Executive Boardroom

Advancing Mergers and Acquisitions Integrations with Identity

Mattias Bolander

Regional Vice President, Nordics

Okta

Anders Jared

CISO

Bravida

Thomas Zakarias

CISO

DSV

In today’s competitive environment, an organisation’s ability to execute successful mergers and acquisitions (M&A) has become a key differentiator. Yet the public nature of an M&A increases the potential for ransomware attacks. An organisation's ability to consolidate identity and access management (IAM) quickly during an M&A process can be a key tool in increasing the agility of an M&A and therefore reducing exposure to attacks.

Join this boardroom to discuss:

M&A identity tales – best practices and lessons learnt
Simplifying joiners, movers and leavers from two organisations
Addressing Shadow IT and third-party access during an M&A

**This session is for CISOs only. Please contact Dariush.Kashani@gartner.com if you have any queries**

15:00 - 15:30 Networking Break

15:30 - 16:15 Breakout Session

Value vs. Risk – A Thoughtful Approach to Generative AI

Anna Felländer

Founder and CEO

anch.AI

For CIOs and CISOs, there’s nothing new about managing internal expectations on emerging technologies. With the spotlight focused on generative AI, it is more important than ever to understand the regulatory landscape, ethics and appropriate use of new tools. How can CIOs and CISO collaborate to ensure the IT function and wider organisation is prepared for a new frontier in automation?

Join this session to learn more about how to:

Balance AI governance with existing IT and security regulations
Embed a data ethics policy to mitigate misuse of information and importance of validating third parties who use AI
Complement business decisions with AI to detect threats early, often and automatically

15:30 - 16:15 Breakout Session

Flipping the Asymmetry with Attackers: an Interactive Wargame

Sharon Isaaci

VP, Cyber Security Services, EMEA

Sygnia

Yotam Meitar

Incident Response Manager

Sygnia

It’s time to play!

Preparing for a cyber crisis is imperative and can determine whether it becomes a major catastrophe or a manageable incident. What needs to be done in the first hours of a highly disruptive incident? What are the common options, dilemmas and pitfalls? And how can we get it right?

Join our interactive incident simulation, based on a true story. Your decisions as executives will be presented and help shape the future of the victim organisation.

During this session, we will:

Leverage the wisdom in the room to tackle complex challenges and get ahead of the attackers
Understand the impact of technical and stakeholder management decisions on the business
Discuss key pitfalls commonly overlooked by security teams

15:30 - 16:15 Executive Boardroom

Defend the Endpoint to Accelerate Business-Wide Recovery

Jean-Benoît Nonque

Senior Director

HCL BigFix

Kasper Thastrup Tindbæk

CISO

JN Data

Christian Bengtsson

CSO

Bankgirot

Cybercriminals are acting faster and smarter than ever before. CISOs know they must prioritise vulnerabilities based on an organisation’s critical needs but cannot do it alone. CISOs must also keep endpoints continually secure and compliant. How can CISOs communicate with the wider business to protect an organisation’s endpoints?

In this boardroom, you will discuss strategies to:

Streamline communication between security and IT operations to minimise cyber risk
Automate remediation of your vulnerabilities to reduce the attack surface
Create and manage Protection Level Agreements (PLAs) to facilitate interdepartmental communication

16:15 - 16:20 Break

16:20 - 17:00 Keynote

Creating a Green IT Ecosystem to Encourage Digital Sustainability

JP Iversen

Group CIO

Electrolux

Helena Babelon

Head of IT Sustainability

Electrolux

CIOs play a critical role in enabling organisations to meet sustainability commitments. How do you ensure you measure what matters? How do you treat used IT equipment to ensure as little e-waste as possible? Join Helena Babelon, Head of IT Sustainability and JP Iversen, CIO at Electrolux as they share how the IT function is driving sustainability across the wider business.

In this keynote Helena and JP will discuss how to:

Embed sustainability in an organisation’s IT strategy
Support organisations to make sustainability part of decision making across IT operations and the supply chain
Empower and engage employees to integrate sustainability in company culture and part of their behaviours around IT

17:00 - 18:00 Closing Reception & Prize Drawing

08:15 - 09:00 Registration & Breakfast

09:00 - 09:45 Keynote

Driving the Business Value of IT

Tommi Tuovila

CIO

Neste

In this keynote, Tommi will share how to:

Define, measure and report the business value of IT to senior stakeholders
Streamline the IT operating model to enable value creation
Upskill IT team to develop competencies and roles for the future of IT delivery

09:45 - 10:00 Break

10:00 - 10:45 Breakout Session

Leading with Digital Sustainability to Protect the Enterprise

Kari Anna Fiskvik

Vice President Technology

Nordic Choice Hotels

Neha Rajesh

Marketing Lead - Chrome Enterprise EMEA

Google

Enterprises are under pressure to address multiple challenges impacting the planet, their people and profitability. This is all happening in the backdrop of uncertain operating environments and rising security risks. Join Kari Anna Fiskvik, VP Technology, Nordic Choice Hotels and Neha Rajesh, Marketing Lead - Chrome Enterprise EMEA as they discuss how the hotel group recovered from a ransomware attack, and how they have been able to better enable the business to sustainably bounce back while providing security against future attacks.

Join this session to discuss:

How Nordic Choice Hotels were hit with, and recovered from, a ransomware attack
How a quick recovery enabled the business to sustainably bounce back while providing security against future attacks
Managing the social and financial impact of the attack and how it paved the way for a sustainable modernisation of devices across the board

10:00 - 10:45 Executive Boardroom

The CIO’s Playbook: Execute Strategy Confidently

Jason Baragry

Chief Enterprise Architect and Head of Customer Research

Ardoq

Carl-Magnus Hallberg

Managing Director, EQT Digital

EQT AB

As a CIO, what are you choosing to prioritise when looking at your IT initiatives? While many may compete for your time - investing in security, innovation or even saving costs - they don’t need to be at odds. CIOs can practically take steps to remove the noise that’s creating decision drag.

Join this boardroom to discuss how to:

Filter out the noise that stems from unreliable volumes of data
Get the business and IT collaborating when objectives are (re)prioritised
Tactics that enable CIOs to collaborate in real-time with IT and business stakeholders

**This session is for CIOs only. Please contact Dariush.Kashani@gartner.com if you have any queries**

10:55 - 11:15 Peer-to-Peer Meetings

Peer-to-Peer Meeting 1

11:20 - 11:40 Peer-to-Peer Meetings

Peer-to-Peer Meeting 2

10:45 - 11:45 Networking Break

11:45 - 12:30 Breakout Session

Influencing Behavioural Change in IT

Anders Candell

Group CIO

Skanska

CIOs are used to adjusting to different operating models at organisations as they move through their career, but the most consistent barrier to change is often users themselves. The biggest challenge is not system migration or restructuring IT operations when moving from decentralised to centralised models (and vice versa) but convincing users to adopt a change in IT culture. In this session, Anders Candell, Group CIO at Skanska will share the hurdles he has faced throughout his career and the strategies used to encourage gradual behavioural change within IT organisations.

11:45 - 12:30 Executive Boardroom

Fusing IT Operations & Cybersecurity to Ensure Business Resiliency

Göran Kördel

CIO

Boliden

Cybersecurity is a continuous battle for CIOs; from external threats and internal readiness to maintain critical IT functions. CIOs must question existing assumptions to ensure the security programme is secure and efficient. However, a lack of resources can impede CIOs from executing a robust business continuity plan.

Join this boardroom to discuss how to:

What level of cybersecurity should you have?
How do you measure your cybersecurity?
How to enforce cybersecurity in daily IT operations?

**This session is for CIOs only. Please contact Dariush.Kashani@gartner.com if you have any queries**

12:30 - 13:30 Lunch Service

13:30 - 14:05 Keynote

Building a Business Case for Secure Digital Transformation

Nathan Howe

VP, Emerging Technology

Zscaler

Join this session and learn to:

Calculate hard and soft costs
Quantify risk reduction and business productivity gains
Recruit business champions for zero trust transformations

14:05 - 14:15 Break

14:15 - 15:00 Breakout Session

Rethinking IT Organisational Design to Enable Digital Transformation

Petra Ålund

Head of Group Technology

SEB

As organisations accelerate their digital transformation, they must leverage technology to make IT a critical component of business decisions while also reducing cost and drive growth. Join Petra Ålund, Head of Group Technology at SEB as she details the journey of reorganising the technology function to become more agile and digitally focused, along with pitfalls and lessons learned along the way.

15:00 - 15:30 Networking Break

15:30 - 16:15 Breakout Session

Value vs. Risk – A Thoughtful Approach to Generative AI

Anna Felländer

Founder and CEO

anch.AI

Join this session to learn more about how to:

Balance AI governance with existing IT and security regulations
Embed a data ethics policy to mitigate misuse of information and importance of validating third parties who use AI
Complement business decisions with AI to detect threats early, often and automatically

15:30 - 16:15 Executive Boardroom

Closing the Skills Gap to Recruit & Retain IT Talent

Vesa Lipponen

CIO

Valtiovarainministeriö

Svein Lister

VP Global IT

FläktGroup

It is no longer enough for CIOs to only nurture and upskill existing talent to fill a business need. CIOs must ensure they have the appropriate expertise in place to tackle sophisticated cloud systems and emerging technologies. How are CIOs fostering a talent framework that encourages recruitment and retention whilst enabling digital acceleration?

Collaborate with your CIO peers on how to:

Incorporate a blended on-shore and off-shore model to address the dearth of technical talent and increase Diversity, Equity & Inclusion
Pivot focus to non-traditional recruitment routes to counter competition and reduce the onboarding cycle
Encourage senior stakeholders to adopt an agile mindset in talent recruitment and retention to keep up with an evolving digital landscape

**This session is for CIOs only. Please contact Dariush.Kashani@gartner.com if you have any queries**

16:15 - 16:20 Break

16:20 - 17:00 Keynote

Creating a Green IT Ecosystem to Encourage Digital Sustainability

JP Iversen

Group CIO

Electrolux

Helena Babelon

Head of IT Sustainability

Electrolux

In this keynote Helena and JP will discuss how to:

Embed sustainability in an organisation’s IT strategy
Support organisations to make sustainability part of decision making across IT operations and the supply chain
Empower and engage employees to integrate sustainability in company culture and part of their behaviours around IT

17:00 - 18:00 Closing Reception & Prize Drawing

15 May 2023

afternoon

16 May 2023

morning mid-afternoon afternoon

We look forward to seeing you at an upcoming in-person gathering

Evanta cares about the health and safety of our community. Please review the following recommendations prior to attending the gathering.

Location

Venue & Accommodation

Elite Hotel Marina Tower, Stockholm

MORE INFORMATION

Directional Information - Hotel Berns

Metro: Berns is surrounded by the different metro lines only 5 minutes to Östermalmstorg red line and Kunsträdgården Blue Line and 10 minutes to T-central Green, Blue & Red Line.

Air: From the Airport you can take the Airport bus that stops in the Central Station only 15 minutes’ walk from Berns.

Train: In the central station you will find the commuter train and the train station.

Parking: For parking see link below

https://www.stockholmparkering.se/hitta-oss-pa-kartan/?visibility=show-all

Directional Information - Elite Hotel Marina Tower Stockholm

Air:

STOCKHOLM ARLANDA AIRPORT

Arlanda Express goes non-stop to Stockholm central station. Flygbussarna Airport Coaches offers several stops during the way to the city. Taxi from Arlanda takes about 30 minutes depending on the traffic. The taxi companies know the address to the hotel, and we recommend that you confirm the price before the journey.

BROMMA AIRPORT

Go by taxi or take Flygbussarna Airport Coaches to Stockholm Cityterminalen.

CAR:

From Slussen: Drive along Stadsgårdsleden towards Nacka. At the large intersection in Henriksdal, turn left onto Kvarnholmsvägen, drive left at the roundabout into Hästholmsvägen and continue straight until you see a tunnel down to the right. Take the first exit on the left in the tunnel, park in the garage, Utsikten, on the 11th floor. Get your parking ticket in the machine, you can pay with a card or via the MobilPark app. Code for entry & exit is on the ticket.

Train:

METRO

The nearest Metro station is Slussen.

BUS:

Take Bus 53, from the central station ( T-centralen) or Slussen (Location L) to Henriksdalsviadukten. You will reach the hotel with a short walk. Take left at the roundabout and then follow the first road on the right (Västra Finnbodavägen), where there is a lift down to the hotel.

FERRY BOAT:

Take the ferry boat from Nybrokajen to Saltsjöqvarn, about 10 minutes. Both SL-tickets and the Stockholm Pass is valid. Buy the ticket before you go on board, for example at 7-Eleven at Nybroplan.

A block of rooms has been reserved at the Elite Hotel Marina Tower, Stockholm at a reduced conference rate. Reservations should be made online or by calling +46 855901746.

Deadline to book using the discounted room rate of kr1870 SEK (plus tax) is 24 April 2023.

RESERVE ROOM