SESSION One: The Future of Enterprise Security and Risk Management
From the IT department to the boardroom – Mapping and Prioritising the Security and Risk Landscape in the new Information Security paradigm
- Governance, Risk and Compliance (GRC)
- Changing perceptions: Information Security as a Business Objective
- Disruptive Technologies – Exploring Opportunities and Risks associated with Mobile, Big Data, IoT, Machine Learning, AI, Cloud Computing
- Effective Risk Management Strategies and Metrics
- Information Security as a business enabler – Devising Policies and Response Mechanisms
- Cyber Threat Risks – Guidance for Business Strategists and Boards
- Defining Risk Appetite and allocating Cyber Security Resources Efficiently
Arrival and coffee break
Conference Chair’s Opening Address
Editor, Security Advisor ME (invited)
Keynote Address: Defending Against Cyber Risk
Emirates Identity Authority (invited)
Cyber adversaries in the UAE regions are becoming sophisticated and stealthy, resulting in targeted attacks that often circumvent traditional security controls. New IT initiatives expand the attack surface and make cybersecurity more complex. And as a consequence many large organizations are losing ground as they attempt to address IT risk with an army of outdated tools and disparate manual processes. We explore how the UAE is bolstering its security.
The Dark Web and Threat Intelligence
The Dark Web has become synonymous with all manner of cyber-crime activities from malware and data leakage through to the publishing of account credentials and hacking.
This session covers what the dark, deep, and surface web really are and why they matter to your business.
Managing new risks: Securing The Fourth Industrial Wave
UAE Ministry of Interior (invited)
Disruptive technologies like the IoT, mobile, cloud, big data and blockchain are expanding the cyber-attack surface. The Dyn attack in 2016 showed how exploiting connected devices can have a colossal impact on the internet. As our personal, professional and social lives become more interconnected – and dependent on cyberspace – we ask what emerging risks lie ahead of us and how we can prepare for them.
Building Resilience and Incident Response
UAE Exchange (invited)
Maintaining a discipline of strong cybersecurity has become increasingly difficult at enterprise organisations for a number of reasons. This session explores how you can better manage incidents and respond to breaches.
Questions to the Panel of Speakers
Refreshment Break Served in the Exhibition Area
Networking Lunch Served in the Exhibition Area
SESSION Two: Building Resilience, Mitigating Risks, Sharing Best Practice
Sharing lessons learned, new innovations and stratagems for operational risk management
Conference Chair’s Afternoon Address
Afternoon Keynote Session: Safeguarding the Digital Enterprise
Emirates Nuclear Energy Corporation (invited)
As organisations embrace cloud, mobile and new emerging technologies along with apps and IT consumer trends designed to unlock greater productivity, the digital enterprise is proving to be more diverse and connected than ever before.
How can businesses improve resilience against targeted and persistent cyberattacks? What can business executives so to get better returns on cyber security investment? How can security help to move business in new directions?
PCI and PII: Helping to Secure your Data
Noor Bank (invited)
Organisations are acquiring, using and storing vast amounts of personally identifiable information – from information on employees through to customers, residents and patients. Precautions have to be taken to prevent loss, unauthorised access, leak or theft of this data. We cover what data is at risk and what you can do to protect it.
Intelligent Security in Action
Dubai Customs (invited)
Intelligent systems are becoming the must-have took to effectively respond to security challenges in real-time. We look at machine learning and advanced data analytics, and their role in modern threat detection.
How to Prevent a Breach Before It Happens
Oil & Gas Sector Case Study (invited)
We consider such things as:
- Measuring organisational risk appetite and adopting an information-centric approach to measuring and managing risk
- Best practice in securing endpoint computing devices
- Establishing an acceptable usage policy
- Trust-based policy controls and technical controls
- A consideration of legal rights and user privacy
- Creating user-awareness about responsibilities and standards
- Remote lock/wipe facilities, data recovery methods