UK & Ireland CISO Community
Executive Summit

Hosted by the Governing Body, this welcome reception and dinner is a can’t-miss opportunity to connect with your peers prior to tomorrow’s Executive Summit. Please join your colleagues for an evening of good food, wine, and lively networking.

Whether you are born in, hybrid or moving to the cloud, ensuring your cloud journey is risk-aware and accelerated amidst a volatile threat landscape is increasingly complex.

In this breakout session, you’ll hear from UK cybersecurity threat management specialists Adarma, 10x Banking and AVEVA as they discuss:

• The complexity of the cloud threat landscape and risk
• Critical security controls to manage cloud adoption securely
• Best practices and insights to consider in your own cloud journey

Security teams continue to wrestle with a range of external threats affecting customers, employees and supply chains. New AI and autonomous response capabilities can shorten detection times to milliseconds, and takedown times to minutes. But does the secret lie in the technology or in the humans behind it?

This session will explore how autonomous response technology can make investigation, detection, and response swifter and more efficient, tackling key challenges and pain points from real-world examples.

Join this discussion to explore:

• How autonomous cyber defence can free up valuable time, enabling human security teams to focus on higher-value tasks
• What a successful application of AI to complex digital landscapes looks like
• The current role of AI and autonomous response technology in detecting advanced and fast-moving threats

Are you challenged with unknown risks from your adoption of cloud services? Concerned with whether your IaaS investments are endangering your security or compliance? Or perhaps you’re just watching your budget disappear seemingly on its own. You are not alone. CISOs have been charged with a delicate balancing act, managing increased productivity and cost benefits within a secure cloud environment.

Join your peers for a discussion around:

• Incorporating the cloud into a fully articulated security strategy
• Improving security, visibility and governance in multi-cloud environments
• Establishing trust while balancing the speed and scale of a modern enterprise

Connect with like-minded peers in a private, one-on-one setting through Evanta's Peer-to-Peer Meetings. You will be matched with peers in your community based on your shared interests and priorities.

Be sure to opt in when you register online.

Join this keynote discussion as Neil Thacker will speak on his experiences in moving to SASE/SSE and Zero Trust. The session will ask the audience to share their experiences on their own SASE/SSE journey, touching upon the challenges and rewards of redefining cloud, network and data security. 

This keynote aims to shed light into:

• Implementing edge delivered data-centric security to protect the workforce and data throughout the business
• Safely enabling cloud services without slowing down productivity
• How SASE/SSE can help streamline network security and eliminate complexities and inconsistencies

Diversity comes in many forms, and as cybersecurity criminals become more creative with their methods of attack, CISOs recognise the need for a wide range of skills across their security teams. Diversity comes as a much-needed solution to bridging the gaps in cyber security training. Having people on the team from different backgrounds will bring a variety of viewpoints, meaning teams are more likely to overcome obstacles and resolve issues more efficiently.

Join this discussion to learn how diversity can:

• Boost problem solving capabilities for cybersecurity teams and shed light into threat mindsets
• Help affect good security practice and help build a secure by design framework
• Open the doors to build the future workplace as seen by young generations

Automation is the obvious solution to avoid overtaxing our security teams, but is it enough? How can CISOs inspire out-of-the-box thinking while designing security strategies that will enhance visibility into their systems?

Come together to discuss:

• Techniques to track asset inventory, including both managed and unmanaged devices
• How passive security can increase bandwidth
• Where to identify gaps and vulnerabilities within the enterprise

Added to the list of bona fides for today’s information security leader is a multilingual mandate for speaking the languages of risk. Business risk, legal risk and more all intertwine with an effective security strategy, yet the owners of each area don’t always see eye to eye. Where business units aren’t looking at risk the same way, an opportunity opens for malicious actors.

Join this session to discuss:

• Successful examples of cross-functional partnerships in risk management
• Metrics that effectively describe risk within, and outside of, security
• Tips for leveraging risk discussions to gain support for security

Data governance and security is a crucial exercise when privacy regulation is only becoming more complex and severe. Tightening security controls for sensitive data while also increasing access to other, more valuable types of data is a key challenge on any security information leader’s to do list.

This session aims to explore how CISOs can partner with DPOs, CDOs and the rest of the enterprise to develop data governance strategies that bolster innovation while minimising risk.

Join this session to learn:

• Benefits of linking data governance with information security
• Why data governance and information security are inter-related and how to get the most out of the overlap
• What you, as a CISO, need to do for the data governance team

As enterprises increasingly make access to data more fluid and move assets to the cloud endpoint protection has become vital. These shifting perimeters lack clear definition and require new layers of security through endpoint protection.

This session aims to bring together CISOs to share their journeys of endpoint management, including concerns over vendor validation, data and asset visibility as well as success and failure stories. 

Join this discussion to explore:

• Tactics for monitoring a sprawling attack surface of connective devices
• Strategies to identify your most vulnerable endpoints
• How deep learning can offer a multi-layer approach to endpoint security

Oxford University is an open, free-thinking, academic institution, normally pre-disposed to slow evolution over long periods of time (800 years so far). Early last year, like most organisations, it needed to transform to digital ways of working whilst coping with an evolution in the threats to seize on COVID-19 themes.

Join this session as Graham Ingram shares his security story, including:

• The increase in the general risk profile of COVID themed attacks and exploiting colleagues’ sense of uncertainty in their new home working environment
• The key role the University played in delivering critical COVID life-saving research and ensuring cyber did not become a barrier 
• Securing research of global importance at a University with an open and collaborative culture and an increasing level of scrutiny