Programme @ GOVSEC & CyberGov

Dr. Gilad Rosner, Digital Identity, Privacy and Regulatory Consultant

Mike Fell OBE, Executive Director – National Cyber Operations, NHS England
Michelle Corrigan, Programme Director – Better Security Better Care, National Care Association

Delivery of Health and Care is increasingly reliant on digital solutions. Cyber security must be understood as a patient and service user safety issue yet, like many sectors, we have seen an increasing tempo of disruptive attacks in recent years. This session will seek views of those close to the front line of cyber strategy across the sector, sharing insight into the threat landscape, details of recent incidents and looking to the future plans to help those delivering health and care to be cyber resilient.

Question Themes:

1. What are the cyber threats you see within the Health & Care sector?
2. Can you tell us about the method and impact of any recent incidents?
3. It sounds like there’s risks to the overall approach of increasing use of digital solutions -what’s the strategy to make a more resilient health and care sector?
4. What support is available within the care sector and what’s done nationally to help those delivering care tackle the cyber threats?

Erick Thek, Cyber Threat Intelligence Manager, Trend Micro

Prepare for an enlightening session as Erick delves into the implications of the resurgence of ‘old’ malware threats, once deemed obsolete, and the invaluable insights they provide for shaping robust countermeasures. Our journey unfolds through the discoveries of a 1.5-year-long research project into the cyber espionage efforts of a state-sponsored organisation, named ‘The Canopy.’ With over 350 unsuspecting victims unveiled, we reveal the key insights from an in-depth intelligence analysis, dissecting various operation groups, their (TTPs), and their goals.

Paul Fryer, Senior Manager, Sales Engineering, BlackBerry

• Improve your cyber defence and your lifecycles.
• How mature pure AI modelling works to lessen environmental impact.
• More prepared does not equal more resource.

Adrian Warman, Threat and Vulnerability Management Lead, UK Ministry of Justice (Digital and Technology)

The cyber industry has many best practices and conventions. The reality is that some arise by convention and are sustained by momentum, rather than because they are valid. In this presentation, we’ll explore some of these cyber myths and consider how they apply to the public sector – or not! Examples include favourites such as the importance of certifications, the validity of phishing testing, and the new hot topic, ‘AI’.

Phil Williams, Senior Systems Engineer, Illumio

While we all have the target of 2030 to achieve compliance with the UK Cyber-security strategy, we need to be able to maintain services today. Having recently seen too many examples where patients are diverted, food is not delivered, and energy supplies disrupted, we need to be able to build more resiliency into our systems. The evolution of security over the last 35 years has made this too complex. In this session we will look at how we can use some of the principles of Zero Trust to simplify this process and introduce more resilience.

Dr. Gilad Rosner, Digital Identity, Privacy and Regulatory Consultant

Eoin McGrath, Solution’s Engineer, Threatlocker

A demonstration of policies and controls to strengthen your security.

Stuart Wiggins, Strategic Threat Advisor, CrowdStrike

The term “Cyber Threat Intelligence” is used throughout the industry and can mean many different things. In this talk by CrowdStrike we will look to define the value that intelligence can bring to an organisation, how you can turn information into intelligence and tips for leveraging it in the tactical, operational and strategic domains. This will be drawn from Stuart’s over 14 years of experience working in the UK and US intelligence communities and from helping private and public sector organisations build and enhance their threat intelligence programs.

Romana Hamplova, Cyber Security Expert & Presales Manager, Thales Data Security 

We have gone so far into the land of cloud, but did we forget something along the way? Come to hear from the Cyber Security Expert focusing on data security and sovereignty – what was the CSPs and Vendors’ vision vs reality; the challenges; common use cases and success stories. Romana will take us through hers and her team’s latest experiences gained in working on major cyber security customer projects, she will discuss the gap between vision and reality, and will provide an overview on how Thales has helped its customers to achieve their Cloud & Digital Transformation business objectives and goals.

Click here to view the seminars

Served in the Exhibition Area

Dr. Gilad Rosner, Digital Identity, Privacy and Regulatory Consultant

James Duggan, Solutions Architect, Synack

Generative AI has unlocked enormous opportunities in the cybersecurity arena, from streamlined vulnerability management to faster incident response. However, the new attack pathways created as a result of this technology still need to be addressed, especially among government departments with broad missions and distributed teams and tech.

We hope you’ll join us for a topical discussion on AI in security operations and testing, with recommendations for securing interoperability and how to position your organisation for success.

Andy Simpson, Chief Information Security Officer, Houses of Parliament: Restoration and Renewal Delivery Authority

A focused talk on exploring the intricacies and expectations of managing a low to zero cyber security risk appetite across your business.

• Working with risk appetite statements
• Exploring the real meaning of threat profiles to your strategy
• Managing executive and board expectations
• Buying out risk versus tolerating vulnerability

Dominic Trott, Director of Strategy and Alliances, Orange Cyberdefense

• How effective automation plays a key role in cyber defense
• How compatibility is the key to help you automate anywhere
• The need for cost effective automated solutions
• Combining People, Technology and Processes with AutoXR

Refreshments served in the Exhibition Area

Dr. Gilad Rosner, Digital Identity, Privacy and Regulatory Consultant

Stuart Frost, BEM, Head of Enterprise Security & Risk Management, UK Government (Senior Civil Service)

Multi millions are spent each year by the security industry yet the outlook for 2023 and beyond continues to worsen. What’s the problem and where are we going wrong? Are we focusing on the right things, are we assuring our risks are understood and managed effectively? Are we learning and improving or standing still? This presentation puts an introspective lens on the industry to provide thoughts and answers.

• Why do we continue to fall victim to similar attacks?
• Are we overly focused on compliance to the detriment of effective risk management?
• Are we compliant but not secure?
• Do we treat security risks as business risks?
• Do we overcomplicate things?

Andrew Gogarty, Chief Technology Officer, Secon

• The average time to detect a breach in 2022 is 207 days, organisations are missing opportunities to detect cyber criminal activity often before it’s too late to prevent impact
• Security logs used properly can help aid early detection but also dramatically improve an organisation’s chance of recovery in the event of a breach
• This presentation is aimed to help you understand how logs can not only help prevent breaches but also give you a fighting chance of recovery in the event of a breach

Dr. Ravinder Singh, Modernising Technology Programme Manager, Cabinet Office – Central Digital and Data Office (CDDO)

In today’s ever-changing digital environment, the government faces a constant challenge to protect its IT infrastructure from an increasingly sophisticated array of cyber threats. This presentation will delve into the latest approaches to ensure the security and resilience of government systems. Ravinder will explore adaptive defense mechanisms, the implementation of Zero Trust frameworks, the integration of real-time threat intelligence, and the power of collaborative cybersecurity ecosystems. He will discuss these strategies, offering insights and solutions to fortify the government against the evolving cyber landscape and to bolster our nation’s security in this digital age.

Dr. Gilad Rosner, Digital Identity, Privacy and Regulatory Consultant

Delegates Depart