DESCRIPTION

In an era where the role of security is increasingly critical and complex, the position of the CISO has evolved beyond safeguarding data and systems. The CISO now plays a strategic role in shaping a results-driven organization designed for sustainable growth. But with the rapid pace of technological advancement, growing cybersecurity threats, and the need for innovation, how do organizations build a resilient framework that can adapt and thrive amidst these challenges?

Plenary program

• Setting the scene

The role of the CISO has evolved significantly in recent years, shifting from a primarily technical position to a strategic leadership role within organizations. As cyber threats grow more sophisticated and widespread, the CISO is no longer just responsible for safeguarding IT systems, but also for aligning cybersecurity strategies with broader business goals.

Today’s CISO must navigate the complexities of regulatory compliance, risk management, and incident response while fostering a culture of security across the entire organization. This expanding scope requires a deep understanding of both technology and business, making the CISO a key player in ensuring long-term organizational resilience.

CISO Platform board member Luisella Ten Pierik sets the scene for the workshop, by providing an overview of the changes, the importance of strategic influence, new expectations, and challenges and opportunities.

• Inside information

A CISO shares his/her experience with the evolving role of the CISO, together with valuable insights on this topic. This offers a unique opportunity to learn from an insider who deals with these issues daily.

• Interactive panel discussion:

Together with experts and thought leaders, we will discuss the evolving role of the CISO. By bringing different perspectives to the table and providing the opportunity to ask questions, we aim to engage in an insightful discussion on the trends and challenges for today’s CISO.

This interactive panel discussion provides a dynamic platform for different perspectives on the role of the CISO. Each panelist can share their unique experiences and insights, followed by a Q&A with the audience.

Break-out sessions

1. How should the modern CISO manage risk?

The threat landscape is continuously evolving, making it of vital importance for the modern CISO to stay up to date on their risk management strategy. This breakout session will explore how CISOs can effectively identify, assess, and mitigate risks while balancing business objectives and regulatory requirements. We’ll dive into the latest risk management strategies, tools, and frameworks such as NIST and ISO 27001, and discuss case studies on the development of a risk management plan.

2. Bridging the IT-OT Divide

As industries increasingly rely on both information technology (IT) and operational technology (OT), the integration of these two worlds presents unique challenges. In this breakout session, we will explore strategies for bridging the IT-OT gap.

With IT systems driving innovation and OT systems managing critical infrastructure, it’s essential to align their objectives, protect against cyber threats, and enable effective collaboration between teams. In this session, we discuss insights, experiences, and best practices for creating a unified approach to IT and OT security.

3. How do I build a proactive security culture?

Building a proactive security culture is essential in today’s constantly evolving threat environment, where cyber risks can arise from both external attacks and internal vulnerabilities. In this breakout session, we will explore how organizations can go beyond reactive measures to cultivate a security-first mindset.

We’ll discuss strategies for creating successful change management strategies, fostering employee awareness, overcoming resistance within the organization, promoting accountability, and embedding security practices into day-to-day operations.

4. Legal and compliance challenges for the CISO

How do you deal with GDPR and NIS2? This breakout session will delve into the evolving and, at times, complex landscape of regulations, data privacy laws, and industry standards that CISOs must navigate to protect their organizations. We will discuss the challenges of meeting compliance requirements while managing cybersecurity risks and explore how CISOs can stay ahead of legal obligations in a dynamic regulatory environment.

Please note that the exact details of this workshop are subject to change. Changes may be made to speakers and content to improve your experience.