Martijn Hoogesteger is a Digital Detective from the TV Program Hunted. Besides being a digital detective he is a cybersecurity expert. Martijn opens the conference with “The Connection Kickoff”. This interactive networking session will break the ice and is the starting point of meaningful connections. The Connection Kickoff is the perfect opportunity to meet fellow security leaders, share your interests, and start expanding your network of peers who can inspire and support you during and beyond the conference. Let’s make the first connection count!

We open the conference with an interactive panel discussion on technical and operational sovereignty. As organisations increasingly rely on complex architectures, cloud platforms, and strategic vendors, maintaining control over technology, operations, and risk becomes a key leadership challenge. From an architecture and risk management perspective, the panel explores what sovereignty means in practice and addresses the difficult choices security leaders face, the dependencies they inherit or create, and the moments where control, accountability, and risk exposure must be deliberately accepted, or challenged.

Building a security program—whether from zero in a lean startup or rebooting one in a mature organization—is as much about context as it is about controls. There’s no one-size-fits-all blueprint, but there is a repeatable framework that adapts to your organization’s size, risk profile, and growth trajectory. In this talk, I’ll walk through a practical, four-phase model that helps you build—or rebuild—security with clarity and purpose. From facing the right direction, to getting the basics right, embedding them sustainably, and—if needed—scaling to a more strategic and advanced level.

As security demands continue to grow, budgets, resources, and talent do not scale at the same pace. Security leaders must make deliberate choices, recognising that full coverage is neither feasible nor cost-effective. In this Deep Dive Session, led by Omar Ali, CISO and IT Director at PostNL, we examine how to balance security ambitions with financial reality. Through a risk-based approach, we explore how security leaders can actively control and reduce costs. The session focuses on identifying overspend, rationalising tooling, optimising the use of people and capabilities, and consciously accepting certain risks to avoid unnecessary expense.

AI-driven threats such as deepfakes, voice cloning and automated phishing are rapidly reshaping the cyber-risk landscape. In this interactive 55-minute deep dive session, you will explore how HEINEKEN tackles these emerging risks. Join your peers in this interactive session, where you are actively challenged to analyse real-world scenarios, assess AI-powered deception techniques and consider how your own organisations would respond. The session offers a concise, practical look at how deepfakes and voice cloning work, why they are so effective in social engineering, and which controls deliver the fastest security impact. This session is led by Gustavo Maniá, Information Security and Risk Manager and Regional CISO for Africa and the Middle East at The HEINEKEN Company.

Deepfakes are no longer science fiction – they are here, and they are highly effective. Drawing on neuroscientific insights, this talk explains why the human brain is not built for these threats and how the same psychological mechanisms attackers exploit can be turned into powerful tools for awareness. Understanding the brain is key to building real security resilience.

As human, machine, and AI identities multiply, and attackers increasingly weaponize AI, the consequences of a single identity breach are escalating at unprecedented speed. Fragmented IAM, PAM, and IGA approaches were not designed for this reality. The industry has reached a pivotal inflection point in cybersecurity. This session highlights the advantages of shifting from fragmented tools to a unified platform that aligns with CISO and SOC priorities while enabling a new approach to visibility, control and trust. Key learnings: Why privilege controls for all identities across human, machine, and AI will give you the upper hand How proactive threat detection with the use of AI helps you stay ahead of the threat How to gain complete visibility across environments How to achieve faster mitigation of security breaches through shared data and insights

Threats are exponential, AI is only accelerating, and “cloud-first” is no longer a distant vision, but the reality of every global enterprise. Join Commvault EMEA CTO, Mark Molyneux, as he shares powerful insights into the constantly evolving cyber-attack surface and demonstrates the importance of why a focus on creating an optimised cyber resiliency strategy is imperative. Key learnings: Understanding why unified resilience across security, identity, and recovery teams is critical to defeating modern attackers who exploit organizational silos Why clean recovery matters more than fast recovery—and how AI-driven techniques can surgically remove compromised data to prevent reinfection How to prepare your organization for the agentic enterprise, where autonomous AI systems require new governance and protection strategies Why hybrid infrastructure is permanent, and how to implement resilience strategies that work seamlessly across cloud, SaaS, and on-premises environments

Discover how to transform cybersecurity from a cost center into a business enabler through practical insights from three perspectives. In this session, Bart shares hands-on strategies to build measurable cyber resilience using a modern, AI-driven security platform, while providing concrete takeaways for different stakeholders: For Executives: Learn how to communicate cyber risks in business terms that drive strategic decision-making and board-level conversations. Discover how advanced cyber risk quantification translates technical vulnerabilities into measurable business impact metrics that resonate with the board and other stakeholders. For CISOs: Gain actionable frameworks to achieve centralized visibility across the entire attack surface. Learn how cyber risk management enables you to prioritize remediation, demonstrate compliance, and align security initiatives with business priorities through data-driven decision-making. For SecOps Teams: Experience how AI-native security operations can dramatically improve efficiency and response times. Explore next-generation SIEM capabilities (processing any log type within three hours) and intelligent security orchestration that automates decision-making and accelerates incident response in the SOC.

We are entering a new era where organizations are no longer just businesses, but living information systems composed of people, platforms, and increasingly autonomous AI agents. As intelligence becomes embedded into workflows, decisions, and communications, the very nature of trust inside the enterprise is changing. Trust can no longer be assumed based on location, role, or past behavior. It must be continuously designed, measured, and verified. Drawing on insights from information theory, networked societies, and modern enterprise architecture, this session explores how the rise of AI transforms companies into real time decision networks where truth, authenticity, and control determine resilience. Leaders must move beyond traditional security models and adopt a mindset where trust is engineered into every interaction, data flow, and system action. This talk reframes Zero Trust as a leadership discipline for the intelligence age, giving decisionmakers a new lens for governing complexity, enabling innovation, and protecting the integrity of their digital reality.

We are pleased to announce that Ronald Westerveen, Chief Information Security Officer at the Princess Máxima Centrum, will deliver an inspiring and practice‑oriented presentation on the unique cybersecurity challenges within a specialist hospital. As the leading expertise center for pediatric oncology in the Netherlands, the Princess Máxima Center plays a crucial role in both patient care and scientific research. This position brings specific and demanding requirements in the field of information security. In his session, Ronald will elaborate on: The day‑to‑day security challenges faced by a highly specialized hospital The complexity of protecting sensitive patient data in an ever‑evolving threat landscape The balance between accessibility for healthcare professionals and the need for strict security measures The strategies, technical solutions, and organizational measures used to effectively mitigate risks This presentation offers valuable insights for anyone involved in cybersecurity, healthcare IT, data protection, or organization‑wide digital resilience. We look forward to seeing you there for a session full of practical knowledge, inspiring experiences, and real‑life examples from healthcare practice. *Please note that this session will be in Dutch.

Security leadership today requires more than technical controls and compliance checkboxes. Board members expect insight, control, and direction. In this deep dive session, we show how you can use GRC as a strategic leadership instrument. You will gain insight into: The contribution of GRC to decision-making at board-level How to focus on being “in control” rather than on compliance Join your fellow security leaders in this deep dive to discover how GRC supports stronger security leadership and decision-making at board level.

Ransomware remains the most critical threat to organizations globally, reaching an unprecedented scale and impact. The sophistication and persistence of threat actors mean that businesses face a constant and evolving risk. Despite the takedown of two major ransomware groups, LockBit and ALPHV, the overall volume of attacks remains largely unchanged, demonstrating the deeply rooted nature of this digital scourge.  With costs projected to reach a staggering $265 billion annually by 2031, the need for proactive defense is more urgent than ever.  Contrary to the common belief that an attack is inevitable, ransomware doesn't have to be a matter of "when"—security teams have the power to turn it into an "if."  In this essential session, Nadav Elkiess, will move beyond theory to present concrete, evidence-based strategies. Attendees will learn how to strengthen their current defenses, identify and close critical security gaps, and fundamentally enhance their organization's resilience against the most advanced persistent threats.

In today's cloud-native world, workloads are ephemeral, architectures are API-driven, and applications are built on microservices. Static security tooling is not enough and cannot keep pace with this speed and complexity. Risk owners are overwhelmed by theoretical findings that lack production context and fail to reflect real exposure. What they need is a complete CNAPP that can also offer actionable visibility into live, exploitable risk. This session explores how runtime context reduces noise, sharpens prioritisation, and accelerates detection and response.

AI is transforming the enterprise at breakneck speed — and with it comes a new identity challenge hiding in plain sight. AI agents are now reading sensitive data, making autonomous decisions, and triggering actions across critical systems. They’re powerful, fast, and often invisible to traditional IAM controls. In short: AI identities are rising, and most organizations aren’t prepared. The Rise of AI Identities: How to Govern What You Can’t See — What Every Security Leader Should Prepare For  This breakout session reveals why AI agents are quickly becoming the most privileged and least understood identities in your environment. You’ll learn how AI-driven access sprawl happens, how attackers are already exploiting AI behaviors, and why existing governance models fall short. Most importantly, we’ll outline the new rules for discovering, governing, and securing AI identities so your organization can innovate safely — without losing control of who (or what) has access.

When it comes to potential targets for cyberattacks, easier to breach means more likely to fall victim. While you might not be able to influence your perceived value, there are changes that can eliminate your organization from being seen as an easy target. We’ll explore practical tactics to reduce your surface area of attack and controls to prevent lateral movement should a breach occur.

Get a firsthand look at where privileged access management is heading and why it is becoming a cornerstone of modern cybersecurity. This session explores how current PAM capabilities and upcoming innovations strengthen security defences, simplify compliance, and deliver more intentional control over privileged access. You will learn how PAM increases the value of your existing cybersecurity investments, how the future of enforcing least privilege access is taking shape, and how our strategic direction leads to measurable improvements in overall security posture. You will leave with clear, usable insights and a confident view of how to prepare your organization for what comes next.

It’s no surprise that in today’s world, cybersecurity is not a plus, it’s a must-have and it’s critical. Whether it’s to protect strategic assets, critical data, or simply to ensure business continuity, no organisation can afford the cost of no protection. Yet, cybersecurity often comes with compromises in businesses’ minds. In this presentation, we’ll debunk this theory. No, choosing the best cybersecurity approach doesn’t mean giving up privacy, control, efficiency or compliance. Yes, Europe has it all – performance, excellence, innovation and engineers. Despite today's tensed geopolitical environment where the cyberspace is more strategic than ever for nations, Europe keeps increasing its technological dependencies and hence, reducing its resilience. As businesses try to navigate through geopolitcal and regulatory realities this presentation will define operational sovereignty and provide a risked-based analysis when it comes to security strategies. Ready to take the control?

Chris Kubecka is an internationally recognised cyberwarfare expert. In this keynote she takes you deep into the digital battlefields. Drawing on her first-hand experience with cyber operations in the Ukraine-Russia war, Chris will unpack real-world case studies that illustrate how cyber warfare unfolds, who the key actors are, and what the tangible consequences are for societies, infrastructure, and global stability. You will gain a nuanced understanding of how malware, nation-state operations, open-source intelligence, and unconventional cyber tactics intersect with geopolitical conflict. This session highlights critical lessons in cyber resilience and collective defence. By the end of the talk, you will walk away not just with a clearer picture of cyberwarfare realities, but with hope, tools, and inspiration on how individuals, organisations, and nations can respond and adapt in an increasingly contested digital world.