3 rd Informal Cyber Security Experts Forum Round Table discussion on Cyber Security

Transcription

1 Communications Regulatory Authority of the Republic of Lithuania European Security Round Table Microsoft Venue: 3 rd Informal Cyber Security Experts Forum Round Table discussion on Cyber Security Agenda Radisson Blu Hotel Lietuva 09:30-12:30 Policy session (English) 25 October 2013 Address: Konstitucijos ave. 20, Vilnius, Lithuania Moderators: Vilma Misiukonienė (Infobalt) and Rytis Rainys (Communications Regulatory Authority, Director of Department) 1. Welcome word Feliksas Dobrovolskis (Communications Regulatory Authority, Director) 2. EU Cyber security directive proposal: state of play and possible influence for the ICT market Beginning of this year, the European Commission proposed a new framework for European network and information security. The panelists will discuss the state of play and progress of this dossier, perspectives of different stakeholders and the potential impact of regulatory trends in security management by means of regulation. Christoffer Karsberg (ENISA) Cornelia Kutterer (Digital Europe) Veronika Horvath (RAND Europe) 3. How does moving to the cloud and the current shift in security towards the concept of prevent, detect, respond and recover align? The economic inevitability of moving to the cloud and the growing threats from cyber adversaries appear to be at odds. However, whether an organization hosts information and services in data centres that are on premise or in the cloud, the same security principles apply, the organizations needs a strategic and operational security framework ready to counter threats from persistent cyber adversaries. This session will discuss the conceptual continuum of protect, detect, respond, and recover to anticipate risks, limit the impact and recover quickly and deep-dive into cloud security trends. Michal Jaworski (Microsoft, National Technology Officer) Daniele Catteddu (EMEA, Cloud Security Alliance, Managing Director)

2 4. Public-private partnership, charting a path for meaningful national cybersecurity strategies National Cybersecurity strategies help unify government, non-government organizations, and the individual citizen to tackle an emerging issue of significance. Industry must work together with governments in order to create a secure and trustful digital eco-system. The panel will look at how different actors involved in a PPP coordinate, exchange information and contribute to an efficient and effective strategy. Ashley Jelleyman (BT) Vytautas Vitkauskas (Infobalt, President) Marius Pareščius (Head of DataCenter "Bunkeris.lt") Vytautas Bučinskas (Lithuanian Telecom provider "TEO") Aleksandras Česnavičius (Lithuanian Online Media portal DELFI, CEO) 12:30-13:30 Lunch break 13:30-16:00 Technical session (Lithuanian) 1. Vulnerability of mobile stations using RFF technology and new threats of information detection in radio channels Saulius Japertas (Kaunas University of Technology) 2. Internet governance and internet blocking Rytis Rainys (Communications Regulatory Authority, Director of Department) 16:00 End of the meeting Sponsors:

3 Speakers Daniele Catteddu, CSA Daniele Catteddu is the Managing Director, EMEA, in Cloud Security Alliance, where he is responsible for the definition and execution of the company strategy in EU, Middle East and Africa. In the past, he worked at ENISA (European Network and Information Security Agency), as Expert, where he was responsible of projects in the areas of Resilience and Critical Information Infrastructure Protection (CIIP). He has also worked within ENISA as a risk management expert, and in particular, having a leading role in developing EU cloud security research. Before joining ENISA, Daniele worked as an Information Security consultant in the banking and financial sector. Daniele is the author of the study: Security and Resilience in Governmental Clouds as well as co-author of the reports: Cloud Computing: Benefits, risks and recommendations for information security and Cloud Computing: Information Assurance Framework. Daniele graduated from the University of Parma (Italy) in Business Administration and Economics, and he is an ISACA Certified Information Security Manager and Certified Information Systems Auditor. Christopher Karsberg, ENISA Christoffer Karsberg works as Network and Information Security Expert at ENISA. He mainly works with the regulatory implementation of security requirements and incident reporting schemes for the European electronic communications sector. Previously he worked as Head of Unit at the Swedish telecom regulator and managed work to enhance network security and privacy in Sweden. Christoffer also has a background from implementing electronic commerce and payment solutions. Vytautas Vitkauskas, Infobalt Vytautas Vitkauskas is General Manager and CEO and the main shareholder of INTA, Joint Stock Company, also the President of Association INFOBALT and the adviser on public issues at Seimas of the Republic of Lithuania in National Security and Defence Committee. Erlier Vytautas was the adviser on Information Technology at Seimas of the Republic of Lithuania. Vytautas graduated from Vilnius University Faculty of Physics and holds M.Sc in physics. He is an author of 12 scientific publications on acoustic research methods of thin semiconductor layers and was Lithuanian coordinator of Nuclear Non Proliferation and Safeguards projects, funded by USA Department of Energy.

4 Vilma Misioukoniene, Infobalt Works as EU affairs manager at INFOBALT and is responsible for EU policy issues related to ICT industry. She liaison with EU association DigitalEurope, European Commission and other EU institutions, as well as national authorities. She was a public advisor in the Information Society Committee at the Lithuanian Parliament. Since 2003 when she was appointed as Acquis Technical Officer, Vilma has been providing IT companies assistance and consultancy on ICT policy and legal issues. Vilma assisted to EC as an expert, also has been part of EU IPR Help-desk. Ms. Misiukoniene was selected for the few terms to the Permanent Stakeholders Advisory group of EU Network and Information security Agency ENISA and is currently appointed by ICT industry to the Lithuanian Commercial Arbitration Board. Over twenty years of professional experience with ICT industry, Ms. Misiukoniene has run number of national and EU projects, has conducted numerous presentations and training sessions. Her fields of expertise includes Acquis Communautaire related to ICT, e- Government for information society, e-business, IPR protection and management, IP licensing, information security, digital publishing, internet regulation, e-skills, Women in ICT and etc. Currently Vilma is appointed by INFOBALT to liaison with Lithuanian institutions on Lithuanian EU Presidency, as well as with DigitalEurope to move forward the Digital Agenda priorities. Ashley Jelleyman, BT Ashley has been involved in Network and IT Security for 35 years and has been with BT for the last 18 years, holding a number of posts in that time. His current role is as General Manager Information Assurance and Risk Assessment in BT Security, a post he has held for the last 5 years, managing a team of 120 Information security professions. He is a Fellow of the British Computer Society, as well as a Full Member of the Institute of Information Security Professionals. Ashley is also a member of the IAAC (Information Assurance Advisory Council) board. Ashley is a regular guest lecturer at a number of Universities, Colleges and schools, where he presents on Cyber Security and staying safe on line. He has been heavily involved in various U.K. F.S.A. cyber preparedness exercises, including the Market Wide Exercise in preparation for the 2012 Olympic games. He recently presented on Privacy and Security to the Commonwealth Telecommunications Organisations Cyber Security Summit in Cameroon. Michał Jaworski, Microsoft Michal Jaworski is a National Technology Officer. He has been working for Microsoft since Graduated at Warsaw Technical University. Vice-president of Polish IT and Telecommunication Chamber of Commerce responsible for IT market development. Appointed by Minister of Science and Higher Education of Poland for Member of Council of National Centre of Research and Development (2012). Worked at Polska 2020 foresight project, member of governmental Information Society Development Strategy team (2008). Cooperated with Institute for Prospective Technological Studies, part of European Research Centre. Awarded by President of Poland Aleksander Kwasniewski for IT popularization (2002), industry Infostar award (2008). Regular columnist at IT Professional and IT w Administracji. Co-creator of Digital Portrait of President Candidate 2010 and Digital Portrait of Political Parties 2011 campaigns.

5 Veronika Horvath, Rand Veronika Horvath is a policy analyst at RAND Europe. Her research focus is on the social and economic impact of innovation and technology policy, with a particular focus on Europe. She has recently worked on a study informing the European Parliament s ITRE Committee on data breaches in the context of the proposed Network and Information Security Directive. Her recent work also includes a study investigating options for the development and governance of the Internet of Things in Europe for DG CNECT and a project analysing long-term strategic trends for Europe for the Bureau of Economic Policy Advisers of the European Commission. She graduated in international relations and holds a Master s degree from the University of Florence. Rytis Rainys, RRT Dr. Rytis Rainys is a Director of Network and Information Security Department at Communications Regulatory Authority of the Republic of Lithuania; Chairman of the Independent Regulators Group international working group on Networks and information security (IRG WG on NIS). Has 10 years of experience in electronic communications network and information security issues with responsibility for implementation of various national public awareness projects, cyber incidents investigations models and internet networks resilience assessment within Lithuania. In its lead, the National Computer Emergency Response Team CERT-LT was establishment in 2006 and a national Safer Internet project implemented in 2007.