Wednesday 6th December – Pre-conference meet up
|21:00 – 23:00||Informal pre conference networking at Brasshouse Pub, 44 Broad St, Birmingham B1 2HP|
Thursday 7th December – Public Cyber Security Conference Birmingham ICC
|09:00 – 09:25||Registration, arrival refreshments and exhibition – ICC Central registration area|
Main auditorium – Level 4, Hall 1
|09:25 – 09:30||Chair’s introduction & opening remarks –
Martin Ferguson, director of policy and research, Socitm
|09:30 – 10:10||Opening Keynote – Main auditorium – Lessons Learned from Wannacry –
Dan Taylor, head of cyber, NHS Digital
Dan will provide an overview of what NHS Digital learned from May’s Wannacry incident and outline the key lessons that the wider health and care system now needs to apply.
Richard Corbridge, chief digital and information officer, Leeds Teaching Hospital, and previously CIO, Health Services Executive, Ireland
Richard is an internationally recognised leader in digital strategy and technology. In 2017, he was named the UK’s number one CIO in CIO Magazine’s CIO100 list. Richard will explain how Wannacry created the perfect storm for new digital teams and why the crisis provided the catalyst for forming, storming and norming a digital team at a new pace.
|10:10 – 10:30||Building enterprise wide security architecture fit for critical public services –
Mark will outline the fundamentals of building a fit for purpose enterprise wide cyber security architecture and why this requires a shift change in thinking to align cyber security thinking to business risk management.
|10:30 – 10:50||Reducing Cyber Security Risks in the UK Public Sector – NCSC Senior Speaker – (confidential)
A senior speaker from the National Cyber Security Centre will explain the role of the NCSC in supporting public sector organisations, and provide a summary of the cyber defence services provided by the NCSC and how to access them.
|10:50 – 11:05||Coffee break – Exhibition hall – Level 5, Hall 4|
|11:05 – 11.25||Interactive Hacking Demonstration: Fuzzbunch, ‘ruling the empire’
Gary Colman, head of IT audit and security services, West Midlands Ambulance Service NHS Trust
Fuzzbunch, is the NSA hacking tool that leaked onto the Internet and enabled the subsequent Wannacry ransomware attacks that hit the UK public sector in May 2017. Gary will demonstrate how Fuzzbunch can be used to hack into a Windows PC, showing what happens post-hack.
|11:25 – 11.55||“NHS Cyber bat signal” – launch of a new NHS peer-to-peer cyber alert system
Dr Joe McDonald, CCIO Northumberland Tyne and Wear NHS Foundation Trust
Adrian Byrne, CIO, CIO University Hospital Southampton NHS Foundation Trust
Dr Marcus Baw, independent consultant, Baw Medical
Based experiences from Wannacry, Health CIO and CCIO networks have developed a new ‘NHS Cyber Batsignal’. Enabling NHS IT leaders to issue and share cyber incident alerts that trigger dual email and text alerts, this session will demonstrate and launch the new alert system.
|11:55 – 12.55||Stream 1 – Main auditorium
Cyber security challenges, current threats
Gabe Chomic, president, Information Systems Security Association (ISSA)
Geoff Connell, president, Socitm, CIO, Norfolk county council
|Stream 2 – Exhibition hall
Policy & skills workshops, GDPR essentials
Gabriel Voisin, partner, international privacy & data protection practice, Bird & Bird
Peter Brown, group manager, Information Commissioner’s Office
|12:55 – 13.40||Networking lunch and exhibition|
|13:40 – 14.25||Stream 1 – Main auditorium
Cyber security challenges, emerging threats
Sanjiv Gohil, cyber senior investigator – detective inspector, Metropolitan Police
Professor Carsten Maple, professor of cyber systems engineering, University of Warwick
|Stream 2 – Exhibition hall
Embedding Cyber Risk and Response at board Level
Inderjit Singh, lead on cyber security policy, NHS England
David Warburton, senior systems engineer, F5 speaking on application security
|14:25 – 15:10||Main auditorium closed sessions – Real world attacks
Anthony Lundrigan, CIO, East and North Hertfordshire NHS Trust
Simone Barbaresi, deputy director – Infrastructure, University of BangorSimone will share how the University of Bangor’s IT services reacted to moving to Office365 for both staff and students and how it reduced the malware risk profile but didn’t eliminate it.
|1510 – 15:25||Coffee break – Exhibition hall – Level 5, Hall 4|
|15:25 – 16:00||Main auditorium – Citizen identity across the public sector, threat detection, mitigation and response
John Vanderwolfe, town clerk, Tiverton Town Council
Steve Kennett, security director, JISC
|16:00 – 16:30||Closing keynote: A realist’s view of GDPR
Ed Tucker, former head of HMRC cyber security, now CIO at DP Governance
Ed is CISO of the Year 2017. As head of cyber security at HMRC was responsible for stopping half a billion spam emails a year, he has just moved to become CIO at DP Governance and will offer practical advice on GDPR in a view from the front line.
|16:30 – 16:55||Main Auditorium – Closing plenary debate
How to integrate local public services in a secure manner, and align future information governance regimes
Chair: Dylan Roberts, chief digital and information officer, Leeds City Council
Mark Smith, head of PSN compliance, Government Digital Service
Dan Taylor, head of cyber security, Data Security Centre, NHS Digital
David Evans, director, policy and community at BCS
Richard Corbridge, chief digital and information officer Leeds Teaching Hospital, and previously CIO, Health Services Executive, Ireland
|16:55 – 17:00||Closing remarks from the Chair.|