IFSEC 2019 Seminars

IFSEC 2019 Keynote Arena

This panel session will discuss the concept, reality, and evolution of having both physical and cyber security teams managing and collaborating in the same Security Operations Centre.

In today’s high-risk and high-threat environment, there is a real and immediate need for a converged security approach that unifies monitoring of both physical and cyber security events under a unified platform. By leveraging disparate sources of data, organisations can effectively manage a situation in real-time without having to go to multiple individual subsystems to get the job done.

Frank Gardner OBE
Broadcaster and Security Journalist

David Humphrey
CTO
Micro Focus

Steven Kenny
Industry Liaison - Architecture & Engineering
Axis Communications

Sarb Sembhi
CISM, CISO
Virtually Informed Ltd

Maurice Singleton
President
Vidsys

James Willison MA Msyl
Founder
Unified Security Ltd

As well as delivering a fascinating analysis of the global political and security outlook, Frank recounts his personal story of surviving against the odds and a recovery that took months and over a dozen operations. He also looks at what a journalist risks to cover a story and foster understanding of complex issues.

Frank Gardner OBE
Broadcaster and Security Journalist

This panel discussion hosted by the IFSEC Transport Security Council will debate whether cost or safety and security is most important in an organisation.

The discussion will also focus on how organisations should go about finding the right balance between controlling costs and having appropriate security and safety.

Andy Billings
Head of Security and Contingency Planning (Southampton Port)
Associated British Ports

Frank Gardner OBE
Broadcaster and Security Journalist

Nick Orwin
Emergency Planning Manager
London Luton Airport and Vice-Chair of UK Aviation Emergency Planning Group

Chris Stevens CSyP MSyI F.IRSM MSc BSc LCGI CCGI
Technical Security Director
SIDOS UK

This panel will discuss the uses of unmanned aerial vehicles and how forward-thinking companies using this technology are likely to become leaders in the market.

With the fast-moving technology advancements in cameras and high definition imagery, drones can now be looked upon as a powerful weapon in security. Fast maturity of unmanned aerial vehicle development is seeing increasing versatility of its uses for solutions in the security world.

Andrew Griffiths
Managing Director
Droneflight

Matt Williams
CEO
Aerial Motion Pictures

Barry Clack
Professional Drone Pilot
Box Cottage

Romain Worms
Azur Drones

This session assesses the disruptive effects of organised crime and everyday criminality. It also will consider the likely implications for your business and its people, and looks at potential technology solutions for tackling these threats.

Serious and organised crime is a significant national security threat faced by the UK and costs the country at least £37 billion each year; and the government is committed to prevent and defend against serious and organised crime in all its forms. Everyday criminality also has a significant cost to the country and organisations that do business in the UK. Technological advances and digital trends are escalating the scale of this problem and changing the face of the criminal marketplace.

Dr Gary Buck
Principal Psychologist
BGS

Frank Gardner OBE
Broadcaster and Security Journalist

Andy Palmer
Border Security Manager
Gatwick Airport

Warren Stein
Vice President Sales, EMEA & APAC
BriefCam

PRESENTED BY: Frank Gardner OBE, Broadcaster and Security Journalist

Converged Security

The teams from Vidsys, Micro Focus and AXIS Communications will show how their technologies can be integrated into one centre, to prioritise emerging security risks from high volumes of data and respond in near real-time. They will provide a fascinating view of how large events and campuses can be managed in a fast-moving and dynamic environment. This includes:

  • a stadium where large numbers of fans are congregating. Tweets start pouring in about an upcoming protest to disrupt the game at a certain time, some threaten to march inside the stadium and stop the game – all from anonymous sources whose identities cannot be confirmed
  • Security officers begin to view live video feeds from stationary cameras, drones and the incoming tweets all under one common operating picture and monitor the situation
  • facial recognition and biometrics to prevent cyber-physical attacks

Prof. Martin Gill will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by Sarb Sembhi

Professor Martin Gill
Director
Perpetuity Research & Consultancy International (PRCI) Ltd

Sarb Sembhi
CISM, CISO
Virtually Informed Ltd

This presentation will show how one converged team can identify and respond to fraudulent activity on a corporate network, in near real-time with the power of Vidsys, Micro Focus and AXIS solutions. The teams will demonstrate:

  • How the logical and physical id of an employee do not match
  • The operators can look at the office CCTV footage of the employee physically badging on the access control device in the morning
  • The screenshot captured is matched with the access card information
  • Vidsys and SIEM technologies correlate all this data and determine a case of Insider or OutsiderThreat
  • Prof. Paul Dorey will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

    Chaired by James Willison

Professor Paul Dorey
Chair
Internet of Things Security Foundation

James Willison MA Msyl
Founder
Unified Security Ltd

This presentation will explore how CSOs can benefit from deploying multidisciplinary teams in one security operations centre and use converged technologies to identify and respond to fast-moving events in transport systems. The teams from Vidsys, Micro Focus and AXIS Communications will demonstrate:

  • Visual displays of various incidents related to UK Transport (Highway Accidents, Broken streetlights, Systems down, Networking issues, cyber-attacksEvent is identified and a report is sent to the CSO with actions outlined, insider threats, property damage, protests, Broken vehicles)
  • Event is identified and a report is sent to the CSO with actions outlined
  • Upon detecting a drone within 1 km of the airport perimeter an event gets created automatically
  • Operators monitor presence of a drone and use counter drone systems if possible

Mike Hurst will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by Sarb Sembhi

Mike Hurst CPP FIRP Msyl
HJA Consult, Vice Chair
ASIS UK Chapter

Sarb Sembhi
CISM, CISO
Virtually Informed Ltd

IFSEC 2019 Keynote Arena

This session will help you to assess your organisation's security culture and if it is fit for purpose, and share the benefits of embedding an effective security culture in your organisation.

Reducing the possibility of insider incidents requires a security culture which defines how everyone in an organisation is expected to act and think when it comes to security. A security culture that is fit for purpose will result in a security-aware workforce which demonstrates all necessary security behaviours including taking responsibility for security issues, compliance with protective security measures, a better appreciation of common security threats and being more likely to be security aware

Oz Alashe MBE
CEO & Founder
CybSafe

Darren Carter
Head of Group Security - Edwardian Hotels London, Chairman - Institute of Hotel Security Management and Director ASIS UK

Frank Gardner OBE
Broadcaster and Security Journalist

Spencer Marshall
Director of Sales for Physical Access Control Solutions
HID Global

Simon Roberts MSc CSyP
Global Head of Security Compliance
DHL Express Security

This panel will discuss all aspects of unmanned aerial vehicles use from legislation to how the security industry is adapting to this useful aerial asset.

The word ‘drone’ brings many different images to mind. From an exciting technology that is being adopted in industry to a controversial one when used maliciously. This ground-breaking technology and the tasks which these unmanned aerial vehicles can undertake can reduce both cost and time.

Andrew Griffiths
Managing Director
Droneflight

Amit Samani
Regional Sales Manager UK & I
Dedrone

Matt Williams
CEO
Aerial Motion Pictures

Barry Clack
Professional Drone Pilot
Box Cottage

Jonathan Nicholson
Assistant Director Communications
Civil Aviation Authority

This session focuses on the evolving relationship between social media and security and will consider multimedia content threats, traditional threats and social threats and associated risks including information and data disclosure, reputation loss, location leakage, safety loss, blackmail and cyber harassment.

It will also look at how social media data and technologies can be used to improve and positively influence security and assess how social media and social media companies can help businesses become more secure.

Mark Folmer
Vice President, Security Industry
TrackTik Software

Frank Gardner OBE
Broadcaster and Security Journalist

Oliver Hoare
Consultant Director Cyber Security
The Risk Advisory Group and former Head of Cyber Security for London 2012

'How public-private partnerships can bring a step change in addressing current and future security challenges’.

In 2018 the Security Commonwealth (SyCom) announced its support of the UK government's revised CONTEST Counter Terrorism strategy. This open panel debate, comprising leading figures from the UK public and private security sectors, will address audience questions and explore the challenges and opportunities for greater public-private sector security collaboration.

Introduction and overview of the Security Commonwealth: Guy Mathias, Chair SyCom & Chair of Food and Drinks Security Association

Introduction: Guy Mathias, Chair SyCom & Chair of Food and Drinks Security Association

Moderator : Joe Connell, Vice Chair SyCom & Chair of Association of Security Consultants

Panel

  • David Clark, Vice Chair SyCom, and Chair of ASIS (UK Chapter) 
  • Hugo Rosemont, Director Security & Resilience at ADS Group and Secretary to Security & Resilience Industry Suppliers Community (RISC)
  • Julie Nel, Director, The Assocation of Security Consultants (ASC)

David Clark
Chief Security Officer & Head of Logistics, Chair
The Francis Crick Institute and ASIS UK Chapter

Joe Connell
Vice Chair SyCom & Chair of Association of Security Consultants

Guy Mathias
Chair SyCom & Chair of Food and Drinks Security Association

Julie Nel
Director
The Association of Security Consultants (ASC)

Hugo Rosemont
Director Security & Resilience at ADS Group and Secretary to Security & Resilience Industry Suppliers Community (RISC)

This session will discuss how and why products and services should be designed with security as a default, from product development through their entire lifecycle and to how initiate and facilitate positive security change throughout the entire product supply chain.

Security and privacy standards are continually developing to ensure that no vulnerabilities exist which can be exploited for malicious purposes. Secure by Default takes an all-inclusive approach which focuses on solving security issues at the outset of hardware and operating system development rather than when problems arise. Only by shifting to a security mindset and investing in a secure development lifecycle can organisations succeed in creating secure products and services where security is built into software and hardware from the outset.

PAS 1085:2018: Establishing and implementing a security-minded approach

  • Andrew Sieradzki, Director of Security and Technology, BuroHappold Engineering

Secure by Default Guide for Manufacturers

  • Mike Gillespie, Vice President, Centre for Strategic Cyberspace + International Studies (CSCIS)
  • Buzz Coates, IP CCTV Business Development Manager, Norbain SD

Buzz Coates
IP CCTV Business Development Manager
Norbain SD

Frank Gardner OBE
Broadcaster and Security Journalist

Mike Gillespie
Vice President
Centre for Strategic Cyberspace + International Studies (CSCIS)

Andrew Sieradzki
Director of Security and Technology
BuroHappold Engineering

This session assesses the risks posed by everyday hazards which can lead to lead to high profile breaches including visual hacking, insider threat, social engineering, biometric presentation attacks and digital identity fraud.

The pros and cons of biometrics solutions will be discussed and as well as practical steps and technology solutions which can help mitigate the risks.

Steve Cook
Biometrics and Digital Identity Expert

Frank Gardner OBE
Broadcaster and Security Journalist

Dr Richard Gold
Head of Security Engineering
Digital Shadows

Steven Kenny
Industry Liaison - Architecture & Engineering
Axis Communications

PRESENTED BY: Frank Gardner OBE, Broadcaster and Security Journalist.

Converged Security

The teams from Vidsys, Micro Focus and AXIS Communications will show how their technologies can be integrated into one centre, to prioritise emerging security risks from high volumes of data and respond in near real-time. They will provide a fascinating view of how large events and campuses can be managed in a fast-moving and dynamic environment. This includes:

  • a stadium where large numbers of fans are congregating. Tweets start pouring in about an upcoming protest to disrupt the game at a certain time, some threaten to march inside the stadium and stop the game – all from anonymous sources whose identities cannot be confirmed
  • Security officers begin to view live video feeds from stationary cameras, drones and the incoming tweets all under one common operating picture and monitor the situation
  • facial recognition and biometrics to prevent cyber physical attacks

Alan Jenkins will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by James Willison

Alan Jenkins
Head of Advisory Services at 2|SEC Consulting
Cyber Security Pilotage

James Willison MA Msyl
Founder
Unified Security Ltd

This presentation will show how one converged team can identify and respond to fraudulent activity on a corporate network, in near real-time with the power of Vidsys, Micro Focus and AXIS solutions. The teams will demonstrate:

  • How the logical and physical id of an employee do not match
  • The operators can look at the office CCTV footage of the employee physically badging on the access control device in the morning
  • The screenshot captured is matched with the access card information
  • Vidsys and SIEM technologies correlate all this data and determine a case of Insider or OutsiderThreat

Brian Sims will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by Sarb Sembhi

Alan Jenkins
Head of Advisory Services at 2|SEC Consulting
Cyber Security Pilotage

Sarb Sembhi
CISM, CISO
Virtually Informed Ltd

This presentation will explore how CSOs can benefit from deploying multidisciplinary teams in one security operations centre and use converged technologies to identify and respond to fast-moving events in transport systems. The teams from Vidsys, Micro Focus and AXIS Communications will demonstrate:

  • Visual displays of various incidents related to UK Transport (Highway Accidents, Broken streetlights, Systems down, Networking issues, cyber attacks, insider threats, property damage, protests, Broken vehicles)
  • Event is identified and a report is sent to the CSO with actions outlined
  • Upon detecting a drone within 1 km of the airport perimeter an event gets created automatically
  • Operators monitor presence of a drone and use counter drone systems if possible

Godfried Hendriks will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by James Willison

Godfried Hendriks
President Elect & Business Development Director
ASIS International and Revolution Retail Systems

James Willison MA Msyl
Founder
Unified Security Ltd

IFSEC 2019 Keynote Arena

As part of Surveillance Camera Day Tony Porter, the Surveillance Camera Commissioner for England and Wales, will be launching new secure by default/secure by design minimum requirement for the manufacture of video surveillance systems and components at IFSEC. Several high profile and well publicised compromises of systems demonstrated that they were being left live and internet- facing in an unacceptable security configuration. Some of these compromises, like Mirai botnet, that took out social media and financial websites across the globe, also showed the root cause was down to poor design and manufacturing. Driven by the need to ensure the UK’s resilience against this and other forms of cyber security vulnerability, as well as to provide the best possible assurance stakeholders, the new requirements are an important step forward for manufacturers, installers and users alike.

Tony Porter
The Surveillance Camera Commissioner for England and Wales
Surveillance Camera Commissioner for England and Wales

As part of the National Surveillance Camera Day, Tony Porter, the Surveillance Camera Commissioner is launching “Secure by Default”.

Secure by Default are a minimum set of requirements for all manufacturers to ship network video productsto installers in the most hardened, cyber-security-optimal form possible, with default settings which provide minimal vulnerabilities on first use.

The panel will be answering questions about the wider purpose and implications for the industry.

Secure by Default for Manufacturers:

Chair: Justin Hollis, Marketing Director, Hikvision

Panellists:

  • Tony Porter, the Surveillance Camera Commissioner for England and Wales
  • Patrick McBrearty, Cyber Crime Protect Officer, West Midlands Regional Organised Crime Unit
  • Gary Harmer, Sales Director, Hikvision UK and Ireland
  • Jeremy Hockham, Managing Director, Norbain Holdings

Gary Harmer
Sales Director
Hikvision UK and Ireland

Jeremy Hockham
Managing Director
Norbain Holdings

Justin Hollis
Marketing Director
Hikvision

Patrick McBrearty
Cyber Crime Protect Officer
West Midlands Regional Organised Crime Unit

Tony Porter
The Surveillance Camera Commissioner for England and Wales
Surveillance Camera Commissioner for England and Wales

This session will assess evolving cybersecurity threats, offer the latest advice on mitigation strategies and look at the role the UK's most promising cybersecurity innovators can play in addressing industry's biggest challenge.

Preventing data breaches of business-critical information in an organisation requires a comprehensive cybersecurity strategy in line with overall business objectives. Cybersecurity can be complex and difficult to embed in an organisation and therefore it not only.

Jamie Akhtar
CEO & Co-founder
CyberSmart

Dr Daniel Dresner FInstISP
Academic Coordinator for Cyber Security
University of Manchester

Tim Rawlins
Director & Senior Adviser
NCC Group

Dr Dave Sloggett
Alan Taylor Research Fellow
The University of Oxford

Paul Taylor
Partner and UK Lead for Cyber in the Boardroom
KPMG

Dr Dave Sloggett, Alan Taylor Research Fellow at The University of Oxford, will share an absorbing analysis of the current threats and evolving attack vectors that are present in what is an ever more complex world.

Not so long ago the range of existing and evolving threats were relatively easy to consider in silos, whereas now they appear connected. Dr Sloggett will offer his thoughts on the security approaches that are needed now and the role that technology must play in an increasingly connected security landscape.

Dr Dave Sloggett
Alan Taylor Research Fellow
The University of Oxford

This session will explore where AI is headed and if it can help move security practice from prevention to real-time threat detection.

  • Is Artificial Intelligence and Machine Learning a technology looking for a problem to solve?
  • What are the benefits of AI and what positive outcomes for security can it deliver?
  • Is the technology mature enough for mainstream use in security scenarios or is it more of a data-gathering tool that is yet to have its day?
  • Does the double-edged nature of AI present a significant risk due to both enterprises and attackers having access to the same tools? 

Dr Dave Sloggett
Alan Taylor Research Fellow
The University of Oxford

David Wright
Director
Trilateral Research

The risks and threats that the world is facing seem to be changing on an almost daily basis and this session will be part of the launch of the ‘ISRM Manifesto: Crisis 2030’. Whether it is climate change, severe weather systems, increasingly failing national infrastructures, IT dependency and systems fragility, pandemics, mutational viruses (both biological and cyber), and the increasingly destructive and non-recoverable nature of many of their impacts and long-term consequences, it seems as though the traditional models of risk management are no longer able to engage with – or even understand – how these emerging threats will impact on every aspect of our lives. The panellists will explore whether the nature of the changes in these emerging threats are evolutionary, revolutionary or whether in fact they are mutational – in that they are creating a completely new class of risk for which the models and frameworks that we used to describe previous classes of risks will no longer be applicable, or even relevant.

Rick Cudworth
Crisis and Resilience Partner
Deloitte

Brian Kinch
Director of Risk Management, Ecosystem Risk

Dr David Rubens D.SyRM, CSyP, F.ISRM, FSyI
Executive Director, Institute of Strategic Risk Management

GB Singh
Editor & Publisher, Security Today, India

PRESENTED BY: Dr Dave Sloggett, Alan Taylor Research Fellow, The University of Oxford.

Converged Security

The teams from Vidsys, Micro Focus and AXIS Communications will show how their technologies can be integrated in one centre, to prioritise emerging security risks from high volumes of data and respond in near real time. They will provide a fascinating view on how large events and campuses can be managed in a fast moving and dynamic environment. This includes:

  • a stadium where large numbers of fans are congregating. Tweets start pouring in about an upcoming protest to disrupt the game at a certain time, some threaten to march inside the stadium and stop the game – all from anonymous sources whose identities cannot be confirmed
  • Security officers begin to view live video feeds from stationary cameras, drones and the incoming tweets all under one common operating picture and monitor the situation
  • facial recognition and biometrics to prevent cyber physical attacks.

David Clark will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by James Willison

David Clark
Chief Security Officer & Head of Logistics, Chair
The Francis Crick Institute and ASIS UK Chapter

James Willison MA Msyl
Founder
Unified Security Ltd

This presentation will show how one converged team can identify and respond to fraudulent activity on a corporate network, in near real-time with the power of Vidsys, Micro Focus and AXIS solutions. The teams will demonstrate:

  • How the logical and physical id of an employee do not match
  • The operators can look at the office CCTV footage of the employee physically badging on the access control device in the morning
  • The screenshot captured is matched with the access card information
  • Vidsys and SIEM technologies correlate all this data and determine a case of Insider or OutsiderThreat

Dr. Daniel Dresner will follow up on key benefits of this converged approach and we will invite the audience to explore with us how these can be realised in the future.

Chaired by Sarb Sembhi

Dr Danny Dresner FInstlSP
Co-Founder and Director of Research
IASME Consortium