Enterprise Security & Risk Management

21 September 2017

Mövenpick Hotel, Amsterdam



UK Hits Record Growth in Cyber Security Personnel

10th February 2017

With the threat of an international cyber security skills shortage looming, the UK’s intensive efforts to reduce the gap in recent years seems to be […]

How does security visibility help your cybersecurity posture?

16th August 2016

Cybersecurity is a constant battle to stay ahead. The Cybersecurity Capability Maturity Model (C2M2) outlines a process to move your security posture to the next […]



Previous Speakers

Erik Maranus

Enterprise Architect and Information Security Officer, DELTA N.V.

As an Information Security Officer at DELTA N.V, Erik is predominantly working in the area of IT risk management and security awareness. His risk management approach is based on processes and data so business owners can easily recognize and value risks.

Security awareness is Erik’s favorite topic. He has finished a study on a methodology to setup an awareness program where he worked with behavioral science- and communication specialists.

Erik is CISM certified and has 20 years’ of experience in Energy trading and Retail and Internet Service provider companies working as an Information Security Officer and Enterprise Architect.

Armin Reif

Head of Confidentiality and Information Security, Europol

Armin started his career at Federal Criminal Police Office level in one of the EU Member States in the computer crime division as an IT forensic team leader. Later he joined Europol as Senior IT Project Manager and was given the opportunity to eventually take a new position within the security unit leading the confidentiality and information security section.

Niran Seriki

Senior Cyber Security Consultant, EU Institutions Chief Information Security Officer – SISC Ltd UK

Niran Seriki is an experienced Senior Cyber Security Consultant and a Certified Chief Information Security Officer (C|CISO) with expertise in Cyber Security as well as dealing with Senior Board Level Management on Enterprise Security Strategy & Programs, identifying, developing, implementing and maintaining cyber security-related processes to reduce the organization’s operational and cyber risks.

He has over 25 years’ international, technical and management experience, planning and running global security projects, with specific passionate interests in Global Threat Intelligence Management, Vulnerability Management, Compliance and Risk Management.

He is quite passionate about Cyber Security and making Security work without jeopardising Business progress and achievement in organisations. He currently consults for the European Institutions and the private sector.

Kaj Paananen

Information Risk Manager, Wärtsilä

The risk and security management disciplines have developed radically within the last 15 years. Like you, Kaj has seen the rise of standards and regulations relating to security and risk management. The other prevalent trend has been internal organisational transformation (e.g. organisation structures, targets and business models).

Kaj is the Information Risk Manager for Wärtsilä Corporation where he combines the risk management practises to the identification and protection of critical business data and systems. Kaj has 20+ years of experience from different businesses and from international and domestic organisations. He has worked with NYSE listed companies (Citi, IBM, JCI) and with local market leaders (Tapiola-Group, S-Bank ltd). In these positions he has seen and worked with different kinds of organisations and environments.

Kaj has been an active speaker in different training programs and seminars. He has also been a member in many security guideline and standard related work groups. His mission is to develop such risk management practices and processes so that they match the organisational governance and management model

Markus Ekbäck

Chief Information Security Officer, Karolinska University Hospital

Markus Ekbäck is an information security expert with over 20 years’ experience ranging from the banking sector, to private and central government authorities responsible for information security governance. Previously, he spent several years with the Swedish Migration Board, the Swedish Security Service and the Swedish National Dept. Office. For the past three years he has worked as CISO at the Karolinska University hospital in Stockholm. His areas of expertise include signals security, national security, general security management as well as continuity management, compliance management and information security education.

Markus is a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Information Security Management Professional (ISMP)

Rieks Joosten

Senior Researcher, Information Security, Netherlands Organisation for Applied Scientific Research (TNO)

Rieks is a senior scientist at TNO, working in the areas of governance/risk management and the specification of business processes and supporting IT. At the side, he is also member of the board of governors of an organization for primary education.

All his life, Rieks has had an interest in exploring ‘other ways’ to make and do things. Landmarks along this way include his writing with fellow students of the operating system and development tools for the world’s first hand held computers for Matsushita around 1980, and the architecture and algorithms for the PCC-ISES (the worlds fasted asymmetric crypto chip of the late eighties). After joining KPN Research in 1999 (which became part of TNO in 2006), Rieks interest shifted to bridge the gap between the business and IT (technology).

Currently, together with some colleagues, Rieks is developing new paradigms for serving the business with IT in the new world where small organisations nibble away at larger ones, business relations become more and more ephemeral and ad hoc. The latest results include a method for doing networked risk management (2010), for designing knowledge-intensive processes that do away with work-flows (2013), and operationalizing ideas about universal economic transactions (2015).

Sameer Pise

Principal Auditor, UNESCO

As a Principal Auditor for the past ten years, Sameer Pise has successfully led a wide range of audit and advisory engagements comprising compliance, performance and strategic engagements across UNESCO’s Headquarters, Field Offices and Category I institutes and in Information Technology. These engagements have strengthened risk management, internal control and governance. He has extensive experience in managing contracted IT audits covering areas such as IT security, project implementation, governance, data stewardship and classification and operations.


Nicolas Rouiller

Compliance Validation Manager, Nestle

Nicolas is an Information Security Risk and Controls Manager with 12+ year’s business experience in a variety of sectors and for numerous multinational corporations. He has worked at a senior level in the Pharma, FMG and Financial Services sectors. During his career, Nicolas has created, managed and delivered many Security Improvement Programs. In addition to helping shape IS/IT Internal Control & Compliance strategy for Nestlé, Nicolas has implemented several Nestlé’s Information Security Management Systems (ISMS) and coached many ISMS professionals worldwide. For Nicolas, life is all about risks and opportunities. The difficulty is finding out, which is what, and balance both.

Jay Kaplan

Co-Founder & CEO Synack

Jay co-founded Synack after serving in several security-related capacities at the Department of Defense, including the DoD’s Incident Response and Red Team. Prior to founding Synack, Jay was a Senior Cyber Analyst at the National Security Agency (NSA), where his focus was supporting counterterrorism-related intelligence operations. Jay received a BS in Computer Science with a focus in Information Assurance and a MS in Engineering Management from George Washington University studying under a DoD/NSA-sponsored fellowship. Jay holds a number of security certifications from ISC(2) and GIAC.

Zari Haji Rasoul

Information Security Officer, Gemeente Den Haag

Zari is a freelance IT Auditor and consultant and managing partner at ControlSolutions International. With more than 10 years of experience within IT Audit, operational audit, security, IT risk management and IT compliancy she helps clients manage their IT and security risks. Zari’s expertise lies in assessing and advising clients on complex technology (IT) processes and securing information systems to support the primary business on an effective and efficient way. She also has extensive experience in designing and implementing control frameworks (for instance SOX).

Frans Kolkman

Chief Inspector and Cybercrime Specialist, Dutch Police

Frans is a Senior Police Officer with 42 years of police experience behind him. He began to work in IT in 1984 as a Detective. He was appointed the Head of High Tech Crime Unit East (of The Netherlands) in 1995 and contributed to building digital investigations.

Frans created numerous new projects on Internet investigations. He introduced the first Trojan software within the Dutch Police in 2008 and was a founding father of IRN, an infrastructure to facilitate Internet investigations.

Frans worked as delegate for The Netherlands in the field of High Tech Crime for 10 years at Interpol and Europol. He was a Lecturer at the Dutch Police Academy for 14 years. He currently works for the National Cybercrime Program of the Dutch Police.

Robbert Hoeffnagel

Editor in Chief, Infosecurity Magazine NL

For over 25 years Robbert Hoeffnagel has been actively involved in the IT industry – as a journalist, an editor and as a consultant. He writes articles, blogs and columns on important IT trends. He also advises companies in areas like technology trends, marketing and brand positioning. He is co-owner of FenceWorks, the publisher of AppWorks, Belgium Cloud, Business & IT, CloudWorks, DatacenterWorks and Infosecurity Magazine. He is also a moderator and speaker at tech conferences and events.


Andrzej Sobczak

Resilience and Security Officer – Shared Services, Royal Bank of Scotland

Andrzej is by profession a Project Manager, an IT consultant and an Information Security expert with over twenty five years of experience in telecommunication, banking, manufacturing, energy sector, retail and government. He was implementing Information Security Management Systems, working in third party assurance. Andrzej now works as a Resilience and Security Officer with responsibility for nine European offices of RBS. He holds ISO27001 Lead Auditor and ISO22301 Lead Auditor credentials. He is also an ISACA Warsaw Chapter member and holder of Certified Information Systems Auditor (CISA) certificate. He also holds Project Management Professional credential.

Keith Ellis

Information Security Consultant

Keith has been in the IT industry for over quarter of a century and has seen many evolutions in technology and security methodologies. Today he operates as an Information Security consultant primarily focused on Financial Services and Banking sectors.

He is passionate about Information and Cyber Security; with the ever increasing adoption of internet based platforms comes with it the parallel increase of adversaries determined to destroy, weaken defences and steal critical company data and IP. This presents multiple opportunities to use his experience and skillset to assist those in need.


Ramon de Bruijn

Senior IT Compliance Officer, ASML

Ramon has had a wide-ranging career in Finance, IT and Audit within a range of international companies, including EY. He currently works at ASML leading the IT department’s compliance and quality efforts with respect to legislative and regulatory developments affecting IT governance.

Zsolt Angyal

Head of Product Security Assurance, Philips Lighting

Zsolt is the Head of Product Security Assurance at Philips Lighting information security office arranging and managing the second line of defense of product related information assets.

He has a background in information security, risk and compliance management as well, fulfilling various positions in this area at Philips’ Healthcare division earlier, helping the organization to define the governance structure and deploy relevant frameworks and solutions. In view of compliance domains his focus is on privacy related challenges.

His former experience as IT manager of a manufacturing site gave him a deep understanding of both business requirements on risk-based decision making in information and communication services and also good view on technical limitations in manufacturing which helped him to develop a pragmatic approach to the complex environment of information and product security.

Zsolt has CISA, CGEIT and CISSP certifications.

Robert Garskamp

Entrepreneur, Advisor on Digital Identity Matters and Founder, IDnextplatform

With the enormous speed of technological digitalisation transformation nowadays, Robert believes that it will influence, constitute and shape our society where you are able to control your identity on attribute level within a secure and privacy-regulated basis.

As an expert for 10+ years, Robert strives to share his knowledge and experience regarding several topics about digital Identity, security, privacy, mobility, risk management and compliance with various of organisations in different type of sectors. He also advises and consults various organisations (in public and private sector) related to digital identity.

Robert is founder of the IDnext platform, a pan-European open and independent platform to support and facilitate innovative approaches in the world of the digital identity, creating awareness about digital identity, providing a knowledge and networking platform for experts in IT, Business and Marketers as a European centre of expertise.

Dane Warren

Global Head of IT Security (CISO), Intertek

Dane is currently the Global head of IT Security (CISO) at Intertek. Dane also spent several years as a Director of IT Security at Zurich Insurance Company, in charge of business information security for a number of APAC, European and Middle Eastern countries. His earlier roles include Head of Information Risk and Security at Virgin Mobile (Australia), and CSO – Financial Services (APAC) at EDS. Dane has over 15 years of experience in IT Security, and holds a Master in Business IT Management from the University of Technology Sydney and several security certifications and accreditations.

Barbara Peruskovic

Independent Data Architect

Barbara Peruskovic has been working for almost 20 years in the field of information architecture. As senior data architect, advisor and coach, she guides organizations to form their own solutions, visions and teams while facing data challenges. With years of hands-on experience with different tools, techniques and organization models, she learned to favour the approach of practical wisdom. Meaning that one can learn the principles of action, but applying them in the real world, in situations one could not have foreseen, requires experience of doing. She has helped many multinationals and governmental organizations gaining such experience.

Her field of specialization is the design and implementation of data platforms that meet highest privacy and security standards.

Michel de Goede

Enterprise Architect, Alliander

Michel de Goede has been in general and IT consulting for over 30 years and has built a serious track record of advising, transforming, reorganizing or automating organizations. Michel has been a Strategy Consultant / Enterprise Architect with Alliander for about 7 years covering topics from IT to Risk and Security and from Startups to Valuation or Post Merger Integration. Alliander, the number one Dutch Grid Operator, is a leader in new developments such as smart grids, electric vehicles, smart metering, internet of things, mobile, consumerization, renewables and hence has launched various new business initiatives whereas operations should still be as cost effective and efficient as possible. The crossroads between traditional grid operations and new business ventures make Alliander a very exciting place to work. Michel holds an international MBA from the Rotterdam School of Management.

Yogesh Agarwal

Information Risk Management Consultant, Sony Europe Ltd.

Yogesh is an Information Assurance professional with more than 14 years of experience in Security Project Management, Risk Management, Security Architecture and Security Operations. He is a founding director of RightCue Consulting that provides niche consulting services in the field of business and IT risk management. In his 6 years long association with Sony as an Independent Security Consultant, he has successfully managed and delivered multiple projects on Data Privacy, Cyber Security, Forensics and Information Governance.

Yogesh is a Certified Fraud Examiner (CFE), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), and CCSK (Certificate in Cloud Security Knowledge).