• How to protect our democracy in the era of cyber information warfare?
• How to safeguard our human rights in the era of cyber surveillance?
• How to stay secured in the era of internet connected devices?

• What trends do you see in cyber security in general and ransomware attacks in specific?- Göran
• What can you do to prevent an attack?- Teemu
• How do you increase awareness amongst users?- Göran
• What could you do to prepare for if you get hit by an attack?- Tony What is your view on cyber security insurance?- Jamie
• How to conduct exercises regarding cyber incidents? (additional question)- Teemu

In this session, Kennet will share a story about how one company was breached, and then we’ll travel back in time to see how setting up the right security measures could have saved it from all the financial loss, legal issues and reputation damage it suffered. Come learn from the mistakes of others so you won’t need a time machine to secure your critical information; instead, you’ll stay ahead of attackers.

• Common security misconceptions: assume being breached any time – 
• Story time: two data security incidents in one company – 
• Let’s time travel! How the breaches could have been prevented

Talk synopsis: Whether you have been on the cloud journey for 5 months or 5 years, over 75% of enterprises are still encountering a variety of architectural and security challenges when migrating legacy applications to the cloud, developing and delivering cloud-native applications, or managing hybrid and multi-cloud environments. Some of these hurdles include understanding dependencies between applications and application components, refactoring application security infrastructure for cloud hosting, and securing the API proliferation.
During this chat, Surag Patel, Chief Strategy Officer at Contrast Security will discuss how CIOs, CTOs, CISOs, and Chief Cloud Architects can overcome many of these obstacles and maximize cloud efficiencies by implementing DevSecOps principles.

• Recommendations on how to share anonymised threat intelligence
• Producing actionable threat intelligence
• Knowing adversaries’ attack techniques

• Current and probable future trends regarding cyber extortion
• The professionalization of cybercriminal activity, and the transformation to professional enterprise models
• How threat actors are using a combination of encryption, data loss, and public announcements to accelerate profits
• Recommendation on how to mitigate the threat posed by cyber extortion actors

API, agility, DevOps, cloud-native, shift-left and are no longer just some buzz words. Whatever their stage of digital transformation, every CIO and CISO face the acceleration of releases and IT project life cycles. Traditional security approaches are often not sufficient enough to meet those new challenges. In this talk, we’ll discuss how crowdsourced security can enable, instead of slowing down IT modernization – and best practices that should be taken into consideration when securing these new environments.

• The prevalence of open source libraries in applications
• The types of vulnerabilities most common in open source libraries
• The best practices for addressing the security vulnerabilities in open source code

• There’s never been a better time to be a bad guy
• Disrupt adversaries using the Security Intelligence Graph
• How to organize and analyze threat data in an entirely new and different way

• Why security-by-design is important and who should take the approach into use?
• Where should you start and how, if you want to apply security-by- design?
• What benefits would security-by-design bring to a company in terms of efficiency and competitiveness?

• There were several newspaper articles about SVT increasing its spend on security. Why is that necessary?
• Why do you think the threats to SVT keep increasing?
• How important is IT security for SVT?

• What is your defense methodology regarding vulnerability management?
• What are the criteria by which you decide to act?
• How do organizations respond and what is the effectiveness of the process?

2020 has seen a huge shift in online behaviors with businesses striving to meet new digital demands. But with this they’ve also had to battle huge increases in online fraud. So how can businesses both appease and protect their workforce and customers? This session asks whether authentication and identity verification are the solution? With our digital lives as much about trust as it is transactions, can business growth come from the intersection between identity, data and experience?

That is the first question that is being expressed when a Cyberattack shows its true identity. Cyberthreats, including devious attacks such as ransomware, spyware and malware, are among the most common IT challenges for enterprises. What would you do in case your Data is attacked and held ransom? Attacks have increased in numbers and complexity and spread to organisations of any industry across the globe. As a matter of fact, we need to accept that cyberattacks are more present than ever, and they can affect both our professional and personal lives, unless we prepare — this session will help you prepare against Cyber Threats.

• How to prepare against Cyberthreats
• Backup is essential, but Restore is critical
• Can you be 100% Secure?

• Don’ get stuck in details… visualize Your level of protection with Cyber Security Score
• How to have a meaningful discussion with a non tech leader
• Prioritize improvements where it makes the most value

• ‘Shift left’ was coined in 2006, then exploded in 2009 – Where are we now? 
• What does DevSecOps look like in the top few major firms who really do it? 
• Security must stay relevant – How long until true DevSecOps is everywhere?

The global pandemic and impacts stemming from COVID-19 shook up operations across the globe. Both security and cultural impacts stemming from the pandemic continue to emerge for businesses. As organizations have navigated their way through return to office scenarios, there are a number of new employee expectations and employer considerations to think through. Rather than only focusing on the point-in-time circumstances of “secure work-from-home” operations, many organizations are considering a proactive “secure-work-anywhere” policy. In this webinar, we’ll highlight what aspects of secure work anywhere have been successfully in place prior to regional waves of quarantine, supporting productivity through employee mental and physical health considerations, privacy considerations for employees’ personal environments, empowering your plan with innovative solutions and technology.

KEY TAKEAWAYS:  ​

What disciplines and business structure have already been operating “secure work anywhere”?​

How can the extent of your internal governance policies can help or inhibit your employees ability to execute their job effectively?​

Considerations to balance security-based monitoring and employee privacy rights within personal environments​

Technology and innovative strategies to put your “secure-work-anywhere” plans in motion. ​

More than ever before, business leaders need to remain confident that their operations can continue securely in the face of global or even regional crises, and while sections of the economy are slowly re-opening, cyber-attackers are ramping up their campaigns.   

As businesses look set to rely on cloud and SaaS tools for the long term, our digital environments are going to be more dynamic than ever. Yet organizations are finding themselves undergoing a delicate balancing act—each new work practice and technology that is introduced also brings unforeseen risk. Static, legacy approaches have become redundant, both unintelligent and ill-equipped to adapt.   

Organizations must rethink their approach to security, and rely on new technologies like AI to achieve much-needed adaptability and resilience. Darktrace is the world leader in cyber AI technology, and leverages unsupervised machine learning to seamlessly adapt and integrate into changing environments, and to detect and respond to attacks in the earliest moments.   

In the face of an uncertain present and future, Cyber AI enables businesses to continue communicating, operating, and innovating.  

• Huawei’s end-to-end Cyber Security approach –          
• The importance of Transparency and Verification –          
• How this helps provide a foundation for Digital Trust

• Is 2020 the beginning of the end for traditional data centre security stacks?
• What’s the best way to get visibility and control of remote users’ web and cloud activities?
• How does a ‘Secure Access Service Edge’ accelerate user mobility and cloud adoption?

The 3 keys for incident response are risk 

• Reduction 
• Crisis preparation and 
• Communication.

• Are we secured enough? As IoT devices greatly expand the “attack surface”
• Are we delivering what we promised? 
• Security: Devices and Network 

• Data security
• How can we be on the right track?
• How crucial or valuable is it to know if we are doing too much or too little?

• Is it true that people are the weakest link? 
• The shift is more and more towards phishing to the end point 
• Awareness is not enough, behaviour needs to change

• A digitalization strategy execution often needs additional hands on project basis. External resources are often hired and once they get access to the in-house systems, they become a part of our attack surface. 
• Contracts given to maintenance companies like in oil and gas, defense sector, aerospace etc. must not only be dependent on the price and delivery reputation but security posture too. More often these organizations are the part of the critical infrastructure of a state and it is not only important but critical to be vigilant in these matters. Example – Stuxnet incident. 
• During Corona times, all these concerns amply to a higher notch because now these vendors are working from home. It is next to impossible to get an overview of the compliance rates in the information security aspect and secure practices.

• Changes in the legal requirements are affecting not only global companies – CMMC(USA), Brexit(UK and EU), Cybersecurity Law(China), Cybersecurity Act(EU) and many more
• Impact on IT-strategy
• Best practices in IT solutions in context of regulatory compliance

• Cyber attacks 
• Ineffective controls 
• Breach of laws and regulation

• How to successfully use a pragmatic approach to reach strategic and tactical goals in Information Security 
• The importance to start with WHY, to get management attention and interest – What’s in it for me. 
• Visualize and express an Information Security Plan. 
• Train your users in information security – Awareness training. 
• Measure and follow up Information Security – See the progress.

• Readiness for a ransomware attack. Do we have what it is needed in place (infrastructures, processes etc)?
• What happens when we are becoming the victim?
• Connections between non-mitigated ransomware attacks and financial aspects.

• What are the logistic challenges?
• What is Klarna’s viewpoint for the “new normal”? 
• What solutions can be implemented when it comes to e-commerce and how can we implement them to have efficient results during this COVID-19 pandemic?

• How to change your mindset?
• How important is it to have cloud services?
• What is the major challenge covid 19 or lack of knowledge?

• Trust and availability – fundamental components for customer satisfaction
• Digital operational resilience – drawing attention from two perspectives, threat actors and regulatory bodies  
• Cloud – opportunities and risks

• Bringing down the abstraction of cybersecurity
• Aligning cybersecurity with overall business objectives
• If you can’t see it – it isn’t there; measure, monitor and report!

• CJEU ruling invalidated both the EU-US Privacy Shield and Standard Contract Clauses as valid mechanisms for safeguarding personal data that is transferred from the EU to the US.
• This has implications for all organizations that in one way or another is transferring personal data to the US. 
• What the CJEU ruling in the so called “Schrems II” case is all about and what you as a company need to do in order to face the new reality?

• How can we increase awareness?
• Importance of The Cyber Security Maturity Assessment (CSMA)

• Current threats 
• What the board need to know
• How to get there and how do you know when you have it?

• Patient first – enforcing patient integrity through transparency and digital tooling
• Securing patient data – raising the bar for the minimum level of security within health care
• The digi physical clinician – digital tools enforcing instead of hindering quality care

2020 has seen a huge shift in online behaviors with businesses striving to meet new digital demands. But with this they’ve also had to battle huge increases in online fraud. So how can businesses both appease and protect their workforce and customers? This session asks whether authentication and identity verification are the solution? With our digital lives as much about trust as it is transactions, can business growth come from the intersection between identity, data and experience?

• Ukrainian companies target Swedish persons and they cover 50 countries in the world.
• Money losses for over millions of Swedish crowns.
• Manipulate you to install online, the software program ANY DESK (any person at all, can control your computer online).
• Sweden has no agreements with countries like Ukraine. Like in the EU.
• Problem to be solved. This makes it difficult to extradite the information to the Swedish police authority.