Enterprise Security & Risk Management

21 September 2017

Mövenpick Hotel, Amsterdam




1st September 2017

The Identity Hub is a service platform developed by U2U Consult that facilitates mobile and web app developers to quickly setup and integrate with a […]

Public WiFi Security Tips and Tools

9th August 2017

As the number of consumers with mobile devices continues to rise, so too does the demand for reliable internet access. Out of necessity, many businesses […]



Christian Goiceanu

Chief Security Officer, Banca Comerciala Romana Erste Bank

A dedicated senior manager with nineteen years of extensive experience, Cristian has spent eleven years in managerial positions in Romania, South East Europe (Greece, Turkey, Bulgaria, Serbia, Muntenegru, Moldavia) and Western Europe (Austria, France). He is a pragmatic person, focused on problem solving in the most effective and efficient possible way while keeping the residual risks at a reasonable level. He possesses an analytical mind set with proven experience in analysing and improving business processes and IT systems. Cristian is accountable, performance driven, has good communication skills and an ability to work with people from different cultures and different expertise.

Zari Haji Rasoul

Information Security Officer, Gemeente Den Haag

Zari is a freelance IT Auditor and consultant and managing partner at ControlSolutions International. With more than 10 years of experience within IT Audit, operational audit, security, IT risk management and IT compliancy she helps clients manage their IT and security risks.  Zari’s expertise lies in assessing and advising clients on complex technology (IT) processes and securing information systems to support the primary business on an effective and efficient way. She also has extensive experience in designing and implementing control frameworks (for instance SOX).

John Dyer

Director, Darktrace

John Dyer has over 25 years’ experience in the technology industry, having worked in senior commercial roles at both private and publicly-traded companies, including Cambridge Neurodynamics and Autonomy. As a Director at Darktrace, John advises clients on the use of machine learning technologies to identify new, emerging cyber-threats within computer networks, specialising on financial services, the legal sector, the retail sector and government/defence.


Vince Warrington

Cyber Security Specialist

Vince Warrington is a leading Information Assurance and Cyber Security expert with over 15 years of experience heading up large-scale, organisation-wide IT and cyber security programmes for central Government departments, blue chip private companies and well-known voluntary organisations across the globe. Vince is an influential member of the Information Assurance Advisory Council (IAAC) and the UK Cyber Security Forum. He is currently advising on strategies to encourage more young people to consider a career in cyber security – especially females and those on the Autism spectrum. Vince founded Protective Intelligence in 2005 to provide an optimum IT and cyber security service to enable organisations to effectively prevent accidental data leaks, secure their IT networks successfully and deliver robust security awareness training for all staff and stakeholders. His mission is to educate businesses, charities and government departments to move away from traditional IT security models, to one where everyone within an organisation works towards the common goal of protecting information through joint responsibility and co-ordinated thinking.

Vince has recently helped to develop the internal Security Operation Centre and threat intelligence network for the UK Department of Work and Pensions along with its latest cyber security strategy. He has also delivered successful business change in cyber security programmes and IT security operations for organisations including GlaxoSmithKline, Diageo, Financial Conduct Authority, Euromoney Institutional Investor, Saudi Aramco, Metropolitan Police Service, Sainsbury’s, Foreign & Commonwealth Office, HM Treasury and Skillshare International, and most recently, the Financial Conduct Authority. Vince has recently been appointed as a Non-Executive Director of specialist recruitment consultancy, CyberOne, to head up a unique CISO-as-service offering that will help businesses safeguard against escalating cyber-crime on a flexible basis.

Christian Goiceanu

Chief Security Officer, Banca Comerciala Romana Erste Bank

Banca Comerciala Romana Erste Bank

Phil Cracknell

Group CISO (Interim), Homeserve plc

Phil is regarded as one of Europe’s leading information security experts. He has held several CISO (Chief Information Security Officer) roles spanning five different industry sectors.

With over 28 years’ experience gained in a variety of high-profile technology and security management roles, he offers a unique insight to the world of information security, cyber-threats and risk management. He is a regular speaker at UK, Middle Eastern and European conferences.

As national publicity on the subject of ‘Wireless security’ peaked in 2002, Phil became somewhat of a cyber-security celebrity with appearances on Sky TV, BBC News and in national and industry press.

Phil served as Group Security & Risk Advisory to Arriva Plc., Advisor to the Board at Camelot UK and is currently the interim Global CISO for HomeServe plc.  He was also founder and chairman of the non-profit ClubCISO group –

Robert Garskamp

Entrepreneur, Advisor on Digital Identity Matters and Founder of the IDnextplatform

With the enormous speed of technological digitalisation transformation nowadays, Robert believes that it will influence, constitute and shape our society where you are able to control your identity on attribute level within a secure and privacy-regulated basis.

As an expert for 10+ years, Robert strives to share his knowledge and experience regarding several topics about digital Identity, security, privacy, mobility, risk management and compliance with various of organisations in different type of sectors. He also advises and consults various organisations (in public and private sector) related to digital identity.

Robert is Founder of the IDnext platform, a pan-European open and independent platform to support and facilitate innovative approaches in the world of the digital identity, creating awareness about digital identity, providing a knowledge and networking platform for experts in IT, Business and Marketers as a European centre of expertise.

Wil van Egdom

Information Security Officer, Greenpeace International

Wil van Egdom has worked as an Information Security Consultant, Security Officer and Risk & Compliance Manager for 20 years. In 2011 he moved to the non-profit sector and has since been working as Information Security Officer at Greenpeace International. He supports the global Greenpeace offices in minimising information security risks.

Dimitri Chichlo

Former VP Information Security & Business Continuity at Edmond de Rothschild

Dimitri Chichlo is former VP Information Security and Business Continuity Management at Edmond de Rothschild in Geneva where he was responsible for developing and implementing the cybersecurity and BCM governance, consulting on IT projects from the InfoSec side as well as spreading InfoSec awareness in the Bank. 

Prior to this position, he worked 6 years for ING as Head of Risk Management in Geneva, where he was responsible for all aspects of non-financial risks in a commercial bank, successfully enforcing information security risk framework as well as leading related projects. From 2004 to 2009, he spent 5 years in the Ukraine and was involved in various international greenfield industrial and banking projects with different French companies. Dimitri is also an avid trail runner and a PADI scuba diving Instructor. He is currently pursuing an Executive MBA at the INSEAD. 

Plamen Dimitrov

Global IT Security Manager, Jacobs Douwe Egberts

Plamen is a versatile IT Security Officer who has both a broad and a deep knowledge of the field of information security. He is an experienced IT security professional with 20+ years’ experience of delivering excellence in the Enterprise IT. He has a solid background in Risk Management, Business Impact Analyses, Information Security, Infrastructure design and support, Service management and Outsourcing.

He has worked in a multitude of roles and has experience with devising and arranging security organisations and policies, tactical and strategic security risk management and implementation of processes, procedures and security software. He has a very good grasp of the importance of security in business environments. This has given him the ability to perform in a multitude of security related roles e.g. as a security officer/manager, as a security consultant on topics ranging from strategic to operational level and facilitate and provide guide project managers on large security projects.

He is customer oriented and results driven, focused on business goals, and possesses excellent communications skills. Very experienced in operations across multicultural environment, virtual teams and large organizations.

Previous Speakers

Erik Maranus

Enterprise Architect and Information Security Officer, DELTA N.V.

As an Information Security Officer at DELTA N.V, Erik is predominantly working in the area of IT risk management and security awareness. His risk management approach is based on processes and data so business owners can easily recognize and value risks.

Security awareness is Erik’s favorite topic. He has finished a study on a methodology to setup an awareness program where he worked with behavioral science- and communication specialists.

Erik is CISM certified and has 20 years’ of experience in Energy trading and Retail and Internet Service provider companies working as an Information Security Officer and Enterprise Architect.

Armin Reif

Head of Confidentiality and Information Security, Europol

Armin started his career at Federal Criminal Police Office level in one of the EU Member States in the computer crime division as an IT forensic team leader. Later he joined Europol as Senior IT Project Manager and was given the opportunity to eventually take a new position within the security unit leading the confidentiality and information security section.

Niran Seriki

Senior Cyber Security Consultant, EU Institutions Chief Information Security Officer – SISC Ltd UK

Niran Seriki is an experienced Senior Cyber Security Consultant and a Certified Chief Information Security Officer (C|CISO) with expertise in Cyber Security as well as dealing with Senior Board Level Management on Enterprise Security Strategy & Programs, identifying, developing, implementing and maintaining cyber security-related processes to reduce the organization’s operational and cyber risks.

He has over 25 years’ international, technical and management experience, planning and running global security projects, with specific passionate interests in Global Threat Intelligence Management, Vulnerability Management, Compliance and Risk Management.

He is quite passionate about Cyber Security and making Security work without jeopardising Business progress and achievement in organisations. He currently consults for the European Institutions and the private sector.

Kaj Paananen

Information Risk Manager, Wärtsilä

The risk and security management disciplines have developed radically within the last 15 years. Like you, Kaj has seen the rise of standards and regulations relating to security and risk management. The other prevalent trend has been internal organisational transformation (e.g. organisation structures, targets and business models).

Kaj is the Information Risk Manager for Wärtsilä Corporation where he combines the risk management practises to the identification and protection of critical business data and systems. Kaj has 20+ years of experience from different businesses and from international and domestic organisations. He has worked with NYSE listed companies (Citi, IBM, JCI) and with local market leaders (Tapiola-Group, S-Bank ltd). In these positions he has seen and worked with different kinds of organisations and environments.

Kaj has been an active speaker in different training programs and seminars. He has also been a member in many security guideline and standard related work groups. His mission is to develop such risk management practices and processes so that they match the organisational governance and management model

Markus Ekbäck

Chief Information Security Officer, Karolinska University Hospital

Markus Ekbäck is an information security expert with over 20 years’ experience ranging from the banking sector, to private and central government authorities responsible for information security governance. Previously, he spent several years with the Swedish Migration Board, the Swedish Security Service and the Swedish National Dept. Office. For the past three years he has worked as CISO at the Karolinska University hospital in Stockholm. His areas of expertise include signals security, national security, general security management as well as continuity management, compliance management and information security education.

Markus is a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Information Security Management Professional (ISMP)

Rieks Joosten

Senior Researcher, Information Security, Netherlands Organisation for Applied Scientific Research (TNO)

Rieks is a senior scientist at TNO, working in the areas of governance/risk management and the specification of business processes and supporting IT. At the side, he is also member of the board of governors of an organization for primary education.

All his life, Rieks has had an interest in exploring ‘other ways’ to make and do things. Landmarks along this way include his writing with fellow students of the operating system and development tools for the world’s first hand held computers for Matsushita around 1980, and the architecture and algorithms for the PCC-ISES (the worlds fasted asymmetric crypto chip of the late eighties). After joining KPN Research in 1999 (which became part of TNO in 2006), Rieks interest shifted to bridge the gap between the business and IT (technology).

Currently, together with some colleagues, Rieks is developing new paradigms for serving the business with IT in the new world where small organisations nibble away at larger ones, business relations become more and more ephemeral and ad hoc. The latest results include a method for doing networked risk management (2010), for designing knowledge-intensive processes that do away with work-flows (2013), and operationalizing ideas about universal economic transactions (2015).

Sameer Pise

Principal Auditor, UNESCO

As a Principal Auditor for the past ten years, Sameer Pise has successfully led a wide range of audit and advisory engagements comprising compliance, performance and strategic engagements across UNESCO’s Headquarters, Field Offices and Category I institutes and in Information Technology. These engagements have strengthened risk management, internal control and governance. He has extensive experience in managing contracted IT audits covering areas such as IT security, project implementation, governance, data stewardship and classification and operations.


Nicolas Rouiller

Compliance Validation Manager, Nestle

Nicolas is an Information Security Risk and Controls Manager with 12+ year’s business experience in a variety of sectors and for numerous multinational corporations. He has worked at a senior level in the Pharma, FMG and Financial Services sectors. During his career, Nicolas has created, managed and delivered many Security Improvement Programs. In addition to helping shape IS/IT Internal Control & Compliance strategy for Nestlé, Nicolas has implemented several Nestlé’s Information Security Management Systems (ISMS) and coached many ISMS professionals worldwide. For Nicolas, life is all about risks and opportunities. The difficulty is finding out, which is what, and balance both.

Jay Kaplan

Co-Founder & CEO Synack

Jay co-founded Synack after serving in several security-related capacities at the Department of Defense, including the DoD’s Incident Response and Red Team. Prior to founding Synack, Jay was a Senior Cyber Analyst at the National Security Agency (NSA), where his focus was supporting counterterrorism-related intelligence operations. Jay received a BS in Computer Science with a focus in Information Assurance and a MS in Engineering Management from George Washington University studying under a DoD/NSA-sponsored fellowship. Jay holds a number of security certifications from ISC(2) and GIAC.

Frans Kolkman

Chief Inspector and Cybercrime Specialist, Dutch Police

Frans is a Senior Police Officer with 42 years of police experience behind him. He began to work in IT in 1984 as a Detective. He was appointed the Head of High Tech Crime Unit East (of The Netherlands) in 1995 and contributed to building digital investigations.

Frans created numerous new projects on Internet investigations. He introduced the first Trojan software within the Dutch Police in 2008 and was a founding father of IRN, an infrastructure to facilitate Internet investigations.

Frans worked as delegate for The Netherlands in the field of High Tech Crime for 10 years at Interpol and Europol. He was a Lecturer at the Dutch Police Academy for 14 years. He currently works for the National Cybercrime Program of the Dutch Police.

Robbert Hoeffnagel

Editor in Chief, Infosecurity Magazine NL

For over 25 years Robbert Hoeffnagel has been actively involved in the IT industry – as a journalist, an editor and as a consultant. He writes articles, blogs and columns on important IT trends. He also advises companies in areas like technology trends, marketing and brand positioning. He is co-owner of FenceWorks, the publisher of AppWorks, Belgium Cloud, Business & IT, CloudWorks, DatacenterWorks and Infosecurity Magazine. He is also a moderator and speaker at tech conferences and events.


Andrzej Sobczak

Resilience and Security Officer – Shared Services, Royal Bank of Scotland

Andrzej is by profession a Project Manager, an IT consultant and an Information Security expert with over twenty five years of experience in telecommunication, banking, manufacturing, energy sector, retail and government. He was implementing Information Security Management Systems, working in third party assurance. Andrzej now works as a Resilience and Security Officer with responsibility for nine European offices of RBS. He holds ISO27001 Lead Auditor and ISO22301 Lead Auditor credentials. He is also an ISACA Warsaw Chapter member and holder of Certified Information Systems Auditor (CISA) certificate. He also holds Project Management Professional credential.

Keith Ellis

Information Security Consultant

Keith has been in the IT industry for over quarter of a century and has seen many evolutions in technology and security methodologies. Today he operates as an Information Security consultant primarily focused on Financial Services and Banking sectors.

He is passionate about Information and Cyber Security; with the ever increasing adoption of internet based platforms comes with it the parallel increase of adversaries determined to destroy, weaken defences and steal critical company data and IP. This presents multiple opportunities to use his experience and skillset to assist those in need.


Ramon de Bruijn

Senior IT Compliance Officer, ASML

Ramon has had a wide-ranging career in Finance, IT and Audit within a range of international companies, including EY. He currently works at ASML leading the IT department’s compliance and quality efforts with respect to legislative and regulatory developments affecting IT governance.

Zsolt Angyal

Head of Product Security Assurance, Philips Lighting

Zsolt is the Head of Product Security Assurance at Philips Lighting information security office arranging and managing the second line of defense of product related information assets.

He has a background in information security, risk and compliance management as well, fulfilling various positions in this area at Philips’ Healthcare division earlier, helping the organization to define the governance structure and deploy relevant frameworks and solutions. In view of compliance domains his focus is on privacy related challenges.

His former experience as IT manager of a manufacturing site gave him a deep understanding of both business requirements on risk-based decision making in information and communication services and also good view on technical limitations in manufacturing which helped him to develop a pragmatic approach to the complex environment of information and product security.

Zsolt has CISA, CGEIT and CISSP certifications.

Robert Garskamp

Entrepreneur, Advisor on Digital Identity Matters and Founder, IDnextplatform

With the enormous speed of technological digitalisation transformation nowadays, Robert believes that it will influence, constitute and shape our society where you are able to control your identity on attribute level within a secure and privacy-regulated basis.

As an expert for 10+ years, Robert strives to share his knowledge and experience regarding several topics about digital Identity, security, privacy, mobility, risk management and compliance with various of organisations in different type of sectors. He also advises and consults various organisations (in public and private sector) related to digital identity.

Robert is founder of the IDnext platform, a pan-European open and independent platform to support and facilitate innovative approaches in the world of the digital identity, creating awareness about digital identity, providing a knowledge and networking platform for experts in IT, Business and Marketers as a European centre of expertise.

Dane Warren

Global Head of IT Security (CISO), Intertek

Dane is currently the Global head of IT Security (CISO) at Intertek. Dane also spent several years as a Director of IT Security at Zurich Insurance Company, in charge of business information security for a number of APAC, European and Middle Eastern countries. His earlier roles include Head of Information Risk and Security at Virgin Mobile (Australia), and CSO – Financial Services (APAC) at EDS. Dane has over 15 years of experience in IT Security, and holds a Master in Business IT Management from the University of Technology Sydney and several security certifications and accreditations.

Barbara Peruskovic

Independent Data Architect

Barbara Peruskovic has been working for almost 20 years in the field of information architecture. As senior data architect, advisor and coach, she guides organizations to form their own solutions, visions and teams while facing data challenges. With years of hands-on experience with different tools, techniques and organization models, she learned to favour the approach of practical wisdom. Meaning that one can learn the principles of action, but applying them in the real world, in situations one could not have foreseen, requires experience of doing. She has helped many multinationals and governmental organizations gaining such experience.

Her field of specialization is the design and implementation of data platforms that meet highest privacy and security standards.

Michel de Goede

Enterprise Architect, Alliander

Michel de Goede has been in general and IT consulting for over 30 years and has built a serious track record of advising, transforming, reorganizing or automating organizations. Michel has been a Strategy Consultant / Enterprise Architect with Alliander for about 7 years covering topics from IT to Risk and Security and from Startups to Valuation or Post Merger Integration. Alliander, the number one Dutch Grid Operator, is a leader in new developments such as smart grids, electric vehicles, smart metering, internet of things, mobile, consumerization, renewables and hence has launched various new business initiatives whereas operations should still be as cost effective and efficient as possible. The crossroads between traditional grid operations and new business ventures make Alliander a very exciting place to work. Michel holds an international MBA from the Rotterdam School of Management.

Yogesh Agarwal

Information Risk Management Consultant, Sony Europe Ltd.

Yogesh is an Information Assurance professional with more than 14 years of experience in Security Project Management, Risk Management, Security Architecture and Security Operations. He is a founding director of RightCue Consulting that provides niche consulting services in the field of business and IT risk management. In his 6 years long association with Sony as an Independent Security Consultant, he has successfully managed and delivered multiple projects on Data Privacy, Cyber Security, Forensics and Information Governance.

Yogesh is a Certified Fraud Examiner (CFE), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and CCSK (Certificate in Cloud Security Knowledge).