Conscia Sikkerhedsfestival 2024


Conscia Sikkerhedsfestival 2024

12 sessioner pÄ 3 forskellige fagspor, 3 keynotes og 1 netvÊrksbar

Kom til et brag af en konference, nÄr vi samler landets klogeste hoveder inden for it-sikkerhed til en dag fyldt med indlÊg, netvÊrk, cases, debatter og dialog.

Cybersikkerhed indtager en stadig mere prominent rolle i samfundet i takt med at trusselsbilledet Þges. Vi er under konstante angreb udefra, hvor statsfinansierede hackere kÊmper side om side med selvstÊndige hacker-grupper om at tilegne sig penge, viden og data pÄ ulovlig vis, samt infiltrere, spionere og ÞdelÊgge virksomheder, institutioner og organisationers virke.

AI er blevet allemandseje og potentialet er enormt, men mange mangler inspiration fra reelle use cases for at komme skridtet videre fra data mining og machine learning til at bygge deres egne AI-baserede modeller.

PÄ Sikkerhedsfestivalen ser vi pÄ it-sikkerhed fra en myriade af forskellige vinkler sammen med eksperter, der selv kÊmper i felten hver dag. Forskere og fagfolk mÞdes og diskuterer cybersikkerhed. De nyeste trends og tendenser bliver prÊsenteret, og vi netvÊrker, videndeler og inspirerer hinanden i lÞbet af dagen.

MÞd bl.a. Professor JÞrgen Ellegaard Andersen, stifter og leder af Center for Kvantematematik og professor ved Institut for Matematik og Datalogi, SDU.

I sin keynote fortÊller han om et projekt, der har opnÄet bÄde den stÞrste og mest prestigefyldte bevilling i Europa og i USA. Sammen med forskere fra MIT, Stanford-, Princeton og Harvard University driver Ellegaard forskning, der har potentiale til at transformere vores forstÄelse af verden omkring os.

torsdag, 13. juni 2024

Spor 1 – Sikkerhed as a service
Spor 2 – Customer stories
Spor 3 – Technology
09:00
09:00 → 09:45, 45 minutter

Ankomst, registrering, morgenmad og besÞg pÄ standene

tors 09:00 - 09:45
09:45
Hovedscene
09:45 → 10:00, 15 minutter

Velkommen ved Thomas GrĂžnne

Thomas GrĂžnne
tors 09:45 - 10:00
10:00
Hovedscene
10:00 → 10:45, 45 minutter

Keynote: Applications of Quantum Computing: Threats and Opportunities

JĂžrgen Ellegaard Andersen

Applications of Quantum Computing: Threats and Opportunities

What can quantum computers do right now? Where is the development going and what threats are there? Why is it totally essential to adoubt measures which mitigate these threats now? What opportunities are there in adopting quantum computers as first movers?

These questions will be answered in this talk. We will discuss how quantum computers work and why they have already shown to be so immensely more powerful than classical supercomputers to certain very specific tasks and how we can unleash these powers in practical applications in the near term.

Bio:
JĂžrgen Ellegaard Andersen
Professor of Quantum Mathematics
Director of Center for Quantum Mathematics
CEO Qpurpose

tors 10:00 - 10:45
10:45
10:45 → 11:00, 15 minutter

Kort kaffepause og besÞg pÄ standene

tors 10:45 - 11:00
11:00
Spor 1 – Sikkerhed as a service
Spor 1 – Sikkerhed as a service
11:00 → 11:30, 30 minutter

SÄrbarhedshÄndtering og -overblik: Find, prioritér og mitigér - kend dine sÄrbarheder

Daniel Bo Sindersen

Vulnerability as a service: SĂ„rbarhedshĂ„ndtering og -overblik Find, prioritĂ©r og mitigĂ©r – kend dine sĂ„rbarheder

SÄrbarhedsscanning har vÊret af og pÄ agendaen af flere omgange, og har nu fÄet nyt fokus i form af direktiver og lovkrav, hvor det krÊves, at organisationer har styr pÄ sÄrbarheder, samt kan hÄndtere- og dokumentere dem.

Organisationer bliver nÞdt til at forholde sig til sÄrbarhederne og have faste processer omkring arbejdet med dem pÄ plads.

Lyt med, nÄr Daniel Bo Hede, Sikkerhedsanalytiker, fortÊller, hvordan Conscia rÄdgiver og hjÊlper sine kunder med at hÄndtere de mange sÄrbarheder.

Taler: Daniel Bo Hede, Sikkerhedsanalytiker, Conscia

tors 11:00 - 11:30
Spor 2 – Customer stories
Spor 2 – Customer stories
11:00 → 11:30, 30 minutter

Lundbeck: Multicloud sikkerhed i en reguleret industri

Keld Viftrup MĂžller

Multicloud sikkerhed i en reguleret industri

HÞr mere om, hvordan Lundbeck lÞbende hÄndterer bÄde sikkerheds- og myndighedskrav i deres anvendelse af cloud-tjenester fra Amazon Web Services og Microsoft Azure.

FÞlg med i hele rejsen fra, hvordan Lundbeck startede, hvor de er nu, og hvad de har planlagt for fremtiden i forhold til at hÄndtere krav og processer pÄ tvÊrs af forskellige cloud-platforme.

Taler: Keld Viftrup MĂžller, Lead Cloud Architect, Lundbeck

tors 11:00 - 11:30
Spor 3 – Technology
Spor 3 – Technology
11:00 → 11:30, 30 minutter

Firewalling - A new paradigm that drastically alters the way we think about our first line of digital defense

Craig Connors

The firewall is a proven technology that has taken care of us for many years. But the world is changing, and our systems are becoming more and more distributed and complex. Network communication is more implied than ever and we need a thousand eyes monitoring our network.

In this presentation, you will hear how Cisco is working with this issue and is launching a paradigm shift from Firewalls to Firewalling.

Today, we still want to control traffic, but we are looking into an unmanageable management overhead. Therefore, must rethink our old central Firewall.

You will get the following from the session:
– A description of a brand-new access to Firewalling
– A solution to the growing firewall management and process burden
– A way to get a ”Thousand eyes ” monitoring your network at once

Speaker: Craig Connors, VP and CTO, Security Business Group (SBG), Cisco

tors 11:00 - 11:30
11:30
11:30 → 11:45, 15 minutter

Kort kaffepause og besÞg pÄ standene

tors 11:30 - 11:45
11:45
Spor 1 – Sikkerhed as a service
Spor 1 – Sikkerhed as a service
11:45 → 12:15, 30 minutter

MDR i Danmark, giver det mening?

Jesper Kastoft Bertelsen

MDR i Danmark, giver det mening?

Kan man outsource sikkerhed? Hvordan bygger man en SOC (Security Operations Center) i Danmark? Og hvilke dele af en SOC er automatiserede?

Verden er i konstant forandring og det samme er cybertruslerne, men hvordan kan man sÄ hjÊlpe sine kunder bedst muligt? I Conscia tror vi pÄ, at vi kan gÞre en forskel for vores kunder, og hjÊlpe dem til et hÞjere sikkerhedsniveau gennem en dansk SOC. Men hvad betyder det egentligt? Lyt med, nÄr Jesper Kastoft Bertelsen fortÊller om udviklingen af ConsciaŽs Danske SOC:

– Hvilke tanker ligger der bag
– Hvordan lĂžser vi opgaven
– Og hvordan sikrer vi vores kunder bedst muligt

Kom og hÞr, hvordan Conscia har bygget en service op, og hvorfor automatisering er sÄ vigtig for os.

Taler: Jesper Kastoft Bertelsen

tors 11:45 - 12:15
Spor 2 – Customer stories
Spor 2 – Customer stories
11:45 → 12:15, 30 minutter

Region Hovedstadens sikkerhed under verbal beskydning

Peter Bram

Samtale fremmer forstÄelsen siger man, og i sessionen her taler Peter og Peter om IT-sikkerhed i Region Hovedstaden. Peter Bram leder Operationel Sikkerhed i Region Hovedstaden svarer pÄ nÊrgÄende spÞrgsmÄl om hvordan Regionen organiserer sikkerhedsarbejdet, ramme vÊrktÞjer og styring, valg af teknologier, arvegods i form af gamle systemer, basis hygiejne i cybersikkerhed, tiltrÊkning og fastholdelse af talent og kompetence mv.
SpÞrgsmÄl og modspÞrgsmÄl stilles af Peter Koch, Security Evangelist, Conscia

Peter Bram, Sektionschef, Operationel Sikkerhed, Region Hovedstaden

tors 11:45 - 12:15
Spor 3 – Technology
Spor 3 – Technology
11:45 → 12:15, 30 minutter

The automated SOC - more than just XDR!

Henrik Larsson

Today’s SOC architectures have a security analyst at the center, and they’re challenged with having to deal with all of these siloed tools and data. There are so many point products, so many different consoles that they have to go and check and data just scattered around. This weakens threat defense significantly. When a SOC analyst has to detect and respond to a threat, they have to check all of these different tools and try and piece all of this information together in their head.
At Palo Alto Networks we do things differently. Join the session to hear how!

Speaker: Henrik Larsson, Cortex Systems Engineering Specialist

tors 11:45 - 12:15
12:15
12:15 → 13:05, 50 minutter

Frokost, netvÊrk og besÞg pÄ standene

tors 12:15 - 13:05
13:00
Spor 1 – Sikkerhed as a service
Spor 1 – Sikkerhed as a service
13:00 → 13:30, 30 minutter

Hunting and other daily routines in a modern SOC

Avester Fahimipour, Andrew Michal

Hunting and other daily routines in a modern SOC

It is hunting season all year round in a SOC, but what are the requirements for hunting, and what are the differences between hunts and detections?
How do we ensure we have enough visibility, and how do we turn this visibility into security hunts and further into detection rules?

Threat hunting isn’t just for highly developed SOCs; every company can benefit from running directed hunts against critical assets and new threats.
Get input on where and how it makes strategic sense to run successful hunts in your environment to complement your existing security solutions.

Speakers: Andrew Michal, Senior Cybersecurity Engineer, Conscia DK og Avester Fahimipour, Security Analyst, Conscia DK

tors 13:00 - 13:30
Spor 2 – Customer stories
Spor 2 – Customer stories
13:00 → 13:30, 30 minutter

Region Syddanmark: NetvĂŠrkssegmentering i datacenteret

Michael Valeur Nielsen

Region Syddanmark har igennem en lÊngere periode arbejdet mÄlrettet pÄ at etablere netvÊrkssegmentering i datacenteret. Michael Valeur Nielsen fortÊller om erfaringer, udfordringer og aha-oplevelser, som Regionen har mÞdt pÄ vejen mod bedre netvÊrkssegmentering.

Taler
Michael Valeur Nielsen
Specialkonsulent NetvĂŠrk, Region Syddanmark

tors 13:00 - 13:30
Spor 3 – Technology
Spor 3 – Technology
13:00 → 13:30, 30 minutter

Detecting Faster than Zero Day

Jose Canelada

In the current cybersecurity reality we operate always on the main principle of zero day. Same than in Physics we can’t go faster than light speed, in security, we can’t detect faster than zero day. But what would happen If we could hunt the attack infrastructure exist even before any compromise, before the malware itself. Uncovering and defeating this infrastructure give us the power to detect before the first detection. So traveling faster than zero day!

Taler
Jose Canelada
Senior Director for Solutions Architecture and Field CTO for Infoblox Europe, Middle East and Africa.

tors 13:00 - 13:30
13:30
13:30 → 13:40, 10 minutter

Kort kaffepause og besÞg pÄ standene

tors 13:30 - 13:40
13:40
Spor 1 – Sikkerhed as a service
Spor 1
13:40 → 14:10, 30 minutter

Beskyt jeres mobile enheder

SĂžren Linde, Peter Mohr
tors 13:40 - 14:10
Spor 2 – Customer stories
Spor 2
13:40 → 14:10, 30 minutter

Enterprise security automation

Marcus Lind

We will follow the real-life journey of a financial institution that by the use of Conscia’s services went from a manually implemented security policy in their data center to secure and consumable services from a self-service portal – delivered through automation. As we walk through the steps necessary, you will learn the importance of a data model to represent the security model and how that is used in an automated flow.

Speaker: Marcus Lind, Automation and Datacenter Director, Miradot – Part of Conscia

tors 13:40 - 14:10
Spor 3 – Technology
Spor 3
13:40 → 14:10, 30 minutter

Hvorfor er skalering og self-service vigtige elementer for en sikker load balancer (ADC) lĂžsning.

Ole Voldbjerg

I denne prÊsentation vil vi udforske, hvordan man designer og implementerer en sikker Application Delivery Controller (ADC)-lÞsning, der er vendt mod internettet. En ADC fungerer ofte som det fÞrste termineringspunkt for en virksomheds digitale vindue til omverdenen, hvilket giver bÄde kunder og, desvÊrre, ondsindede aktÞrer adgang til applikationer fra internettet.

Vi vil gennemgÄ nÞgleelementerne i at skabe en sikker ADC-lÞsning, med sÊrlig fokus pÄ hvorfor self-service, visibilitet og skalerbarhed er afgÞrende for bygge en sikker ADC lÞsning.

I indlĂŠgget vil vigtigheden af at adskille management og control plane, ensartet certifikat-sikkerhed, brugen af en Web Application Firewal (WAF) og dermed kravene til skalering blive gennemgĂ„et. Vi vil ogsĂ„ gennemgĂ„ praktiske eksempler fra en kundeinstallation baseret pĂ„ VMware’s Advanced Load Balancer, tidligere kendt som AVI Networks, vil blive fremvist for at illustrere koncepterne i aktion, som vil give en dybdegĂ„ende forstĂ„else af, hvordan man sikrer sine ADC-lĂžsninger mod de stadigt skiftende trusler fra cyberspace.

tors 13:40 - 14:10
14:10
14:10 → 14:30, 20 minutter

Kaffepause, netvÊrk og besÞg pÄ standene

tors 14:10 - 14:30
14:30
Hovedscene
14:30 → 15:00, 30 minutter

Keynote: Security and productivity shouldn’t be a trade-off but today it is

Craig Connors

Despite the proliferation of security point solutions to protect against a rapidly changing threat landscape, we still see ransomware attacks, disruptions in the supply chain, loss of data, intellectual property and reputation damage every day. Users face access restrictions that hamper day-to-day work and the complexity is becoming impossible for IT and security teams to manage. Security and productivity shouldn’t be a trade-off but today it is. In this session, we’ll cover the latest Cisco Security innovations to help you become more resilient in the face of unpredictable threats and you’ll learn about Cisco’s strategy to simplify experiences to make security better for users, easier for IT, optimized for DevOps and safer for everyone.

Speaker: Craig Connors, VP and CTO, Security Business Group (SBG), Cisco

tors 14:30 - 15:00
15:00
15:00 → 15:30, 30 minutter

Keynote: Ransomware er IKKE en IT-krise

Michael SjĂžberg

Hvert Ă„r bliver et stort antal danske virksomheder og organisationer ramt af ransomware. Men hvad sker der egentlig, nĂ„r banditterne har stjĂ„let store mĂŠngder fortrolige og personfĂžlsomme data? Eller nĂ„r recovery fra back-up virker pĂ„ alt – undtagen Ăžkonomisystemet?

Gidselforhandler Michael SjÞberg fra Delta Crisis Management kommer og giver os et unikt indblik i, hvordan han hÄndterer, taler og forhandler med de cyberkriminelle ransomware bander til hverdag.

Taler:
Michael SjĂžberg, Gidselforhandler

tors 15:00 - 15:30
15:30
15:30 → 15:40, 10 minutter

Afslutning

tors 15:30 - 15:40
15:40
15:40 → 16:40, 1 time

EUC NetvĂŠrksbar

tors 15:40 - 16:40

Spor 1: Sikkerhed as a Service

PĂ„ dette spor dykker vi ned i en af de helt store trends ikke bare indenfor it – men generelt i samfundet. Services bliver mere og mere almindelige – ogsĂ„ indenfor it-sikkerhed. Vi ser pĂ„ mulighederne i dette spor.

Spor 2: Customer stories

PÄ dette spor mÞder du fagfolk fra bÄde det offentlige og private erhvervsliv, der fortÊller, hvordan de har grebet forskellige it-sikkerhedsudfordringer an, og hvordan resultatet har vÊret.

Spor 3: Technology

PÄ dette spor ser vi pÄ forskellige teknologier indenfor it-sikkerhed, og hvordan de spiller sammen med resten af teknologi-stacken.

Vil du have besked nÄr tilmeldingen til Conscia Sikkerhedsfestival 2025 Äbner?

Registrér dig her


Conscia Sikkerhedsfestival er sponsoreret af vores partnere:

 

 

Â