08:30 - 09:15
Arrival, Registration & Breakfast Networking
09:15 - 09:30
Introduction from the Network Group & Chairperson
A brief introduction to the event software, SNS – this software, unique to the industry, empowers our attendees to make the most effective use of their time at the event by maximising networking opportunities. The software designs a personalised agenda & enables attendees to arrange one-to-one meetings with each other. This will be followed by a welcome from the chairperson
Ali Baccouche, Regional Information Security & Data Privacy Officer, Texas Instruments
09:30 - 10:05
Evaluating and Enhancing IT Internal Control Processes to Ensure Audit-Ready Compliance Across the Company
- Establishing continuous review cycles to align with evolving external auditor expectations and internal standards
- Implementing consistent, transparent reporting and remediation governance for control execution and non-compliance
- Strengthening organizational resilience and audit reliability through mature, scalable, and standardized IT control frameworks
Riccardo Bianchi, Head of Group ISMS and IT Internal Controls, DHL
10:05 - 10:40
Both Sides of the Table: A CISO’s Field Guide to Passing, Planning, and Using Audits
- Executing external audits effectively from both seats: preparation, scoping, evidence quality, and interview dynamics that produce useful results for auditee and auditor alike, not compliance theatre
- Designing internal audit programmes to uncover gaps in cyber strategies that compliance frameworks alone do not surface
- Leveraging audit findings to prioritise remediation, secure investment, and drive board-level decisions
Boris Ortolf, Director Cyber Security, Baker Tilly
10:40 - 11:00
Coffee Break & Networking
11:00 - 11:25
Workshop 1
Command Your Agents: Crush the Data Risks Holding AI Back
Matt Logan, Field CTO, Securiti
11:25 - 11:50
Networking
11:50 - 12:15
Open Forum Think Tank
The Cyber Resilience Act
Mario Hoffmann, Head of Product Cyber Security, Swissbit
12:15 - 12:40
Networking
12:40 - 13:05
Workshop 3
A Roundtable for Security Leaders Who Are Done With Security Theatre
Alex Goller, Principal Solutions Architect, Illumio
11:00 – 13:05
One-to-One Meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
- Regulatory Management
13:05 - 14:00
Networking Lunch
Stream 1 - Information Security Operations
14:00 - 14:35
Implementing the Cyber Resilience Act across the complete Product Life Cycle
- Defining your product categories according to the Cyber Resilience Act and manage the implications
- From TARA, SBOM, and Secure Coding Guidelines to Vulnerability Management, Field Monitoring, and Updates
- Optimising processes, managing customer expectations, and empowering stakeholders to uphold the Cyber Resilience Act
Mario Hoffmann, Head of Product Cyber Security, Swissbit
Stream 2 - Information Security Awareness
14:00 - 14:35
Embedding Cyber Security Cultures to Broaden Organisation-Wide Security Capabilities
- Key advice on securing buy-in from senior leaders to support information security strategies
- Engaging with all employees to understand their role in upholding cyber security measures
- Incorporating security awareness training into professional development opportunities
Patrick Ghion, Head Regional Cyber Competence Centres for Western Switzerland, State of Geneve
Stream 1 - Information Security Operations
14:35 - 15:10
Leadership Approaches to Improve Team Performances
- Using frameworks to assign IT responsibilities to staff based on their strengths and abilities
- Regular updates with teams during periods of significant change within IT departments
- Creating opportunities for staff to input into IT strategy development to claim ownership of team results
Michael Fontner, Head of Global IT Security, Herrenknecht
Stream 2 - Information Security Awareness
14:35 - 15:10
Evaluating Information Security Processes to Ensure Compliance with Sector-Wide Regulations
- Establishing regular reviews of information security measures to meet new regulations
- Creating guidelines for reporting and addressing areas of non-compliance in security processes
- Guidance on utilising organisational regulatory compliance as a competitive advantage
Alén Blanco Dominguez, Head of Information Security & IT Operations, Unsere Grüne Glasfaser
15:10 - 15:25
Coffee Break & Networking
15:25 - 15:50
Open Forum Think Tank
Generative AI Governance
Boris Ortolf, Director Cyber Security, Baker Tilly
15:50 - 16:15
Networking
16:15 - 16:40
Open Forum Think Tank
Integrating AI Tools into Information Security Systems
Marco Scarito, Head of Enterprise Information Security Architecture, Cembra Money Bank
16:40 - 17:05
Networking
15:25 – 17:05
One-to-One Meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
- Regulatory Management
17:05 - 17:50
Panel Discussion: Exploring Opportunities for AI to Expand Cyber Security Operations
- Incorporating behavioural analysis software to create a baseline of normal information security activity and increase efficiency in cyber threat detection
- Establishing automated processes in cyber security measures to free up staff workloads
- Creating safeguarding measures to protect security systems from AI-driven attacks
Ali Baccouche, Regional Information Security & Data Privacy Officer, Texas Instruments (moderator)
Stefan Marienfeld, Head of Economic Auditing, BSI– Federal Office for Information Security
Bartosz Prill, Head of Cyber Security, Gretsch-Unitas Group
Kudakwashe Magwenzi, Deputy CISO, Moss
19:00
Networking Dinner & Drinks Reception
08:30 - 09:00
Morning Registration & Breakfast
Informal networking over breakfast
09:00 - 10:10
Roundtable Discussions
Join group discussions with your peers on some of the most challenging & significant security topics – please confirm attendance prior to the session. Each host will facilitate the discussion & give a short presentation of key findings in the wrap up session.
Roundtable 1: Application Security
Muhammad Abul Kalam Azad, CISO, Eastern Bank
Roundtable 2: Regulatory Compliance
Merwin William Godwin, Senior Cyber Security Architect, Siemens
Roundtable 3: Risk Management
Vullnet Shkodra, Head of Information Risk, ING
Roundtable 4: Security Governance
Kuldeepsinh Sodha, Associate VP, Information Security Risk Management Specialist, Deutsche Börse
Roundtable 5: Adopting Agentic AI
Romeo Ayemele Djeujo, Head of Corporate Business Information Security Enablement, ZEISS
Roundtable 6: Security Architecture
Marco Scarito, Head of Enterprise Information Security Architecture, Cembra Money Bank
10:10 - 10:45
Roundtable Wrap-Up
Each host provides a short overview of key findings from their discussion to the room. This is an opportunity for everyone to take notes from each roundtable summary.
10:45 - 11:00
Coffee Break & Networking
11:00 - 11:25
Open Forum Think Tank
The Human Factor in Information Security
Kim-Christin Zöllkau, Youth Officer, German Federal Ministry of Defence
11:25 - 11:50
Networking
11:50 - 12:15
Open Forum Think Tank
Comparing Military vs Civilian Approaches to Information Security
Kim-Christin Zöllkau, Youth Officer, German Federal Ministry of Defence
12:15 - 12:40
Networking
12:40 - 13:05
Open Forum Think Tank
Risk Management in Real Life
Riccardo Bianchi, Head of Group ISMS and IT Internal Controls, DHL
11:00 – 13:05
One-to-One Meetings
Intelligently matched one-to-one meetings:
- Vulnerability Management
- Security Awareness
- Data Governance & DLP
- Threat Intelligence
- PUM & Authentication
- Cloud Security
- Third Party Risk Management
- GRC
- Malware Protection
- Identity & Access Management
- Application Security
- Mobile Security
- Regulatory Management
13:05 - 14:00
Networking Lunch
Stream 1 - Security Resilience
14:00 - 14:35
Designing Governance Frameworks to Strengthen Information Security Strategies
- Establishing organisation-wide security practices for all departments to uphold cyber strategies
- Best practice in incorporating security responsibilities into senior leadership positions
- Creating accountability frameworks to ensure senior leaders are held responsible for security decision-making
Riccardo Riccobene, CISO, State Street
Stream 2 - Organisation-Wide Security
14:00 - 14:35
Adapting Cyber Security Policies to Strengthen Security in Supply Chains
- Key advice on incorporating third party security policies into procurement processes
- Implementing risk-based approaches to sharing data with suppliers
- Collaborating with vendors to strengthen their security measures and increase cyber resilience in supply chains
Laszlo Meszaros, Executive Director – Information Security & ICT Risk, CMC Markets
Stream 1 - Security Resilience
14:35 - 15:10
Utilising Information Security Software to Support Cyber Resilience Strategies
- Key tips on working with software developers to tailor security technology to meet company needs
- Tools to support staff transition to new security software
- Adapting security software to scale up cyber security operations
Johannes Valenti, Head of IT Security, RAFI
Stream 2 - Organisation-Wide Security
14:35 - 15:10
Designing Information Security Defences to Uphold Organisation-Wide Cyber Resilience
- Tailoring information security strategies to identify and tackle gaps in cyber defences
- Incorporating encryption software to strengthen the security measures of company devices
- Adapting security defences to tackle increasingly sophisticated cyber threats
Jan Kominek, NFR Tech Oversight Lead, ING
15:10 - 15:55
Panel Discussion: Designing Emergency Response Plans to Mitigate the Impact of Cyber Attacks
- Implementing joined-up procedures to escalate and tackle cyber security incidents
- Developing post-attack responses to recover lost or stolen digital assets
- Evaluating security incident data to highlight and address gaps in cyber attack response plans
Ali Baccouche, Regional Information Security & Data Privacy Officer, Texas Instruments (moderator)
Kim-Christin Zöllkau, Youth Officer, German Federal Ministry of Defence
Christian Keller, CISO, Syntegon
15:55 - 16:00
Closing remarks from Chairperson