Network with high-caliber IT security experts
to learn from and discuss the latest cybercrime situation

The focus of the 14. event will be again on industrial control systems (ICS) and operational technology (OT) security risks.

Organizational, operational and technical challenges will be presented and discussed.

Security breaches from Switzerland, Germany and other countries will be analyzed.

In a workshop operations and security managers will obtain practical advice for their day-to-day work.

Feedback from attendees


"I have never seen such a large concentration of excellent presentations; and exciting selection of subjects."
Thomas Schwyzer, Executive Director Security, UBS


"Not only the speakers play in the top league but also among the audience you find outstanding experts from large Swiss corporations and organisations."
Dr. Serge Droz, Vice President, SWITCH


"As a presenter, I was impressed by the caliber of the attendees and the depth of the discussions throughout the day."
Dr. Robert Griffin, Chief Security Architect, RSA

Who should attend

  • ICS-OT managers from Swiss and German critical infrastructure providers, manufacturing, chemical and other plants
  • Compliance, governance, risk managers from large organizations
  • CISO, CIO, COO, CTO office
  • Government advisors & experts
  • IT infrastructure & operations experts
  • IT security & investigations managers




Event Location Last event



This event is organized by:

Au Premier

Bahnhofplatz 15,
8001 Zürich

Program

  • How to secure what you don't control - The multi-cloud security challenge
    presented by Stefaan Hinderyckx, Senior Director Europe - Security, Dimension Data

    85% of organisations are committed to a multi-cloud architecture. The other 15% are probably doing it by accident...


    The advantages of multi-cloud are many that organisations can't afford to be held back any longer by security concerns. However, with every additional cloud comes increased complexity and risk. What organisations need is a migration strategy with security at its core, enabled by an architectural framework that protects critical data whilst providing speed and agility.


    This presentation will help you to succeed in a multi-cloud world by providing the key principles, solutions and technologies that enable you to deliver services securely across all your clouds.

  • Cyberattacks on critical infrastructures - insurance perspective
    presented by Dr. Philipp Hurni, Business Analyst & Vice President, Swiss Re Group

    If a cyber attack on critical infrastructures were to hit Switzerland today - which losses are insured today? Which losses are insurable and which are not?

  • Operational Technology Security Baseline for the Critical Infrastructure of the Electrical Power Supply
    presented by Daniel Schirato, Operational Technology Security Manager, Axpo

    Based on the “National strategy for the protection of Switzerland from cyber-threats (NCS) presented by the FONES” the Association of Electricity Enterprises Switzerland (AES) developed an OT Security baseline for power utilities.


    We present some background to the fundamentals, legislation & regulation, objectives and the development of the baseline. In the second part we provide an implementation example at the National Transmission System Operator Swissgrid.

  • Passive, Active or Hybrid Monitoring
    presented by Mille Gandelsman, CTO, Indegy

    What’s the right choice for your ICS Network?


    The session will discuss the ICS manager top concerns, the top security gaps and what is missing in ICS environments.

    What can we learn from IT Security?

    What should be the main requirements from a Security Solution?

    What should be the deployment considerations?

  • National strategy for the protection of Switzerland from cyber-threats (NCS)
    presented by Daniel Caduff, Vice Branch Manager ICT, Federal Office for National Economic Supply FONES

    Daniel Caduff will be presenting Switzerland’s national strategy against cyber-risks NCS. What current threats to critical infrastructure does the state see and how is Switzerland addressing those threats? What are the similarities and differences in cybercrime, cyberdefence and the protection of critical infrastructure against cyber-risks?


    Further, Daniel Caduff will present the new minimum Standard against cyber-risks that will be launched by the Federal Office for National Economic Supply FONES by August 2018, and how this standard has been adapted by various industry associations. This standard will help critical infrastructure providers to strengthen their resilience and it will help the IT-security-industry to meet its customers need to the benefit of a more resilient infrastructure.

  • Cyber Security Requirements and Best Practices - Energy Sector in Germany
    presented by Dr. Stephan Beirer, Principal Consultant & Head of “Industrial Control Systems Security”, GAI NetConsult
    • Critical Infrastructure Regulation in Germany
    • ISO/IEC 27019: Sector-specific Security Standard for Energy Utilities
    • BDEW/OE Whitepaper: Best Practice Requirements for Control Systems
  • Analysing the Top 5 critical infrastructure cyber attacks
    presented by Dr. Lukas Ruf, Founder & CEO, Consecom
    • Ukrainian Power Outages
    • Rye Brook, New York Dam Attack
    • SWIFT global bank messaging system
    • U.S. nuclear power plants
    • UK attacks on energy sector

Supporters

Speakers

Dr. Lukas Ruf

Dr. Lukas Ruf is founder and CEO of Consecom AG.

Consecom is specialized in Strategic ICT Security Consulting, and offers support by concept (design), implementation and review (security testing, reviewing and auditing) services.

Lukas completed his master and Ph.D. studies the Swiss Federal Institute of Technology (ETH) Zurich in electrical engineering.

For more than two decades, he has been working as a consultant, architect and auditor in the areas of governance and organization, processes, and technology.

Among others, he is a well-known specialist for end-to-end security, identity and access management as well as information security management.

Dr. Philipp Hurni

Philipp Hurni has worked in the field of resilient low-power wireless communication for internet-of-things technologies while pursuing his PhD in Computer Science at University of Bern.

He then worked for several years as a cyber security officer for Switzerland’s major telecommunications and IT services provider Swisscom, where he led security projects in mobile communication, data leakage prevention, security management & governance.

In 2015, he joined Swiss Re’s Cyber Centre of Competence to tackle cyber risk from a (re)insurance perspective.

He currently works on quantifying the accumulation potential of cyber risk on specific cyber coverages but also on traditional lines of insurance business (property, engineering, casualty) for Swiss Re, and is furthermore active in modelling and calculating the technical costing of cyber covers.

Stefaan Hinderyckx

A graduate of the KU Leuven, Stefaan holds a Master’s degree in Computer Science and an MBA. Stefaan has 30 years of experience in the IT industry, 20 of which in Security. Stefaan has held numerous senior, pan-European positions with global ICT companies including Symantec, Verizon, Unisys and Getronics.

As Dimension Data’s European Director for Security, one of Stefaan’s key focus areas is to translate the technology, people and process elements of our security solutions into tangible business value. This outcomes-focused approach puts his services in high demand among Dimension Data’s strategic global clients. Stefaan is a frequent speaker at industry and government cybersecurity events on the innovation potential of security technology to transform business and society.

Mille Gandelsman

Mille leads Indegy’s technology research and product management activities. Prior to Indegy, Mille led engineering efforts for Stratoscale and spent several years leading cyber security research for Israel’s elite intelligence corps. Mille is a graduate of the elite Talpiot military academy and holds a Masters degree with honors in Computer Science from Tel Aviv University.

Daniel Caduff

Daniel Caduff works for the Federal Office for National Economic Supply (FONES).

He started as a project manager for the National Swiss Cyber Strategy (NCS) and now acts as the vice branch manager of the ICT Department at FONES.

Before joining the Government, he worked for a major Swiss internet provider and as an IT consultant.

In his current role, Daniel is responsible for protecting Switzerland's critical infrastructures against cyber risks.

He co-authored the general FONES ICT- minimum standard as well as the minimum standard for the Swiss electricity sector.

Furthermore, Daniel Caduff represents Switzerland in the NATO-Partnership for peace program in the area of critical infrastructure protection against Cyber Risks.

Dr. Stephan Beirer

Dr. Stephan Beirer studied and received his PhD in physics. During his studies he worked several years as a freelance network administrator and security consultant, serving different institutions and companies in the life science- and internet media business.

Since 2006 Mr. Beirer has been employed with GAI NetConsult GmbH as a Principal Consultant and is the Head of “Industrial Control Systems Security” since 2012. He advises clients on the development and implementation of organizational and technical security policies and controls and on implementing an information security management system (ISMS) according to IEC 62443, ISO/IEC 27001 and ISO/IEC 27019 and on business continuity planning. His professional focus is on securing process control and automation technology, especially in the field of energy supply. He gained his experience in more than 200 ICS security projects in the field of energy, transportation, critical infrastructures and industrial manufacturing.

He holds the certification as Lead Auditor ISO/IEC 27001 and is an active member of the national and international standardization organizations at DIN, DKE, IEC TC57 and ISO/IEC JTC 1 SC27. At SC 27, he is a domain expert for process control systems security and smart grids and the editor of ISO/IEC 27019 „Information security controls for the energy utility industry".

Daniel Schirato

Daniel is currently working as Operational Technology (OT) Security Manager with Axpo WZ-Systems, a subsidiary of Axpo Grid, and Axpo’s competence center in broadband communication for critical infrastructures and responsible for Axpo’s power generator and distribution grid communication & control systems.

In this role he’s responsible for ICS/SCADA security concepts for hydro power plants, the power distribution grid, a virtual power plant system and for the Swiss utility interconnected WAN telecommunications. Currently as well as in the past he’s implementing an Information Security Management System (ISMS) based on ISO 27001 / 27019.

For the “Association of Electricity Enterprises Switzerland” (VSE – Verband Schweiz. Energieunternehmen) he’s leading a Security Working Group which publishes a sector specific recommendation on OT Security for Swiss utilities (VSE Branchenempfehlung: “Grundschutz für ‘Operational Technology’ in der Stromversorgung”).

He started his career in the civil military service specialized in electronic warfare “command, control, communications & intelligence (C3I)” systems for the air force and air defense, worked for several financial institutions as ICT & Security Manager, holds a software engineering postgraduate and is certified as CISSP, CEH, CISA and others.

Ralf Haller

Ralf Haller's 20 year IT career has spanned various marketing and business development roles, based on his training as an electrical engineer and masters in Telecommunication Systems (Karlsruhe Technology Institute).

His career started while at university, when he took an assistant role in the USA. Later, he excelled as an IT project manager for large key account clients at CompuNet in Munich and also worked in Hong Kong supporting the Asian region.

This prompted his move to Silicon Valley where he lived for many years, working as a Product Manager for successful startups building datacommunication equipment.

Since 2001, Ralf provides product marketing support and has organised specialist IT events in Switzerland that explore current IT trends and introduce the Swiss market to new and pioneering technologies from Silicon Valley.

Owing to his strong links with Silicon Valley, the Swiss cantons rely on him as a valued advisor for fresh and exciting startup activities emerging from there.

Ralf is also the organizer of international high-tech, innovation, entrepreneurship and business events in Switzerland, among them:

He is also founder of the first High-Tech Connect Suisse association encouraging high-tech business development.

In his free time he loves spending high-quality time with his family, and doing fitness sports and intelligence training to keep fit physically and mentally. He is eager and open to always try out new things.

Sign up

On invitation only (with code) or with a Global Hightech Connect membership.
Please use your code to sign up.
Else the regular entry fee is 490 CHF.