Summit Agenda

9:15 am - 9:20 am

9:20 am - 9:40 am

Ministerial Keynote

• Spending £1.9bn to enhance the UK’s cyber capabilities
• Developing a shared approach across the public and private sectors
• Supporting businesses and organisations to protect sensitive information, intellectual property and critical systems
• Investing in crypto-research and technological development to counter emerging and prospective cyber threats
• Developing the UK-skills base to supply the increasing need for cyber professionals
• Working internationally to build effective partnerships

9:40 am - 10:00 am

Morning Keynote

• Spearheading cross-government action to directly support organisations in cyber incidents – shared lessons
• Enabling organisations to make informed decisions and tailor their cyber response to the complexity of specific business environments
• Encouraging government and industry to incorporate cyber within a holistic approach to security
• Addressing systemic vulnerabilities and identifying security concerns presented by mobile, IoT, wearables, Industrial Control Systems (ICS) and the cloud
• Harnessing collaboration with the cyber technology and solution providers to tackle emerging challenges and threats
• Promoting ‘secure by default’ standards to ensure resilient supply chain of products and services

10:00 am - 10:15 am

10:15 am - 10:25 am

10:25 am - 11:05 am

11:05 am - 11:20 am

11:20 am - 11:35 am

• Investing £265m and engaging with industry and suppliers with the new Defence Cyber Protection Protocol to boost the UK’s military cyber systems
• Investing £40M to create the Cyber Security Operations Centre designed to protect MoD assets and answer significant national Cyber attacks
• Utilising state-of-the art defensive cyber capabilities to protect the MOD’s cyberspace from malicious actors
• Investing in cyber warfare technology for data security, networks and infrastructure protection and the mitigation of insider threats
• Maintaining skilled workforce through the Defence Cyber Aptitude Test (DCAT) to defend the British Defence Network from thousands of daily attacks and to gain information superiority over adversaries

11:35 am - 11:50 am

• Why organisations need to see cyber as mission critical
• How the National Cyber Crime Unit (NCCU) provides rapid response to the most serious cyber security incidents
• Targeting criminal vulnerabilities and disrupting criminal activity globally
• Leading the development of networks for shared intelligence across the criminal justice sector to heighten police awareness of threats
• Maintaining encrypted data-sharing and communication channels with regional and international partners such as Europol and Interpol
• Working with CREST and partners to prevent young people from participating in illegal online activities and guiding them towards a ‘digital defender’ career

11:50 am - 12:00 pm

12:00 pm - 1:30 pm

1:30 pm - 1:50 pm

1:30 pm - 1:45 pm

• Moving the dialogue forward from awareness of threats to building capabilities to defend against them
• Connecting the board with technology and security leaders and engaging with non-execs and investors to stress the importance of cyber
• Thinking differently about cyber through shifting the focus so that cyber is a core business and cultural issue
• Achieving good governance by building organisation-wide cyber secure culture
• Balancing risk and resilience for organisational effectiveness within highly regulated industries

2:05 pm - 2:10 pm

2:10 pm - 2:50 pm

Panel Discussion

• Meeting the governance responsibilities of cyber security
• Enhancing board-room engagement with cyber threats and risks
• Ensuring cyber is part of the holistic security planning
• Responding new points of vulnerability as your business changes
• Managing enhanced security as organisations become evolve without boundaries
• Understanding best practice for increasing and allocating budgets for optimum defence, deterrence and development of key assets
• Implementing a robust cyber crisis management, business continuity and disaster recovery plan

2:50 pm - 3:30 pm

3:30 pm - 3:45 pm

Augmenting your strategy through effective metrics and KPIs

• ‘Report what you should, not what you can’
• Developing metrics and risk indicators that are understood at board level
• What does ‘good’ look like?
• Ongoing collaboration amongst end users (CISOs) to advance the metrics project

3:45 pm - 4:25 pm

• Minimise the insider cyber security threat
• Maintaining cyber hygiene through regular impact assessments and developing a culture of cyber-awareness
• Protecting vulnerabilities around data as your core asset
• Developing the cyber skills, roles and knowledge required
• Keeping abreast of new technologies to meet evolving threats
• Auditing the risks of implementing new technologies and ways of working, such as mobile working, IOT, AI and Blockchain

4:25 pm - 4:30 pm