Programme

DoubleTree by Hilton Brussels City iseEasy accessible. Centrally located just off Place Rogier. Rogier Metro station is in front of the venue and from the train station the Gare Du Nord it is a five-minute walk. Public parking is available underneath Place Rogier.

Erik is actively engaged in several professional activities. As such he founded TrustCore.EU, he executed several assignments private and public sector (European Commission, Federal Government, Flemish Government, Euroclear, Infrabel,  Electrabel, BPost, ENISA, etc). Currently his main focusses are on the topics of Openbanking and Security Architecture at BNP Paribas Fortis  as well as the wide topic of the new Trust Regulation en the European Digital Identity Wallet in collaboration with the EU Member States.

In his spare time, Erik is also Topic Leader “Security Architecture Management” at Solvay Brussels School and a member of the Vlaamse Toezichtcommissie (Flemish DPA). With his knowledge and experience, Erik is the ideal person to guide the conference as chair of the day. In his opening he will address the conference theme: Cyber War and Fading Realities.

Resilience of key networks and information systems to cyber attacks is essential, yet resilience also serves as a very important element to deter adversaries. Resilience and deterrence are both part of a comprehensive cyber strategy that both organisations and nations can and shall use, not only to strengthen the defender’s posture and capabilities but also deter adversaries from attacking. The lessons learnt from the hybrid war at EU’s and NATO eastern borders can be a valuable insight for cyber resilience building efforts.

Enjoy fresh coffee, tea and snacks on the network square, such as kako Cream, lactose-free Panna cotta, chocolate brownies and fresh fruit. The first one-to-one meetings take place.

In the landscape of modern cybersecurity, Artificial Intelligence (AI) plays a pivotal role, offering unparalleled speed and power to both defenders and adversaries. The integration of machine learning, bolstered by vast data lakes, has emerged as a cornerstone in defense strategies. However, as AI continues to evolve, leaders face the challenge of maintaining a delicate balance between leveraging its efficiency and accuracy, while ensuring meaningful human engagement.

This session explores the dynamics of human-AI collaboration in cybersecurity, highlighting the imperative for strategic interaction between AI-driven automation, human intuition and the wealth of insights stored within data lakes in real-world scenarios. Learn how to unify, accelerate and simplify your SecOps; Detect earlier, respond faster and stay ahead of attacks. And gain complete visibility across your entire organization.

In this session Edwin van den Heuvel, will delve into the key programs that every organization must implement to prepare for upcoming regulations in cybersecurity.

• How to streamline Asset Inventory Management and Visibility
• Enabling Cybersecurity Best Practices and User Awareness
• Strengthening Vulnerability Management and Patching Processes
• Proactive Incident Detection and Rapid Response Strategies
• Real-time Monitoring and Centralized Logging for Enhanced Security

Accelerating developments in the field of quantum computing will bring disruptive challenges to cybersecurity. Organizations will need to adapt to the risk posed by quantum computers, which will have the potential to break many of the cryptographic systems that we rely on today and that are nested largely and deeply in our infrastructure. We are at risk already right now, as encrypted communications are stored by attackers to be decrypted years later with quantum computers (aka “store-now-decrypt-later attack”). Migration to quantum-safe solutions is inevitable. National governments are urging the industries to prepare for “Post-Quantum Cryptography”. In this roundtable, we will objectivate the risk and discuss strategies. What is the sense of urgency? Is your company developing a policy and mobilizing teams? How to conduct a diagnosis? How to implement for crypto-agility? How to plan for migration? What about the supply chain risk? Join this roundtable together with your peers to gain new insights and to prepare for resilience against evolving cyber threats.

In this session, cyber recovery takes centre stage as we demonstrate how to protect yourself against cyber threats such as ransomware. With thoughtful and tested security against ransomware incidents, advanced preparation, automated validation, and rapid recovery options, regardless of where your data resides. Learn how to make yourself resilient against ransomware by securing the data of your patients, customers, partners and communities.

Commvault has been a Gartner Magic Quadrant leader for 12 years. More than safeguards more than 100,000 organizations around the world rely on Commault and they secure 3 EB of cloud data and have a unique FedRAMP High cyber resilience platform.

As attackers get more numerous and start to get help from ChatGPT and other LLMs, the amount of malicious payloads that bypass our signature-based defenses are increasing. It’s becoming increasingly unrealistic to expect our Security Analysts to keep up with writing effective mitigation rules. In this session you will hear how we are able to turn the tables and leverage ML and AI to detect and prevent zero-days on day zero.

• How attackers are evolving and getting help
• What it takes to train ML models to recognize new attacks
• Help to comply with NIS2 by seeing and blocking new threats immediately
• What we can do to make your security analysts more effective

During lunch our chef serves various bowls with bulgur, sweet potato or greek pasta with toppings such as salmon, crusted chicken, grilled halloumi, caviar of smoked eggplant, grilled green asparagus, edamame, sundried tomatoes and more. To end your meal you can shoose a healthy desert bowl, low in fat and sugar.

Discover the dynamic shift we have seen in Cyber Security programmes along with the introduction of new and disruptive technologies.

Join this session and learn how to prepare your organisation for the future of cybersecurity including:

• Steps to transform to a full Secure Access Service Edge (SASE) architecture
• Controls that can support a comprehensive Zero Trust approach to access control
• Governance and Security measures for the use of GenAI

Imagine this: Attackers infiltrate your company’s identity system, exploiting a security gap in Active Directory (AD), escalating privileges, introducing malware, and locking up files. They spam your staff and slow down their computers. Your company is at risk of imminent shutdown. This is a common playbook, targeting Microsoft AD and Entra ID the infrastructure that supports 90% of enterprises today.

Gartner named Identity Threat Detection and Response (ITDR) a top cybersecurity trend since 2022, warning of credential misuse. Guido Grillenmeier has firsthand experience responding to such attacks, having helped a large telco provider in the Middle East recover in real-time. In this session, he will detail the attack phases and provide guidance on effective responses to the in-progress attacks on the identity systems.

The industrial impact from Expanding regulation NIS2 directive fixes and enlarges the scope for new cyber security laws to be implemented into member states. This expansion will impact more sectors than the directive it will replace. What does this mean for this enlarged scope? Join this session and find out!

As we transform our business models to deliver more agile services the increasing threat of ransomware can potentially disrupt those services causing an impact on society. While we can continue to spend more money or traditional security approaches a shift in thinking to Zero Trust will be more effective and save money. In this workshop, we will address the following topics:

• How to identify and define risk
• How to reduce the attack surface
• How to prevent the spread of breaches
• How to contain a ransomware attack
• How to respond and restore services during an attack

AI changed everything last year. Now, in 2024, the real battle begins: Who will harness the power of new technologies and the psychology of human behaviour more effectively – us or the cybercriminals? In our talk, we’ll break down the top cybercrime trends to watch in 2024 so that you can stay ahead of the curve with your security team and protect your organization from attacks. We’ll explore the ever-increasing involvement of AI in cyberattacks, which is changing the game for everyone involved. We’ll look at the double-edged sword of emerging technologies like 5G and quantum computing.

Enjoy the afternoon break at the network square with a sweet treat such as creme brûlée, tiramisu, strawberries with praline and fresh fruits. The last one-to-one meetings will take place, meet colleagues and peers and share your gained knowledge!

Cyber Crime and Consumer Fraud are getting more and more sophisticated. The yearly growth in consumers getting scammed is staggering. Adding the fact that these criminal networks have no geographical borders makes it extremely difficult for one organization to protect its consumers from these fraudsters. A coordinated approach between the public and private sector leverages on each organization’s capabilties to faster detect and protect against these scams. In this session we’ll dive into some of the Belgian initiatives where public and private sector work closely together because “it takes a network to fight a network”.

An overview of the significant impact AI has on the field of cybersecurity, exploring its role as both a protector and a threat. The advancement of AI-driven security measures capable of anticipating and mitigating cyber threats more efficiently, thus enhancing the protection of essential data and infrastructure. Conversely, the challenges posed by adversaries utilizing AI for sophisticated cyberattacks, which complicates the security landscape.

We end the day in an appropriate manner while enjoying a drink, appetizers and finger food. Have informal discussions with colleagues, peers, partners and speakers.

For more than two decades, Microsoft Active Directory (AD) has been the de facto method organizations use to authenticate and authorize users for access to computers, devices, and applications within a company’s network. Most companies still rely on it and have further extended its reach into the cloud by synchronizing their on-prem AD with the Microsoft Entra ID to allow proper SSO to cloud-applications by their users. AD is celebrated for its extensive compatibility with various applications and Windows editions, but that compatibility comes with security downsides.

Compromises of AD can occur as an entry point leading to a further attack or can arise at various other points along the kill-chain following an initial compromise via some other mechanism. Protecting AD is crucial as it often becomes a primary target in breach strategies.

Active Directory defense tools must be paired with a wider Zero Trust and XDR approach to provide full visibility over organizational infrastructure, enabling security teams to accurately identify the point of origin of an attack, and to perform the containment and remediation actions required to neutralize and prevent reoccurrence of an attack.

Join Principal Technologist, Guido Grillenmeier, to discuss AD access points used in recent cyberattacks, security risks to watch for in managing AD, how to look for warning signs that AD has been compromised and steps to take in the event of an attack.