e-Crime & Cybersecurity 2021 - France | AKJ Associates Ltd | 29 March 2021 | Online

10th e-Crime & Cybersecurity France

Securing the supply chain: the world after SolarWinds

After almost a year of on-off COVID-lockdowns, CISOs could be excused for struggling with the challenge of maintaining security in a fluid, hybrid work environment. Simply keeping on top of the basics, like ransomware, is a full-time job. Just ask French IT services giant Sopra Steria. It just announced that a Ryuk ransomware attack has cost it between €40 million and €50 million.

But in addition to that, they are also scrambling to protect the ever-expanding attack surface that is being created by accelerated digitalization. Companies have no choice but to embrace e-channels across their businesses, and their customers and suppliers are doing the same. Securing these websites, apps, payment channels and customer interfaces is non-trivial and may require a rethink of security and development environments.

The IoT is also becoming a significant blip on CISOs radars. More accurately thought of as a vast ecosystem of sensors, the IoT generates huge volumes of sensitive data from devices mostly not built with security in mind. Just tracking which devices are on your network is complicated. And if we return to office working, the smart buildings in which we work are full of potential security flaws.

Data privacy of course, IoT related and not, is critical. While many CISOs still believe privacy beyond their security remit, this distinction will become unsustainable. French firm Predicio recently found itself in the spotlight over its role in the secretive world of the collection and selling of mobile location and other personal data, a market that raises many questions about how companies protect personal data and how they define authorised and unauthorised data usage. Schrems II is just the beginning.

On top of all that, CISOs now have to grapple with the implications of SolarWinds. Third-party security was already one of the most difficult challenges CISOs faced. But Solar Winds shows that your own security vendors can be your weakest link. It shows that state-actors may be your biggest risk. And it shows that third-parties remain the most dangerous vector for committed cybercriminals.

So, what can CISOs do about third-parties when digitalization, the IoT and remote work already stretch teams to the limit? How can security teams scale to the threatscape, without demanding an unsustainable level of resources? And what are today’s security priorities?

2021 Speakers

David Giorgis
RSSI France & Responsable des SI Industriels Eau, Suez

Javier Gonzalez
Head of SOC, ENGIE

Benoit Moreau
CISO, Nexter

Philippe Tourron
RSSI, Assistance Publique – Hôpitaux de Marseille

Sabine Marcellin
Digital & Cybersecurity Lawyer, DLGA

Eric Singer
CISO EMEA, Schneider Electric

Eddy Thesee
VP Cybersecurity, Alstom

Gabriel Voisin
Partner, Privacy, Data Protection, Cyber, Bird & Bird LLP

Frédéric Jésupret
Group Information Security Officer, Allianz Partners

Xavier Aghina
CISO, W-HA

Soufyane Sassi
Sales Engineer - South EMEA, Recorded Future

David Grout
CTO EMEA, FireEye

Matthieu Jouzel
Solutions Engineer, BeyondTrust

Valentin Jangwa
Regional Sales Director, Southern Region, Bitglass

Nicolas Liard
Solutions Engineer, Bitglass

Valentin Lejop
Security Systems Engineer, Keysight Technologies

Thom Langford
Security Advocate, SentinelOne

Christophe Leautey
Regional Sales Director, BitSight

Davide Turina
Country Manager & Technical Director – France, Cybersel

Dr Stephen Topliss
VP Marketing Planning, Global Fraud & Identity, LexisNexis Risk Solutions

Johanne Ulloa
Director Solutions Consulting, Southern Europe, LexisNexis Risk Solutions

Abdel Mokadem
Sales Engineering Manager France, Zscaler

Valentin Pourrinet
Cybersecurity Account Manager, Darktrace

Pascale Marin
International Marketing | Data Management - ManageEngine

Erwan Jouan
Regional Director SEMEA Corelight

Charles Rami
Sales Engineer SEMEA, Corelight

Pauline Apretna
Country Lead, France, CybelAngel

2021 Sponsors

STRATEGIC SPONSORS:
• Beyond Trust
• DarkTrace
• FireEye
• Lexis Nexis Risk Solutions
• Recorded Future
• Sentinel One
• Zscaler

EDUCATION SPONSORS:
• Bitglass
• Bit Sight
• CoreLight
• CybelAngel
• Cybersel
• KeySight Technologies
• ManageEngine