Sophia Antipolis, France Scope
Cybersecurity is at the heart of the digital economy. Policy makers are taking up ambitious legislative initiatives for a secure digital economy for Europe and beyond. The industry is challenged to provide products and services which comply with such legislation. And standards are expected to play an important role in support as well. Will the policy, industrial and standardization actions succeed in making the cyber world safer?
The workshop looked at the panorama of cybersecurity, taking in the primary security issues and drivers.
This looked at the major technical issues and challenges to protecting information, infrastructure, customers, industry and assets from attack and failure. Then we reviewed the high-level drivers such as regulations, directives and mandates that help support cybersecurity. Finally, we looked at supporting vulnerability and disclosure schemes.
Target Audience
This event was of interest for those wishing to understand the latest context and direction of Cybersecurity initiatives: This will include C Level (such as CISO, CTOs), those responsible for security and involved in Standards making.
| Monday 11 June 2018 | |
| 08:30 | Check-in |
| 09:00 | Welcome Luis Jorge Romero, ETSI Director General |
| 09:10 | Session 1: Cyber Landscape: Critical Attacks in the Past Year Session Chair: Alex Leadbeater, BT The session will give an overview of the major Cyber Attacks over the past years and will look at the mitigation actions undertaken. |
| 09:10 Insight on Major Attacks Christoph Fisher, BFK | |
| 09:40 A National View, UK NCSC Ian McCormack, NCSC | |
| 10:10 From Security Vulnerabilities to Better Practices: Version 7 of the Critical Security Controls Curtis Duke, Center for Internet Security | |
| 10:40 | Coffee & Networking Break |
| 11:15 | Session 2: Challenges at Political Level and Actions Taken to Overcome Those (Part 1) Session Chair: Andreas Fuchsberger, Microsoft This session will review the latest policy and legislative acts and the resulting actions from stakeholders. Participants will debate as to whether the legislative and political actions and the standardization actions are actually helping improve security and the cost of these actions. |
| 11:15 Security Assurance - Regulatory and Legislative Approaches and Business Drivers G. Narendra Nath, Department of Telecommunications, Government of India | |
| 11:30 The Cybersecurity Landscape and Policy in China Wei Du, Chinese bureau of Cybersecurity | |
| 11:45 European Commission – Status on Latest Cybersecurity Policies and Legislative Actions Florent Frederix, European Commission, DG CNECT | |
| 12:00 A New Certification Framework for the EU: Proposal & Current Status Steve Purser, ENISA | |
| 12:15 Suggestions from ECSO for a European Cybersecurity Certification Roberto Cascella, ECSO | |
| 12:30 | Lunch & Networking Break |
| 14:00 | Session 2: Challenges at Political Level and Actions Taken to Overcome Those (part 2) Session Chair: Colin Whorlow, NCSC |
| 14:00 ISO/IEC JTC1 SC 27 Activities on Cybersecurity Andreas Fuchsberger, ISO/IEC JTC1 SC 27 | |
| 14:15 Standards, Requirements and Regulation in Cybersecurity: Finding the Right Balance Cinzia Missiroli, Walter Fumy - CEN/CENELEC | |
| 14:30 Challenges for ETSI in Cybersecurity Regulations Luis Jorge Romero - ETSI | |
| 14:45 Roundtable: how do the Political, Industry and Standardization Actions Meet the Issues Raised in the Introductory Talks? With session 1 and Session 2 Speakers | |
| 15:45 | Coffee & Networking Break |
| 16:15 | Session 3: Information Sharing and Vulnerability Disclosure Programs Session Chair: Slawomir Gorniak, ENISA |
| 16:15 Vulnerability Disclosure Program James Moran, GSMA | |
| 16:30 Vulnerability Disclosure Bengt Sahlin, Ericsson | |
| 16:45 IoTSF Vulnerability Disclosure Program Stephen Pattison, ARM | |
| 17:00 Questions & Answers | |
| 17:30 | Wrap up and Closure Charles Brookson, Zeata |
| 17:40 | Networking Cocktail |
Click here to access the presentations of the day.
The Programme Commitee was composed of the following members:
- Charles Brookson, Zeata & PC chairman
- Sonia Compans, ETSI
- Marijke De Soete, Security4Biz
- Andreas Fuchsberger, Microsoft
- Eric Gauthier, Orange
- Slawomir Gorniak, ENISA
- Alex Leadbeater, BT
- James Moran, GSMA
- Colin Whorlow, NCSC