Speaker:
John Walker, Former Royal Air Force Security/Investigations and Counter Intelligence Operations, and Advisory Board, Research Centre in Cyber Security (KirCCS), University of Kent

In the beginning, the Genesis age of the Internet offered positive opportunities for connectivity, creativity and commercial opportunities, and shrunk the potential of low cost access to communications to all. However, as time has always demonstrated, no matter the landscape, the dark clouds of criminality and abuse will always form to feed of the public and commercial activities. To this end, the over-complex computerized systems, and the embracement of technology, and an always on-line lifestyle choice have offered up a significant surface of attacks for exploitation and compromise. Be the danger Ransomware, Malware, Exposed WiFi, the Darknet, or support of illicit activities in the form of Drugs, People Trafficking and Child Abuse (exploitation), with levels of adversity continuing to reach even darker depths! Today, in a world of three Cyber Security Classifications, which are:

• You have been hacked
• You will be hacked
• You have been hacked but don’t know it

We look into the history of insecure computing, investigate the real-potentials that facilities Cyber Crime, dig into the Dark Web of illicit shopping offerings, and look to the future of regulating the internet. To add the positive, we will also explore the mitigation of good security practice, OSINT (Open Source Intelligence), and First Response Cyber Forensics Engagement to maximize the potential of Cyber Survival in the Electronic World.

Speaker:
Prashant Pillai, Director of the Wolverhampton Cyber Research Institute, University of Wolverhampton

Critical National Infrastructure (CNI) refer to the various systems, networks, facilities and services upon which daily life depends. One such infrastructure is our power networks that are responsible for providing us with electricity that has become central to the ability of modern societies to function. Apart from being used in homes and industries, several critical infrastructures like hospitals, air traffic control, water and gas supply networks, mobile communication and even the financial sector are dependent upon electricity. A major attack on a nation’s power grid would shut down any country. Future Smart Grid technology facilitates the integration of storage and renewables with the grid to ensure sustainability of electricity supply, mitigate rising power outages and help meet the rapidly rising demand for clean energy in urban and rural areas. Reliable, fast and secure communication infrastructure is required to attain these benefits of smart grids. Future smart power grids that aim to use Internet communication to provide such efficient control are vulnerable to various security attacks. This talk also introduces the security and QoS requirements for smart grid communications, Key security vulnerabilities, types of attacks and the arising research challenges are detailed.

Presented by Darktrace

Artificial intelligence can improve network health by building a “pattern of life” for every device, user and network.  Join us as we discuss:

• Enterprise immune system technology, and how AI affects it;
• How AI improves network visibility; and
• Why not enough healthcare organizations have devoted time to defining what is “good” versus “bad” about their network traffic and rules.

Presented by Kaspersky

We all know how fragile our digital identities are, and any business offering digital accounts knows about the risks of account takeover attacks. As more and more businesses undertake digital transformation strategies, account takeover becomes an increasingly lucrative attack option for fraudsters. With strategies often focusing on stopping fraudulent activity once cybercriminals have access to the accounts, how can we get ahead of the game and stop the unauthorized access in the first place? This session explores a multilayered approach to identifying account takeover earlier, with a focus on the key element required for any account access: the device itself.

Presented by CenturyLink

Centurylink is out with its 2018 Threat Report, and it contains curious insights into connected devices and the botnets that can leverage them for crime.

Join this session as we discuss:

• The scope of this new study;
• Insights on connected devices;
• The power of new global botnets.

Speaker:
Rafael Narezzi, CIO | MSc CyberSecurity, Computer Forensics and Counterterrorism

Speaker:
Michael Theis, Chief Counterintelligence Expert, Carnegie Mellon University CERT Insider Threat Center

This session shares the empirical findings of the CERT Insider Threat Center’s more than 15 years of research into both malicious and unintentional insider threats. The presentation shows how the insider threat is pervasive in all sectors, both private and public, and how most organizations have been forced to deal with these threats. CERT also shares what types of threats are most likely to occur (intellectual property theft, fraud, IT sabotage, industrial espionage, etc.) and which trusted insiders are most likely to be engaged in these attacks. This session explores mitigation strategies and includes references to numerous free resources that can aid organizations in the detection and prevention of, and response to, insider threat attacks.

Speaker:
Jeremy King, International Director, PCI Security Standards Council

In an increasingly digital world, where players from virtually all sectors are racing to innovate, the risk of data theft is very real. The payment card industry has defined standards for protecting cardholder account data. But what about other data types? And what can be learned from payment card industry standards? As recent, high-profile breaches have shown, personal data is increasingly being targeted by cyberattackers and must be protected. Even email addresses, if left unprotected, can be valuable resources for attackers interested in waging socially engineered attacks against customers and consumers.

So what lessons can be learned from the data security practices that the payment card industry has introduced over the years? This session reviews the various solutions used to secure cardholder data and describes why ongoing work to devalue data, regardless of the data type, has become increasingly critical.

Speaker:
Louise Shea, Unit Head – Cyber Crime Unit, Metropolitan Police

Cybercriminals have a seemingly unlimited arsenal of attack types at their disposal, ranging from identity theft and CEO fraud to botnet attacks and even clairvoyant scams. However, criminals’ goals, by and large, remain unchanged: to profit as quickly and easily as possible. In this session, Louise Shea, Unit Head for the Metropolitan Police’s Cyber Crime Unit describes the top cyberattack trends as reported by British businesses as well as best practices for working with police to investigate.

Panelists:
Polly Ralph, Barrister and Solicitor, UK Data Protection Strategy, Legal and Compliance Services, PwC
Christopher Greany, Managing Director, Head of Group Investigations and Insider Threat Program, Barclays
David Stubley, CEO, 7 Elements
Andy Bates, Executive Direction, Global Cyber Alliance