SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE … · 2020-06-18 · Dear colleague, GISEC 2018...
Transcript of SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE … · 2020-06-18 · Dear colleague, GISEC 2018...
SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE WORLD’S LEADING INFOSEC PROFESSIONALS
www.gisec.ae
OFFICIAL GOVERNMENT CYBER SECURITY PARTNER
DOMESTIC SUPPORTING PARTNERS
INTERNATIONAL SUPPORTING PARTNERS
PLATINUM SPONSOR
DISTRIBUTION PARTNER
EXHIBITORS
OFFICIALGOVERNMENTCYBERSECURITYPARTNER
DOMESTICSUPPORTING PARTNERS
INTERNATIONALSUPPORTING PARTNERS
SILVERSPONSORS
POWERED BYCO-LOCATED WITHPART OF
4days of learning
40+GISEC sessions
60+industry experts.
7,500+ leading infosec professionals
30 APRIL 2018 PRE-SHOW MASTER CLASSES
1 - 3 MAY 2018 CONFERENCE & EXHIBITION
ORGANISED BY
Dear colleague,
GISEC 2018 is almost here and we’ve made it the biggest and most exciting version yet. Welcome to the 5th anniversary edition, here’s what’s on offer:
• A three day cyber security stage with over 25 C-levels giving inspiring talks on innovations in security.
• Masterclasses delivered by world leaders in cyber security
• A focus day addressing the unique cyber challenges faced by the BFSI sector
• A three day smart cities conference on the IOTx stage
• Brand new this year, a one day conference on how to achieve ROI with artificial intelligence.
• One day of Future Tech talks held on the Inspire Stage, where we’ve brought some of the world’s game changing inventors to show off their amazing technologies which are set to change the way we live over the next ten years
• Finally we’ve co-located with Future Blockchain Summit, doubling the hall space we’ve had before, giving us an unprecedented numbers of visitors and delivering the delegate world class insight on one of the world’s most important innovations.
So, with more visitors than ever, more security products on display, and a huge array of amazing presentations and talks to engage in, we’re excited to show you the GISEC agenda and encourage you to book tickets soon before they sell out.
We look forward to having you back this year at GISEC, and if this is your first time attending, we’re sure it won’t be your last.
With best wishes
Michael ChampionEvent DirectorGISECPart of Future Technology Week
OFFICIAL GOVERNMENT CYBER SECURITY PARTNER
GLOBAL SPEAKERS AT A GLANCE
DAVID CASSCISO, Cloud & SaaS
IBM
Formerly the CISO for Elsevier and Freddie Mac, David is now a global information
security leader at IBM, one of the world’s most iconic companies.
MUHITTIN HASANCIOGLU
EX-VP CISOSHELL
INTERNATIONAL Retired from oil giant Shell earlier this year
after an illustrious 20+ year career there which saw him finish as their CISO.
JARKKO RAUTULAGROUP CISO
IKEA GROUP
Head of information security at the world’s largest furniture retailer with 183,000 employees
and $37bn revenue.
NG HOO MINGDEPUTY CHIEF EXECUTIVE
(OPERATIONS)CYBER SECURITY
AGENCY OF SINGAPORE
Head of Singapore’s National Cyber Security Centre and a key leader in the protection of
critical national infrastructure in the country.
RUDRA MURTHYCISO
AMAZON PAY
Formerly the CISO for Digital India and now heading information security at one of the world’s biggest groups as CISO in the India
division of Amazon Pay
CHIN KIAT CHIMCISO
DHL EXPRESS
The world’s largest international courier, which employs 325,000 people and as part of the Deutsch Post DHL Group is part of a
$60bn revenue business.
ALEJANDRO BECERRA GONZALEZ
GROUP CISOTELEFÓNICA
Head of information security at one of the world’s largest telecoms companies with 120,000+ employees and $55bn revenue.
FAISAL SIBAISVP & CISO
AT A MAJOR MIDDLE EAST BASED SOVEREIGN
WEALTH FUND
Head of information security at one of the Middle East’s most famous, and one of the world’s most
active, sovereign wealth funds.
ALBERTO HERNÁNDEZ MORENO
CEOINCIBE - SPANISH NATIONAL
CYBER SECURITY INSTITUTE
One of the principal Spanish government security agencies charged with increasing cyber security
of Spanish industry
RICHARD BROWNINGFOUNDER AND CHIEF TEST
PILOTGRAVITY INDUSTRIES
The inventor breaking world records with his amazing 1000bhp Jet Suit , Gravity is pioneering a new era of human flight. Hear the innovation
story and watch the demonstration
GLOBAL SPEAKERS AT A GLANCE
KHALED ALNUAIMISENIOR IT CONSULTANT
EASTER PROVINCE GOVERNORATE, MINISTRY
OF INTERIOR The Eastern Province is the largest in Saudi
Arabia and home to a majority of its oil production.
ABDULLA BADER AL SAYARI
CISODEPARTMENT OF
HEALTH, ABU DHABIHead of information security at the government
department which oversees all healthcare information from hundreds of hospitals and
clinics dealing with over 10m health episodes a year.
FUAD AL-ANSARIVP INFORMATION
TECHNOLOGYADNOC REFINING
Head of information security at the refining arm of one of the world’s largest National Oil
Companies.
DR. ANGELO GRUBISICPROJECT LEAD
ICARUS PROJECT
Renowned space-propulsion expert and formerNASA space craft engineer.
BRUNO FONSECACSO
AXA INSURANCE (GULF)
As CSO he oversees the areas of Information Security, Physical Security,
Business Continuity & Crisis Management and IT Compliance and Risk, and is
responsible for 5 countries.
AMER SHARAFDIRECTOR - COMPLIANCE SUPPORT AND ALLIANCES
DUBAI ELECTRONIC SECURITY CENTER
DESC is the principal government cyber security agency in the Emirate of Dubai.
GEORGE EAPENCISO (MENAT)
GENERAL ELECTRIC
Regional CISO at one of the world’s best known engineering companies with over $9bn to $20bn
Change 4,200 employes tp 20,000 employees
THOMAS DEGARDINGROUP CISO
BOUYGUES CONSTRUCTION
Formerly CISO for supermarket giant Carrefour, now helping to build Dijon Smart City - the
purpose built first smart city in France
PIERRE BARREAUCEO
AIVA TECHNOLOGIES
The man who hopes to make the world’s greatest music composer - an artificial
intelligence who will compose better than Mozart.
PETER ESTLINALDERMAN
CITY OF LONDON CORPORATION
ex-CFO Citigroup Investment Banking and ex-Acting CFO for Barclays Bank.
GLOBAL SPEAKERS AT A GLANCE
MAMOUN ALHOMSSEYCIO
ABU DHABI ISLAMIC BANK
CIO at ADIB, renowned, award winning regional bank with $1.5b revenue and $27bn of customer
deposits.
MIKE PITMANCISO
DUNNHUMBY
Formerly CISO at John Lewis Partnership, now head of information security at Dunnhumby which is owned by supermarket giant Tesco.
DEE DEUCISO
BRITISH LAND
British Land is the largest property investment company in the UK, with almost $20bn of assets;
Dee is a finalist for Security Leader of the Year 2017 - Women in IT Excellence Awards
RICK MCELROYPRINCIPAL SECURITY
STRATEGISTCARBON BLACK
He has held security positions with the U.S. Department of Defense and has more than 15
years of information security experience advising organizations on reducing their risk posture.
ALAIN KALLASHEAD OF SECURITY
CONSULTING, MIDDLE EASTSECUREWORKS
Alain holds several professional certifications such as Usable Security from University of Maryland, Surveillance Law from Stanford
University and Challenges of Big Data Security from MIT.
LEE LAWSONCOUNTER THREAT UNIT SPECIAL OPERATIONSSECUREWORKS
As CSO he oversees the areas of Lawson is a member of CTU Team which operates in the field of cyber intelligence, researching
new cyber threats and gathering intelligence on the perpetrators.
ALABA OLUWAYIMIKAHEAD OF IT OPERATIONS
DANGOTE
Head of IT Operations at Nigeria’s largest conglomerate.
ABDULLAH ALOTHMANCIO
MINISTRY OF CULTURE AND INFORMATION,
SAUDI ARABIA CIO AT THE SAUDI GOVERNMENT MINISTRY
RESPONSIBLE FOR REGULATING ALL MEDIA WITHIN THE KINGDOM AND COMMUNICATIONS TO OTHER
COUNTRIES
AHMED DUWAIHSENIOR MANAGER IT SECURITYABU DHABI AIRPORTS
COMPANY
An IT security leader at a company operating prestigious brands like Abu Dhabi Duty Free and Abu Dhabi International Airport which sees over
30 million passengers a year.
RAKESH GOHILSENIOR DIRECTOR - IT
AHMED SEDDIQI & SONS
An IT security leader at one of the region’s best loved luxury jewellery companies.
GLOBAL SPEAKERS AT A GLANCE
MOHAMED BENAICHOUCHE
CIOARABSAT
CIO at one of the world’s top satellite operators and by far the leading satellite services provider in the Arab world, carrying over 500 TV channels and
200 radio stations.
NASSER ZAGHACIO
BANK OF JORDAN
CIO at the second largest bank in Jordan with over $2.1bn in customer deposits, ex-VP at Bank
of America.
COLONEL SAEED M. AL HAJRI
DIRECTOR, CYBERCRIME DEPT.DUBAI POLICE
Formerly Chairman of Interpol MENA, investigating high tech crimes, he has combatted cybercrime and
financial fraud for 25 years with Dubai Police
SHERIF YEHIA ABD ELGHANY
IT NETWORKS MANAGEREGYPTIAN FINANCIAL
REGULATORY AUTHORITYEFRA is the government authority that regulates
the financial service industry in Egypt, supervising all non-banking activities including capital
markets, commodities, insurance and mortgage finance.
RINALDO R OLIVEIRAHEAD OF FRAUD RISK, IT RISK
& GRC COMMERCIAL BANK
OF DUBAIHead of IT Risk at one of the region’s largest
banks and also Vice Chairman of the UAE Banks Federation Information Security Committee.
JAMES BUTLERCTO
ENDGAME
Bestselling cyber security author and world expert on attack and detection techniques.
RIZWAN ARAINCISO
HABIB BANK AG ZURICH
Headquartered in Switzerland, and named as a finalist for the 21st Century Achievement Award from the Computerworld Honors Program for its
use of information technology in Finance.
NIGEL GIBBONSGISEC CONFERENCE
CHAIRMAN
Highly experienced cyber security consultant and advisor
ANSHUL SRIVASTAVA
CIOUNION INSURANCE
CIO at one of the oldest insurers in the Middle East which takes over AED870m in
premium revenue a year.
DILEEP SOMANICIO
OTE GROUP
CIO at one of Oman’s fastest growing and most successful business groups, with interests in
automobile retail and construction.
GLOBAL SPEAKERS AT A GLANCE
MARTIN BLACKHURSTSENIOR SE, NEMATPROOFPOINT
Martin has 35 years of experience in the technology field with the last 20 years focused on the security
market place. Martin started his career in Computer Engineering before becoming a specialist in Novell
and Cisco technologies.
KAMRAN AHSANSENIOR DIRECTOR, SECURITY
SOLUTIONS ETISALAT DIGITAL
With over 20 years professional experience in information security, he is accountable for the entire
business function of Digital Security Solutions for Government, Enterprise and SMB sectors
ZEKI TUREDITECHNOLOGY STRATEGIST
CROWDSTRIKE
His specialties include incident response, malware analysis, threat intelligence, digital forensics,
network forensics, digital investigations, data loss prevention, and advanced threat modelling.
DR BUSHRA AL BELOOSHI
MANAGER - RESEARCH & INNOVATION
DUBAI ELECTRONIC SECURITY CENTER
With over 12 years experience in IT security, she heads up research projects at DESC and is expert in cyber security, cryptography, cloud computing and
forensics
DR MARWAN AL ZAROONI
DIRECTOR, INFORMATION SERVICES DEPARTMENT
DUBAI ELECTRONIC SECURITY CENTER
Dr Al Zarooni is considered a foremost expert in the security and criminal implications surrounding cryptocurrencies, he represents DESC, the principal
agency in cyber security in the Emirate of Dubai
HANI NOFALVP INTELLIGENT NETWORK SOLUTIONS, SECURITY AND
MOBILITYGBM
Hani is in charge of leading GBM’s INS, Security and Mobility organizations across the Gulf
and Pakistan and has over 20 years industry experience
BORIS BALACHEFFHP FELLOW & VP
HP SECURITY LAB
Boris is Chief Technologist for System Security Research and Innovation in HP’s CTO office. He leads security research strategy at HP Labs and drives pan-HP security technology strategy in
lockstep with HP’s Global Business Units.
ANKUSH JOHAR DIRECTOR
INFOSEC VENTURES
Anush runs a venture fund that invests in innovations that solve BIG problems in cyber
security.
CORBETT HOXLANDREGIONAL BUSINESS MANAGER
FOR SECURITY AND IT OPTIMIZATION
HP INC.
An industry veteran with over 20 years’ experience, Corbett has a deep understanding of working with Fortune 500 companies across the
globe, with a focus on end-user devices.
RICHARD MELICKTECHNICAL MARKETING MANAGER, COMPINTEL INDUSTRY RELATIONS &
PRODUCT TESTINGCYLANCE
Formerly holding the position of Senior Security Strategist for Cylance, Richard was a US Marine
and has spent the past 8 years in information security and IT infrastructure roles.
ANIL JOSHIFOUNDER AND MANAGING
PARTNERUNICORN INDIAN
VENTURES
A leading Venture Capital Fund focusing on early stage investments in tech focused
companies.
HANY GEORGESALES ENGINEER
MIMECAST
Expert ethical hacker supporting Mimecast’s customers solve their technical
projects
GIRARD MOUSSACYBER SECURITY LEAD
(MEA)
MICROSOFT
Girard has over 18 years industry and Cybersecurity experience across the Middle East and Australia. He was one of the first
CISSP certified individuals in the MEA region in 2003.
AYMAN ABUREYALEH
CYBERSECURITY AREA SALES MANAGER
CISCOAyman has more than fourteen years of experience on information security
consulting services, solutions and Managed Security Services (MSS)
VITALI KREMEZDIRECTOR OF RESEARCH,
HUNT TEAMFLASHPOINT
Vitali is a Director of Research at Flashpoint, where he specializes in
researching and mitigating complex cyber attacks, network intrusions,
data breaches, and hacking incidents, emanating primarily from the Eastern European cybercriminal ecosystem.
DR. WAËL KANOUN CYBERSECURITY MANAGER
AND PROJECT DESIGN AUTHORITY THALES
His domain expertise covers cybersecurity programs, frameworks, architectures, risk management, vulnerability assessment,
applied cryptography, dynamic assessment and metrics, R&D programs, and intellectual
property. His experience spans various critical infrastructures such as telecom,
transportation, utilities, public safety and banking
GLOBAL SPEAKERS AT A GLANCE
AHARON CHERNIN
CEO & FOUNDERPERCH SECURITY
Aharon is a board member for Open Vulnerability and Assessment Language
(OVAL), and maintains close working ties to DHS, US-CERT, and Mitre Corporation. He
served as co-chair of OASIS STIX standard technical committee and chair of FS-ISAC
Security Automation Working Group (SAWG).
MATT WYCKHOUSE
CO-FOUNDER AND CEOFINITE STATE
Matt has more than 15 years of experience leading advanced R&D programs related to
offensive and defensive cyber operations. Prior to founding Finite State, Matt was the CTO of
Battelle’s Cyber Security Business, where he led US Government programs related to all aspects
of IoT security
CHRIS PACETECHNOLOGY ADVOCATE,
EMEA
RECORDED FUTUREChris works for Recorded Future to
engage and educate audiences on the power of real-time threat intelligence,
using his extensive experience delivering security solutions to all kinds of
organizations.
BRUCE GASTON DIRECTOR & CFO
DARMEN TECHNOLOGY
& SERVICESDarmen Technology is one of the leading
regional Tech & Communications Infrastructure companies involved in the Belt Road Initiative and Eurasia. Bruce
has also worked with world leading digital oilfield company Redline.
DANIEL BERNARD VP BUSINESS AND
CORPORATE DEVELOPMENT,
SENTINELONEDaniel is responsible for SentinelOne’s technology alliances and integrations globally. He was previously Director of Global Business Development at
Cylance as well as held leadership roles at Dropbox, sourcing and running global
partnerships.
GIRISH DANIHEAD BUSINESS
DEVELOPMENT, DIGITAL SECURITY SOLUTIONS
ETISALAT DIGITALGirish has over 15 years of professional
experience in information security, he has served international clients in
managed security services, application security and cyber security
www.gisec.ae +971 (4) 308 6805 [email protected] +971 (4) 318 8607
Mr Ng Hoo Ming is charge of the National Cyber Security Centre within the Cyber Security Agency of Singapore which was established in 2015 under the Prime Minister’s office to coordinate all cyber security matters.
Prior to his current appointment, Hoo Ming was Director in charge of the then newly formed Singapore Infocomms Technology Security Authority (SITSA), from 2009-2015. In line with SITSA’s mission to secure the IT environment of Singapore, especially with regards to external threats to national security, which include cyber terrorism and cyber espionage. Hoo Ming was responsible for leading the national defensive response to major cyber attacks against Singapore’s critical national infrastructure.
The NCA’s role is to protect the public by disrupting and bringing to justice those serious and organised criminals who present the highest risk to the UK. A major element of that task is dealing with serious, organised cyber crime.
Within the NCA is the National Cyber Crime Unit which has the capability to respond in fast time by providing a powerful investigative response to the most serious incidents; working proactively to target criminal vulnerabilities; and proving intelligence support for law enforcement agencies.
Amer Sharaf is the Director of Compliance Support and Alliances at the Dubai Electronic Security Center based in the Emirates of Dubai in the United Arab Emirates. Amer has accumulated a diverse set of skills in his career in the Information Technology field successfully delivering key applications and infrastructure related projects. His experience also extends to deploying resilient and highly available data centers catering to key critical systems. Amer has considerable experience on city level systems and adopting several disruptive technologies and ensuring that key security principles and technologies are adopted.
His current roles involve ensuring Government Departments adopt the Dubai Information Security Regulation and any other standard that may be developed in the future in addition to auditing their compliance to those standards. This is achieved through a rigorous communications and actions plan and awareness sessions conducted directly with all the entities. The role also involves establishing and maintaining relationships with similar entities on both nationally and internationally.
A Chevening Fellow, Global advisor, International Keynote Speaker and, an IT and Security evangelist with over decade and half diversified global leadership experience in strategizing, architecting and executing Information Technology and Cyber Security services. He has been instrumental in developing Indian Cyber Security and Cybercrime prevention community. Currently he is Chief Information Security Officer(CISO) for Amazon Pay India, he has held position of CISO for Digital India and UIDAI(AADHAAR) programs. He was responsible and instrumental for developing, budgeting, implementing and operating National Emergency Response System(NERS-112), Cyber Crime Prevention for Women and Children(CCPWC), Indian Cyber Crime Coordination Centre(I4C) programs.
He also serves as Advisor to IDG, iSMG, etc. He has been awarded Magnificent CISO for the year 2016, He played instrumental role in achieving “best e-Governance project in the country for the year 2013 and 2014 by NASSCAM-DSCI for UIDAI.
THE TUTORS
EXPERIENCED OPERATIONAL OFFICERSNATIONAL CRIME AGENCY, UNITED KINGDOM
GOVERNMENTMASTER CLASS SHARJAH A MEETING ROOM
DUBAI WORLD TRADE CENTRE30 APRIL 2018
NG HOO MINGDEPUTY CHIEF EXECUTIVE (OPERATIONS)CYBER SECURITY AGENCY OF SINGAPORE
AMER SHARAFDIRECTOR - COMPLIANCE SUPPORT AND ALLIANCESDUBAI ELECTRONIC SECURITY CENTER
RUDRA MURTHYFORMER CISO DIGITAL INDIACISO, AMAZON PAY, INDIA
9.00 AM Registration, breakfast and networking
9.30 AM Introduction by the Master Class Moderator: Dr Rudra Murthy, CISO Amazon Pay India and former CISO of Digital India
9.35 AM Welcome by Amer Sharaf, Director - Compliance Support and Alliances, Dubai Electronic Security Center
9.40 AM
Successful policy frameworks, best practice emergency response, and interoperability and coordination between security agencies and govern-ment departments
Mr Hoo Ming Ng, Deputy CE (Ops), Cyber Security Agency of Singapore (CSA)
10.30 AM Break
10.50 AMTrends in threat vectors facing government organisations, and how to respond
Mr Hoo Ming Ng, Deputy CE (Ops), CSA
11.30 AM Break
12.00 PM UK National Crime Agency (NCA): An overview on the aetiology of the Prevent approach
12.45 PM Lunch
1.45 PM UK NCA: An introduction to the Cyber-Dependent Criminal Career Pathway
2.15 PM UK NCA: Examples of Prevent Operational Case Studies (online and offline)
3.00 PM Break
3.15 PM UK NCA: Interactive group work/Question and Answer Session
4.00 PM End of Mater Class
THE SCHEDULEWHAT WILL YOU LEARN?The biggest prize for cyber criminals and attackers is government. Whether its critical infrastructure, basic online services or the massive data held by government, all countries are vulnerable to attack. This trend relentlessly increases every year, and the Middle East is no exception. Uniquely, those who work in government don’t just have to protect their own departments, but they are also part of a tapestry that has to defend the citizen and private sector.
In this unique master class, leading security agencies from Dubai, Singapore, India and the UK come together to deliver in depth tutorage to a select and high-level audience, especially concentrating on the strategic imperatives to sound and holistic cyber defence. The Master Class is an informal setting where you are encouraged to challenge the advice of the tutors, to engage with your class mates, and bring to the discussion real world examples – and of course, the world class professionals leading the Master Class are always happy to give their advice about any predicaments your organisation might face.
The Master Class will focus on the following themes:
• Best practice emergency response to a crisis.• Interoperability and coordination between security agencies and government departments.• Trends in the threat vectors facing government organisations, and how to respond to them.• Case studies about cyber crime and policy frameworks designed to prevent the causes of it: • The aetiology of the UK NCA’s Prevent approach • An introduction to the cyber-dependent criminal career pathway • Examples of online and offline operational case studies to prevent cyber crime • Interactive group work
We encourage all participants to speak openly in order to create a free environment for enhanced learning. Therefore we ask that all participants agree that what they hear and talk about within this learning environment is kept secret once it is finished.
CHATHAM HOUSE RULE WHO SHOULD ATTEND 6 REASONS TO ATTEND
This is an by-invitation event, only open to senior government security professionals from UAE, Saudi Arabia, Kuwait, Oman and Bahrain and allied countries including UK and Singapore.
Meet over 20 fellow senior leaders in information security from the Gulf
Return with the assurance you have world-class direction on your next move
Learn from tutors who have reached top positions at leading security agencies
Challenge cyber security leaders to find gaps in your current strategy
Benchmark you current practice against similar gov depts. to identify gaps
Get up-to-date understanding of the threat landscape governments
1 4
2 5
3 6
OIL & GASMASTER CLASS
DUBAI WORLD TRADE CENTRE30 APRIL 2018
www.gisec.ae +971 (4) 308 6805 [email protected] +971 (4) 318 8607
Nigel has over 20 years in IT and Cyber Security, advising and consulting at Enterprise level as well as fulfilling hands on interim CISO and CIO functions. An advocate of Cloud Computing and the latest trends in Information Technology and Cyber Security, with retained advisory functions that include the Microsoft global Security and Compliance Partner Advisory Council and have included the Sun Microsoft System Executive Council and UK Interoperability Council.
Passionate about IT Security, protecting privacy and building trust in digital life. Nigel is an experienced Cyber Security and Cloud Computing expert and industry trusted voice. Having provided policy briefings on Data Protection (GDPR), Cyber Security and Privacy to MP’s and The Lords in Westminster, MEP’s and Commissioners in Brussels. Most recently speaking at the Davos World Economic Forum on Corporate Digital Responsibility and participation in the Blockchain and AI panel debate.
Muhittin Hasancioglu has been a senior leader in cyber risk and security with 30 years of experience at country, regional and global levels. Having spent over 23 years at Shell, Muhittin retired in January 2018 as their VP Chief Information Security Officer where he was responsible for cyber risk and security at Group level and established the function’s vision, strategy and transformation programme. During his tenure, he controlled a multimillion dollar 9-figure security budget and led the execution of structurally transforming the organisation, establishing a risk governance structure, affecting behavioural change and complying with legal and regulatory rules within multiple markets.
Bruce Gaston is a Director and CFO of Darmen Technology, one of the leading regional Tech & Communications Infrastructure companies involved in the Belt Road Initiative and Eurasia. Bruce has also worked with world leading digital oilfield company Redline. Bruce is an Investment Banker by background, but has also founded several IT and Technology companies, including a benchmark project implementation of an Artificial Intelligence platform for one of Eastern Europe’s leading downstream oil & gas companies. Bruce has founded several IT companies in Eastern Europe and Eurasia. Previously, Bruce worked for Deutsche Morgan Grenfell in London and Tokyo, where he was involved in IT Support and building front office trading and arbitrage systems and risk management systems. Bruce has worked in IT Development at Credit Suisse Financial Products and original started on automation projects on the trading floor of Chase Manhattan Bank in London.
NIGEL GIBBONSGISEC CONFERENCE CHAIRMAN
Highly experienced cyber security consultant and advisor
MUHITTIN HASANCIOGLUEX-VP CISOSHELL INTERNATIONAL
BRUCE GASTON DIRECTOR & CFODARMEN TECHNOLOGY & SERVICES
THE TUTORS
SHARJAH D MEETING ROOM
9.30 AM Registration opens, breakfast buffet and networking
10.00 AM Introduction from Nigel Gibbons, Workshop Moderator
10.30 AM Muhittin Hasancioglu, ex-VP CISO, Royal Dutch Shell
12.00 PM Lunch break
13.00 PM
Nigel Gibbons and Bruce Gaston Cybersecurity is the new O&G Operating modelOil and gas companies operate at the leading edge of technology, with operations, networks and telecommunications systems encircling the world. With the exploitation of new cost-effective operations, use of digital technologies and increased dependence on digital networks and platforms, the oil and gas industry is exposed to new sets of vulnerabili-ties and threats.• 61% of oil and gas organizations believe it’s unlikely or highly unlikely that they would be able to detect a sophisticated attack.• 90% believe that their information security function is falling short of fully meeting the organizational needs.• 29% have no real-time insight on cyber threats.• 77% of respondents say they are seeing a rise in attacks over the last year.(EY - Oil and gas cybersecurity, time for a seismic shift. Tripwire Energy Industry Survey 2017)
14.30 PM Break
14.45 PM Round table interactive sessions and determining actionable next steps
17.00 PM End of workshop
THE SCHEDULEMONDAY, 30 APRIL 2018, DUBAI WORLD TRADE CENTRE
WHAT WILL YOU LEARN?Oil and Gas remains the paramount critical resource in the region for economic growth, and with cyber attacks becoming more prevalent than ever, causing significant damages to revenue and productivity in several high profile examples, it has never been so important to ensure information security leaders are aware of the best practice that needs to be implemented in order to protect their organisations.
In this unique master class, the former CISOs of BP and Shell come together to deliver in depth tutorage to a select and high-level audience, especially concentrating on the strategic imperatives to sound and holistic cyber defence. The Master Class is an informal setting where you are encouraged to challenge the advice of the tutors, to engage with your class mates, and bring to the discussion real world examples – and of course, the world class professionals leading the Master Class are always happy to give their advice about any predicaments your organisation might face.
The Master Class will focus on the following themes:
• Shaping the security strategy of Oil and Gas businesses• An outlook for security challenges facing Oil and Gas in the near future• The security impact of new technologies adopted by Oil and Gas companies, including:• Blockchain• Artificial Intelligence• Digitisation• The insider threat:• Effectively managing behavioural change• Improving security with a collaborative approach• Strategic gaps in the PCD domain and OT environment
We encourage all participants to speak openly in order to create a free environment for enhanced learning. Therefore we ask that all participants agree that what they hear and talk about within this learning environment is kept secret once it is finished.
CHATHAM HOUSE RULE WHO SHOULD ATTEND 6 REASONS TO ATTEND
Owing to the seniority of the tutors, this Master Class is reserved only for Oil and Gas professionals in strategic roles, or on track for leadership positions. The ideal student will be C-level or those who report directly to them.
Meet over 20 fellow senior leaders in information security from the Gulf
Return with the assurance you have world-class direction on your next move
Learn from tutors who have reached C-level positions at legendary companies
Challenge industry leaders to find gaps in your current strategy
Benchmark you current practice against similar companies to identify gaps
Get up-to-date understanding of the threat landscape in Oil & Gas
1 4
2 5
3 6
TUESDAY 1 MAY
11:00Chairman’s welcome
Nigel Gibbons, Conference Chairman and Advisor GISEC 2018
11:05
How Information Security and Data Privacy are enabling INGKA Group’s multichannel journey• Setting the scene and context• Information Security and Data Privacy strategy and goals• Building the needed capabilities for today and for the future• Driving the focus areas
Jarkko Rautula, Group CISO, IKEA Group
11:30Dubai’s Cyber Security Strategy
Dr Bushra Al Belooshi, Manager - Research & Innovation, Dubai Electronic Security Center, Dubai Electronic Security Center
11:50
Upgrade Your Attack Model to Stop Targeted AttacksYesterday’s attack models are insufficient for handling today’s range of state and non-state attacker techniques. The expansion of open source, nation-state level capabilities only exacerbates the challenges enterprises encounter in protecting their most valuable data and assets. It’s well past time to innovate and update attack models. There are numerous components at the core of a resilient attack model. I’ll walk through each of these, including the increasing relevance of MITRE’S ATT&CK™ matrix for holistic coverage, as well as the necessity for usable security to broaden the access to advance defenses. I’ll conclude with some suggestions for validating the models, including the role of transparency and third-party validation.
James Butler, CTO, Endgame
12:10Managing risk: The question is not IF you will get hacked but WHEN
Boris Balacheff, HP Fellow & VP, HP Security Lab
12:30
Building Digital Resilience for Digital Businesses
This talk establishes a context of digital adoption by businesses and highlights a new dimension of risks. In view of latest security incidents in various industry verticals, a pragmatic approach will be presented for continuous digital security and defense.
Kamran Ahsan, Senior Director, Security Solutions, Etisalat Digital
12:45
Panel discussion: The best way to improve cyber defence within your supply chain
Chin Kiat Chim, CISO, DHL Express Dee Deu, CISO, British Land
Fuad Al Anasari, VP Information Technology ADNOC Refining
13:15 Lunch and Networking
14:00
How security leaders need to manage their Board• Understanding how to speak to the Board, and what to tell them, in order for them
to appreciate the full implications of operating in cyberspace.• How the approval of increased information security budgets are unlikely to result in
immediate results, and how best to communicate that.• How to anticipate future security challenges and articulating them to the Board.
Mike Pitman, CISO, Dunnhumby; ex CISO John Lewis Partnership
14:30
Getting Ahead by Looking Back2017 was a year of enormous change in information security -- and the question of whether cyber warfare touches us all is no longer a debate. To this end, organizations must get out in front of the next wave of threats, which means security teams need to better understand the changes along with how to detect and defend against them. Join us for this session as we highlight the obvious (and not-so-obvious) events that defined 2017 and discuss how to ensure your defense posture can keep up with the ever-shifting threat landscape
Rick McElroy – Principal Security Strategist, Carbon Black
14:50
Breached or not breached?Exploring the shift from prevention to detection and response in GCC
Hani Nofal, VP Intelligent Network Solutions, Security and Mobility, GBM
15:10
How to mitigate the two biggest risks in cyber security - Learn from the masters:• How the best CISOs are using the six facets of ‘Human Psychology’ + Using
‘Employee powered’ cyber security techniques to transform humans into the strongest link in cyber security
• What are the three attack types in Email and how to mitigate against them (in under 3 mins). Every attendee will receive a free kit.
Ankush Johar, Director, Infosec Ventures
GISEC MAIN STAGE
GISEC MAIN STAGE
TUESDAY 1 MAY
15:30
A new approach to Cyber Risk & Security concept, and It is Transformational• Current reality: Covering what has happened, an increased sophistication of the
threat landscape, gaps in Governance, Skills, Collaboration, E2E view, and reactive approach.
• What is the Paradigm shift and what needs to take place to be ready and proactive?
• Business’s growth, digitalisation ambitions and the fast-changing technology landscape will require the Transformational response.
Muhittin Hasancioglu, ex-CISO, Royal Dutch Shell
16:00
Panel discussion: How to implement a successful and secure digital transformation for your organisation - lessons from retail
Jarkko Rautula, Group CISO, IKEA Group
Dr Faisal Sibai, SVP & CISO of a major public wealth fund in the Middle East region
Rakesh Gohil, Senior Director - IT, Ahmed Seddiqi and Sons
Chris Pace, Technology Advocate, EMEA Recorded Future
16:30
Cybersecurity above everything
Ayman AbuReyaleh, Cyber Security Area Sales Manager, CISCO
16:50
Panel discussion for leaders in government cyber security – kickstarter question: Are government entities asking for trouble with their rapid digitisation programmes?
Khaled A. Alnuaimi, Senior IT Consultant, Eastern Province Governorate (Emara), Ministry of Interior, Kingdom of Saudi Arabia
Fuad Al Anasari, VP Information Technology ADNOC Refining
Abdulla Bader Al Sayari, CISO, Department of Health, Abu Dhabi, United Arab Emirates
Alberto Hernández Moreno, CEO, INCIBE - Spanish National Cyber Security Institute
17:30Cyber Security and the city of tomorrow, the UK perspective
Peter Estlin Alderman, City Of London Corporation ex-CFO Citigroup Investment Banking and ex-Acting CFO for Barclays Bank.
17:45 End of Day 1
WEDNESDAY 2 MAY10:25
Chairman’s welcome
Nigel Gibbons, Conference Chairman and Advisor GISEC 2018
10:30The security implications of moving to the Cloud
David Cass, CISO, Cloud & SaaS, IBM
11:00Economy impact, and digital security while digitizing banking
Dr Rudra Murthy, CISO, Amazon Pay, ex-CISO Digital India
11:30
Inside TheDarkOverlord’s Media-Driven Extortion CampaignsWe investigate and discuss some of the critical intelligence gathered while tracking thedarkoverlord’s tactics, techniques, and procedures (TTPs) using incident response information and extensive human intelligence operations.
Vitali Kremez, Director of Research, Hunt Team, Flashpoint
11:50
France’s first purpose built smart city and embedding cyber security into its systems.
Thomas Degardin, Group CISO, Bouygues Construction
12:20
The Dark Web’s Deep Threat Intelligence Secrets
Chris Pace, Technology Advocate, EMEA Recorded Future
12:40Secure your Digital Transformation
Girard Moussa, Cyber Security Lead (MEA), Microsoft
13:00 Lunch and Networking
13:40
Cybersecurity in today’s AI (Artificial Intelligence) environment. Challenges: Algorithmic business, artificial intelligence and machine learning
Dr Mohamed Benaichouche, CIO and IT Director, Arabsat
14:10
Panel discussion for leaders in aviation sector cyber security – Kickstarter question: We’ve seen minor systems hacked, but will we see a major cyber-instigated aviation sector disaster?
Ahmed Duwaih, Senior Manager IT Security, Abu Dhabi Airports
Vitali Kremez, Director of Research, Hunt Team, Flashpoint
Matt Wyckhouse, co-founder and CEO, Finite State
14:50Threat Landscape Overview – A look back
Alain Kallas, Head of Security Consulting, Middle East, SecureWorks
15:10An overview of cryptocurrency and its security implications
Dr Marwan Al Zarooni, Director - Information Services Department, Dubai Electronic Security Center
15:40SentinelOne - Autonomous Endpoint Protection That Saves Time
Daniel Bernard, VP Business & Corporate Development, SentinelOne
16:00
The state of cyber: how stealthier attacks are blurring the lines between cybercrime and statecraftThis session will shed light on alarming new trends CrowdStrike has observed in the global threat landscape, and the evolving best practices that are proving most successful against criminal, hacktivist and nation-state adversaries.-The latest threat intel and predictions for 2018 and how you can use this to shape your security strategy-Lessons learnt in the course of conducting in-depth digital forensics, IR and remediation with real-world strategic insight into the current threat landscape.-How advanced attacks continue to succeed in evading modern defences-How applied threat intelligence can deliver a decisive advantage in protecting your enterprise
Zeki Turedi, Technology Strategist, EMEA, CrowdStrike
16:20
Panel discussion for cyber security leaders in the commercial sector– kickstarter question: Is there an inevitability in successful cyber-attacks on businesses operating in the Middle East and should we just expect the worst?
George Eapen, CISO – MENAT, General Electric
Dileep Somani, CIO, OTE Group, Oman
Alaba Oluwayimika, Head of IT Operations, Dangote, Nigeria
16:40 End of Day 2
GISEC MAIN STAGE
GISEC MAIN STAGE
10:25Chairman’s welcome
Nigel Gibbons, Conference Chairman and Advisor GISEC 2018
10:30
Incident-centric security: How security needs to refocus towards its purpose of anticipating, preventing and reacting to security indidents.• Wannacry case study: Telefónica• How to make security re-balance again to the basic purpose of mitigating business impacts of security incidents by doing things right pre-during-post incidents.
Alejandro Becerra Gonzalez, Group CISO, Telefónica
11:00Emerging cybercrime trends in the UAE and the challenges in overcoming them
Colonel Saeed M. Al Hajri, Director of the Cybercrime Department, Dubai Police
11:50Cybersecurity for Critical ICS Infrastructures
Dr. Waël Kanoun, Cybersecurity Manager and Project Design Authority, Thales
12:10Presentation to be delivered by the head of operations of the cyber security agency of Singapore
Ng Hoo Ming, Deputy Chief Executive (Operations), Cyber Security Agency of Singapore
12:40
Following the Money: Inside a Cybercrime SyndicateGone are the days of risky bank heists, fast getaway cars, and wild shootouts for the chance of a major score - modern mobsters and organizations have stepped up their game using technology, connectivity, and accessible tools to steal not only money, but IP and sensitive data with a few clicks. This session will highlight the dangers of these organizations to everyday networks.
Richard Melick, Technical Marketing Manager, CompIntel Industry Relations & Product Testing, Cylance
13:00 Lunch and Networking
14:20The government’s role in providing effective cyber security for critical national infrastructure and industries
Alberto Hernández Moreno, CEO, INCIBE - Spanish National Cyber Security Institute
14:50
Panel discussion for infosec leaders in multinational companies – Kickstarter question: Should a PLC pay ransoms, and when does it have a duty to inform its shareholders of successful attacks?
Corbett Hoxland, Regional Business Manager for Security and IT Optimization, HP Inc.
Alejandro Becerra Gonzalez, Group CISO, Telefónica
15:40
People Centric Security – the new paradigm in cybersecurity Cybercriminals are increasingly targeting the human vulnerability. With businesses moving towards O365, Proofpoint will bring a more deterministic way of building resilience into the ecosystem that protects your employees & business from cyber threats. In this session, we will discuss how Proofpoint’s market leading technology is restoring trust to today‘s number one attack vector: email.
Martin Blackhurst, Senior SE, MENAT, Proofpoint
15:40Are you prepared for a cyber attack? Live hack on how to ensure your organisation is cyber resilient.
Hany George, Engineer, Mimecast
16:20
Panel discussion – Kickstarter question: if organisations can’t guarantee security of big data, why should they be allowed to be custodians of it?
Dr Abdullah Alothman, CIO, Ministry of Culture and Information, Saudi Arabia
Mike Pitman, CISO, Dunnhumby; ex-CISO John Lewis Partnership
17:00
Towards and international coalition for cyber security interoperability
Major Mohamed Almarashda, Police major and professional expert in national security strategies
17:30 End of Day 3
THURSDAY 3 MAY
www.gisec.ae +971 (4) 308 6805 [email protected] +971 (4) 318 8607
THURSDAY 3 MAY
GISEC BFSI Focus Stream located at the INSPIRE Stage
10:40
Chairman’s welcome
Anil Joshi, Founder and Managing Partner, Unicorn Indian Ventures
11:00
Startups and emerging technology disrupting the BFSI sector
Anil Joshi, Founder and Managing Partner, Unicorn Indian Ventures
11:20
Demystifying Cyber Threat Intelligence
Girish Dani, Head Business Development, Digital Security Solutions, Etisalat Digital
11:40
Panel discussion: What are the security concerns involving the emerging technologies for BFSI over the next ten years?
Mr Bruno Fonseca, CSO, AXA Insurance (Gulf)
James Butler, CTO, ENDGAME
Vitali Kremez, Director of Research, Hunt Team, Flashpoint
Rizwan Arain, CISO, Habib Bank AG Zurich
Rinaldo R Oliveira, Head of IT Risk & Governance, Risk and Compliance, Commercial Bank of Dubai
12:00
Look ma, no hands. Act on relevant intelligence
Aharon Chernin, CEO/Founder, Perch Security
12:20 Lunch and Networking
14:00
Panel discussion: In the BFSI sector should the CISO report to the CIO or is their position now so important it needs to reside at Board level?
Anshul Srivastava, CIO, Union Insurance
Nasser Zagha, CIO, Bank of Jordan
15:20
The Egyptian FRA’s approach to instilling good cyber security practices throughout the country
Sherif Yehia Abd ElGhany, IT Networks Manager, Egyptian Financial Supervisory Authority
15:40
Lurking in the Shadows: Real-world IoT Attacks and the New IoTSecurity Stack
Matt Wyckhouse, CEO, Finite State
16:00
Panel discussion – Do customers have a trust issue with BFSI sector’s ability to protect their information, if so what are the best measures to improve the situation?
Sherif Yehia Abd ElGhany, IT Networks Manager, Egyptian Financial Supervisory Authority
Major Mohamed Almarashda, Police major and professional expert in national security strategies
Aharon Chernin, CEO/Founder, Perch Security
16:20 End of Day 3
www.gisec.ae +971 (4) 308 6805 [email protected] +971 (4) 318 8607
OFFICIAL GOVERNMENT CYBER SECURITY PARTNER
OFFICIALLY SUPPORTED BY
MEDIA PARTNERS
OFFICIAL SECURITYPARTNER
STRATEGICPARTNER
STRATEGICPARTNER
OFFICIAL DISTRIBUTION PARTNER
OFFICIAL TELECOMPARTNER
PLATINUM SPONSORSOFFICIAL SECURITY SOLUTIONS PARTNER
INTERNATIONAL SUPPORTING PARTNERS
OFFICIAL E-CHARGING PARTNER
AI AND SECURITYPARTNER
Security MatterzIT Security Solutions
POWERED BYCO-LOCATED WITHPART OF
C O N TAC T U S
www.gisec.ae +971 (4) 308 6805 [email protected] +971 (4) 318 8607