25-27 March | Doubletree by Hilton Brussels City

Conference Agenda 2023

ISO/IEC 19790 Crypto Module Day will be presented on Tuesday 28 March, prior to the EU Cyber Act Conference. Click here for the complete agenda.

Wednesday 29 March

Conference Day 1

08:00-09:00 Registration

09:00-10:10 Plenary Keynote Session

09:00 Introduction and Welcome (P10a) Wouter Slegers, CEO, TrustCB, Netherlands

09:40 Industry Keynote: The Cloud Security Compliance Ocean—European Cloud Market Access (P10c) William Ochs, CSO Cisco SD-WAN, CEO Kanji Security, Kanji Security / ENISA AHWG, United States

10:10-10:50 Networking Break in Exhibits

10:50-12:20 Track Sessions

Outlook/Opportunities (L11)
Moderator: Tomislav Nad, Lead Innovation Technologist SGS, Austria

10:50 Regulatory Compliance for Consumer Devices: An Industry-Driven Initiative (L11a) Carlos Serratos, IoT Certification Expert, NXP, Netherlands


11:20 Trust in Digital Identities Managed by Mobile Devices (L11b) Matthias Schwan, Senior Principal Security & PKI, Bundesdruckerei GmbH, Germany


11:50 Securing User Interactions at the Device Level for High Assurance Use Cases (L11c) Fabien Courtiade, Director for Product Management, Qualcomm, France

IoT Challenges (I11)
Moderator: Wouter Slegers, CEO, TrustCB, NetherlandsCommon Criteria Expert, France

10:50 Leveraging Common Criteria for Products’ Security Specification (I11a) Sylvain Guilley, CTO, Secure-IC, France


11:20 Medical Devices Security: How to Utilize Existing Standards to Achieve Compliance and Prepare for Upcoming Harmonized Certification (I11b) Anna Prudnikova, Team manager – Products Certification, Secura, Netherlands


11:50 IoT—Compliance and Defiance (I11c) Jo Dalton, Associate Partner, Head of Europe, Pen Test Partners, United Kingdom

12:30-13:30 Lunch in Exhibits

13:30-15:00 Track Sessions

Outlook/Opportunities (L12)
Moderator: Miguel Bañón, Convenor, ISO/IEC JTC 1/SC 27WG 3, Spain

 

13:20 How Many People in the World are Using CC Certified Products? (L12a) Markus Bartsch, Business Development, TÜV Informationstechnik GmbH, Germany


13:50 Cybersecurity and AI: A Play in Two Acts (L12b) Tomislav Nad, Lead Innovation Technologist SGS, Austria


14:20 EU5G Developments (L12c) Alex Leadbeater, Head Global Obligations Futures and Standards, BT, United Kingdom

Public Policy (B12)
Moderator: Matthias Intemann, Head of Branch Certification, Federal Office for Information Security – BSI, Germany

13:20 An Update on ENISA Cybersecurity Certification Activities (B12a) Philippe Blot, Head of Sector Certification, European Union Agency for Cybersecurity (ENISA), France


13:50 Interplay of the CRA with Cybersecurity Certification Requirements Enacted in Other Vertical Legislation (NIS, CSA,…) (B12b) Alban Feraud, International Organizations & Regulatory Affairs, Strategy & Market Officer, IDEMIA Public Security & Identity, and VP, Eurosmart, Belgium; Pierre-Jean Verrando, Director General, Eurosmart, Belgium


14:20 Evaluating and Improving the NIST Cybersecurity Framework(B12c) Cherilyn Pascoe, Senior Technology Policy Advisor, National Institute of Standards and Technology, United States

15:00-15:30 Networking Break in Exhibits

15:30-17:30 Track Sessions

Standards for Success (S13)
Moderator: Dr. Igor Furgel, Head of Certification Body Deutsche Telekom Security, Germany

15:30 Kickstarting the Patch Management Extension for CC (ISO/IEC 9569) (S13a) Sebastian Fritsch, Head of laboratory/ITSEF, secuvera GmbH, Germany


16:00 Vulnerability Management—An Important Aspect to Get Right (S13b) Staffan Persson, Co-Founder and Director, atsec information security GmbH, Germany


16:30 Better, Faster, Cheaper (S13c) Rasma Mozuraite Araby, Managing Director, atsec information security AB, Sweden


17:00 What Does it Take to Run a CB? (S13d) Wouter Slegers, CEO, TrustCB, Netherlands

Public Policy (B13)
Moderator: Petra Manche, Global Certifications Team – Manager, Common Criteria, Cisco, United Kingdom

15:30 NIAP Looking Forward (B13a) Shantel Powell, Deputy Director, NIAP, United States


16:00 Certification—Time is Also an Issue for Scheme Development (B13b) Matthias Intemann, Head of Branch Certification, Federal Office for Information Security – BSI, Germany


16:30 Operation Under EUCC – Everything You Need to Know as a Certification Body (B13c) Fritz Bollman, Head of Software Certification Section, Federal Office for Information Security, BSI, Germany; Klementina Geyer, Common Criteria Certification Expert, Federal Office for Information Security – BSI, Germany


17:00 Confidence in Cybersecurity, Can You Put a Label on it? (B13d) Katerina Megas, NIST IoT Cybersecurity Program Manager, U.S. Dept of Commerce, NIST, United States

17:30 Adjourn

18:30 Dine Around Brussels

Enjoy an informal group dinner at one of Brussel’s top restaurants with your EU Cyber Security Act colleagues on Wednesday, 29 March. This is an add-on to the conference registration. For an additional fee you can reserve your seat for a prix-fixe dinner at a group table. Reserve early—seating is limited. On site, you’ll meet your group at 18:30 at the conference registration desk and depart from there. 

Thursday 30 March

Conference Day 2

08:00-09:00 Coffee

09:00-10:30 TRACK SESSIONS

Standards for Success (S20)
Moderator: Tony Boswell, Senior Principal Consultant and Technical Manager, CyTAL Evaluation Laboratory, United Kingdom

09:00 EU IoT: Why We Will Need FITCEM and SESIP (S20a) Georg Stütz, Security Certification Expert, NXP Semiconductors, Austria


09:30 Panel Discussion: CSA Speed and Consistency (S20b) Moderator: Tony Boswell, Senior Principal Consultant, CyTAL, United Kingdom Panelists: Roberto Cascella, Head Of Sector – Technology, Supply Chain & Strategic Autonomy, European Cyber Security Organisation (ECSO), Belgium; Ilias Chantzos, Global Privacy Officer and Head of EMEA Government Affairs, Broadcom, Belgium; Johan Klykens, Director of CCB-Certification, Centre for Cybersecurity, Belgium; Rosalina Porres Ortega, Area Head of the Laboratory and Product Certification Department, Entidad Nacional de Acreditación (ENAC), Spain [60MIN]

Industrial Strategies (T20)
Moderator: Dominik Ziegler, Security Expert, Siemens

09:00 How to Apply Pre-Silicon Testing in Certification? (T20a) Pascal van Gimst, VP Global Services Sales, Business Development, Riscure, Netherlands


09:30 Evolution of Cryptographic Evaluation in Europe (T20b) José Ruiz, CTO, jtsec Beyond IT Security, Spain


10:00 Opportunities and Challenges With the CRA from a Manufacturer’s Perspective (T20c) Marko Wolf, Chief Expert Product Cybersecurity Governance, Robert Bosch GmbH, Germany

10:30-11:00 NETWORKING BREAK IN EXHIBITS

11:00-12:30 Track Sessions

Cloud Frameworks (C21)
Moderator: Wouter Slegers, CEO, TrustCB, NetherlandsCommon Criteria Expert, France

11:00 Connect the Dots…NIS2-CSA-EUCS (C21a) Anders Jonsson, SecureAppbox/Member of ENISA AHWG EUCS and VHWG, Sweden


11:30 Panel Discussion: EUCS (C21b) Moderator: Troy Leach, Chief Strategy Officer (CSO), Cloud Security Alliance, United States Panelists: Anders Jonsson, SecureAppbox/Member of ENISA AHWG EUCS and VHWG, Sweden; Thomas Niessen, Kompetenznetzwerk Trusted Cloud, German Ministry of Economics and Energy, Germany; William Ochs, CSO Cisco SD-WAN, CEO Kanji Security, Kanji Security / ENISA AHWG, United States; Bert Tuinsma, Independent, Netherlands [60MIN]

Select Topics (I21)
Moderator: Martin Chapman, Chairperson, OASIS Open, United States

11:00 IOT Smart Home Security Standards (Matter) (I21a) Preeti Ohri Khemani, Senior Director, Infineon Technologies, Austria


11:30 Meeting the Coming IoT Security Regulation with a Robust and Certified Silicon Root-of-Trust (I21b) Bruno Mussard, Security Marketing Manager, STMicroelectronics, France


12:00 Open Source and the Cyber Resilience Act (I21c) Mikael Barbero, Head of (Cyber-)Security, Eclipse Foundation, France

12:30-13:30 Lunch in Exhibits

13:30-15:00 Track Sessions

Standards for Success (S22)
Moderator: Tony Boswell, Senior Principal Consultant and Technical
Manager, CyTAL Evaluation Laboratory, United Kingdom

13:30 How SESIP is Supporting European Goals of Building a Cyber Resilient Society (S22a) Georg Stütz, Security Certification Expert, Senior Principal at NXP Semiconductors, United Kingdom


14:00 Finally—The First Generic Certification Scheme to Address GDPR Art 42 Approved by the EDPB (S22b) Willy Fabritius, Global Head Strategy and Business Development, SGS, United States


14:30 Panel Discussion: Opportunities and Obstacles: The Industry’s Take on the EU Cyber Resilience Act (S22c) Moderator: Eloise Ryon, Senior Manager, Europe Digital Policy, Europe Operations, Schneider Electric, Belgium Panelists: Alexander Eisenberg, Head of Office EU Technical Market Access, B/S/H/, Belgium; Gisela Meister, Senior Security Consultant, Eurosmart, Germany; Carlos Serratos, IoT Certification Expert, NXP, Netherlands; Zoey Stambolliu, Senior Manager for Infrastructure & Security Policy, DIGITALEUROPE, Belgium [60MIN]

IoT Challenges (I22)
Moderator: Peter Brown, Senior Adviser, Strategy and Innovation Unit European Parliament, Belgium

13:30 Would You Still Trust Your IoT Product Supplier From Now On? (I22a) Roland Atoui, Managing Director, Red Alert Labs, France


14:00 Defense and Hardening of Billions of End-of-Life Internet-of-Things Devices—Solutions and Challenges (I22b) Andrei Costin, CEO/Co-Founder, Binare Oy, Finland


14:30 A Deep Dive Into New Technologies for IoT Cybersecurity (I22c) Jean Delesse, COO and Co-Founder, Trusted Objects, France


15:00 An Automated and Continuous Cybersecurity Re-Certification Solution for IoT (I22d) Shahid Raza, Director of Cybersecurity Unit, RISE Sweden | Associate Professor, Uppsala University Sweden, RISE Research Institutes of Sweden, Sweden

15:30-16:00 Networking Break

Exhibits close at 16:00.

16:00-17:00 Closing Presentation, Summary Panel Discussion

16:00 Summary Panel Discussion: EU Digital Identity Wallets (P23a) Moderator: Alban Feraud, International Organizations & Regulatory Affairs, Strategy & Market Officer, IDEMIA Public Security & Identity, and VP, Eurosmart Panelists: Fabien Courtiade, Director for Product Management, Qualcomm, France; Chiara Giovannini, Senior Manager Policy & Innovation Deputy Director-General, ANEC, Belgium; Detlef Houdeau, Senior Director, Infineon Technologies, Germany; [60MIN]

17:00 Adjourn