Loading…

Log in to bookmark your favorites and sync them to your phone or calendar.

Tuesday, March 13
 

09:00 UTC

Welcome from the Cyber Senate and introduction to your Chairman for the day
Speakers
avatar for Cevn Vibert

Cevn Vibert

Global Director Industrial Cyber, Vibert Solutions Ltd
An Industrial Cyber Security Advisor, Engagement Manager, Solution Architect, Systems Manager, Trainer and Consultant with over 20 years in Industry, managing solutions and teams in a wide range of markets and industries. Well known in the Security, Cyber, Automation and Industrial... Read More →


Tuesday March 13, 2018 09:00 - 09:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

09:10 UTC

THE QUESTION IS NO LONGER IF, BUT WHEN WE WILL EXPERIENCE A CYBER ATTACK. IMPROVING THE SECTOR’S CAPABILITY TO DETECT, RESPOND, AND RECOVER FROM CYBER INCIDENTS
  • What level of maturity is needed in cyber preparedness and incident response?
  • Taking a fresh look at the sector’s unique vulnerabilities and crisis management challenges
  • Moving towards a common situation awareness requirement for the maritime sector
  • The increasing importance of cyber resilience in today’s threat landscape
  • Constant review and testing of cyber defence capabilities
  • The importance of having reliable disaster recovery systems in place

Speakers
avatar for Adrian Venables

Adrian Venables

Commander in the Royal Naval Reserve and independent cyber security researcher, Defence Academy of the United Kingdom
Adrian Venables, PhD, served in the Royal Navy for 24 years as a Communications, Warfare, and Intelligence officer and was responsible for the provision and security of a range of Information Systems worldwide, including the management of specialist teams deployed to operational theatres... Read More →


Tuesday March 13, 2018 09:10 - 09:50 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

09:50 UTC

KEYNOTE PANEL: WHERE IS THE MARITIME SECTOR IN TERMS OF BASELINE AND MATURITY LEVELS
  • Where are we in terms of a baseline and maturity levels?
  • Are we learning from other sectors? If so which?
  • Are we seeing a progression in public and private information sharing?
  • How can we better manage risk connecting with foreign port and shipping infrastructure?
  • What does the landscape truly look like from an insider view? 
  • How many years could this take and what methods of best practice can we implement to move things along?

Speakers
avatar for Patrick Putman

Patrick Putman

Chief Information & Innovation Officer, DP World Antwerp
A highly skilled and experienced executive, energized by bringing departments to a higher level of performance, collaboration and maturity in a no-nonsense way. Combines products and services with technology to innovative business.Loves to fix broken processes.True believer of the... Read More →
avatar for Adrian Venables

Adrian Venables

Commander in the Royal Naval Reserve and independent cyber security researcher, Defence Academy of the United Kingdom
Adrian Venables, PhD, served in the Royal Navy for 24 years as a Communications, Warfare, and Intelligence officer and was responsible for the provision and security of a range of Information Systems worldwide, including the management of specialist teams deployed to operational theatres... Read More →


Tuesday March 13, 2018 09:50 - 10:20 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

10:20 UTC

CASE STUDY: DEVELOPING GREATER CYBER RESILIENCE IN RESPONSE TO CYBER ATTACKS ON THE PORT OF ANTWERP
The Port of Antwerp came under sustained cyber attack in 2011-2012 from an organised crime group who infiltrated tracking systems to gain access to container security and location details. This presentation will look at how the attack prompted the development of more robust integrated security systems.
  • The ever-growing importance of cyber preparedness 
  • Internal collaboration for joined-up detection and response systems 
  • Real time response and information sharing 
  • The relationship between physical and cyber 

Speakers
avatar for Patrick Putman

Patrick Putman

Chief Information & Innovation Officer, DP World Antwerp
A highly skilled and experienced executive, energized by bringing departments to a higher level of performance, collaboration and maturity in a no-nonsense way. Combines products and services with technology to innovative business.Loves to fix broken processes.True believer of the... Read More →


Tuesday March 13, 2018 10:20 - 11:00 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

11:00 UTC

NETWORKING COFFEE AND TEA
Tuesday March 13, 2018 11:00 - 11:30 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

11:30 UTC

PROJECT SAURON: SCALABLE MULTIDIMENSIONAL SITUATION AWARENESS FOR PROTECTING EUROPEAN PORTS
As one of the key critical infrastructures in Europe, ports are vulnerable to the threat of physical attack, a deliberate disruption of critical automation systems or a combined attack, with potentially devastating and far reaching consequences. The SAURON project proposes an holistic situation awareness concept as an integrated, scalable and yet installation-specific solution for protecting EU ports and their surroundings.
  • Reducing vulnerabilities and increasing the systematic resilience of EU ports in the face of physical, cyber or combined threat
  • Ensuring an adequate level of physical and cyber security for EU ports
  • Limiting detrimental effects of any combined attack on society, civilians
  • H2020 Prevention, detection, response and mitigation from threats to the critical infrastructure of Europe
  • Combining advanced physical SA features with the newest techniques in prevention, detection and mitigation of cyber threat
  • Developing a hybrid HSA application to project the cascading effect of detected combined threats

Speakers
avatar for Rafael Company

Rafael Company

R&D Project Manager, Valenciaport Foundation
Rafael Company (1971) // SAURON’s project coordinator. Rafael is Environmental, Chemical and Biology Senior graduated by the University of Valencia (1995), Spain. He has a large experience (over 15 years) as responsible for the Environmental, Safety and Security International Projects... Read More →


Tuesday March 13, 2018 11:30 - 12:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

12:10 UTC

PANEL: ADDRESSING THE RISK OF INTEGRATING PHYSICAL AND CYBER SECURITY. WHAT IS THE IMPACT ON SAFETY? ARE WE SEEING MORE COLLABORATION BETWEEN IT AND OT?
  • What barriers are there to achieving closer coordination in addressing physical and cyber security?
  • Do these two divisions speak the same language?
  • How can we better align training to focus on the integration of and nexus with cyber security and physical risk?
  • Embedding cybersecurity awareness across all operations
  • Building a broader enterprise system to address cybersecurity
  • Developing a thorough understanding of where cyber threats pose a physical threat to critical infrastructure across the whole maritime supply chain

Speakers
avatar for Rafael Company

Rafael Company

R&D Project Manager, Valenciaport Foundation
Rafael Company (1971) // SAURON’s project coordinator. Rafael is Environmental, Chemical and Biology Senior graduated by the University of Valencia (1995), Spain. He has a large experience (over 15 years) as responsible for the Environmental, Safety and Security International Projects... Read More →
avatar for Patrick Putman

Patrick Putman

Chief Information & Innovation Officer, DP World Antwerp
A highly skilled and experienced executive, energized by bringing departments to a higher level of performance, collaboration and maturity in a no-nonsense way. Combines products and services with technology to innovative business.Loves to fix broken processes.True believer of the... Read More →
avatar for Mark Sutcliffe

Mark Sutcliffe

Director, CSO Alliance
After six years in the British Army with the Royal Hussars (PWO), I spent two years working on the docks of Hartlepool and Bristol.I then spent 22 years evenly spread between blue chip companies, Gearbulk, GAC and Wilh Wilhelmsen where I was invited to join the board of Wilhelmsen... Read More →


Tuesday March 13, 2018 12:10 - 12:50 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

12:50 UTC

NETWORKING LUNCH
Tuesday March 13, 2018 12:50 - 13:50 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

13:50 UTC

THE NIS DIRECTIVE AND CYBERSECURITY IN MARITIME
The NIS Directive is a key piece of EU cybersecurity legislation that should be transposed into National Law by EU MS by May 2018 and will include cybersecurity provisions (baseline security measures & incident reporting) for Operators of Essential Services, with Water Transport being identified as a sector of essential services
  • Situational analysis of Cybersecurity in Water Transport
  • The NIS Directive and what it means for the maritime sector
  • NIS Directive implementation roadmap and related activities

Speakers
avatar for Dr. Athanasios Drougkas

Dr. Athanasios Drougkas

Network and Information Security Officer, European Union Agency for Network and Information Security
Dr. Athanasios Drougkas is an Officer in Network and Information Security at the European Union Agency for Network and Information Security (ENISA). His domains of activity in ENISA currently include cybersecurity in the Maritime and eHealth sectors, Cyber Insurance and the Digital... Read More →


Tuesday March 13, 2018 13:50 - 14:30 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

14:30 UTC

INTERPRETING EU AND IMO MARITIME CYBER SECURITY REGULATIONS
  • The EU Directive on security of network and information systems (NIS Directive) has to be implemented by 9 may 2018, and the General Data Protection Regulation (GDPR) by 25 May 2018.
  • IMO has adopted RESOLUTION MSC.428(98) (adopted on 16 June 2017) on MARITIME CYBER RISK MANAGEMENT IN SAFETY MANAGEMENT SYSTEMS and the MSC-FAL.1/Circ.3 of 5 July 2017 on GUIDELINES ON MARITIME CYBER RISK MANAGEMENT
  • The presentation will try to provide an overview of these pieces of legislation interact and provide a flag- and port state perspective on what is expected to be done by the shipowner/operator.

Speakers
avatar for Erik Ingolf Tvedt

Erik Ingolf Tvedt

Special Adviser, Technical Regulation Naval Architect, FIMarEST, FRINA, Danish Maritime Authority
Erik I. Tvedt (FRINA, FIMarEST) Special Adviser in the Danish Maritime Authority (DMA) Department for Maritime Regulation and Legal Affairs (MRJ). His main responsibilities are; Maritime Autonomous Surface Ships (MASS), Maritime Cyber Risk Management, Passenger Ships Safety, Load... Read More →


Tuesday March 13, 2018 14:30 - 15:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

15:10 UTC

NETWORKING COFFEE AND TEA
Tuesday March 13, 2018 15:10 - 15:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

15:40 UTC

CYBER SECURITY ACROSS THE MARITIME SUPPLY CHAIN
- Many in the maritime sector are developing coherent cyber policies, a smaller number audit and monitor them to ensure they are applied. However, all aspects of maritime domain depend increasingly on mass market applications and many companies rely on suppliers that do not deal with safety or security critical systems. As a consequence vulnerabilities are inherited from other organisations.
This talk presents techniques for assessing and then improving supply chain cyber security in the maritime sector.

Speakers
avatar for Chris Johnson

Chris Johnson

Professor and Head of Computing, University of Glasgow
Chris Johnson is Professor and Head of Computing at the University of Glasgow. His work focuses on the intersection between cyber security and safety-critical systems, particularly in the aviation and civil nuclear domains. He has held two fellowships from NASA and two fellowships... Read More →


Tuesday March 13, 2018 15:40 - 16:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

16:10 UTC

CYBERSECURITY CHALLENGES FROM A SHIP MANAGEMENT PERSPECTIVE
  • Taking ownership of cybersecurity
  • Managing navigation and communication systems onboard 
  • The challenges of managing a fleet of ships with varying hardware and software
  • Managing complexity created by expectations from coastguard, IMO, BIMCO

Speakers
avatar for Christoph Werner

Christoph Werner

Director Marine & Quality, E.R. Schiffahrt
Christoph Werner is Director Marine & Quality at Hamburg-based E.R. Schiffahrt. In this role, he is responsible for Health, Safety, Security and Environmental (HSSE) issues, Nautical affairs and the Fleet IT.Christoph is a Master Mariner with more than 30 years of experience in the... Read More →


Tuesday March 13, 2018 16:10 - 16:50 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

16:50 UTC

PANEL: UNPACKING CYBER SECURITY STANDARDIZATION – WHAT IS IN THE BEST INTERESTS OF THE MARITIME SECTOR?
  • What is the difference between standards and guidelines?
  • What combination of certifications, industry standards and official standards will present the best options for the sector?
  • How can operators steer a course that meets their specific needs?

Speakers
avatar for Dr. Athanasios Drougkas

Dr. Athanasios Drougkas

Network and Information Security Officer, European Union Agency for Network and Information Security
Dr. Athanasios Drougkas is an Officer in Network and Information Security at the European Union Agency for Network and Information Security (ENISA). His domains of activity in ENISA currently include cybersecurity in the Maritime and eHealth sectors, Cyber Insurance and the Digital... Read More →
avatar for Erik Ingolf Tvedt

Erik Ingolf Tvedt

Special Adviser, Technical Regulation Naval Architect, FIMarEST, FRINA, Danish Maritime Authority
Erik I. Tvedt (FRINA, FIMarEST) Special Adviser in the Danish Maritime Authority (DMA) Department for Maritime Regulation and Legal Affairs (MRJ). His main responsibilities are; Maritime Autonomous Surface Ships (MASS), Maritime Cyber Risk Management, Passenger Ships Safety, Load... Read More →


Tuesday March 13, 2018 16:50 - 17:30 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

17:30 UTC

End of Day One
To Sponsor drinks call or email us 
+ 44 (0)207 096 1754 
marketing@cybersenate.com

Tuesday March 13, 2018 17:30 - 17:35 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST
 
Wednesday, March 14
 

09:00 UTC

WELCOME BACK FROM THE CYBER SENATE
Wednesday March 14, 2018 09:00 - 09:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

09:10 UTC

THREAT DETECTION IN THE CHANGING THREAT LANDSCAPE
As the number of internet connected devices grows, the attack surface and number of devices that can be leveraged to launch attacks continues to expand too. If it can be programmed, it can be hacked. This daunting reality facing our interconnected and digital environments has been described as a battle to be won every day by cyber security professionals. When you combine this with easy access to offensive cyber capabilities, such as ransomware or DDoS, it has allowed cyber criminals to have an impact disproportionate to their technical know-how and skill level. 
  • how has the threat landscape changed, and what can we do about it? 
  • How can we better manage attack complexity? 
  • Are we getting any better at validating an attack and containing it? 
  • Are we implementing controls quick enough?
  • How can we stay ahead of emerging threats?
  • Attacker Playbooks 
  • How behavioural analysis/ anomaly detection enables early threat identification 
  • Real world deployment scenarios

Speakers
avatar for Joost Rommelaere

Joost Rommelaere

CIO, PSA ANTWERP NV
Joost Rommelaere has an MSc in Electrical Engineering (University of Ghent, Belgium) and MSc in Control and IT (UMIST, UK) which he complemented with an MBA of Vlerick Business School, one of the leading business schools in Europe.Throughout his career he has focused on automation... Read More →


Wednesday March 14, 2018 09:10 - 09:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

09:40 UTC

GPS VULNERABILITY MASTERCLASS
With GPS so deeply engrained into our systems and infrastructure that it has earned the nickname “the blind utility,” it is easy to forget that GPS systems are vulnerable to attack. GPS systems can be hacked without ships or control towers even realising to potentially catastrophic effect. Using real examples this session will give the audience a masterclass in GPS spoofing, the threat it poses to the sector and how to combat it.

Speakers
avatar for Professor David Last

Professor David Last

Consultant Engineer and Expert Witness specialising in Radio Navigation and Communications Systems
Professor David Last is a Past-President and Gold Medal holder of the Royal Institute of Navigation and a Strategic Advisor to the General Lighthouse Authorities of the United Kingdom and Ireland. Following a career in research, he is now a Consultant on radio-navigation and communications... Read More →


Wednesday March 14, 2018 09:40 - 10:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

10:10 UTC

SECURING THE MARITIME SECTOR
Several maritime shipping companies have notoriously been in the news recently following up cyber attacks that have severely compromised their operations and brand reputation. How could such attacks be so successful and effective? In this talk we will share some of the experience we gathered first-hand when performing maritime security assessments and through our research. We will drive parallels with the security approach of related industries, and we will analyse the reasons and leverages that affect the security posture of maritime transportation.

Speakers
avatar for Alfredo Pironti

Alfredo Pironti

Managing Consultant, IoActive
Alfredo Pironti is a Managing Consultant at IOActive’s Madrid Hardware Lab, helping IOActive’s clients to assess and improve their security posture by identifying security-critical assets and designing effective test plans. His prior experience includes teaching at Italian and... Read More →


Wednesday March 14, 2018 10:10 - 10:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

10:40 UTC

PANEL: SUPPLY CHAIN CYBER SECURITY AND 3RD PARTY RISK
With dependency on 3rd party services for satellite communications and navigation, shipping can often only engage indirectly with cyber security issues. This panel will look at whether cyber defence can be better integrated in service level agreements, what can be done to mitigate 3rd party risk and how we deal with the new threat brought about by increased reliance on connected devices.
  • How well have vendors come along in making security a core part of product development and support?
  • How are they coming along in developing vulnerability response and patch delivery to users? 
  • What challenges are you experiencing if any in developing end to-end assurance in your own supply chains?
  • Are vendors and integrators well integrated in managing the software assurance issue on behalf of asset owners? 
  • Do we have a 360-degree view of our assets and how are the C level responding to new threats brought about by IOT in the supply chain?

Speakers
avatar for Peter Adsett

Peter Adsett

IT Manager: Certified Ethical Hacker, Infrastructure & Communications Specialist, Maritime, Cyber Security, MOL LNG
Peter Adsett is a IT Professional, Systems Architect and Certified Ethical Hacker with 12 years’ experience in vessel IT and Communications. He has focused for the last 5 years on improving cyber resilience and cyber security for MOL LNG, implementing high availability and fault... Read More →
avatar for Joost Rommelaere

Joost Rommelaere

CIO, PSA ANTWERP NV
Joost Rommelaere has an MSc in Electrical Engineering (University of Ghent, Belgium) and MSc in Control and IT (UMIST, UK) which he complemented with an MBA of Vlerick Business School, one of the leading business schools in Europe.Throughout his career he has focused on automation... Read More →


Wednesday March 14, 2018 10:40 - 11:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

11:10 UTC

NETWORKING COFFEE AND TEA
Wednesday March 14, 2018 11:10 - 11:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

11:40 UTC

Presentation from the NCSC
Details to be announced shortly

Wednesday March 14, 2018 11:40 - 12:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

12:10 UTC

CASE STUDY: CYBER SECURITY AND THE INTERNET OF THINGS
Since transitioning to the Internet of Things in 2015, Angelicoussis Group has developed mechanisms to send, receive and analyse data from vessel to office and vice versa. To support this system, we have enabled the e-SMS and e-Forms platform that can send files and documents from the office to the vessel and vice versa. Moreover, we can create applications for exchanging data with a vessel and can be potentially used to minimize work onboard. Furthermore, we gather raw data every few seconds from onboard sensors and we analyse them to provide our users with decision-making and prediction tools. 
  • How the increase in mobile devices and the continued movement towards the web-based platform model is leading to greater vulnerability
  • The diminishing value of firewalls and antivirus suites for network and application security
  • How the IoT has created new cybersecurity requirements and the needs for extensive risk planning to identify the best approach



Speakers
avatar for Dr. Ioannis Filippopoulos

Dr. Ioannis Filippopoulos

Head of ICT/IS Department, Angelicoussis Group
A “technology architect” and a “team leader” with a passion exceptional aptitude for working with computers combined with an astounding academic background in computer and network engineering (PhD) and business management (MBA). Skilled in implementing, maintaining, supporting... Read More →


Wednesday March 14, 2018 12:10 - 12:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

12:40 UTC

"THE HUMAN ELEMENT” - THE CRITICAL TASK OF RAISING THE LEVEL OF MARITIME CYBER AWARENESS
  • Understanding the extent to which people, process and technology really are disconnected when it comes to cyber security
  • The importance of board-level involvement in transforming the use of information and operational technology at sea
  • Why developing a bottom-up culture of awareness with support from the top is key to maintaining cyber hygiene and fighting cyber crime
  • Understanding the threat landscape and communicating effectively at all levels of the business

Speakers
avatar for Jordan Wylie

Jordan Wylie

Founder, BE CYBER AWARE AT SEA
Jordan Wylie is an experienced maritime security and risk management professional whose career started with 10 years’ service in the British Military as an intelligence and reconnaissance specialist, before entering the private maritime security sector in 2008. Jordan has provided... Read More →


Wednesday March 14, 2018 12:40 - 13:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

13:10 UTC

NETWORKING LUNCH
Wednesday March 14, 2018 13:10 - 14:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

14:10 UTC

DECISION SUPPORT FOR CYBER SECURITY RISK PLANNING
Cybersecurity risk management and planning varies from company to company, from industry to industry. In the shipping industry, with the use of big data and the tendency towards IoT, a company can gain strategic advantage in terms of operational activities leading to an increase in security requirements. Although data circulates under, the 3-point perspective ensuring the confidentiality, availability, and integrity of information systems the fact that there is an increasing demand and production of mobile devices and web platforms stretches the cybersecurity to proactive planning instead of the traditional reactive actions. As a result, there is a growing pursuit for automated systems and sophisticated algorithms to pre-empt threats.
While the increasing demand for security countermeasures is pushing platforms and applications to adapt, cybersecurity risk planning expands beyond IT boundaries and has direct impact to the financial services of a company. Therefore, it should be treated as any other risk managed from an organization. 
We will discuss a roadmap for cybersecurity planning and how risk management can be divided into layers. Furthermore, we will examine possible systems that can adapt in different industries leading to decision making strategies.

Speakers
avatar for Charalampos Skiadas

Charalampos Skiadas

Applications Systems Manager, Angelicoussis Group
Charalampos Skiadas is an Applications Systems Manager for Angelicoussis Group. After spending almost a decade working in the shipping industry, is highly skilled in performing senior professional level business systems analysis and project management activities, which include planning... Read More →


Wednesday March 14, 2018 14:10 - 14:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

14:40 UTC

CYBER RISK MANAGEMENT AND TRANSFER
Cyber risk has become a leading issue for many organizations as awareness of technology related risks and cybercrime has grown and recently been amplified by reported incidents and publication of industry guidelines on cyber security. As technology continues to develop, information technology (IT) and operational technology (OT) are increasingly being networked together. The operational, safety, and security consequences for the Maritime Industry of these developments and not being prepared for a cyber incident may be significant.
 
  • Why should organizations in Maritime Industry be concerned about their cyber
risk exposure?
  • What are unique risks to the Marine Industry?
  • Why are standard insurance policies not enough?
  • How do organizations manage cyber risk – and effectively transfer residual
risk?

Speakers
avatar for Maarten van Wieren

Maarten van Wieren

Managing Director, Aon Global Risk Consulting
Maarten has been working in risk management for over 10 years, both in financial risk management for a multinational life insurer as well as for the big-four. Over the last four years, he worked with the World Economic Forum to internationally develop the field cyber risk quantification... Read More →


Wednesday March 14, 2018 14:40 - 15:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

15:10 UTC

PANEL: THE CYBER RISK FOR INSURANCE COVER
Most Insurance policies do not cover physical damage to ships caused by hacking attacks or navigation system interference, and a significant gap in cover has emerged. This panel discussion is an opportunity for insurers, reinsurers, ship operators and port operators to sit down together and consider cyber cover in detail and set out an action plan to address these risks
  • How scarcity of data is an obstacle to mitigating risk
  • Can the industry work out a way to solve the information gap?
  • Is the answer developing an anonymous reporting platform?
  • What will insurers and reinsurers need to see from ship and port operators
  • What will the implementation of the NIS directive do to help solve the problem?

Speakers
avatar for Max J. Bobys

Max J. Bobys

Vice President, Global Strategies, HudsonAnalytix - Cyber
Mr. Bobys draws on 24 years of experience with technology startups, enterprise risk management, and new product development, spanning such disciplines as cybersecurity and integrated physical/electronic security systems in the maritime security space.  As Vice President of Global... Read More →
avatar for Sharif Gardner

Sharif Gardner

Training Manager - Cyber Unit, Axis Capital
Sharif is the Cyber Unit Training Manager at Axis Capital, a market leader in cyber insurance. He is responsible for providing cyber expertise to the underwriting teams. He has developed broker and risk manager specific training programmes and regularly runs multi-sector crisis management... Read More →
avatar for Colin Gillespie

Colin Gillespie

Deputy Director (Loss Prevention), The North of England P&I Association Limited
Colin is the Deputy Director of Loss Prevention at The North of England P&I Club, one of the world’s leading mutual marine insurers providing P&I, FD&D, war risks and ancillary insurance.  North’s highly regarded loss prevention team of skilled and experienced ex-mariners provides... Read More →
avatar for Maarten van Wieren

Maarten van Wieren

Managing Director, Aon Global Risk Consulting
Maarten has been working in risk management for over 10 years, both in financial risk management for a multinational life insurer as well as for the big-four. Over the last four years, he worked with the World Economic Forum to internationally develop the field cyber risk quantification... Read More →


Wednesday March 14, 2018 15:10 - 15:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

15:40 UTC

NETWORKING COFFEE AND TEA
Wednesday March 14, 2018 15:40 - 16:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

16:10 UTC

DEVELOPING A GLOBAL SYSTEM FOR ANONYMOUS CYBER CRIME REPORTING
THE THREAT IS GROWING, THE MARITIME SECTOR IS NOT PREPARED
The Cyber threat is growing in shipping and ports. It is a major concern for Insurers (clause 380) as they do not know how to evaluate risk. When a Major attack occurs like Maersk with Non Petya Malware it sucks up 75% of the worlds MAritime Cyber capacity to correct and re-establish the systems. Had it affected 2 companies of a similar scale, and due to the interconnectedness of networks and systems in the Maritime transport field,   the whole maritime sector would have been brought down with out enough capacity being there to rebuild.

HOW WE CAN ALL WORK DISRUPT THE CRIMINAL BUSINESS MODEL
One problem to slowing down  the propagation rate of such attacks is getting timely alerts. This depends on cooperation between all players and competitors ( like in the Aircraft industry) to quickly report incidents.
Due to the sensitivity of such things and the international nature of the crime ( and of course the MAritime sector) a national reporting system is useless.

NEED FOR FASTER ALERTS , ANONYMOUS INTERNATIONAL  INCIDENT REPORTING
Lastly to get good data/threat intelligence  requires people reporting incidents so trends can be analyzed, threats levels established Alerts given etc. However people and companies are reluctant to report cyber incidents  out of fear of reprisals and reputation loss etc. So an Anonymous international maritime cyber incident reporting system is critical to get the criminal footprint, calculate risk and be able to set cyber insurance rates appropriately while at the same time being able to Alert people when a new threat appears and which provides tools to reduce risk. It is a collective effort by the industry. This is what CSO Alliance is offering the Maritime Cyber Alliance which is powered by the Airbus Cyber division consisitng of over 650 FTE who protect their supply chain, 130,000 employees and thousands of fly by wire planes.

We want as many vetted people and companies  as possible to join, including competitors.

AN INDUSTRY SUPPORTED VOLUNTARY PRIVATE SYSTEM FOR COLLECTIVE ACTION WITH TOOLS AND INFORMATION
We are already supported by IMO, Marshall Islands Flag, DNV-GL class , DKN war risk, North P&I  and are connected to the French UK and several other Navies and coastguards, Nato,  EU Navfor and many others.
To succeed this This must be an industry wide initiative.

We can only fight back against Cyber criminals collectively,  as no government can match the resources of these criminals who made over 50 Billion Euro with little to no risk  last year.

In short - Security through Community .
 

Speakers
avatar for Mark Sutcliffe

Mark Sutcliffe

Director, CSO Alliance
After six years in the British Army with the Royal Hussars (PWO), I spent two years working on the docks of Hartlepool and Bristol.I then spent 22 years evenly spread between blue chip companies, Gearbulk, GAC and Wilh Wilhelmsen where I was invited to join the board of Wilhelmsen... Read More →


Wednesday March 14, 2018 16:10 - 16:40 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

16:40 UTC

SPACE INVADERS – TRACKING, TARGETTING AND ATTACKING SHIPS VIA SATELLITE COMMS
This presentation will look at how poor security on satcom systems, together with open source intelligence (OSINT), can be used to carry out targeted attacks. It will include:
  • Live hacking demonstration of how to identify satcom systems and exploit poor security
  • How ships can be detected, identified by name and tracked in real-time
  • Details on what a hacker can do break into all ships systems, not just satcoms
  • The potential compromise this could lead to regarding ship comms and control systems
  • Detail on how crew members laptops can be compromised from social media data, and used to aid attacks against ship systems and devices

Speakers
avatar for Ken Munro

Ken Munro

Founder and Partner, Pen Test Partners
Ken Munro is passionate about empowering the user and blowing away the fear, uncertainty and doubt (FUD) peddled by security vendors. He is a successful entrepreneur and is a founder and partner in Pen Test Partners, a partnership of like-minded professional penetration testers all... Read More →


Wednesday March 14, 2018 16:40 - 17:10 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST

17:10 UTC

End of Conference
Wednesday March 14, 2018 17:10 - 17:15 UTC
London Marriott Hotel Regents Park 128 King Henry’s Road London, England NW3 3ST
 

Twitter Feed