8:30 - 9:30
Arrival, registration & breakfast networking
The event will begin with an informal networking session over a continental breakfast. This gives the attendees the opportunity to begin expanding their networks and to break into small groups and begin to discuss their biggest challenges as well as to exchange ideas
9:30 - 9:40
Introduction from the Network Group and the Chair
A brief introduction to the event software—this software, unique to the industry, empowers our attendees to make the most effective use of their time at the event by maximising networking opportunities. The software designs a personalised agenda and enables attendees to arrange one-to-one meetings with each other. This will be followed by a welcome from the Chair
Ad Krikke, CISO, DSM
9:40 - 10:15
Creating a holistic security programme to safeguard your organisation
- Considering the needs of the business to make a profit vs. the importance of safety
- Deliberating the combination of skills required to create an effective programme
- Revealing the best approach for dealing with the constant stream of attacks
Carlos Cordova Niewold, CISO, Paysafe Group
10:15 - 10:50
Making companies more cyber secure through the implementation of the NIS Directive
- Discovering the NIS Directive and what it means for your organisation
- Acknowledging the future cyber landscape and identifying how best to prepare
- Adapting your security strategy and infrastructure
Jakub Boratynski, Head of Unit for Cybersecurity and Digital Privacy, DG CNECT, European Commission
10:50 - 11:00
Coffee break and networking
11:00 - 11:25
Workshop 1
“If you know the enemy and know yourself you need not fear the result of a hundred battles” – Sun Tzu, 500 B.C.
Justin Coker, Vice President, EMEA, Skybox Security
11:25 - 11:50
Networking
11:50 - 12:15
Workshop 2
Quantifying the risk from devices on your network
Bob Reny, EMEA CTO, ForeScout
12:15 - 12:40
Networking
12:40 - 13:05
Workshop 3
THREAT HUNTING: Going Into Hand-to-Hand Combat with an Advanced Attacker
Ronald Pool, Cyber Security Specialist, CrowdStrike
11:00 - 13:05
One-to-One meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
13:05 - 14:00
Networking Lunch - Hosted by Skybox Security
Security and Budgets
14:00 - 14:35
Case study: Managing GDPR and Security with a limited budget
- Giving the business clear guidelines so they can complete self assessments
- Translating Security to the business in an easy to understand language
- Implementing a risk based design for multiple geographies
Kees de Jong, Global Information Security Officer, Hunkemoller International
DevSecOps
14:00 - 14:35
Case Study: Tackling the challenge of multi-cloud security
- Addressing new cloud-specific types of threats and vulnerabilities
- Investigating unique security solutions for the unique cloud environment
- Delivering visibility and control across all your cloud applications
Tee Patel, Head of Information Security, SGG Group
Risk and Security
14:40 - 15:15
Integrating risk into your security operations to effectively safeguard your organisation
- Having an effective risk assessment in place and identifying your organisations willingness to accept risk appetite
- Assessing the European Directive for critical infrastructure to determine an effective risk assessment
- Communicating with the business effectively through risk management
Vincent Laurens, Group CISO, Euroclear
Skill Gap
14:40 - 15:15
Attracting and retaining staff to overcome the skill gap and remain competitive
- Considering different work ethics for millennials and how to get the most out of graduates
- Putting an appealing package together that meets your needs and the employees
- Debating working with universities to find resources
Emanuel Tanase, Global CISO, Lombard International
15:15 - 15:25
Coffee break and networking
15:25 - 15:50
Workshop 4
Seeing the Attacker’s View: A People-Centric Approach to Security
Werner Thalmeier, Senior Director Systems Engineering EMEA, Proofpoint
15:50 - 16:15
Networking
16:15 - 16:40
Workshop 5
Security Program Orchestration: Does your Managed Security Service Provider provide an integrated cyber security model
![](/assets/files/sites/10/2018/11/verizon-300x67.png")
Bill Swallow, Senior Manager, SOC Advisory Services, EMEA, Verizon
16:40 - 17:05
Networking
15:25 - 17:05
One-to-One meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
17:10 - 17:50
Panel discussion: Discussing best practices for third party management
- Identifying successful measures to monitor service providers and suppliers progress on security & privacy
- Understanding how your place in the supply chain impacts how to organise third party management risks
- “Trust me” versus “Show me”; Creating an effective and efficient assurance approach for third parties
Hosted by: Ad Krikke, CISO, DSM
Roy Konnings, Head of Security Benelux and Switzerland, Ericsson
Martijn Nykerk, CISO, Randstad
Danny Mol, CISO, equensWorldline
17:50
Close of Day 1
19:00
Networking dinner & drinks reception featuring guest speaker Henkjan Smits
8:30 - 9:00
Morning registration & breakfast
Informal networking over breakfast
9:00 - 10:00
Roundtable discussions
Join group discussions with your peers on some of the most challenging and significant security topics—please confirm attendance prior to the session. Each host will facilitate the discussion and give a short presentation of key findings in the wrap up session.
Roundtable 1: Security Awareness
Hosted by: Zari Haji Rasoul, CISO, Laurens
Roundtable 4: Identity & Access Management
Hosted by: Bing van Seghbroeck, Advisory CISO, ING Belgium
Roundtable 2: Cloud
Hosted by: Mahdi Abdulrazak, Senior Information Security Analyst, SHV Energy
Roundtable 5: Third Party Risk Management
Hosted by: Anne Marie van Rooij, CISO, Zorginstituut Nederland
Roundtable 3: Training & Retaining Staff
Hosted by: Jaap Halfweeg, CISO, SVB
Roundtable 6: Endpoint Security
Hosted by: Laurent Weber, Managing Director, GOVCERT.LU, National Liaison Officer, ENISA
10:00 - 10:45
Wrap-up session
Each host gives a short overview of key findings from their discussion and creates an ideas board to be distributed post event with the presentations.
10:45 - 11:00
Coffee break and networking
11:00 - 11:25
Workshop 6
How to build a Cloud-first strategy for a Cloud-only future
Robby Coppens, Principal Sales Engineer, Cloud Security, Netskope
11:25 - 11:50
Networking
11:50 - 12:15
Workshop 7
Security in the Digital Enterprise: from Lagging behind to Leading
Dennis De Geus, Cybersecurity and Privacy Lead at Capgemini Invent
12:15 - 12:40
Networking
12.40 - 13.05
Workshop 8
Post-breach lessons learned: How to Protect Against the Most Common Privileged Access Attacks
Bart Bruijnesteijn, Presales Director North Europe, CyberArk Software, Inc.
Derk Bijmolt, Practice Manager PAM, PwC
11:00-13.05
One-to-One meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
13.05 - 14.00
Networking Lunch - Hosted by CyberArk
The Human Factor
14:00 - 14.35
Creating a strategy to successfully change users behaviours in order to keep your network safe
- Considering alternative training programmes for different users in order to gain their attention
- Preparing users with the best incident response strategy
- Identifying challenges on a global scale—how can you engage internationally
Nicolas Remarck, Head of IT Security, Candriam
Shadow IT
14:00 - 14.35
The challenge of keeping your company secure, in a world of (I)IoT and connected devices
- How a “small” malware infection can bring the challenge to light
- Pushing the boundaries to increase visibility and control over a disparate number of connected devices
- Strengthening detection and response processes
Andrea Bergamini, Command Center Leader, TGRC, Global IT, Cargill
Identity and Access Management
14:40 - 15:15
Remaining in control of who has access to your network through a secure strategy
- Considering the next generation of authentication beyond passwords
- Controlling who has access and being able to trace where it has come from
- Compliance and security enforcement
Bing van Seghbroeck, Advisory CISO, ING Belgium
Privacy and IoT
14:40 - 15:15
Privacy by design and privacy by default in apps and wearables
- Creating better continuity for patients through E-health technologies
- Collaborating privacy and security to work together maintaining patient friendly requirements
- Considering what we can learn from IoT and how to maintain patient security
Bart van Rijn, CISO, UMC Utrecht
15:20 - 15:55
Case study: Outlining strategies to embed security within your organisation
- Creating a dynamic road map for security
- Ensuring compliance from the start of projects
- Discussing how GDPR has effected this
Susete Martins, CISO, Office Depot Europe
15:55 - 16:00
Closing remarks from the Chair