ESRM DUBAI

Enterprise Security & Risk Management

17 April 2018

Conrad Dubai (United Arab Emirates)

SOCIAL


LATEST BLOGS


Threat Research – Surveying the Landscape

2nd October 2017

By: Paul John, Senior Security Architect, Secureworks Staying aware of online threats, techniques and markets remains a key part of cyber defence


UAE Population Pose High Risk to the Safety of Their Data

18th September 2017

Research by Kaspersky Lab has found that the UAE is failing to protect their data properly. Even though the ever growing population recognises the danger […]


LATEST TWEETS

PROGRAMME

SESSION One: Mapping and Prioritising the Security and Risk Landscape in the Connected, Digital Enterprise

  • Engaging the C-suite and boardroom
  • Embedding Governance, Risk and Compliance (GRC) into IT estates
  • Managing changing perceptions and ensuring Information Security is seen as a business objective that enables growth
  • Harnessing disruptive technologies – Exploring Opportunities and Risks associated with Mobile, Big Data, IoT, Blockchain, Machine Learning, AI, Cloud Computing
  • Effective risk management strategies and metrics
  • Devising policies and response mechanisms
  • Emerging cyber threat risks, guidance for business strategists and boards
  • Defining risk appetite and allocating Cyber Security resources efficiently

 

09.30
Conference Chair’s Opening Address
09.40
Keynote Address: Defending Against Cyber Risk

Dubai Electronic Security Center (DESC) (invited)

Cyber adversaries in the UAE regions are becoming sophisticated and stealthy, resulting in targeted attacks that often circumvent traditional security controls. New IT initiatives expand the attack surface and make cybersecurity more complex. As a consequence many large organisations are losing ground as they attempt to address IT risk with an army of outdated tools and disparate manual processes.

We explore what CISOs should do, the investment being injected into the InfoSec function across the UAE, and government led initiatives in this area.

09.55
The Dark Web and Threat Intelligence

Dubai Airport (invited)

The Dark Web has become synonymous with all manner of cyber-crime activities from malware and data leakage through to the publishing of account credentials and hacking. This session covers what the dark, deep, and surface web really are and why they matter to your business.  

10.10
Managing new Risks: Securing the Fourth Industrial Wave

Emirates Identity Authority (invited)

Disruptive technologies like the IoT, mobile, cloud, big data and blockchain are expanding the cyber-attack surface. As our personal, professional and social lives become more interconnected – and dependent on cyberspace – we ask what emerging risks lie ahead of us and how we can prepare for them.

10:25
Smart Cities and Cyber Security

Smart Dubai (invited)

The digital future promised by smart cities offers enormous benefits and prospects for social and economic growth. But with this connectivity and efficiency, new forms of cyber threats emerge . Governments have to ensure that their critical infrastructure – like utilities and health services – are immune from cyber-attacks. We explore initiatives designed to make the smart city agenda safe.

10:40
Insuring Against Ransomware and Cyber Extortion

UAE Exchange (invited)

There are significant consequences attached to cyber breaches. These include among other things the loss of customer data, financial costs, penalties from regulators, disruption of services and reputational damage. What can be done to mitigate the fallout of any breach? What is cyber insurance, what is and isn’t covered?

10.55
Why Current Security Techniques are failing

Barclays (invited)

Traditional security approaches are failing to proactively identify and block adversary activity. Most security tools address part of the cyber kill-chain. This session looks at:

  • Continuous breach prevention techniques
  • Real-time intelligence and monitoring
  • Machine learning and automated security
11:10
Questions to the Panel of Speakers
11:20
Refreshment Break Served in the Exhibition Area

SESSION Two: Building Resilience and Mitigating Risks – Sharing lessons learned, new innovations and stratagems for effective risk management

11:50
Securing you Cloud

Public cloud solutions have become a problem for managing disparate IT assets. Its use by employees has created information security concerns for many enterprises. We examine the common approaches to solve the challenges around cloud security.

12.05
Securing Endpoints – Mitigating Mobile Risks

The always on, always connected enterprise where sensitive data can be accessed anywhere at any time presents both opportunities and risks. Organisations can no longer afford to operate without endpoint protection. We explore the risks of mobility and how, when effectively secured, it can unlock savings and efficiencies for large enterprises.

12:20
Questions to the Panel of Speakers and Delegates move to the Seminar Rooms
12:30
Seminar Sessions
13:15
Networking Lunch Served in the Exhibition Area

SESSION Three: Managing and Implementing a Secure ICT Infrastructure – Sharing best practice on how to analyse vulnerabilities in your ICT infrastructure and eliminate them

14:15
Conference Chair’s Afternoon Address
14:20
Safeguarding the Digital Enterprise

As organisations embrace cloud, mobile and new emerging technologies along with apps and IT consumer trends designed to unlock greater productivity, the digital enterprise is proving to be more diverse and connected than ever before.

How can businesses improve resilience against targeted and persistent cyberattacks? What can business executives do to get better returns on cyber security investment? How can security help to move business in new directions?

14.35
How to Prevent a Breach Before It Happens

We consider how organisations can engage in:

  • Measuring organisational risk appetite and adopting an information-centric approach to measuring and managing risk
  • Best practice in securing endpoint computing devices
  • Establishing an acceptable usage policy
  • Trust-based policy controls and technical controls
  • Taking consideration of legal rights and user privacy
  • Creating user-awareness about responsibilities and standards
  • Remote lock/wipe facilities, data recovery methods
14.50
Building an Effective Incident Response Plan

An incident response plan is fundamental to managing data breaches. No organisation can afford to be caught off guard.

We explore:

  • What a robust response plan looks like
  • Key metrics organisations should be mindful of
  • Policy implementation considerations
  • Employee and management level buy-in
  • Best practices in information governance
15.05
Closing Keynote: The importance of cyber security in the modern connected enterprise

Employee and customer data, intellectual property, trade secrets and information relating to bids, mergers, and acquisitions are all tempting targets for a data security breach. With attackers able to go undetected on networks for months, and a significant proportion of cybercrime also undetected, we consider what businesses should do to address vulnerabilities and counter cyber risks to ensure they stay one step ahead of hackers.

15:20
Questions to the Panel of Speakers
15.30
Closing Remarks from the Chair
15:35
Afternoon Networking and Refreshments served in the Exhibition Area
16.10
Conference Closes, Delegates Depart