The focus of the 12. event will be again on industrial control systems (ICS) and operational technology (OT) security risks.

Organizational, operational and technical challenges will be presented and discussed.

Security breaches from Switzerland, Germany and other countries will be analyzed.

In a workshop operations and security managers will obtain practical advice for their day-to-day work.


Feedback from attendees


"I have never seen such a large concentration of excellent presentations; and exciting selection of subjects."
(Thomas Schwyzer, Executive Director Security, UBS)


"Not only the speakers play in the top league but also among the audience you find outstanding experts from large Swiss corporations and organisations."
(Dr. Serge Droz, Vice President, SWITCH)


"As a presenter, I was impressed by the caliber of the attendees and the depth of the discussions throughout the day."
(Dr. Robert Griffin, Chief Security Architect, RSA)

Topics discussed at the 12. event

  • Live attack demonstration: hacking various ICS networks in Switzerland
  • Ghost in the Machine: SCADA vulnerability enables remote control of ICS networks
  • Panel discussion: recent ICS cyber incidents in Switzerland and worldwide
  • Risk management & insurance implications of ICS incidents
  • Lessons learned from the Ukraine grid attacks


Who should attend

  • ICS-OT managers from Swiss and German critical infrastructure providers, manufacturing, chemical and other plants
  • Compliance, governance, risk managers from large organizations
  • CISO, CIO, COO, CTO office
  • Government advisors & experts
  • IT infrastructure & operations experts
  • IT security & investigations managers


Last event

Program

  • 13:30
    ICS Cyber Security Workshop
    Properly Securing your ICS and IIoT
    conducted by Daniel Ehrenreich, Vice President, Secure Communications and Control Experts

    This workshop is a customized educational session for identifying challenges that create vulnerabilities in ICS platforms integrated with IIoT.
    The workshop is specifically designed for IT, OT and Cyber security managers who deal with these challenges on a daily basis.


    The outlined solutions are matching best practices taking into consideration budget limits and unavoidable challenges applicable for protecting legacy ICS deployments.


    • Comprehensive overview of the fundamentals of effective ICS cyber defense measures and solutions such as successfully operating worldwide.
    • Highlight from regulations and standards NIST 800-82, NERC-CIP, IEC 62443/ISO 27001 such as are applicable for ICS and IIoT.
    • Discussion of commonly overlooked ICS related vulnerabilities, why they cannot be resolved and what can be done to mitigate the risks.
    • Methods for constantly aligning the threat landscape to today’s hacker trends, techniques and technologies.
    • Evaluating applicable solutions for ICS deployments multivendor architecture using range of communication media and protocols.
  • All attendees receive a workshop certificate: ICS Cyber Security Risks - Advanced Introduction
  • 15:00
    Large-scale blackouts caused by cyber attacks – the insurance point of view
    presented by Dr. Philipp Hurni, Business Analyst & Vice President, Swiss Re Group
  • 15:30
    Cyber risks from a hacker's perspective - cases from Switzerland
    presented by Tim Philipp Schäfers, Founder & Security-Consultant, IT Consulting Schäfers
  • 16:00
    Securing next-generation autonomous cyber-physical systems
    presented by Dr. Aanjhan Ranganathan, post-doctoral researcher, ETH Zürich

    Possible attacks on smart grids, autonomous cars, robots, drones ...

  • 16:30
    Creating effective legal and regulatory frameworks
    presented by Francesca Bosco, Project Officer, UNICRI

  • Exhibition & Networking
    • Consecom
    • Cyverse
    • Honeywell
    • Indegy
    • SCADAfence
    • Siemens
    • Skybox
    • SwissRe


Speakers

Daniel Ehrenreich

Following to 40 years in the industry, dealing with hardware engineering, computer systems, military electronics ,radio communication, industrial control and cyber security.

I’m now self employed, busy with consulting, lecturing on cyber security for industrial control, presenting at international and Israeli conferences.

I have experience with consulting to startups as related to marketing and sales strategies, preparation of presentations and marketing material and educating the team on customer needs.

Dr. Philipp Hurni

Philipp Hurni has worked in the field of resilient low-power wireless communication for internet-of-things technologies while pursuing his PhD in Computer Science at University of Bern.

He then worked for several years as a cyber security officer for Switzerland’s major telecommunications and IT services provider Swisscom, where he led security projects in mobile communication, data leakage prevention, security management & governance.

In 2015, he joined Swiss Re’s Cyber Centre of Competence to tackle cyber risk from a (re)insurance perspective.

He currently works on quantifying the accumulation potential of cyber risk on specific cyber coverages but also on traditional lines of insurance business (property, engineering, casualty) for Swiss Re, and is furthermore active in modelling and calculating the technical costing of cyber covers.

Dr. Aanjhan Ranganathan

Aanjhan is currently a post-doctoral researcher in the System Security Group at ETH Zurich.

He obtained his PhD in 2016 and his research mostly revolves around the physical-layer security of wireless systems (e.g., secure localization and ranging, GPS security, (anti-)jamming techniques).

In the past, he has worked on computer architectures, specifically, multiprocessor systems, cache coherency protocols and communication bus protocols.

Prior to joining the System Security group at ETH Zurich, he worked at Robert Bosch GmbH's Car Multimedia Division "Blaupunkt" for over 3 years involved in research and development of embedded modules for top automotive manufacturers including Audi and Volkswagen.

He holds a bachelors degree in Electronic and Communication engineering from Anna University in Chennai, India and a Masters degree from École Polytechnique Fédérale de Lausanne (EPFL), Switzerland

Francesca Bosco

Ms. Francesca Bosco earned a law degree in International Law and joined UNICRI in 2006 as a member of the Emerging Crimes Unit.

She has collaborated on different cybercrime and cybersecurity related projects, both at European and at international level.

More recently, Ms. Bosco is researching and developing technical assistance and capacity building programs to counter the involvement of organized crime in cybercrime, as well as on the legal implications and future scenarios of cyberterrorism and cyber war.

Furthermore, she is researching and managing projects on hate speech online and on data protection issues related to automated profiling.

She is member of the Advisory Groups on Gender and on Secure Societies in the framework of Horizon2020 and of the Internet Security Expert Group of the EC3.

Co-founder of the Tech and Law Center, advisory board member of the Cybercrime Institute, she is currently a PhD candidate at the University of Milan.

Tim Philipp Schäfers

Ich bin Tim Philipp Schäfers, Security-Consultant mit besonderer Passion für den Bereich Webhacking.

Meine Erfahrungen und Eindrücke zum Thema Web teile ich in Büchern oder Blogbeiträgen.

  • 2016: Autor des Buches "Hacking im Web"
  • 2016: Teilnahme am Security Analyst Summit von Kaspersky
  • Seit 2015: Autor (Schwerpunkte: Sicherheit/Datenschutz) auf golem.de
  • Seit 2014: Studium zum Bachelor of Sc. Wirtschaftsinformatik
  • Seit 2013: Security-Consultant für verschiedene Unternehmen (vorrangig im Bereich Websicherheit)
  • Seit 2012: Mitbetreiber und Mitgründer des Projektes "Internetwache.org"

Dr. Lukas Ruf

Dr. Lukas Ruf is founder and CEO of Consecom AG.

Consecom is specialized in Strategic ICT Security Consulting, and offers support by concept (design), implementation and review (security testing, reviewing and auditing) services.

Lukas completed his master and Ph.D. studies the Swiss Federal Institute of Technology (ETH) Zurich in electrical engineering.

For more than two decades, he has been working as a consultant, architect and auditor in the areas of governance and organization, processes, and technology.

Among others, he is a well-known specialist for end-to-end security, identity and access management as well as information security management.

Sign up

On invitation this event is free-of-charge.

Please note: the workshop is not included here.
Workshop attendance fee: 200 CHF.