The focus of the 12. event will be again on industrial control systems (ICS) and operational technology (OT) security risks.

Organizational, operational and technical challenges will be presented and discussed.

Security breaches from Switzerland, Germany and other countries will be analyzed.

In a workshop operations and security managers will obtain practical advice for their day-to-day work.


Feedback from attendees


"I have never seen such a large concentration of excellent presentations; and exciting selection of subjects."
(Thomas Schwyzer, Executive Director Security, UBS)


"Not only the speakers play in the top league but also among the audience you find outstanding experts from large Swiss corporations and organisations."
(Dr. Serge Droz, Vice President, SWITCH)


"As a presenter, I was impressed by the caliber of the attendees and the depth of the discussions throughout the day."
(Dr. Robert Griffin, Chief Security Architect, RSA)

Topics discussed at the 12. event

  • Live attack demonstration: hacking various ICS networks in Switzerland, Tim Philipp Schäfers, IT Consulting Schäfers
  • Attacking Home Automation Systems
  • Panel discussion: recent ICS cyber incidents in Switzerland and worldwide
  • Risk management & insurance implications of ICS incidents
  • Lessons learned from the Ukraine grid attacks


Who should attend

  • ICS-OT managers from Swiss and German critical infrastructure providers, manufacturing, chemical and other plants
  • Compliance, governance, risk managers from large organizations
  • CISO, CIO, COO, CTO office
  • Government advisors & experts
  • IT infrastructure & operations experts
  • IT security & investigations managers


Event Location Last event

SIX Convention Point

Pfingstweidstrasse 110,
8005 Zürich

Program

  • 13:30
    Attacking Home Automation Systems
    presented by Valentin Zahnd & Damiano Esposito, Consecom AG

    Home Automation comes along with huge promises on easing daily life.
    Rarely bespoken are the weaknesses and vulnerabilities of its implementation.
    Imaging the lock at your door opens to anyone while you believe to be safe and secure.

    In this talk, Valentin Zahnd and Damiano Esposito of Consecom AG are introducing the fundamental challenges that Home Automation faces.
    Based on these challenges, they propose possible solutions together with new hurdles introduced.

    A demonstration of hacking an electronic door lock-system emphasizes the problem.
    A real-life door system is attacked and ways are shown to open the door without the legitimate owner knowing it.

  • 14:30
    Holistic Security Concept – Protecting Industrial Productivity with IEC 62443
    presented by Reto Amstad, Siemens Schweiz
  • 15:00
    Large-scale blackouts caused by cyber attacks – the insurance point of view
    presented by Dr. Philipp Hurni, Swiss Re Group

    In December 2015, a cyber attack has succeeded in knocking out the power distribution grid of a city in Ukraine. With creating large-scale blackouts, Cyber attacks have the potential to literally cripple a country and its economy. Yet, the "worst-case cybergeddon scenario has not materialized". Nevertheless, insurers and reinsurers need to be able to estimate frequency and severity of these large, yet rare events.

  • 15:30
    Cyber risks from a hacker's perspective - cases from Switzerland
    presented by Tim Philipp Schäfers, IT Consulting Schäfers
  • 16:00
    Securing next-generation autonomous cyber-physical systems
    presented by Dr. Aanjhan Ranganathan, ETH Zürich

    Possible attacks on smart grids, autonomous cars, robots, drones ...


  • Exhibition & Networking
    • Consecom
    • Cyverse
    • Indegy
    • SCADAfence
    • Siemens
    • SwissRe


Speakers

Dr. Philipp Hurni

Philipp Hurni has worked in the field of resilient low-power wireless communication for internet-of-things technologies while pursuing his PhD in Computer Science at University of Bern.

He then worked for several years as a cyber security officer for Switzerland’s major telecommunications and IT services provider Swisscom, where he led security projects in mobile communication, data leakage prevention, security management & governance.

In 2015, he joined Swiss Re’s Cyber Centre of Competence to tackle cyber risk from a (re)insurance perspective.

He currently works on quantifying the accumulation potential of cyber risk on specific cyber coverages but also on traditional lines of insurance business (property, engineering, casualty) for Swiss Re, and is furthermore active in modelling and calculating the technical costing of cyber covers.

Dr. Aanjhan Ranganathan

Aanjhan is currently a post-doctoral researcher in the System Security Group at ETH Zurich.

He obtained his PhD in 2016 and his research mostly revolves around the physical-layer security of wireless systems (e.g., secure localization and ranging, GPS security, (anti-)jamming techniques).

In the past, he has worked on computer architectures, specifically, multiprocessor systems, cache coherency protocols and communication bus protocols.

Prior to joining the System Security group at ETH Zurich, he worked at Robert Bosch GmbH's Car Multimedia Division "Blaupunkt" for over 3 years involved in research and development of embedded modules for top automotive manufacturers including Audi and Volkswagen.

He holds a bachelors degree in Electronic and Communication engineering from Anna University in Chennai, India and a Masters degree from École Polytechnique Fédérale de Lausanne (EPFL), Switzerland

Tim Philipp Schäfers

Ich bin Tim Philipp Schäfers, Security-Consultant mit besonderer Passion für den Bereich Webhacking.

Meine Erfahrungen und Eindrücke zum Thema Web teile ich in Büchern oder Blogbeiträgen.

  • 2016: Autor des Buches "Hacking im Web"
  • 2016: Teilnahme am Security Analyst Summit von Kaspersky
  • Seit 2015: Autor (Schwerpunkte: Sicherheit/Datenschutz) auf golem.de
  • Seit 2014: Studium zum Bachelor of Sc. Wirtschaftsinformatik
  • Seit 2013: Security-Consultant für verschiedene Unternehmen (vorrangig im Bereich Websicherheit)
  • Seit 2012: Mitbetreiber und Mitgründer des Projektes "Internetwache.org"

Damiano Esposito

Valentin Zahnd and Damiano Esposito are senior security consultants with Consecom AG. They focus on technological matters of information security and support customers with penetration testing, hardening or software and system security. Before joining Consecom, they have already been active in the field of penetration testing. Among others, they have been supporting the Swiss Cyber Storm and the European Cyber Security Challenge. Both completed their studies at the Zurich University of Applied Sciences with major in information security.

Valentin Zahnd

Valentin Zahnd and Damiano Esposito are senior security consultants with Consecom AG.

They focus on technological matters of information security and support customers with penetration testing, hardening or software and system security.

Before joining Consecom, they have already been active in the field of penetration testing.

Among others, they have been supporting the Swiss Cyber Storm and the European Cyber Security Challenge.

Both completed their studies at the Zurich University of Applied Sciences with major in information security.

Reto Amstad

Reto Amstad arbeitet als Consultant von Plant Data Services bei Siemens Schweiz AG und ist verantwortlich für Projekte im Bereich Industrial Security und IoT mit Fokus auf die produzierende Industrie sowie OEM.

Er ist seit 2009 für Siemens tätig und hat die Studiengänge Wirtschaftsingenieur und Business Administration absolviert.

Sign up

On invitation this event is free-of-charge.