Advisory Board 2017

Speakers & Moderators 2017

Past Keynote Speakers

Darknet – an insight in the structure of the Darknet and the Silk Road Case

Lieutenant-Colonel Volker Kozok works in the German Federal Ministry of Defence as an official for the Commissioner for Data Protection in the German Armed Forces. For many years he held various positions as an IT Security Officer and oversaw the 11-month training of the Computer Emergency Response Team of the German Armed Forces as a training manager in 2001.
As an IT Forensic Investigator and Security Analyst he focuses on reviewing and evaluating complex IT systems, on network analysis and on auditing.
Based on his work for national and international teams on cyber security and his close ties to U.S. authorities, he dealt extensively with the issues of cyber security and cyber crime, focusing on risk management and analysis of network-based attacks.
In addition to his work, he is a frequent speaker at specialist conferences and conducts awareness training courses in the German Armed Forces and external organizations.

The speaker will outline the basic mechanisms of the “dark web” or “deep web” and describe the various user groups and their motives. Individual areas of the dark web will be explained and, with the Dread Pirate Roberts (DPR) as an example, one of the most controversial figures of the dark net will be presented in the second part of the presentation. Ross Ulbricht aka DPR, operator of Silk Road, the largest online marketplace, was arrested by the F.B.I. With Silk Road as an example, the function of illegal online marketplaces and the activities of the investigating authorities against thenew form of cybercrime will be described. The issue of the right of anonymity and invisibility and the need for effective ways to combat cybercrime will be addressed again at the end of the presentation.

Cyber security: A global issue demanding a coherent approach

Since August 2014 Andreas Reisen has been Head of Division IT II 2 - “Critical information infrastructures; IT security” at the Federal Ministry of the Interior. In addition to the protection of critical IT infrastructures, his responsibilities include questions of technology policy in IT security (e.g. on encryption and digitization), IT security assurance and cooperation with the IT security industry - including the corresponding technical supervision of the Federal Office for Information Security (BSI). Prior to his current position, Mr Reisen headed several divisions with various IT policy responsibilities at the Federal Ministry of the Interior. Mr Reisen started his professional career at the Federal Office for Information Security (1993-1999) and then continued at the Federal Ministry of the Interior. He has a master degree in physics and studied “theoretical particle physics” at RWTH Aachen.

At the congress he will share his thoughts on: Strategic and normative approaches to cyber security in the global and European context reflecting their input for digital business. The strategic framework consists of evaluation of the national Cyber Security Strategy, Public-private partnerships, …whereas the regulatory framework follows the EU NIS Directive and national IT Security Act.

European Perspective on the Security of Things

Harald Niggemann is a Cyber Security Strategist at the German Federal Office for Information Security (BSI). He joined BSI in 1999 and has worked on various theoretical and practical aspects of information security, particularly information security management, risk analysis, and standards. Harald contributed to many BSI publications and assisted government agencies in applying BSI's recommendations to real-world problems. Drawing on more than 15 years of experience in various facets of information security, he is currently concerned with strategic aspects and basic principles of cyber security. Harald is a valued speaker at national and international conferences, where he frequently reports on new trends in the field of cyber security. Harald studied theoretical physics and holds a Dr. rer. nat. degree from the University of Cologne.

During the keynote Dr. Niggemann will share the European perspective on the Security of Things from the German Federal Office for Information Security (BSI).
Connectivity, complexity and ubiquity are the key factors that characterize the Digital Society and simultaneously constitute the main challenges for cyber security. Lawmakers prefer cooperative approaches to guarantee safe and secure operation of digital systems. However, new EU legislation in this field is well underway. To support vendors, integrators and operators of cyber physical systems, Germany‘s Federal Office for Information Security publishes security analyses and detailed recommendations on a regular basis. How is the Digital Society dealing with the Internet of Things having Connectivity / Complexity / Ubiquity as constant companions. What are the standards within the EU legislation on Network and Information Security (proposed NIS Directive)? Learn about the Identification and Trust Services (eIDAS Regulation) in General Data.

Securing the Internet of Everything and how privacy correlates with it

Dr. Bernd Eßer studied Physics at the University of Bonn with final degree PhD. Already during his studies he started to work in the area of Internet Security. In 1996 he joined the consulting company Detecon where he established the consulting department for Internet Security which he headed for 15 years. In 2010 he joined Deutsche Telekom AG as head of Deutsche Telekom’s Cyber Emergency Response Team (CERT). In the following years he transformed the CERT into Deutsche Telekom’s Cyber Defense Center. He is member of the board of the German CERT association and manages the CERT cooperation of DAX30 enterprises.

Dr. Eßer will outline how important it is to secure and manage the unknown by companies that are barely prepared for the future. He will share his own experience on how to integrate the security governance in place for traditional IT with the Operational Technology in use. Later during the talk he is going to disclose privacy issues brought to the point – what do enterprises have to do to secure consumer data? This keynote is about newly created environments introduced from a fast-paced technology provider.

Can we trust IoT – ENISA´s perspective

Dr. Evangelos OUZOUNIS is the head of ENISA’s Secure Infrastructure and Services Unit. His unit implements EU Commission’s CIIP action plan, facilitates Member States efforts towards a harmonised implementation of incident reporting scheme (article 13 a and article 4 of the Telecom Package, as well as, article 19 of the eIDAS Directive), contributes to the development of the NIS Platform and develops good practices for National Cyber Security Strategies. ENISA’s Secure Infrastructure and Services Unit also runs numerous others studies on the cyber security aspects of Cloud Computing, Industrial Control Systems-SCADA, Smart Grids and Smart Cities, Finance, eHealth, Intelligent Transport Systems and Internet Interconnections. From 2010-2012 Dr. Ouzounis’ unit has managed the first pan European Cyber Exercises (e.g. Cyber Europe 2012/10, and Cyber Atlantic 2011).
Prior to his position at ENISA, Dr. Ouzounis worked several years at the European Commission, DG Information Society and Media (DG INFSO). He contributed significantly to EU Commission’s R&D strategy and policies on securing Europe’s infrastructures and services. Dr. Ouzounis was co-founder and deputy director of Electronic Commerce Centre of Competence (ECCO) at Fraunhofer Institute for Open Communication Systems (FhG-FOKUS, Berlin, Germany). He led and managed more than 20 pan European and International R&D projects.
Dr. Ouzounis holds a Ph.D from the Technical University of Berlin and a master in computer engineering and informatics from the Technical University of Patras, Greece. He wrote 2 books and more than 20 peer reviewed academic papers and chaired several international conferences.

In this speech ENISA will present the key cyber security challenges for the wide adoption of IoT, identify good practices for immediate use and propose ideas for future work.

On ducks and rabbits – Security set in perspective

Craig joined the Payments Council in October 2013 after a variety of appointments in the intelligence and security sector spanning 28 years. During that time he held range of roles in deployments overseas and at home, providing advice to the most senior crisis management organisations as well as more tactical roles. In addition to Director of Security for the Payments UK is now Chief Security Officer for Bacs, Faster Payments Scheme, the Cheque & Credit Clearing Company and Paym. In April 2014 he published a series of research documents on Cyber Threat Intelligence for the UK Banking & Payments sector.

The Director of Security for Payments UK will offer an analysis and assessment of future cyber security strategy using similes you are unlikely to forget. He will consider some of the strategic issues and corresponding capabilities that may become evident in the near and medium term and offer some accessible models and concepts to make sense of a complex threat environment.

The Evolution of Cybersecurity: Providing Customers the Confidence to Connect

Paul Rogers is the President and CEO of Wurldtech and General Manger of GE Industrial Cyber Security. Wurldtech is world leader in cyber security solutions, providing security products, testing and certification to customers in the oil & gas, transportation, healthcare and utilities sectors. In 2014, General Electric (GE) acquired Wurldtech, which is headquartered in Vancouver, British Columbia, Canada.For more than 15 years at GE, Paul has held a series of global leadership roles. In his current role, he is responsible for driving the vision and strategy for Wurldtech’s products and certifications, including the highly regarded Achilles Certifications. He is also chartered with leading GE’s industrial cyber security initiatives for GE Digital and its customers to protect critical infrastructure and the Industrial Internet.Paul began his career at General Electric in 2001 as a Strategic Initiatives Leader for GE’s Optimization and Control division and quickly progressed in positions with increasing responsibility with the company. After a series of promotions, he was appointed to the position of General Manager of Quality/Operations for GE Energy Engineering, leading all global operational aspects of a multi-billion dollar energy division.He was later appointed to Senior General Manager of the Software Solutions Group at GE Energy with oversight of GE’s product growth and development strategy for Power and Water, Oil and Gas and Energy Management. In 2011, he was named Chief Development Officer for GE Software, leading a complex GE wide portfolio of optimization software solutions designed for the Industrial Internet.Before joining GE, Paul was a principle corporate stakeholder in Praxis Engineers where he served as the engineering and product line leader, until the company was acquired by GE in 2001. 

Paul Rogers will discuss the “Confidence to Connect ”. In his presentation, he will talk about the transformation that GE is going through, the next decade’s focus on the Industrial Internet, the strategy behind GE’s cybersecurity business (Wurldtech) and what is happening in the cyber market. Finally, Paul Rogers will explain why companies and organizations should implement a cyber security strategy and the difference between OT/IT and convergence.

The Internet of Things and Cybercrime: How my toaster stole my credit card details

Andrzej Kawalec is the chief technology officer for HPE Enterprise Security Services. In this role, he is responsible for HPE’s Information Assurance strategy, propositions and market-facing activity. He leads research and innovation for the group, with a particular focus upon cloud, consumerization, cybersecurity and the business risks surrounding information security systems, policies, users and processes.
Prior to this, Kawalec spent 15 years at some of the world’s largest IT companies, including Compaq, Digital and Siemens, and has worked in board-level positions across the public and private sectors to help define and promote information strategies.
Kawalec has degrees in international business and German from Ottawa and Bradford Universities.

The Internet gave us the opportunity to connect in ways we could never have dreamed possible. The Internet of Things will take us beyond connection to become part of a living, moving, global nervous system. Andrzej Kawalec will look at the potential for cyber-attacks using IoT devices and the checklist of things that leaders should consider when thinking about IoT Security. Using autonomous and connected carsas a use case he will explore how we are changing the concept of transportation.

IOT Security Implication for the Enterprise

Jaya Baloo the CISO of KPN Telecom in the Netherlands. She won the Cyber Security Executive of the year award in 2015. Jaya works with an amazing information security team of highly driven specialists.  Working in the information security arena for the past 18 years, she has worked mostly for global telecommunications companies such as Verizon and France Telecom. Jaya is also a frequent speaker at security conferences on subjects around lawful interception, mass surveillance, and cryptography.

During this talk Jaya is going to talk about everything that do we have to worry about, when it comes to security of IoT. She will outline what the practical / enterprise usage landscape look like. The most important question discussed will be what we can actually do about it?

Industrial Cybersecurity in the Age of Industrie 4.0

Yoni Shohet is the co-founder and CEO of SCADAfence. Yoni has vast experience in building strategies and leading complex cybersecurity projects in the OT security domain. Yoni developed his algorithmic and mathematical expertise in a mathematics excellence program at Bar-Ilan University. Prior to SCADAfence, Yoni served as a Captain in the elite technological unit of the Intelligence Corps as a project manager and led multidisciplinary cybersecurity projects.

Yoni will discuss cybersecurity as an enabler of Industrie 4.0 opportunities, present an overview of the industrial cybersecurity threat landscape – attacks, trends and statistics. He will also explain what can be done and what and how to bridge between IT and OT.

Panel Discussion Keynotes

Changing CIO/CISO perspective – executing security for a connected future

All panelists share her view on the changing CIO/CISO perspective and talk about executing security for a connected future. The discussion will deal with the main challenges for CIOs/CISOs within the operational and strategic work. The panelists will try to define effective techniques for providing a data and system protection. The foundation for seamlessly and securely connecting devices, delivering trusted data to the cloud, and delivering value through analytics will play a big role during this talk.

Stephanie von Friedeburg was appointed World Bank Group CIO and VP for Information and Technology Solutions in 2012. With over 20 years of investment and development experience within the World Bank Group, von Friedeburg is bridging the gap between the business and technology, transforming the role of IT at the World Bank Group into that of a strategic business partner. Von Friedeburg is driving an IT strategy that leverages current technology trends, such as cloud computing and mobility, to enable to the organization’s diverse and decentralized workforce to more effectively communicate, collaborate, and connect with each other and with clients. Von Friedeburg has been with the World Bank Group since 1992, serving in a wide variety of roles including CIO for the International Finance Corporation (IFC), Senior Manager for IFC Global Information and Communication Technologies, Manager for IFC General Manufacturing Investments in Russia and the former Soviet republics, and Manager for IFC’s Global Telecommunications Portfolio. Von Friedeburg is on the Advisory Board of, an organization helping nonprofits become more productive and collaborative in achieving their mission. She is also an advocate for the advancement of women in Information and Technology, having co-founded the International Finance Institutions (IFI) Women in IT organization. Von Friedeburg also sits on the Board of the Bank-Fund Staff Federal Credit Union and the Global Business Initiative External Advisory Committee for Georgetown University’s McDonough School of Business. In addition to an MBA from the Wharton School, von Friedeburg holds a Masters of Arts from the Lauder Institute at the University of Pennsylvania and an undergraduate degree from the School of Foreign Service at Georgetown University.

CSO / Head of Group Security RWE AG since April 2013. In this function he and his team was awarded the Outstanding Security Performance Award 2015. From 2007 to 2013 he was CSO of METRO GROUP and prior to this he held several senior Security Management positions at Deutsche Post and DHL. Master degree in Security and Risk Management from University of Leicester, UK. Major (res) of the German Armed Forces.
Honorary appointments: Chairman of the Board of the Security Association in North Rhine-Westphalia; Member of the Security Sub-Committee of the Federation of German Industries (BDI), member of the advisory board of the scientific research project “IT security in critical infrastructures”, lecturer for strategic steering of Corporate Security organizations at Frankfurt School of Finance & Management and European Business School. Editor of the online service “” of Richard Boorberg publishing company.

Ad Krikke started his career as a business consultant and project manager at Top 500 organizations in the Benelux. Connecting theme in his assignments was aligning business needs with IT technology. He was also the CIO of wholesaler and logistics firm Lekkerland. In this function he was responsible for restructuring the IT organization.
Since 2002 Ad Krikke works for Dutch based multi-national Royal DSM. After several years as a program manager of several large IT projects Ad moved to the internal audit organization of DSM. Six years in a lead auditors role allowed him to get a strong insight in the DSM business and risk management. Since 2012  Ad is safeguarding the digital information of DSM in the role of the CISO. Currently he is implementing a business and risk based, multi-line of defense Cyber Resilience Strategy. Together with the business innovative opportunity seeking ideas are developed to serve business and information security objectives.

Past Speakers 2016