SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE … · 2020-06-18 · Dear colleague, GISEC 2018...

SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE WORLD’S LEADING INFOSEC PROFESSIONALS

www.gisec.ae

OFFICIAL GOVERNMENT CYBER SECURITY PARTNER

DOMESTIC SUPPORTING PARTNERS

INTERNATIONAL SUPPORTING PARTNERS

PLATINUM SPONSOR

DISTRIBUTION PARTNER

EXHIBITORS

OFFICIALGOVERNMENTCYBERSECURITYPARTNER

DOMESTICSUPPORTING PARTNERS

INTERNATIONALSUPPORTING PARTNERS

SILVERSPONSORS

POWERED BYCO-LOCATED WITHPART OF

4days of learning

40+GISEC sessions

60+industry experts.

7,500+ leading infosec professionals

30 APRIL 2018 PRE-SHOW MASTER CLASSES

1 - 3 MAY 2018 CONFERENCE & EXHIBITION

ORGANISED BY

Dear colleague,

GISEC 2018 is almost here and we’ve made it the biggest and most exciting version yet. Welcome to the 5th anniversary edition, here’s what’s on offer:

• A three day cyber security stage with over 25 C-levels giving inspiring talks on innovations in security.

• Masterclasses delivered by world leaders in cyber security

• A focus day addressing the unique cyber challenges faced by the BFSI sector

• A three day smart cities conference on the IOTx stage

• Brand new this year, a one day conference on how to achieve ROI with artificial intelligence.

• One day of Future Tech talks held on the Inspire Stage, where we’ve brought some of the world’s game changing inventors to show off their amazing technologies which are set to change the way we live over the next ten years

• Finally we’ve co-located with Future Blockchain Summit, doubling the hall space we’ve had before, giving us an unprecedented numbers of visitors and delivering the delegate world class insight on one of the world’s most important innovations.

So, with more visitors than ever, more security products on display, and a huge array of amazing presentations and talks to engage in, we’re excited to show you the GISEC agenda and encourage you to book tickets soon before they sell out.

We look forward to having you back this year at GISEC, and if this is your first time attending, we’re sure it won’t be your last.

With best wishes

Michael ChampionEvent DirectorGISECPart of Future Technology Week

[email protected]


GLOBAL SPEAKERS AT A GLANCE

DAVID CASSCISO, Cloud & SaaS

IBM

Formerly the CISO for Elsevier and Freddie Mac, David is now a global information

security leader at IBM, one of the world’s most iconic companies.

MUHITTIN HASANCIOGLU

EX-VP CISOSHELL

INTERNATIONAL Retired from oil giant Shell earlier this year

after an illustrious 20+ year career there which saw him finish as their CISO.

JARKKO RAUTULAGROUP CISO

IKEA GROUP

Head of information security at the world’s largest furniture retailer with 183,000 employees

and $37bn revenue.

NG HOO MINGDEPUTY CHIEF EXECUTIVE

(OPERATIONS)CYBER SECURITY

AGENCY OF SINGAPORE

Head of Singapore’s National Cyber Security Centre and a key leader in the protection of

critical national infrastructure in the country.

RUDRA MURTHYCISO

AMAZON PAY

Formerly the CISO for Digital India and now heading information security at one of the world’s biggest groups as CISO in the India

division of Amazon Pay

CHIN KIAT CHIMCISO

DHL EXPRESS

The world’s largest international courier, which employs 325,000 people and as part of the Deutsch Post DHL Group is part of a

$60bn revenue business.

ALEJANDRO BECERRA GONZALEZ

GROUP CISOTELEFÓNICA

Head of information security at one of the world’s largest telecoms companies with 120,000+ employees and $55bn revenue.

FAISAL SIBAISVP & CISO

AT A MAJOR MIDDLE EAST BASED SOVEREIGN

WEALTH FUND

Head of information security at one of the Middle East’s most famous, and one of the world’s most

active, sovereign wealth funds.

ALBERTO HERNÁNDEZ MORENO

CEOINCIBE - SPANISH NATIONAL

CYBER SECURITY INSTITUTE

One of the principal Spanish government security agencies charged with increasing cyber security

of Spanish industry

RICHARD BROWNINGFOUNDER AND CHIEF TEST

PILOTGRAVITY INDUSTRIES

The inventor breaking world records with his amazing 1000bhp Jet Suit , Gravity is pioneering a new era of human flight. Hear the innovation

story and watch the demonstration


KHALED ALNUAIMISENIOR IT CONSULTANT

EASTER PROVINCE GOVERNORATE, MINISTRY

OF INTERIOR The Eastern Province is the largest in Saudi

Arabia and home to a majority of its oil production.

ABDULLA BADER AL SAYARI

CISODEPARTMENT OF

HEALTH, ABU DHABIHead of information security at the government

department which oversees all healthcare information from hundreds of hospitals and

clinics dealing with over 10m health episodes a year.

FUAD AL-ANSARIVP INFORMATION

TECHNOLOGYADNOC REFINING

Head of information security at the refining arm of one of the world’s largest National Oil

Companies.

DR. ANGELO GRUBISICPROJECT LEAD

ICARUS PROJECT

Renowned space-propulsion expert and formerNASA space craft engineer.

BRUNO FONSECACSO

AXA INSURANCE (GULF)

As CSO he oversees the areas of Information Security, Physical Security,

Business Continuity & Crisis Management and IT Compliance and Risk, and is

responsible for 5 countries.

AMER SHARAFDIRECTOR - COMPLIANCE SUPPORT AND ALLIANCES

DUBAI ELECTRONIC SECURITY CENTER

DESC is the principal government cyber security agency in the Emirate of Dubai.

GEORGE EAPENCISO (MENAT)

GENERAL ELECTRIC

Regional CISO at one of the world’s best known engineering companies with over $9bn to $20bn

Change 4,200 employes tp 20,000 employees

THOMAS DEGARDINGROUP CISO

BOUYGUES CONSTRUCTION

Formerly CISO for supermarket giant Carrefour, now helping to build Dijon Smart City - the

purpose built first smart city in France

PIERRE BARREAUCEO

AIVA TECHNOLOGIES

The man who hopes to make the world’s greatest music composer - an artificial

intelligence who will compose better than Mozart.

PETER ESTLINALDERMAN

CITY OF LONDON CORPORATION

ex-CFO Citigroup Investment Banking and ex-Acting CFO for Barclays Bank.


MAMOUN ALHOMSSEYCIO

ABU DHABI ISLAMIC BANK

CIO at ADIB, renowned, award winning regional bank with $1.5b revenue and $27bn of customer

deposits.

MIKE PITMANCISO

DUNNHUMBY

Formerly CISO at John Lewis Partnership, now head of information security at Dunnhumby which is owned by supermarket giant Tesco.

DEE DEUCISO

BRITISH LAND

British Land is the largest property investment company in the UK, with almost $20bn of assets;

Dee is a finalist for Security Leader of the Year 2017 - Women in IT Excellence Awards

RICK MCELROYPRINCIPAL SECURITY

STRATEGISTCARBON BLACK

He has held security positions with the U.S. Department of Defense and has more than 15

years of information security experience advising organizations on reducing their risk posture.

ALAIN KALLASHEAD OF SECURITY

CONSULTING, MIDDLE EASTSECUREWORKS

Alain holds several professional certifications such as Usable Security from University of Maryland, Surveillance Law from Stanford

University and Challenges of Big Data Security from MIT.

LEE LAWSONCOUNTER THREAT UNIT SPECIAL OPERATIONSSECUREWORKS

As CSO he oversees the areas of Lawson is a member of CTU Team which operates in the field of cyber intelligence, researching

new cyber threats and gathering intelligence on the perpetrators.

ALABA OLUWAYIMIKAHEAD OF IT OPERATIONS

DANGOTE

Head of IT Operations at Nigeria’s largest conglomerate.

ABDULLAH ALOTHMANCIO

MINISTRY OF CULTURE AND INFORMATION,

SAUDI ARABIA CIO AT THE SAUDI GOVERNMENT MINISTRY

RESPONSIBLE FOR REGULATING ALL MEDIA WITHIN THE KINGDOM AND COMMUNICATIONS TO OTHER

COUNTRIES

AHMED DUWAIHSENIOR MANAGER IT SECURITYABU DHABI AIRPORTS

COMPANY

An IT security leader at a company operating prestigious brands like Abu Dhabi Duty Free and Abu Dhabi International Airport which sees over

30 million passengers a year.

RAKESH GOHILSENIOR DIRECTOR - IT

AHMED SEDDIQI & SONS

An IT security leader at one of the region’s best loved luxury jewellery companies.


MOHAMED BENAICHOUCHE

CIOARABSAT

CIO at one of the world’s top satellite operators and by far the leading satellite services provider in the Arab world, carrying over 500 TV channels and

200 radio stations.

NASSER ZAGHACIO

BANK OF JORDAN

CIO at the second largest bank in Jordan with over $2.1bn in customer deposits, ex-VP at Bank

of America.

COLONEL SAEED M. AL HAJRI

DIRECTOR, CYBERCRIME DEPT.DUBAI POLICE

Formerly Chairman of Interpol MENA, investigating high tech crimes, he has combatted cybercrime and

financial fraud for 25 years with Dubai Police

SHERIF YEHIA ABD ELGHANY

IT NETWORKS MANAGEREGYPTIAN FINANCIAL

REGULATORY AUTHORITYEFRA is the government authority that regulates

the financial service industry in Egypt, supervising all non-banking activities including capital

markets, commodities, insurance and mortgage finance.

RINALDO R OLIVEIRAHEAD OF FRAUD RISK, IT RISK

& GRC COMMERCIAL BANK

OF DUBAIHead of IT Risk at one of the region’s largest

banks and also Vice Chairman of the UAE Banks Federation Information Security Committee.

JAMES BUTLERCTO

ENDGAME

Bestselling cyber security author and world expert on attack and detection techniques.

RIZWAN ARAINCISO

HABIB BANK AG ZURICH

Headquartered in Switzerland, and named as a finalist for the 21st Century Achievement Award from the Computerworld Honors Program for its

use of information technology in Finance.

NIGEL GIBBONSGISEC CONFERENCE

CHAIRMAN

Highly experienced cyber security consultant and advisor

ANSHUL SRIVASTAVA

CIOUNION INSURANCE

CIO at one of the oldest insurers in the Middle East which takes over AED870m in

premium revenue a year.

DILEEP SOMANICIO

OTE GROUP

CIO at one of Oman’s fastest growing and most successful business groups, with interests in

automobile retail and construction.


MARTIN BLACKHURSTSENIOR SE, NEMATPROOFPOINT

Martin has 35 years of experience in the technology field with the last 20 years focused on the security

market place. Martin started his career in Computer Engineering before becoming a specialist in Novell

and Cisco technologies.

KAMRAN AHSANSENIOR DIRECTOR, SECURITY

SOLUTIONS ETISALAT DIGITAL

With over 20 years professional experience in information security, he is accountable for the entire

business function of Digital Security Solutions for Government, Enterprise and SMB sectors

ZEKI TUREDITECHNOLOGY STRATEGIST

CROWDSTRIKE

His specialties include incident response, malware analysis, threat intelligence, digital forensics,

network forensics, digital investigations, data loss prevention, and advanced threat modelling.

DR BUSHRA AL BELOOSHI

MANAGER - RESEARCH & INNOVATION


With over 12 years experience in IT security, she heads up research projects at DESC and is expert in cyber security, cryptography, cloud computing and

forensics

DR MARWAN AL ZAROONI

DIRECTOR, INFORMATION SERVICES DEPARTMENT


Dr Al Zarooni is considered a foremost expert in the security and criminal implications surrounding cryptocurrencies, he represents DESC, the principal

agency in cyber security in the Emirate of Dubai

HANI NOFALVP INTELLIGENT NETWORK SOLUTIONS, SECURITY AND

MOBILITYGBM

Hani is in charge of leading GBM’s INS, Security and Mobility organizations across the Gulf

and Pakistan and has over 20 years industry experience

BORIS BALACHEFFHP FELLOW & VP

HP SECURITY LAB

Boris is Chief Technologist for System Security Research and Innovation in HP’s CTO office. He leads security research strategy at HP Labs and drives pan-HP security technology strategy in

lockstep with HP’s Global Business Units.

ANKUSH JOHAR DIRECTOR

INFOSEC VENTURES

Anush runs a venture fund that invests in innovations that solve BIG problems in cyber

security.

CORBETT HOXLANDREGIONAL BUSINESS MANAGER

FOR SECURITY AND IT OPTIMIZATION

HP INC.

An industry veteran with over 20 years’ experience, Corbett has a deep understanding of working with Fortune 500 companies across the

globe, with a focus on end-user devices.

RICHARD MELICKTECHNICAL MARKETING MANAGER, COMPINTEL INDUSTRY RELATIONS &

PRODUCT TESTINGCYLANCE

Formerly holding the position of Senior Security Strategist for Cylance, Richard was a US Marine

and has spent the past 8 years in information security and IT infrastructure roles.

ANIL JOSHIFOUNDER AND MANAGING

PARTNERUNICORN INDIAN

VENTURES

A leading Venture Capital Fund focusing on early stage investments in tech focused

companies.

HANY GEORGESALES ENGINEER

MIMECAST

Expert ethical hacker supporting Mimecast’s customers solve their technical

projects

GIRARD MOUSSACYBER SECURITY LEAD

(MEA)

MICROSOFT

Girard has over 18 years industry and Cybersecurity experience across the Middle East and Australia. He was one of the first

CISSP certified individuals in the MEA region in 2003.

AYMAN ABUREYALEH

CYBERSECURITY AREA SALES MANAGER

CISCOAyman has more than fourteen years of experience on information security

consulting services, solutions and Managed Security Services (MSS)

VITALI KREMEZDIRECTOR OF RESEARCH,

HUNT TEAMFLASHPOINT

Vitali is a Director of Research at Flashpoint, where he specializes in

researching and mitigating complex cyber attacks, network intrusions,

data breaches, and hacking incidents, emanating primarily from the Eastern European cybercriminal ecosystem.

DR. WAËL KANOUN CYBERSECURITY MANAGER

AND PROJECT DESIGN AUTHORITY THALES

His domain expertise covers cybersecurity programs, frameworks, architectures, risk management, vulnerability assessment,

applied cryptography, dynamic assessment and metrics, R&D programs, and intellectual

property. His experience spans various critical infrastructures such as telecom,

transportation, utilities, public safety and banking


AHARON CHERNIN

CEO & FOUNDERPERCH SECURITY

Aharon is a board member for Open Vulnerability and Assessment Language

(OVAL), and maintains close working ties to DHS, US-CERT, and Mitre Corporation. He

served as co-chair of OASIS STIX standard technical committee and chair of FS-ISAC

Security Automation Working Group (SAWG).

MATT WYCKHOUSE

CO-FOUNDER AND CEOFINITE STATE

Matt has more than 15 years of experience leading advanced R&D programs related to

offensive and defensive cyber operations. Prior to founding Finite State, Matt was the CTO of

Battelle’s Cyber Security Business, where he led US Government programs related to all aspects

of IoT security

CHRIS PACETECHNOLOGY ADVOCATE,

EMEA

RECORDED FUTUREChris works for Recorded Future to

engage and educate audiences on the power of real-time threat intelligence,

using his extensive experience delivering security solutions to all kinds of

organizations.

BRUCE GASTON DIRECTOR & CFO

DARMEN TECHNOLOGY

& SERVICESDarmen Technology is one of the leading

regional Tech & Communications Infrastructure companies involved in the Belt Road Initiative and Eurasia. Bruce

has also worked with world leading digital oilfield company Redline.

DANIEL BERNARD VP BUSINESS AND

CORPORATE DEVELOPMENT,

SENTINELONEDaniel is responsible for SentinelOne’s technology alliances and integrations globally. He was previously Director of Global Business Development at

Cylance as well as held leadership roles at Dropbox, sourcing and running global

partnerships.

GIRISH DANIHEAD BUSINESS

DEVELOPMENT, DIGITAL SECURITY SOLUTIONS

ETISALAT DIGITALGirish has over 15 years of professional

experience in information security, he has served international clients in

managed security services, application security and cyber security

www.gisec.ae +971 (4) 308 6805 [email protected] +971 (4) 318 8607

Mr Ng Hoo Ming is charge of the National Cyber Security Centre within the Cyber Security Agency of Singapore which was established in 2015 under the Prime Minister’s office to coordinate all cyber security matters.

Prior to his current appointment, Hoo Ming was Director in charge of the then newly formed Singapore Infocomms Technology Security Authority (SITSA), from 2009-2015. In line with SITSA’s mission to secure the IT environment of Singapore, especially with regards to external threats to national security, which include cyber terrorism and cyber espionage. Hoo Ming was responsible for leading the national defensive response to major cyber attacks against Singapore’s critical national infrastructure.

The NCA’s role is to protect the public by disrupting and bringing to justice those serious and organised criminals who present the highest risk to the UK. A major element of that task is dealing with serious, organised cyber crime.

Within the NCA is the National Cyber Crime Unit which has the capability to respond in fast time by providing a powerful investigative response to the most serious incidents; working proactively to target criminal vulnerabilities; and proving intelligence support for law enforcement agencies.

Amer Sharaf is the Director of Compliance Support and Alliances at the Dubai Electronic Security Center based in the Emirates of Dubai in the United Arab Emirates. Amer has accumulated a diverse set of skills in his career in the Information Technology field successfully delivering key applications and infrastructure related projects. His experience also extends to deploying resilient and highly available data centers catering to key critical systems. Amer has considerable experience on city level systems and adopting several disruptive technologies and ensuring that key security principles and technologies are adopted.

His current roles involve ensuring Government Departments adopt the Dubai Information Security Regulation and any other standard that may be developed in the future in addition to auditing their compliance to those standards. This is achieved through a rigorous communications and actions plan and awareness sessions conducted directly with all the entities. The role also involves establishing and maintaining relationships with similar entities on both nationally and internationally.

A Chevening Fellow, Global advisor, International Keynote Speaker and, an IT and Security evangelist with over decade and half diversified global leadership experience in strategizing, architecting and executing Information Technology and Cyber Security services. He has been instrumental in developing Indian Cyber Security and Cybercrime prevention community. Currently he is Chief Information Security Officer(CISO) for Amazon Pay India, he has held position of CISO for Digital India and UIDAI(AADHAAR) programs. He was responsible and instrumental for developing, budgeting, implementing and operating National Emergency Response System(NERS-112), Cyber Crime Prevention for Women and Children(CCPWC), Indian Cyber Crime Coordination Centre(I4C) programs.

He also serves as Advisor to IDG, iSMG, etc. He has been awarded Magnificent CISO for the year 2016, He played instrumental role in achieving “best e-Governance project in the country for the year 2013 and 2014 by NASSCAM-DSCI for UIDAI.

THE TUTORS

EXPERIENCED OPERATIONAL OFFICERSNATIONAL CRIME AGENCY, UNITED KINGDOM

GOVERNMENTMASTER CLASS SHARJAH A MEETING ROOM

DUBAI WORLD TRADE CENTRE30 APRIL 2018

NG HOO MINGDEPUTY CHIEF EXECUTIVE (OPERATIONS)CYBER SECURITY AGENCY OF SINGAPORE

AMER SHARAFDIRECTOR - COMPLIANCE SUPPORT AND ALLIANCESDUBAI ELECTRONIC SECURITY CENTER

RUDRA MURTHYFORMER CISO DIGITAL INDIACISO, AMAZON PAY, INDIA

9.00 AM Registration, breakfast and networking

9.30 AM Introduction by the Master Class Moderator: Dr Rudra Murthy, CISO Amazon Pay India and former CISO of Digital India

9.35 AM Welcome by Amer Sharaf, Director - Compliance Support and Alliances, Dubai Electronic Security Center

9.40 AM

Successful policy frameworks, best practice emergency response, and interoperability and coordination between security agencies and govern-ment departments

Mr Hoo Ming Ng, Deputy CE (Ops), Cyber Security Agency of Singapore (CSA)

10.30 AM Break

10.50 AMTrends in threat vectors facing government organisations, and how to respond

Mr Hoo Ming Ng, Deputy CE (Ops), CSA

11.30 AM Break

12.00 PM UK National Crime Agency (NCA): An overview on the aetiology of the Prevent approach

12.45 PM Lunch

1.45 PM UK NCA: An introduction to the Cyber-Dependent Criminal Career Pathway

2.15 PM UK NCA: Examples of Prevent Operational Case Studies (online and offline)

3.00 PM Break

3.15 PM UK NCA: Interactive group work/Question and Answer Session

4.00 PM End of Mater Class

THE SCHEDULEWHAT WILL YOU LEARN?The biggest prize for cyber criminals and attackers is government. Whether its critical infrastructure, basic online services or the massive data held by government, all countries are vulnerable to attack. This trend relentlessly increases every year, and the Middle East is no exception. Uniquely, those who work in government don’t just have to protect their own departments, but they are also part of a tapestry that has to defend the citizen and private sector.

In this unique master class, leading security agencies from Dubai, Singapore, India and the UK come together to deliver in depth tutorage to a select and high-level audience, especially concentrating on the strategic imperatives to sound and holistic cyber defence. The Master Class is an informal setting where you are encouraged to challenge the advice of the tutors, to engage with your class mates, and bring to the discussion real world examples – and of course, the world class professionals leading the Master Class are always happy to give their advice about any predicaments your organisation might face.

The Master Class will focus on the following themes:

• Best practice emergency response to a crisis.• Interoperability and coordination between security agencies and government departments.• Trends in the threat vectors facing government organisations, and how to respond to them.• Case studies about cyber crime and policy frameworks designed to prevent the causes of it: • The aetiology of the UK NCA’s Prevent approach • An introduction to the cyber-dependent criminal career pathway • Examples of online and offline operational case studies to prevent cyber crime • Interactive group work

We encourage all participants to speak openly in order to create a free environment for enhanced learning. Therefore we ask that all participants agree that what they hear and talk about within this learning environment is kept secret once it is finished.

CHATHAM HOUSE RULE WHO SHOULD ATTEND 6 REASONS TO ATTEND

This is an by-invitation event, only open to senior government security professionals from UAE, Saudi Arabia, Kuwait, Oman and Bahrain and allied countries including UK and Singapore.

Meet over 20 fellow senior leaders in information security from the Gulf

Return with the assurance you have world-class direction on your next move

Learn from tutors who have reached top positions at leading security agencies

Challenge cyber security leaders to find gaps in your current strategy

Benchmark you current practice against similar gov depts. to identify gaps

Get up-to-date understanding of the threat landscape governments

1 4

2 5

3 6

OIL & GASMASTER CLASS

DUBAI WORLD TRADE CENTRE30 APRIL 2018


Nigel has over 20 years in IT and Cyber Security, advising and consulting at Enterprise level as well as fulfilling hands on interim CISO and CIO functions. An advocate of Cloud Computing and the latest trends in Information Technology and Cyber Security, with retained advisory functions that include the Microsoft global Security and Compliance Partner Advisory Council and have included the Sun Microsoft System Executive Council and UK Interoperability Council.

Passionate about IT Security, protecting privacy and building trust in digital life. Nigel is an experienced Cyber Security and Cloud Computing expert and industry trusted voice. Having provided policy briefings on Data Protection (GDPR), Cyber Security and Privacy to MP’s and The Lords in Westminster, MEP’s and Commissioners in Brussels. Most recently speaking at the Davos World Economic Forum on Corporate Digital Responsibility and participation in the Blockchain and AI panel debate.

Muhittin Hasancioglu has been a senior leader in cyber risk and security with 30 years of experience at country, regional and global levels. Having spent over 23 years at Shell, Muhittin retired in January 2018 as their VP Chief Information Security Officer where he was responsible for cyber risk and security at Group level and established the function’s vision, strategy and transformation programme. During his tenure, he controlled a multimillion dollar 9-figure security budget and led the execution of structurally transforming the organisation, establishing a risk governance structure, affecting behavioural change and complying with legal and regulatory rules within multiple markets.

Bruce Gaston is a Director and CFO of Darmen Technology, one of the leading regional Tech & Communications Infrastructure companies involved in the Belt Road Initiative and Eurasia. Bruce has also worked with world leading digital oilfield company Redline. Bruce is an Investment Banker by background, but has also founded several IT and Technology companies, including a benchmark project implementation of an Artificial Intelligence platform for one of Eastern Europe’s leading downstream oil & gas companies. Bruce has founded several IT companies in Eastern Europe and Eurasia. Previously, Bruce worked for Deutsche Morgan Grenfell in London and Tokyo, where he was involved in IT Support and building front office trading and arbitrage systems and risk management systems. Bruce has worked in IT Development at Credit Suisse Financial Products and original started on automation projects on the trading floor of Chase Manhattan Bank in London.

NIGEL GIBBONSGISEC CONFERENCE CHAIRMAN

Highly experienced cyber security consultant and advisor

MUHITTIN HASANCIOGLUEX-VP CISOSHELL INTERNATIONAL

BRUCE GASTON DIRECTOR & CFODARMEN TECHNOLOGY & SERVICES

THE TUTORS

SHARJAH D MEETING ROOM

9.30 AM Registration opens, breakfast buffet and networking

10.00 AM Introduction from Nigel Gibbons, Workshop Moderator

10.30 AM Muhittin Hasancioglu, ex-VP CISO, Royal Dutch Shell

12.00 PM Lunch break

13.00 PM

Nigel Gibbons and Bruce Gaston Cybersecurity is the new O&G Operating modelOil and gas companies operate at the leading edge of technology, with operations, networks and telecommunications systems encircling the world. With the exploitation of new cost-effective operations, use of digital technologies and increased dependence on digital networks and platforms, the oil and gas industry is exposed to new sets of vulnerabili-ties and threats.• 61% of oil and gas organizations believe it’s unlikely or highly unlikely that they would be able to detect a sophisticated attack.• 90% believe that their information security function is falling short of fully meeting the organizational needs.• 29% have no real-time insight on cyber threats.• 77% of respondents say they are seeing a rise in attacks over the last year.(EY - Oil and gas cybersecurity, time for a seismic shift. Tripwire Energy Industry Survey 2017)

14.30 PM Break

14.45 PM Round table interactive sessions and determining actionable next steps

17.00 PM End of workshop

THE SCHEDULEMONDAY, 30 APRIL 2018, DUBAI WORLD TRADE CENTRE

WHAT WILL YOU LEARN?Oil and Gas remains the paramount critical resource in the region for economic growth, and with cyber attacks becoming more prevalent than ever, causing significant damages to revenue and productivity in several high profile examples, it has never been so important to ensure information security leaders are aware of the best practice that needs to be implemented in order to protect their organisations.

In this unique master class, the former CISOs of BP and Shell come together to deliver in depth tutorage to a select and high-level audience, especially concentrating on the strategic imperatives to sound and holistic cyber defence. The Master Class is an informal setting where you are encouraged to challenge the advice of the tutors, to engage with your class mates, and bring to the discussion real world examples – and of course, the world class professionals leading the Master Class are always happy to give their advice about any predicaments your organisation might face.

The Master Class will focus on the following themes:

• Shaping the security strategy of Oil and Gas businesses• An outlook for security challenges facing Oil and Gas in the near future• The security impact of new technologies adopted by Oil and Gas companies, including:• Blockchain• Artificial Intelligence• Digitisation• The insider threat:• Effectively managing behavioural change• Improving security with a collaborative approach• Strategic gaps in the PCD domain and OT environment

We encourage all participants to speak openly in order to create a free environment for enhanced learning. Therefore we ask that all participants agree that what they hear and talk about within this learning environment is kept secret once it is finished.

CHATHAM HOUSE RULE WHO SHOULD ATTEND 6 REASONS TO ATTEND

Owing to the seniority of the tutors, this Master Class is reserved only for Oil and Gas professionals in strategic roles, or on track for leadership positions. The ideal student will be C-level or those who report directly to them.

Meet over 20 fellow senior leaders in information security from the Gulf

Return with the assurance you have world-class direction on your next move

Learn from tutors who have reached C-level positions at legendary companies

Challenge industry leaders to find gaps in your current strategy

Benchmark you current practice against similar companies to identify gaps

Get up-to-date understanding of the threat landscape in Oil & Gas

1 4

2 5

3 6

TUESDAY 1 MAY

11:00Chairman’s welcome

Nigel Gibbons, Conference Chairman and Advisor GISEC 2018

11:05

How Information Security and Data Privacy are enabling INGKA Group’s multichannel journey• Setting the scene and context• Information Security and Data Privacy strategy and goals• Building the needed capabilities for today and for the future• Driving the focus areas

Jarkko Rautula, Group CISO, IKEA Group

11:30Dubai’s Cyber Security Strategy

Dr Bushra Al Belooshi, Manager - Research & Innovation, Dubai Electronic Security Center, Dubai Electronic Security Center

11:50

Upgrade Your Attack Model to Stop Targeted AttacksYesterday’s attack models are insufficient for handling today’s range of state and non-state attacker techniques. The expansion of open source, nation-state level capabilities only exacerbates the challenges enterprises encounter in protecting their most valuable data and assets. It’s well past time to innovate and update attack models. There are numerous components at the core of a resilient attack model. I’ll walk through each of these, including the increasing relevance of MITRE’S ATT&CK™ matrix for holistic coverage, as well as the necessity for usable security to broaden the access to advance defenses. I’ll conclude with some suggestions for validating the models, including the role of transparency and third-party validation.

James Butler, CTO, Endgame

12:10Managing risk: The question is not IF you will get hacked but WHEN

Boris Balacheff, HP Fellow & VP, HP Security Lab

12:30

Building Digital Resilience for Digital Businesses

This talk establishes a context of digital adoption by businesses and highlights a new dimension of risks. In view of latest security incidents in various industry verticals, a pragmatic approach will be presented for continuous digital security and defense.

Kamran Ahsan, Senior Director, Security Solutions, Etisalat Digital

12:45

Panel discussion: The best way to improve cyber defence within your supply chain

Chin Kiat Chim, CISO, DHL Express Dee Deu, CISO, British Land

Fuad Al Anasari, VP Information Technology ADNOC Refining

13:15 Lunch and Networking

14:00

How security leaders need to manage their Board• Understanding how to speak to the Board, and what to tell them, in order for them

to appreciate the full implications of operating in cyberspace.• How the approval of increased information security budgets are unlikely to result in

immediate results, and how best to communicate that.• How to anticipate future security challenges and articulating them to the Board.

Mike Pitman, CISO, Dunnhumby; ex CISO John Lewis Partnership

14:30

Getting Ahead by Looking Back2017 was a year of enormous change in information security -- and the question of whether cyber warfare touches us all is no longer a debate. To this end, organizations must get out in front of the next wave of threats, which means security teams need to better understand the changes along with how to detect and defend against them. Join us for this session as we highlight the obvious (and not-so-obvious) events that defined 2017 and discuss how to ensure your defense posture can keep up with the ever-shifting threat landscape

Rick McElroy – Principal Security Strategist, Carbon Black

14:50

Breached or not breached?Exploring the shift from prevention to detection and response in GCC

Hani Nofal, VP Intelligent Network Solutions, Security and Mobility, GBM

15:10

How to mitigate the two biggest risks in cyber security - Learn from the masters:• How the best CISOs are using the six facets of ‘Human Psychology’ + Using

‘Employee powered’ cyber security techniques to transform humans into the strongest link in cyber security

• What are the three attack types in Email and how to mitigate against them (in under 3 mins). Every attendee will receive a free kit.

Ankush Johar, Director, Infosec Ventures

GISEC MAIN STAGE

GISEC MAIN STAGE

TUESDAY 1 MAY

15:30

A new approach to Cyber Risk & Security concept, and It is Transformational• Current reality: Covering what has happened, an increased sophistication of the

threat landscape, gaps in Governance, Skills, Collaboration, E2E view, and reactive approach.

• What is the Paradigm shift and what needs to take place to be ready and proactive?

• Business’s growth, digitalisation ambitions and the fast-changing technology landscape will require the Transformational response.

Muhittin Hasancioglu, ex-CISO, Royal Dutch Shell

16:00

Panel discussion: How to implement a successful and secure digital transformation for your organisation - lessons from retail

Jarkko Rautula, Group CISO, IKEA Group

Dr Faisal Sibai, SVP & CISO of a major public wealth fund in the Middle East region

Rakesh Gohil, Senior Director - IT, Ahmed Seddiqi and Sons

Chris Pace, Technology Advocate, EMEA Recorded Future

16:30

Cybersecurity above everything

Ayman AbuReyaleh, Cyber Security Area Sales Manager, CISCO

16:50

Panel discussion for leaders in government cyber security – kickstarter question: Are government entities asking for trouble with their rapid digitisation programmes?

Khaled A. Alnuaimi, Senior IT Consultant, Eastern Province Governorate (Emara), Ministry of Interior, Kingdom of Saudi Arabia

Fuad Al Anasari, VP Information Technology ADNOC Refining

Abdulla Bader Al Sayari, CISO, Department of Health, Abu Dhabi, United Arab Emirates

Alberto Hernández Moreno, CEO, INCIBE - Spanish National Cyber Security Institute

17:30Cyber Security and the city of tomorrow, the UK perspective

Peter Estlin Alderman, City Of London Corporation ex-CFO Citigroup Investment Banking and ex-Acting CFO for Barclays Bank.

17:45 End of Day 1

WEDNESDAY 2 MAY10:25

Chairman’s welcome


10:30The security implications of moving to the Cloud

David Cass, CISO, Cloud & SaaS, IBM

11:00Economy impact, and digital security while digitizing banking

Dr Rudra Murthy, CISO, Amazon Pay, ex-CISO Digital India

11:30

Inside TheDarkOverlord’s Media-Driven Extortion CampaignsWe investigate and discuss some of the critical intelligence gathered while tracking thedarkoverlord’s tactics, techniques, and procedures (TTPs) using incident response information and extensive human intelligence operations.

Vitali Kremez, Director of Research, Hunt Team, Flashpoint

11:50

France’s first purpose built smart city and embedding cyber security into its systems.

Thomas Degardin, Group CISO, Bouygues Construction

12:20

The Dark Web’s Deep Threat Intelligence Secrets

Chris Pace, Technology Advocate, EMEA Recorded Future

12:40Secure your Digital Transformation

Girard Moussa, Cyber Security Lead (MEA), Microsoft


13:40

Cybersecurity in today’s AI (Artificial Intelligence) environment. Challenges: Algorithmic business, artificial intelligence and machine learning

Dr Mohamed Benaichouche, CIO and IT Director, Arabsat

14:10

Panel discussion for leaders in aviation sector cyber security – Kickstarter question: We’ve seen minor systems hacked, but will we see a major cyber-instigated aviation sector disaster?

Ahmed Duwaih, Senior Manager IT Security, Abu Dhabi Airports


Matt Wyckhouse, co-founder and CEO, Finite State

14:50Threat Landscape Overview – A look back

Alain Kallas, Head of Security Consulting, Middle East, SecureWorks

15:10An overview of cryptocurrency and its security implications

Dr Marwan Al Zarooni, Director - Information Services Department, Dubai Electronic Security Center

15:40SentinelOne - Autonomous Endpoint Protection That Saves Time

Daniel Bernard, VP Business & Corporate Development, SentinelOne

16:00

The state of cyber: how stealthier attacks are blurring the lines between cybercrime and statecraftThis session will shed light on alarming new trends CrowdStrike has observed in the global threat landscape, and the evolving best practices that are proving most successful against criminal, hacktivist and nation-state adversaries.-The latest threat intel and predictions for 2018 and how you can use this to shape your security strategy-Lessons learnt in the course of conducting in-depth digital forensics, IR and remediation with real-world strategic insight into the current threat landscape.-How advanced attacks continue to succeed in evading modern defences-How applied threat intelligence can deliver a decisive advantage in protecting your enterprise

Zeki Turedi, Technology Strategist, EMEA, CrowdStrike

16:20

Panel discussion for cyber security leaders in the commercial sector– kickstarter question: Is there an inevitability in successful cyber-attacks on businesses operating in the Middle East and should we just expect the worst?

George Eapen, CISO – MENAT, General Electric

Dileep Somani, CIO, OTE Group, Oman

Alaba Oluwayimika, Head of IT Operations, Dangote, Nigeria

16:40 End of Day 2

GISEC MAIN STAGE

GISEC MAIN STAGE

10:25Chairman’s welcome


10:30

Incident-centric security: How security needs to refocus towards its purpose of anticipating, preventing and reacting to security indidents.• Wannacry case study: Telefónica• How to make security re-balance again to the basic purpose of mitigating business impacts of security incidents by doing things right pre-during-post incidents.

Alejandro Becerra Gonzalez, Group CISO, Telefónica

11:00Emerging cybercrime trends in the UAE and the challenges in overcoming them

Colonel Saeed M. Al Hajri, Director of the Cybercrime Department, Dubai Police

11:50Cybersecurity for Critical ICS Infrastructures

Dr. Waël Kanoun, Cybersecurity Manager and Project Design Authority, Thales

12:10Presentation to be delivered by the head of operations of the cyber security agency of Singapore

Ng Hoo Ming, Deputy Chief Executive (Operations), Cyber Security Agency of Singapore

12:40

Following the Money: Inside a Cybercrime SyndicateGone are the days of risky bank heists, fast getaway cars, and wild shootouts for the chance of a major score - modern mobsters and organizations have stepped up their game using technology, connectivity, and accessible tools to steal not only money, but IP and sensitive data with a few clicks. This session will highlight the dangers of these organizations to everyday networks.

Richard Melick, Technical Marketing Manager, CompIntel Industry Relations & Product Testing, Cylance


14:20The government’s role in providing effective cyber security for critical national infrastructure and industries

Alberto Hernández Moreno, CEO, INCIBE - Spanish National Cyber Security Institute

14:50

Panel discussion for infosec leaders in multinational companies – Kickstarter question: Should a PLC pay ransoms, and when does it have a duty to inform its shareholders of successful attacks?

Corbett Hoxland, Regional Business Manager for Security and IT Optimization, HP Inc.

Alejandro Becerra Gonzalez, Group CISO, Telefónica

15:40

People Centric Security – the new paradigm in cybersecurity Cybercriminals are increasingly targeting the human vulnerability. With businesses moving towards O365, Proofpoint will bring a more deterministic way of building resilience into the ecosystem that protects your employees & business from cyber threats. In this session, we will discuss how Proofpoint’s market leading technology is restoring trust to today‘s number one attack vector: email.

Martin Blackhurst, Senior SE, MENAT, Proofpoint

15:40Are you prepared for a cyber attack? Live hack on how to ensure your organisation is cyber resilient.

Hany George, Engineer, Mimecast

16:20

Panel discussion – Kickstarter question: if organisations can’t guarantee security of big data, why should they be allowed to be custodians of it?

Dr Abdullah Alothman, CIO, Ministry of Culture and Information, Saudi Arabia

Mike Pitman, CISO, Dunnhumby; ex-CISO John Lewis Partnership

17:00

Towards and international coalition for cyber security interoperability

Major Mohamed Almarashda, Police major and professional expert in national security strategies

17:30 End of Day 3

THURSDAY 3 MAY


THURSDAY 3 MAY

GISEC BFSI Focus Stream located at the INSPIRE Stage

10:40

Chairman’s welcome

Anil Joshi, Founder and Managing Partner, Unicorn Indian Ventures

11:00

Startups and emerging technology disrupting the BFSI sector

Anil Joshi, Founder and Managing Partner, Unicorn Indian Ventures

11:20

Demystifying Cyber Threat Intelligence

Girish Dani, Head Business Development, Digital Security Solutions, Etisalat Digital

11:40

Panel discussion: What are the security concerns involving the emerging technologies for BFSI over the next ten years?

Mr Bruno Fonseca, CSO, AXA Insurance (Gulf)

James Butler, CTO, ENDGAME


Rizwan Arain, CISO, Habib Bank AG Zurich

Rinaldo R Oliveira, Head of IT Risk & Governance, Risk and Compliance, Commercial Bank of Dubai

12:00

Look ma, no hands. Act on relevant intelligence

Aharon Chernin, CEO/Founder, Perch Security


14:00

Panel discussion: In the BFSI sector should the CISO report to the CIO or is their position now so important it needs to reside at Board level?

Anshul Srivastava, CIO, Union Insurance

Nasser Zagha, CIO, Bank of Jordan

15:20

The Egyptian FRA’s approach to instilling good cyber security practices throughout the country

Sherif Yehia Abd ElGhany, IT Networks Manager, Egyptian Financial Supervisory Authority

15:40

Lurking in the Shadows: Real-world IoT Attacks and the New IoTSecurity Stack

Matt Wyckhouse, CEO, Finite State

16:00

Panel discussion – Do customers have a trust issue with BFSI sector’s ability to protect their information, if so what are the best measures to improve the situation?

Sherif Yehia Abd ElGhany, IT Networks Manager, Egyptian Financial Supervisory Authority

Major Mohamed Almarashda, Police major and professional expert in national security strategies

Aharon Chernin, CEO/Founder, Perch Security

16:20 End of Day 3



OFFICIALLY SUPPORTED BY

MEDIA PARTNERS

OFFICIAL SECURITYPARTNER

STRATEGICPARTNER

STRATEGICPARTNER

OFFICIAL DISTRIBUTION PARTNER

OFFICIAL TELECOMPARTNER

PLATINUM SPONSORSOFFICIAL SECURITY SOLUTIONS PARTNER

INTERNATIONAL SUPPORTING PARTNERS

OFFICIAL E-CHARGING PARTNER

AI AND SECURITYPARTNER

Security MatterzIT Security Solutions

POWERED BYCO-LOCATED WITHPART OF

C O N TAC T U S


SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE … · 2020-06-18 · Dear colleague, GISEC 2018...

Documents

Transcript of SECURITY FOR A CONNECTED WORLD - DELIVERED BY THE … · 2020-06-18 · Dear colleague, GISEC 2018...