CISO UK schedule

•    Insights into the latest threat intelligence from the National Cyber Security Centre and industry reports
•    How attacker tactics are evolving with AI and automation
•    Strengthening Governance, Risk & Compliance (GRC) to align cyber risk with business strategy and regulatory expectations

Many organisations don’t fail due to a lack of security tools, but because of leadership blind spots, where executives underestimate risk, misalign priorities, or treat cybersecurity as a technical issue rather than a core business responsibility. Addressing these gaps requires stronger executive awareness, accountability, and a culture that integrates security into strategic decision-making.
Jane Frankland MBE, Founder & Chief Executive Officer, KNEWSTART 

•    How to align incentives and accountability across executives, business units, and third parties to ensure shared ownership of cyber risk
•    Exploring how to influence beyond authority to shift behaviours and engage stakeholders without relying on mandates
•    What it takes to embed security into business operations, moving from policy-driven compliance to everyday secure decision-making
Glen Hymers, Deputy Director, Cyber & Information Security (CISO), CABINET OFFICE

•    Exploring real UK breach case studies and leadership lessons
•    How to prepare executives for crisis decision-making
•    What separates resilient organisations from reactive ones
Wisdom Aveh, Head of Information Security, Data Protection Officer, KURT GEIGER

•    Exploring how attackers use generative AI and deepfakes
•    How to adapt detection for AI-driven phishing and fraud
•    What defensive AI actually delivers in real SOC environments
Frank Teruel, COO, ARKOSE LABS

•    How to move from checkbox audits to control validation
•    Insights into regulator expectations vs reality
•    What measurable resilience really looks like
Wisdom Aveh, Head of Information Security, Data Protection Officer, KURT GEIGER
Mark Westgate, Global Manager, Continuous Threat & Exposure Management, JUST EAT TAKEAWAY.COM

•    Building an engineering-first security function: shifting from reactive defence to proactive, product-led security
•    The DevSecOps dial: structuring teams, embedding security into development pipelines, and hiring for the right blend of engineering and security skills
•    GRC as engineering: moving to compliance-as-code and creating a holistic, real-time view of organisational risk and security posture
•    Leveraging AI in security: understanding how attackers are using AI, and how security teams can operationalise it to enhance detection, response, and efficiency
Mike Chilvers, Deputy Chief Information Security Officer, ELANCO

•    How to translate cyber risk into financial impact
•    Insights into what UK boards actually expect from CISOs
•    What makes a CISO credible at executive committee level
Kirsty Kelly, Group Chief Information Security Officer, CFC INTERNATIONAL

•    How to coordinate legal, comms and technical teams
•    Insights into lessons from major breach investigations
•    What to do when containment fails

Dr. Dipesh Hindocha, Chief Medical Information Officer, HCA HEALTHCARE UK

•    How to detect behavioural anomalies ethically
•    Insights into cultural and HR collaboration
•    Exploring privacy vs monitoring trade-offs
Sam Taylor, Chief Information Security Officer & Project Manager, ENFINIUM

•    How adversaries innovate faster than defenders
•    Insights into attacker ROI thinking
•    What defensive teams can learn from them

•    Shifting from technical expert to business risk leader: framing cyber in terms of revenue, operations, and enterprise risk
•    Earning board trust and buy-in: communicating clearly, influencing decisions, and aligning with executive priorities
•    Enabling the business, not blocking it: supporting innovation (AI, cloud, digital) while managing risk pragmatically
•    Owning resilience and accountability: ensuring the organisation can respond, recover, and maintain stakeholder trust
•    The evolving CISO role: from technical leader to strategic business partner
Matt Cockbill, Partner, ODGERS
Johann van Duyn, Global Chief Information Security Officer, DO & CO AG
Sam Taylor, Chief Information Security Officer & Project Manager, ENFINIUM