• Why your Diversity & Inclusion efforts might be stalling
• How to integrate the Social Model of Disability into culture & practice
• Quick wins for recruitment, onboarding and communicating more effectively

As cloud adoption continues to grow, so does the number of cloud-born security threats. However, cloud environments can present significant opportunities to improve security, with the right tools and processes in place. In this session, we’ll cover how security teams can best detect and respond to cloud-born threats and showcase how your Security Operations can integrate with your Cloud environment to enable unified threat detection, investigation, and response to make your cloud safer.

In this session, we’ll present the findings of Sonatype’s new 8th annual State of the Software Supply Chain Report. Over the past year, we empirically studied dependency update patterns for thousands of open source projects, analysed hundreds of survey responses, and took a critical look at commonly-held beliefs about effectively managing security risk.
 
Our research has uncovered a vast chasm between perceived security and reality, a number of new trends in open source consumption, and surprising benefits to certain development team structures. Come see which practices are backed up by data and learn how to efficiently manage your open source software supply chain.

• Delegates will get to hear what the EU Network Information Systems Directive (NIS) is and why has it been updated
• We will cover what the core requirements of the NIS 2 Directive are
• Together with the audience we shall review how organisations can comply. Does NIS 2 apply to your businesses and what are the implications of non-compliance.    

ITN Panel Discussion  

• Proactive Cybersecurity: Staying Ahead of Evolving Threats
• Building a strong defence ecosystem through collaboration and information sharing
• Raising cyber-awareness and empowering employees as the first line of defence 
• Journey as a female from a diverse Background to a Senior Cyber Role, transitioning from engineering
• Advocating for neurodiversity inclusion and fostering an inclusive cyber workforce
• Recognising the importance of diverse skill sets in addressing the complexity of cyber threats  

• Challenges of managing sanctions risk in the current geopolitical setting
• Current risks and new strategies for verification of counterparties and finding high-risk counterparties
•  How to obtain reliable data on CIS businesses without spending time on applications to state registers
•  How to check your business and contractors for links with sub-sanctioned PEP and companies
•  How to find Russian and Belarusian assets beyond these countries 
• Current risks and new strategies for verification of counterparties and finding high-risk counterparties
• How does Sanctions affect everyday Russian people and business Typologies of Russian Sanctions Evasion   

• Decision makers are now understanding the need for cyber security and how it can contribute to overall business success
• Hear how the need for technical information has not gone away
• Needing the right vocabulary for both business and information security leaders is key
• Learn about how the Security Outcomes Canvas is a tool to help give organisations complete visibility into exactly what they're defending, allowing them to focus on using cyber security to achieve business goals - a practical take away 

• What is the Telecommunications Security Act?
• Who and what does it cover?
• What is Ofcom's Role in the TSA?
• What is TBEST and how can it aid in your security strategy and business case?  

• Why try and break into a company from the outside when you can simply get offered a job there and walk in?
• Learn how Jake manipulated recruitment staff to land a job inside a company – and gain full access to the data within.
• The Insider Threat is becoming more of a risk to businesses – can we really protect ourselves from creative ideas?   

What would it be like to be “there”, to offer a tap on the shoulder when people were about to do something risky?

Tim will touch on:

• “why nudge theory?”
• what makes a good nudge
• how to run a campaign to steer behaviours and the potential impact

Tim will offer takeaways on how to apply the theory to your own awareness campaigns

• How DNS fits into the XDR framework and maps to NIS2
• How contextual awareness and DNS-based threat intelligence can improve your SOC efficiency
• How curated threat feeds enable you to stop fast-moving threats sooner and buy SecOps teams crucial time with ubiquitous visibility and automation

• Recognising the support needs of small businesses, including their current understanding and confidence around cyber security
• The coverage, consistency and accessibility of existing support routes available to SMEs
• The concept of Cyber Security Communities of Support, fostering localised collaboration between SMEs and advisory sources