The New Statesman’s 4th annual Cyber Security in Financial Services conference is back to take place on the 23 - 24 November 2021.
Whilst we eagerly await a return to live events and networking, the health and wellbeing of all involved must remain our priority, so considering the ongoing developments and concerns around the pandemic, the conference will return in 2021 as a hybrid event.
The pressure is on the financial sector supporting business in the ‘return to normal’ or the ‘new normal’ as well as handling this transition themselves. Banks must remain competitive amid digital transformation and the recent explosion in cyber-crime, not only whilst upholding the strongest information security systems but also while adapting to the impact of the pandemic and Brexit. Additionally, the complications of tight data regulations continue to evolve, as well as the sector opening to challengers. The New Statesman Cyber Security in Financial Services programme will address these challenges, opportunities and more that the sector faces whilst maintaining its cyber resilience.
The conference presents the opportunity to showcase your organisation and engage with influential decision-makers. Attendees can share ideas, innovations, initiatives and take part in virtual chats and private 1-2-1 conversations. There will also be the opportunity to engage with presentations on the main stage, and in Q&As with the speakers and sponsors.
Thought leaders and senior figures will present throughout the day to examine current regulations, key trends, and developments.
This is a CPD certified event, allowing you to earn up to 10 CPD points. CPD is the holistic commitment of professionals towards enhancement of personal skills and proficiency throughout their careers.
Delegates will attend from financial institutions including:
Delegate titles include:
• What will the future legal challenges for cyber be and what must the industry prepare for?
• Why the new hybrid world will have a significant impact on the make-up of the cyber security industry taking it away from the edge of organisations and placing it squarely at its heart
• Why AI will import ethics into the organisation and cyber
• Protecting your data, brand and reputation
• The power of shared intelligence and automation to reduce risk
• Consolidate, simplify and integrate your security solutions
• How can cyber defences be fortified amidst ongoing digital transformation?
• What are your top tips for extending security perimeters to address the challenges of homeworking?
• Which methods of monitoring should be used within the network to keep abreast of big data security?
• An introduction to DORA - how it extends the requirements of EBAG, and the implications for Global FSIs and their suppliers
• How to plan your approach, lessons shared from Broadcom's internal experience
• Key capabilities and tools you should consider, and how to integrate this effort with other initiatives (NIS "2", GDPR etc)
• How ransomware attacks have evolved
• Tactics, tools, and common practices used in modern attacks
• How you can improve your security strategy and minimise your risk of comprise
• Email continues to be the top threat vector for attacks on businesses
• Learn how a cloud-based, identity-centric approach effectively protects your organisation from email threats
• Prevent phishing attacks, simplify strong DMARC enforcement, and safeguard your brand from email abuse
• Understand the biggest digital risks Financial Services face
• Discover the one place these digital challenges convert
• Learn our three tips to map and manage your attack surface
• The three primary insider threat profiles and how to manage them
• Why traditional approaches to identifying and stopping insider threats fall short
• Practical strategies you can leverage to protect what really matters
Description of different types of attacks that can be employed against AI systems
Discussion of what this means in a real world context
Explanation of possible mitigation tactics
• 2022 will not see a return to the ways that we worked in 2019. “Hybrid” now defines the workplace, which is a fundamental change. • Enabling hybrid working requires we forget the old ideas of “where” users and applications are to focus on “who” they are. • The acceleration of digital + staff demands for flexibility + explosion of cyber attacks = enormous security challenges. • Securing the hybrid workplace requires authentication, authorization, least privilege access, and Zero Trust.
• The current cyber skills landscape
• The critical skills and retention challenges of your security team
• Practical strategies for energising your cyber team and retaining talent
• How AI-driven cybersecurity offers organisations a strong defence against both legacy and emerging threats
• Learn how a prevent-first approach also protects shifting work environments while combatting financial fraud
• Gain a better understanding of how to sustain operational resilience within your organisation
• Balancing the needs of employees with the continual pursuit of cyber risk reduction to develop a culture of cyber resilience
• Thinking strategically, prioritising highest risk areas and protecting our most valuable assets
• Clearly articulating cyber risk, supporting senior stakeholders in their oversight and decision-making
• Too often we focus on the Technology side of the People, Process and Technology triad
• To have an effective and adaptive security focussed culture we have to focus on the people – their strengths and weaknesses
• Our job as security professionals is not just to impose change on our colleagues, but to be their champions for that change
• The Human Intelligence Advantage in the Underground
• Stories from the field: It gets weird out there
• How to develop a proactive dark web approach that leverages artificial and human intell
• What is the impact of the continued growth of IoT and other intuitive technologies on the security of the financial sector?
• Is there an overreliance on technology in the industry?
• How can the industry overcome past mistakes when it comes to smart tech?
• Is centralising fraud and risk operations a solution, and what part can technology play?
• Outlining the trends in attacks today and who in the sector is being targeted
• Building intelligence on threat-based groups and their methods
• Safeguarding sensitive data within a complex threat environment
• How has the ransomware threat developed so fast?
• Future trends and developments
• Mitigations and keeping your company safe
• Paving a path to 5G technology with digital identity
• Data protection and cyber security challenges of a hyper connected future
• Four cornerstones of secure and trusted digital cities
• How financial services are providing frictionless experiences to customers and staff
• Where are potential weaknesses and how can they be identified and addressed?
• Looking to the future of identity in financial services
• Considering the weak spots when it comes to automation such as RPA
• Where are we with blockchain and the impact on cyber security?
• Understanding the quantum threat of decryption to sensitive data
• How can improvements to diversity and talent management in cyber strengthen defences?
• Which steps need to be taken to embed best practice into everyday workflows?
• What future threats are in store?
Mimecast (NASDAQ: MIME) was born in 2003 with a focus on delivering relentless protection. Each day, we take on cyber disruption for our tens of thousands of customers around the globe; always putting them first, and never giving up on tackling their biggest security challenges together. We are the company that built an intentional and scalable design ideology that solves the number one cyberattack vector – email. We continuously invest to thoughtfully integrate brand protection, security awareness training, web security, compliance and other essential capabilities. Mimecast is here to help protect large and small organizations from malicious activity, human error and technology failure; and to lead the movement toward building a more resilient world.
ZeroFOX provides enterprises protection, intelligence and disruption to dismantle external threats to brands, people, assets and data across the public attack surface. The ZeroFOX Platform includes advanced AI-driven analysis to detect complex digital threats on the web, deep and dark web, social media, mobile app stores, marketplaces, email, collaboration tools, and more. OnWatch™ alert management and managed threat intelligence services staffed with 150+ expert threat analysts become an extension of your team and deliver actionable threat intelligence to help you keep up with security demands. Integrated adversary disruption and takedown services leverages strong industry platform partnerships and intelligent automation to quickly disrupt threats before they go public.
Broadcom’s Symantec Enterprise Division, the global leader in cyber security, helps organizations and governments secure identities and information wherever they live. Symantec's Integrated Cyber Defense approach simplifies cyber security with comprehensive solutions to secure critical business assets across on-premises and cloud infrastructures. Symantec Endpoint Security, Network Information Security, and Identity Security solutions are uniquely integrated and infused with rich threat intelligence from the Symantec Global Intelligence Network as well as advanced AI and machine learning engines to protect data where it resides, to connect trusted users with trusted applications, and to detect and respond to the most advanced, targeted attack.
Proofpoint is a leading cybersecurity company that protects organizations’ greatest assets and biggest risks: their people. With an integrated suite of cloud-based solutions, we help companies around the world stop targeted threats, safeguard their data, and make their users more resilient against cyber attacks. Leading organizations of all sizes, including more than half of the Fortune 1000, rely on us for people-centric security and compliance solutions that mitigate their most critical risks across email, the cloud, social media, and the web.
Learn More at https://www.proofpoint.com/
Synopsys builds trust in software by enabling organizations to manage application security, quality, and compliance risks at the speed their business demands.
Our market-leading solutions help developers to secure code as fast as they write it; development and DevSecOps teams to automate testing within development pipelines without compromising velocity; and security teams to proactively manage risk and focus remediation efforts on what matters most.
With Synopsys, organizations can transform the way they build and deliver software, aligning people, processes, and technology to intelligently address software risks across their portfolio and at all stages of the application lifecycle
Learn More at https://www.synopsys.com
BlackBerry provides intelligent security software and services to enterprises and
governments around the world. The company secures more than 500M endpoints
including 175M cars on the road. Through independent research, Frost & Sullivan determined that BlackBerry is well positioned to secure all IoT endpoints, and upwards of 96% of all cyberthreats in the current landscape.
BlackBerry is leading the way with a single platform for securing, managing and optimizing how intelligent endpoints are deployed in the enterprise, enabling our customers to stay ahead of the technology curve that will reshape every industry.
BlackBerry leverages AI and machine learning to deliver innovative solutions in the areas of cybersecurity, safety and data privacy solutions and is a leader in the areas of endpoint security management, encryption, and embedded systems. BlackBerry’s vision is clear—to secure a connected future you can trust.
Learn more at https://www.blackberry.com/us/en
Fortinet makes possible a digital world that we can always trust through its mission to protect people, devices, applications and data everywhere. This is why the world’s largest enterprises, service providers, and government organizations choose Fortinet to securely accelerate their digital journey. The Fortinet Security Fabric platform delivers broad, integrated, and automated protections across the entire digital attack surface, securing critical devices, data, applications, and connections from the data center to the cloud to the home office. Ranking #1 in the most security appliances shipped worldwide, more than 510,000 customers trust Fortinet to protect their businesses. And the Fortinet NSE Training Institute, an initiative of Fortinet’s Training Advancement Agenda (TAA), provides one of the largest and broadest training programs in the industry to make cyber training and new career opportunities available to everyone. Learn more at https://www.fortinet.com, the Fortinet Blog, or FortiGuard Labs.
Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, global threat research, and continuous innovation, our cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints.
Cyberint provides Digital Risk Protection and Threat Intelligence. We believe in making the digital world a safer place to conduct business, by protecting our customers from cyber threats beyond the perimeter. We provide a rich set of external digital threat protection solutions, all automated or tailored with human expertise.
In a world of ever-increasing digital risk complexity, we have the expertise to keep things simple. We provide targeted insights into threat actor activity, brand protection, phishing attacks, data leakage, and exploitable attack surface vulnerabilities. Customers benefit from actionable recommendations to effectively respond to threats, seamlessly connected to their ecosystem - with minimal noise and effort.
Cyberint serves leading brands worldwide including Fortune 500 companies across industries such as finance, retail, ecommerce, gaming, media, and more, with proprietary Argos Edge™️ technology enriched by dedicated cyber and intelligence analysts.
Agari is the Trusted Email Identity Company™, protecting brands and people from devastating phishing and socially-engineered attacks. Using applied data science and a diverse set of signals, Agari protects the workforce from inbound business email compromise, supply chain fraud, spear phishing, and account takeover-based attacks, reducing business risk and restoring trust to the inbox. Agari also prevents spoofing of outbound email from the enterprise to customers, increasing deliverability and preserving brand integrity. Agari was acquired by HelpSystems in May 2021. Learn more at www.agari.com.
Cybersprint maps the attack surface of organisations. We offer full visibility using continuous and automated digital asset detection. These insights empower cybersecurity professionals to control and prioritise the mitigation of vulnerabilities.
We monitor your brand, infrastructure, VIPs, the supply chain, and more. Our integrated AI correlates dozens of data sources and uses a multitude of scanners, making risk relevant.
Cybersprint’s Attack Surface platform allows you to manage threats such as supply chain risk, phishing, brand abuse, data theft and more. Our zero-touch SaaS platform is operational in minutes and can be complemented with off-the-shelf or bespoke services for your security programme.
Digital Shadows makes threat intelligence accessible to all organizations by distilling your external exposure down to actionable, validated information your teams can immediately act on reducing your organizational risk. Our flagship solution, SearchLight, scans the most sources across the surface, deep, and dark web for your organizations’ exposed assets or signals that threat actors are targeting your company, delivering validated, risk-scored alerts that your team. Spare your limited resources from doing manually digging and validating of external threat intelligence, get started with Digital Shadows today. Learn more at www.digitalshadows.com.
RevBits portfolio of Cyber Security software solutions have been logically developed ‘by design’ to address identified gaps and vulnerabilities associated with incumbent vendor solutions. A product suite created intuitively from the trenches to provide Next Gen practical, lighter solutions with an extensive range of patented capabilities to improve an organisations cyber maturity.
RevBits provides unmatched capability across a broad range of Cyber areas, to include our award winning Cyber Intelligence Platform CIP/XDR; Email Security; Endpoint Security/EDR; Privileged Access Management; Deception Technology and Zero Trust Networking. This represents the broadest scope from one ‘stack’ in the market today.
Good Cyber Security practise embraces people, process, culture and technology with solid Governance and information management the bedrock of any organisation. We engage with leading partners whose core expertise compliments our own in helping improve an organisations cyber security posture. RevBits is an active contributor to local trade organisations in support of this.
Tessian’s mission is to secure the human layer. Using machine learning technology, Tessian automatically stops data breaches and security threats caused by human error - like data exfiltration, accidental data loss, business email compromise and phishing attacks - with minimal disruption to employees' workflow. As a result, employees are empowered to do their best work, without security getting in their way. Founded in 2013, Tessian is backed by renowned investors like Sequoia, Accel, March Capital, and Balderton and has offices in San Francisco, Boston and London.