CISO Benelux Summit | September 19, 2017 | Amsterdam Marriott Hotel - Amsterdam, Netherlands

↓ Agenda Key

Keynote Presentation

Visionary speaker presents to entire audience on key issues, challenges and business opportunities

Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee." title="Keynote Presentations give attending delegates the opportunity to hear from leading voices in the industry. These presentations feature relevant topics and issues aligned with the speaker's experience and expertise, selected by the speaker in concert with the summit's Content Committee.

Executive Visions

Panel moderated by Master of Ceremonies and headed by four executives discussing critical business topics

Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members." title="Executive Visions sessions are panel discussions that enable in-depth exchanges on critical business topics. Led by a moderator, these sessions encourage attending executives to address industry challenges and gain insight through interaction with expert panel members.

Thought Leadership

Solution provider-led session giving high-level overview of opportunities

Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community." title="Led by an executive from the vendor community, Thought Leadership sessions provide comprehensive overviews of current business concerns, offering strategies and solutions for success. This is a unique opportunity to access the perspective of a leading member of the vendor community.

Think Tank

End user-led session in boardroom style, focusing on best practices

Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard." title="Think Tanks are interactive sessions that place delegates in lively discussion and debate. Sessions admit only 15-20 participants at a time to ensure an intimate environment in which delegates can engage each other and have their voices heard.

Roundtable

Interactive session led by a moderator, focused on industry issue

Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done." title="Led by an industry analyst, expert or a member of the vendor community, Roundtables are open-forum sessions with strategic guidance. Attending delegates gather to collaborate on common issues and challenges within a format that allows them to get things done.

Case Study

Overview of recent project successes and failures

Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions." title="Case Studies allow attending executives to hear compelling stories about implementations and projects, emphasizing best practices and lessons learned. Presentations are immediately followed by Q&A sessions.

Focus Group

Discussion of business drivers within a particular industry area

Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions." title="Focus Groups allow executives to discuss business drivers within particular industry areas. These sessions allow attendees to isolate specific issues and work through them. Presentations last 15-20 minutes and are followed by Q&A sessions.

Analyst Q&A Session

Moderator-led coverage of the latest industry research

Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst." title="Q&A sessions cover the latest industry research, allowing attendees to gain insight on topics of interest through questions directed to a leading industry analyst.

Vendor Showcase

Several brief, pointed overviews of the newest solutions and services

Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences." title="Taking the form of three 10-minute elevator pitches by attending vendors, these sessions provide a concise and pointed overview of the latest solutions and services aligned with attendee needs and preferences.

Executive Exchange

Pre-determined, one-on-one interaction revolving around solutions of interest

Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest." title="Executive Exchanges offer one-on-one interaction between executives and vendors. This is an opportunity for both parties to make key business contacts, ask direct questions and get the answers they need. Session content is prearranged and based on mutual interest.

Open Forum Luncheon

Informal discussions on pre-determined topics

Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch." title="Led by a moderator, Open Forum Luncheons offer attendees informal, yet focused discussions on current industry topics and trends over lunch.

Networking Session

Unique activities at once relaxing, enjoyable and productive

Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive." title="Networking opportunities take various unique forms, merging enjoyable and relaxing activities with an environment conducive to in-depth conversation. These gatherings allow attendees to wind down between sessions and one-on-one meetings, while still furthering discussions and being productive.

 

Tuesday, September 19, 2017 - CISO Benelux Summit

7:00 am - 7:55 am

Registration and Networking Breakfast

 

8:00 am - 8:10 am

Welcome Address and Opening Remarks

 

8:10 am - 8:40 am

Keynote Presentation

Security's Place in Enterprise Risk Management

While Information Security has existed for decades, Enterprise Risk Management (ERM), as a formal and holistic practice, is much newer yet already has taken pre-eminence over its forebear. What is the CISO, who in many ways has toiled in invisibility, infamy, or ignominy to do when faced with the issue of being supplanted by the Chief Risk Officer, just as enterprise demand for and focus on security has reached all-time heights? Savvy CISOs will recognize this new, broader need for holistic visibility into, and management of, overall enterprise risk and will position themselves for success by looking beyond traditional information security boundaries and engaging business partners around all enterprise risk.

Takeaways:

  • Just because information security is an aspect of enterprise risk doesn't mean that the CISO needs to take a back seat position
  • Enterprise risk is defined by the business but needs to be quantified by an expert; CISOs bring risk quantification expertise to the table
  • The end goal is not about fiefdoms and ownership, it is about improving enterprise value and success; maintaining focus is essential.

 

8:45 am - 9:15 am

Keynote Presentation

Will You be Ready for the New EU Privacy Rules or is it Going to Upend Your Digital Transformation Plans

Are the CIOs who say the GDPR rules, could actually put them out of business crying wolf? The rule's impact is expected to be global because it affects any company doing business in Europe, whether or not it's headquartered there. Its most controversial element is the penalties, which can be as high as $21 million per incident or 4 percent of the offending company's annual revenues, whichever is greater. Many CIOs have yet to realize the restrictions there will be for using privacy data to big data analysis. CISOs around the globe are asking how will it affect my organisation's security requirements and what do I need to do to comply? 

Talking Points:

  • Can current technology manage data effectively enough to comply with auditing and data discovery demands.
  • Will you even be able to locate relevant data at all.
  • How can you determine which data should be saved or deleted based upon regulatory guidelines.


 

9:20 am - 9:45 am

Executive Exchange

 

Share:

Thought Leadership

Get IT Moving at the Speed of Digital Business

With the proliferation of smart devices, connected sensors and a constant and insatiable need for data-driven insights, IT has moved from back office functionality to supporting executive strategy. Businesses need to move at the speed of technology and technology needs to run at the pace of digital business. In this workshop two experienced transformation consultants will share examples of how forward thinking organizations are addressing the need to support modern, digital business outcomes whilst defending core markets from digital migrants. Join us to learn how clients have: 

  • Modernised applications to generate $250m+ in sales pipeline within 3 months 
  • Embedded Lean thinking to reduce time to market from 90 to just 7 days 
  • Adopted Cloud delivery models to save up to 26% of IT OpEx budget 
  • Used Hybrid Cloud to save OPEX of ?350M/year 
  • Reduced time, cost & effort of provisioning from 150+ days to just several hours 

We know every business starts in a different place, with its own strengths and weaknesses, and unique opportunities. Nevertheless, there are pragmatic and proven practices that all organizations can use to build the business case for change and to justify investments from board. You will leave this session with plenty of ideas for starting your own project and a few useful frameworks as well.

Sponsored by:

DELL EMC View details

 
 
 

9:50 am - 10:15 am

Executive Exchange

 

Share:

Thought Leadership

Securing the Mobile, Cloud-First Enterprise

More and more organizations are embracing the cloud and mobility to improve productivity and make their business more competitive. This is turning the current security landscape upside down. At the same time newer, more advanced threats are creating new risks that traditional security appliances struggle to keep up with. CIOs and CISOs are looking for new approaches to securely adopt cloud and mobility. 

In this session Zscaler will discuss why many IT organizations are choosing to adopt a cloud-based approach to securely enable mobility, cloud applications and social media, while ensuring compliance and reducing risk. The audience will learn how a cloud security strategy can help them.  

  • Protect users from advanced threats: Why traditional security appliances are failing. 
  • Why full SSL content inspection is necessary to detect emerging, advanced security threats. 
  • How to embrace cloud with full visibility and control of Shadow IT. 
  • Get real-time visibility and control: mine billions of user transactions in seconds to quickly identify gaps in security and ensure compliance with corporate policies.

Sponsored by:

Zscaler View details

 
 
 

10:20 am - 10:30 am

Morning Networking Coffee Break

 

10:35 am - 11:00 am

Executive Exchange

 

Think Tank

Convergence of Two Transitions - Energy and Digital? and Structure

Takeaways: 

  • The role of blockchain in this transformation 
  • How we envisioned digital transformation challenges 
  • Explanation of what type of role a DSO (Distribution System Operator) plays in the energy system

Presented by:

Louis Dietvorst, Chief Architect & Strategist, Enexis B.V. View details

 
 

Share:

Think Tank

Third Party Cyber Risks - Who's Your Weakest Link ?

Databreaches such as happened at Target and recently at TalkTalk show that poor security and risk management of third parties can lead to dramatical consequences. Companies risk environment had been expanding over the years as digital transformation results in an increasingly digital ecosystem of cloud, third party apps and web applications. A new approach is required to effectively address third party cyber risks.

Presented by:

Rob Augustinus, Information Security Officer, A.S. Watson View details

 
 
 

11:05 am - 11:30 am

Executive Exchange

 

Share:

Thought Leadership

Become a Change Agent for Business Transformation

Today's modern CIO is embarking on a digital transformation journey exploring radical hybrid IT strategies and leveraging new technologies like Cloud, Social, Mobile and Big Data. However with 'keeping the lights on' legacy IT components costing nearly 90% of a typical IT budget, how can IT make powerful advancements and lead business change?

Join this interactive session to learn how award-winning CIOs are successfully tipping the balance by liberating people, time and money from costly ongoing maintenance of their ERP systems including SAP and Oracle, to invest in strategic initiatives that create real-world competitive advantage.

Sponsored by:

Rimini Street View details

 
 
 

11:35 am - 12:00 pm

Executive Exchange

 

Share:

Executive Boardroom

Rise of the Machines: Protecting These New Identities

There are two kinds of actors on every network - people and machines - and both need to be secured. People rely on user names and passwords to identify themselves and gain access to machines, applications and devices. But machines don't. They use digital keys and certificates for machine-to-machine communication and authentication. And the number of machine identities that needs to be protected is growing exponentially - with fast IT services through DevOps, cloud services, apps, and IoT. But we're not protecting these growing machine identities. We spend billions each year on user name and password security, but almost none on protecting keys and certificates. Cybercriminals take advantage of unprotected keys and certificates to eavesdrop on private communications, give the appearance of validity to phishing sites or malicious code, and hide their activity in encrypted traffic - getting malware in and sensitive data out. 

Learn about:

  • The different types of machines identities
  • Where they are already proliferating in your network
  • New risks, and steps you can take immediately to get these risks under control
  • How to prepare your network architecture for the future

Sponsored by:

Venafi View details

 
 

Executive Boardroom

Security in an Outsourced World

Building security into your enterprise processes, and integrating it with your existing technology investments has never been more critical or complicated than it is in this era of decentralized computing, and ever-tightening compliance requirements. Furthering this complication is the impact that partnering deals can have since infrastructure, applications, and even data may now longer be under your direct control. To be able to ensure efficient and effective security capabilities you need to understand the nature of the threats that exist today, the impact a sourcing relationship can have on these threats, and the mitigation strategies and tools key industry leaders are using to address the challenge.

Takeaways:

  • Social, Mobile, Cloud, and Analytics is already having a significant impact on enterprise security, sourcing potentially adds another layer of complexity
  • Beyond simple security however there are also issues such as privacy and compliance that also need to be considered
  • Investing in the right tools and practices is essential to weather the storm without breaking the bank

Sponsored by:

LogRhythm View details

 
 
 

12:05 pm - 12:30 pm

Executive Exchange

 

Executive Boardroom

Big Data Analytics and the Impact on Fraud

Financial fraud is, unfortunately a huge business, with annual losses so massive that were Fraud a country, it would have the fifth highest global GDP. While enterprises in the financial services sector have always used analytical processes to detect and limit those losses, as technology moves forward the analytical capabilities that can be brought to bear increase in exponentially in capability and those on the leading edge are able to see, and stop, more fraud in less time. Just as Big Data capabilities are bringing significant business benefit to other aspects of the business, they can to fraud mitigation but several challenges need to be overcome for maximum efficiency. Only by addressing quality, volume, security, and integration challenges and by further ensuring the right staff with the right skills are in place can benefits actually be realized. 

Takeaways:  

  • The increased use of unmanned technology combined with ever quicker financial transaction processing has created a world ripe for the proliferation of fraud  
  • In a fight fire with fire approach, those same machine learning approaches can be repurposed to analyze transactions looking for the needle in the needlestack that is the illicit one  
  • A Big Data approach only works with the right foundation; garbage in garbage out has never been more true and data and process rigor is essential to success

Executive Boardroom

Ready for the Next Decade? Build Your Enterprise Encryption Strategy and Mitigate Risk with a Data-Centric Approach

According to the Ponemon Global Encryption Trends Study 2017, 41% of respondents say their organisation has an encryption strategy applied consistently across the entire enterprise. Compliance with privacy and data security requirements is one of the main drivers to extensive encryption use within companies. Through implementing encryption technology, IT security can be made more failure tolerant and robust. In the presentation Michael Loger will elaborate the benefits of modern encryption technologies and how these technologies can be reflected in an enterprise-wide encryption strategy.

Takeaways: 

  • Benefits of modern encryption technology 
  • Best practice for enterprise encryption strategies 
  • How compliance drives encryption use 
  • How to deliver trust wherever information is created, shared or stored 
  • How to secure data in any environment (e.g. cloud, data centers) without sacrificing business agility

Sponsored by:

Thales, e-Security View details

 
 
 

12:35 pm - 1:20 pm

Networking Luncheon

 

1:25 pm - 1:50 pm

Executive Exchange

 

Think Tank

Big Data, Small Data, and all the Data in Between

Increasingly over the last several years the term Big Data has become prevalent, to the point that it is invariably all anyone thinks of when data is mentioned at all. Often what we think of when we use the term Big Data is actually unstructured data " all the new data forms that enterprises have never collected before and are being overwhelmed by the possibilities of. But big/unstructured data is by no means the only data enterprises have and core structured or small data is often still the most relevant and valuable data an enterprise owns. As we collectively push forward into a more analytics-centric and therefore data-centric world what we need is a considered all-data strategy, one that incorporates big data, small data, master data, and meta data.

Takeaways:

  • While Big Data is valuable, so is the rest of the data that an enterprise owns and consistent focus must be applied to all data forms and types
  • A holistic data strategy that considers and the balances the needs of all data structures, types, needs, uses, and owners is essential for efficient and effective data operations
  • For business that have not yet invested in Master Data Management, such a program is the ideal foundation for building a comprehensive data program

Think Tank

The Blockchain & Enhanced Security

There is a definite need to rethink the future of identity management on the web. The ability to verify your identity is the lynchpin of financial transactions that happen online. In today's digital age, an individual's identity is not defined by a single attribute such as a name, address or user ID. Rather, it is a collection of attributes including, but not limited to, name, age, financial history, work history, address history and social history. However, remedies for the security risks that come with web commerce are imperfect at best. IF Blockchain is the answer? How are you going to take it from being seen by senior management, as a futuristic solution to the way your organization may survive competition in the next five years. 

Takeaways: 

  • Growth of trusted Blockchain providers is growing exponentially 
  • It's not just the financial industry this will affect - Retail, Health Care? Are going to be in for the pound as well as in for the bitcoin
  • Uses for Blockchain from ecommerce to supply chain management
 

1:55 pm - 2:20 pm

Executive Exchange

 

Thought Leadership

Planning for a MultiCloud Future

The promise of the cloud is almost beyond compare; infinite computing resources, unmatched reliability and uptime, instantaneous service availability, simplistic self-service and provisioning, and the low-low prices of a buy by the drink model. These are the reasons behind the rush to the cloud that we are currently experiencing, but the wholesale adoption does bring a downside " as more and more capability is moved to the cloud, more and more cloud providers are utilized since, for the most part, each provider offers only a limited suite of services. The MultiCloud environment that creates a new set of challenges that IT leaders need to overcome, notably resiliency, interoperability/integration, and security and compliance through careful planning and the lessons learned from building complex on premise distributed systems.

Takeaways:

  • As enterprises move to the cloud, MultiCloud environments will increasingly become the norm, not the exception
  • Consistent planning and thoughtful architecture will be essential to efficient and effective cloud deployments
  • IT leaders do not need to be alarmed, they've been down the complex environment path before, but they do need to be careful

Sponsored by:

HPE EMEA - Nederland View details

 
 
 

2:25 pm - 2:50 pm

Executive Exchange

 

Thought Leadership

Accelerating Business Agility with Integration Platforms

There is a growing realisation that the ability for companies to stay competitive and survive today and into the future, is directly related to their ability to transform into a more agile digital business. At the heart of the transformation discussion is IT modernization. The modern digital business needs to rethink their technology approach to consider among other things moving infrastructure and applications to the cloud, allowing lines of business to take more control over their applications, adopting best of breed applications to meet specific business needs and enabling access from a proliferation of, often, mobile devices. However, the move to modernisation has challenges, not least of which is how to easily integrate the growing portfolio of applications, securely moving, managing, governing and orchestrating data across on premises and cloud based applications.

Sponsored by:

Dell Boomi View details

 
 
 

2:55 pm - 3:20 pm

Executive Exchange

 

Think Tank

The Unbearable Lightness of Digital Transformation

Building a Disruptive Technology Digital team. To become fully digital enterprises, you need to shift the focus inward and innovate the employee experience. Is this defined as how employees feel about their organizations with regard to both opportunities for growth/skills development, and employees' willingness to continue to work for their current firms? Use digital DNA behaviors. 

Takeaway:

  • Achieving team/organisational resilience


Presented by:

Remi Caron, Global CTO, Intertrust View details

 
 

Think Tank

The Three Amigos of Security

Be Secure - Take a measured, risk-based approach to what is secured and how to secure it.  

Be Vigilant - Monitor systems, applications, people, and the outside environment to detect incidents more effectively. 

Be Resilient - Be prepared for incidents and decrease their business impact by improving organizational preparedness to address cyber incidents before they escalate. 

Takeaways:  

  • Managing cyber risks as a team and strategies for deployment of enterprise and emerging technologies 
  • Actively monitor the dynamic threat landscape  
  • Retain and use lessons learned
 

3:25 pm - 3:35 pm

Afternoon Networking Coffee Break

 

3:40 pm - 4:05 pm

Executive Exchange

 

Innovation Showcase

An exclusive opportunity to be exposed to the hottest new solutions providers in a quick-hit format designed to whet the appetite and spark immediate interest.
 

4:10 pm - 4:35 pm

Executive Exchange

 

Think Tank

Cloud Adoption Challenges on a Macro Level

The hype around the cloud is pervasive and can be potentially overwhelming but numerous studies have shown that tangible benefits can be had, whether in cost savings, efficiency improvements, or flexibility enhancements. That said numerous impediments exist to not just realizing that value, but even considering adoption; regulatory issues, integration challenges, business process revamp, and a dozen other challenges can halt cloud projects in their tracks before they get off the ground. In this group discussion we'll explore those inhibitors, understanding which challenges prevent adoption and what can be done to overcome them.

Takeaways:

  • The cloud presents a significant opportunity to organizations and while most have adopted in some form or other, wholesale adoption still lags
  • To realize benefits enterprises must deal with a variety of challenges each one requiring different solutions
  • Industry by industry adoption is constrained for different reasons but do common solutions exist that can resolve issues across the board?

Think Tank

Building Dynamic Security Teams

There's no other way to say it than bluntly; Information Security is a white-hot field within Information Technology as a whole " over the last dozen years it has gone from after-thought, to scapegoat, to critical enterprise success factor. As a result, the need for capable and qualified Information Security specialists, whether front-line Analysts, mid-level Managers, or top level CISOs is at an all time high, but personnel and skills availability is sinking to an all-time (at least in terms of supply and demand ratio) low. There simply isn't enough expertise in existence to go around, or enough education occurring to create it. In this environment, senior Information Security leaders have to get creative in their pursuit of the people, performance, and passion necessary to address this capability shortfall. 

Takeaways: 

  • Learn how to build grass-roots programs that cultivate a farm full of potential security experts through internal and collaborative programs 
  • Find out how to leverage key organizational traits to generate buzz and interest where none existed before 
  • Understand the relevance of certs vs. experience and how to evaluate and validate the value of candidates
 

4:40 pm - 5:20 pm

Executive Visions

Facilitating Technology-Enabled Business Transformation

The role of the modern IT Executive is more complex than it has ever been before, not just because the technology landscape has become more complex, but also because increasingly IT execs have had to become a business-focused executive, not just a technologist. Long have we talked about the CIO and CISO getting a seat at the table but modern businesses are now demanding that their technology impresario join them and leverage his deep and rich technical acumen to allow the organization as a whole to better position itself for market-place success. To be successful, CxOs need to invest in themselves, in their personnel, and in the right technologies to allow them to position the IT department to proactively address business needs as an innovator and driver, rather than order-taker and enabler.

Takeaways:

  • IT leadership can no longer be simply technology focused, but must instead take their visibility into business process and become business focused
  • A broader business-focus does not preclude maintaining technology excellence however and indeed may demand more of it than ever before
  • Success for CxOs will be measured not in how they can enable enterprise decisions, but in how they can drive growth
 

5:20 pm - 5:30 pm

Thank You Address and Closing Remarks

 

5:30 pm - 7:00 pm

Cocktail Reception