0830 - Registration and Welcome Tea/Coffee

0915 - Opening Notes from Conference Chair

  • Cyber threat landscape: recap for 2017 and predictions for 2018
  • Examples from other sectors
click for bioJoseph Carson, Chief Security Scientist, Thycotic

Joseph CarsonA Cyber Security Professional with 20+ years’ experience in Enterprise Security & Infrastructure, Joseph is a Certified Information Systems Security Professional (CISSP). An active member of the Cyber Security community and a frequent speaker at Cyber Security events globally. Joseph is an adviser to several governments, critical infrastructure, startups and cyber security conferences.

Session 1

Facing the Cyber Threat: An Overview of Maritime Cyber Challenges and Focus on Building Resilience

  • What is the current cyber threat landscape?
  • What are the major cybersecurity risks and threats affecting the industry?
  • Is cyber the true disruptive innovation in maritime?
  • Reviewing the cyber threat across other sectors and lessons learnt.
  • How should we focus on building cyber resilience?

0940 - Opening Address – Reviewing Cyber Resilience
click for bioRené de Vries, Harbour Master, Port Cyber Resilience Officer, Port of Rotterdam

René de VriesRené de Vries was appointed (State) Harbour Master of Rotterdam on 1 March 2010. He began his career with the Port Authority in 1982, as crew member on one of the patrol vessels. Through the years, he has progressed to his last position, as manager of the Traffic Planning & Operations department, which has 220 staff.

As (State) Harbour Master, he is responsible for the fast, safe and clean handling of shipping traffic in the Port of Rotterdam. Under his direction, around 550 people work, among other things, in traffic control centres, the Port Coordination Centre, bridges and locks, on patrol vessels and as inspectors on board visiting ships. On one hand, the (State) Harbour Master forms part of the Port of Rotterdam Authority and, on the other, is accountable to the Municipal Executive and the Minister of Transport, Public Works and Water Management with respect to his public duties. The Harbour Master is also port security officer and forms part of Rotterdam’s major security staff.

0955 - Keynote 1: Cyber Threats onboard

  • Overview of threats & risks
  • How to implement into management systems
  • Future automation challenges – single window, ECDIS, voyages
click for bioMarco van Rijsinge, Company Security Officer, Spliethoff Group

Marco van RijsingeMarco van Rijsinge is Company Security Officer of the Spliethoff group. Marco is also Chairman of the Security Committee of the Dutch Shipowners association (KVNR) and member of the Bimco Maritime Security Committee.

1020 - Tea/Coffee Break

1050 - Hacking Ships in Practice – Food for Thought
click for bioKen Munro, Security Entrepreneur & Writer, Pen Test Partners

Ken MunroKen Munro is Partner and Founder of Pen Test Partners, a firm of ethical hackers. He regularly blogs on everything from maritime security to hacking cars and the Internet of Things. This has gained him notoriety among the national press, leading to regular appearances on TV and News online as well as the broadsheet press.

He also writes for various newspapers and has contributed to maritime industry magazines in an effort to get beyond the unhelpful scaremongering put about by many security vendors. Ken has also become a voice for reform and legislative change in the largely unregulated IoT, briefing UK and US government departments as well as being involved with various EU consumer councils.

1120 - Cyber: is maritime doomed?

  • How shipping compares to other industries
  • What you can do to assess and defend
  • A new paradigm for ongoing security
click for bioJamie Akhtar, CEO & Co-founder, CyberSmart

Jamie AkhtarJamie’s obsession with technology started at a young age, he has been building and breaking things since he could turn on a computer. He’s built over 100 web applications, served as the CTO of several organisations and wears a white hat as an ethical hacker.

1145 - Viewpoint Panel Session
This session will be dedicated to showcasing cyber practices from other sectors and highlighting lessons that can be applied within the maritime sector.
Moderated by:
click for bioNick Lambert, Maritime Domain Expert, NLA Ltd.

Nick Lambert A master mariner and a committed proponent of the maritime users’ perspective, Rear Admiral Nick Lambert concluded a long naval operational career as the UK National Hydrographer in December 2012. He advises on a wide range of maritime issues including the growing potential of the blue economy concept, the importance of spatial data infrastructures and hydrography for maritime economies, the evolution of eNavigation and GNSS vulnerability, near or real time situational awareness (especially that derived from space based assets and applications), human factors, and training and education in the maritime sector. He has a particular interest in the Polar Regions and is also engaged in a variety of situational awareness, marine autonomous systems and vessel efficiency projects.

Panellists include:
click for bioMarijn van Schoote, Security Officer, Port of Rotterdam

Marijn van SchooteMarijn van Schoote is in his role as CISO, responsible for the cyber resilience strategy for the IT systems in use by the Port of Rotterdam Authority. Furthermore, he is one of the initiators of the project FERM-Rotterdam. The purpose of this program is to raise cyber security awareness in the Port of Rotterdam ecosystem.

click for bioGeert Janssens, Enterprise Architect and CISO, Dutch Pilots Corporation

Marijn van SchooteBiography pending.




click for bioAd Krikke, CISO, DSM

Ad KrikkeAd Krikke joined Dutch based Life Sciences and Materials Sciences multi-national Royal DSM in 2002. After a program manager, an internal audit role, Ad is safeguarding the digital information of DSM in the role of the CISO since 2012. Currently he is implementing a business driven and risk based Cyber Resilience Strategy that is fully aligned with the DSM’s Digital Strategy. Ad is also the chair of the Dutch multi-national ISAC (NCSC) and university lecturer at Universities of Tilburg, Antwerp and Maastricht.

click for bioJamie Akhtar, CEO & Co-founder, CyberSmart

Jamie AkhtarJamie’s obsession with technology started at a young age, he has been building and breaking things since he could turn on a computer. He’s built over 100 web applications, served as the CTO of several organisations and wears a white hat as an ethical hacker.

1230 - Lunch break

Session 2

Business Planning and Cyber Preparedness

  • Balancing cyber resilience with the business case.
  • Best practices – threat management and balancing risk.
  • Mitigating risk - Identify, assess, respond.
  • Safeguarding cyber security in an increasingly automated world.

1345 - Cyber Threat Management and Risk Analysis
Knowing who is attacking you, why they attack and how they work, can help to improve your cyber security posture. This session will discuss various models of threat intelligence and how to link these to your threat risk management
click for bioMatthijs van der Wel, Director Cyber Threat Intelligence & Incident Response, PwC

Matthijs van der WelMatthijs is an experienced IT security professional, with a specialisation in Incident Response and Threat Intelligence. He has worked on many global investigations with teams of outstanding and diverse professionals. Together, they have investigated some of the worlds largest payment card related data breaches, suspicions of fraud and have provided litigation support. He has conducted risk assessments and red teaming exercises, including social engineering and obtaining physical access to secure locations.

1415 - Cyber Security in Practice
click for bioJose Milhazes, Global Manager, Stolt-Nielsen

Jose MilhazesJose Milhazes is a Business Process and Application manager at Stolt Tankers B.V, in streaming shipping and Ship management processes. Jose Milhazes is a Marine Engineer and Computer Engineer with sail experience and 18 years of experience in Ship Management. Passionate in Business Intelligence reporting and brings data insights to improve performance.

1445 - Tea/Coffee Break

1515 - Panel Discussion: Balancing Cyber Risk in Practice
Ship owners, ports, and agents are being hit by cyber incidents every day. In a business environment you cannot protect yourself a 100 per cent from cyber risks. Too stringent mitigation can obstruct your normal ways of doing business. What is the industry doing in practice and how does the industry balance doing business with the cyber risk?
Moderated by:
click for bioAron Frank Sørensen, Head of Maritime Technology & Regulation, BIMCO

Aron Frank SørensenAron Sørensen holds the position as Head of the Maritime Technology and Regulation and is responsible for BIMCO’s technical affairs. He manages BIMCO’s role in marine, operational and related regulatory matters at a number of international organizations such as IMO, ISO, IACS and IHO. His tasks include negotiating, monitoring and disseminating relevant conventions and assisting in the development of international standards, regional/national requirements, and assessing the impact on BIMCO members.

He led the development of the industry Guidelines on Cyber Security Onboard Ships, where the second edition was published in the summer of 2017. He was also project leader in the development of BIMCO/CIRM industry guidelines on software maintenance, which was published in January 2018.

Panellists include:
click for bioIan MacLean, Partner, Hill Dickinson LLP

Ian MacLeanIan is a partner in the Marine Trade and Energy group at Hill Dickinson. A solicitor with 16 years’ experience, his practice focuses on shipping casualties, contract of carriage and unsafe port issues. He also advises on shipmanagement contracts and associated disputes. A Master Mariner with 12 years seagoing experience up to the rank of Chief Officer, after coming ashore and completing an MBA, he spent six years in various senior management roles with a major ship manager in Cyprus, where his responsibilities encompassed loss prevention, casualty response and ISM Code compliance. He is a vice president, director and general counsel of InterManager the trade association for shipmanagers and represents Intertanko on the Lloyds Salvage Committee.

click for bioMarco van Rijsinge, Company Security Officer, Spliethoff Group

Marco van RijsingeMarco van Rijsinge is Company Security Officer of the Spliethoff group. Marco is also Chairman of the Security Committee of the Dutch Shipowners association (KVNR) and member of the Bimco Maritime Security Committee.

click for bioEddie Ekwo, Information Security Consultant, Maersk Transport & Logistics

Eddie EkwoEddie Ekwo CISSP is an Information security consultant who works with Maersk Transport & Logistics to develop cybersecurity practices for project delivery of both IT and OT infrastructure. After spending nearly a decade in contributing to the development of cybersecurity practices for payment and telecom solutions, Eddie is passionate about translating technical security issues into a language that reaches various business units.

Eddie has held information security roles with The Logic Group and Vodafone UK providing expertise in Information Security Audit & Compliance, Risk Management, Vulnerability Management, Web & Mobile Application Security, Penetration testing and Security Architecture in numerous telecoms and IT projects.

Eddie is currently leading the implementation of cybersecurity controls for IT systems onboard ships across Maersk Transport & Logistics.

Session 3

New Developments in Maritime Cyber Regulations and Guidelines

  • IMO and the EU General Data Protection Regulation.
  • Legal, financial and insurance implications.
  • Cyber security and liability.

1600 - GDPR, IMO and the Effect on the Maritime Industry and Cyber Security

  • What the regulations mean for ship managers and what are the pitfalls the industry needs to be aware of
click for bioIan MacLean, Partner, Hill Dickinson LLP

Ian MacLeanIan is a partner in the Marine Trade and Energy group at Hill Dickinson. A solicitor with 16 years’ experience, his practice focuses on shipping casualties, contract of carriage and unsafe port issues. He also advises on shipmanagement contracts and associated disputes. A Master Mariner with 12 years seagoing experience up to the rank of Chief Officer, after coming ashore and completing an MBA, he spent six years in various senior management roles with a major ship manager in Cyprus, where his responsibilities encompassed loss prevention, casualty response and ISM Code compliance. He is a vice president, director and general counsel of InterManager the trade association for shipmanagers and represents Intertanko on the Lloyds Salvage Committee.

1625 - Managing Maritime Cyber Security and Liability - Mitigating Risk

  • How the industry can identify, quantify and mitigate cyber risk
  • Insurance – Risk Transfer
click for bioAndrew Webster, Partner, JLT Specialty

Andrew WebsterAndrew is responsible for business development focused in and around the marine liability sector. He is primarily responsible for Ports & Terminals. After a degree in Geography, Andrew began his career as a shipbroker in London concentrating on towage and salvage. After obtaining membership of the institute of chartered shipbrokers he then worked overseas, based in Geneva and Singapore, as a trader for CRC Cargo Recovery Consultants, specialised in damaged commodities.

On returning to London in 1995, Andrew joined UK P&I Club dealing with Russian and Romanian owners' claims. 1996 saw a transfer to ITIC where he became an account executive dealing with Members in the Middle East and South America. At the end of 1999 he transferred to the TT Club, where he went to Dubai in 2000 to take over as general manager at TTMS (Gulf) dealing with TT and ITIC Members in the Middle East and Indian Sub-Continent. In 2002 he returned to London to take up the role of TT Clubs Loss Prevention director – a role that he held prior to making the move to UKTI on secondment as the International Business specialist – ports working with the International Sector team in the London headquarters. Secondment ended in June 2008 and a position with Savi Performance Logistics (a Lockheed Martin company) became open. Inchcape Shipping Services beckoned at the end of 2008 and waved goodbye at the end of 2009. A brief spell of independent consulting gave way to Jardine Lloyd Thompson.

Session 4

Training, Awareness & Human Factor

  • Turning guidance to training for the shipping industry.
  • How to assess and change an organisations behaviour to respond to the cyber threat
  • Mobilising internal commitment on-board and on-shore.
  • The future of cyber reporting.

1645 - Closing Panel Discussion: Training, Awareness & Human Factors
This discussion will examine the necessity for training and raising awareness within the industry, mainly focusing on the leading role of the human factor. We will identify the level of IT technical skills needed to be embedded in the training sequence and the way this will become available to both ashore and at-sea personnel. We will also examine the importance of awareness within the industry and how this affects the insurance rates. And finally, we will discuss the importance of cyber reporting.
Moderator:
click for bioChronis Kapalidis, Academy SNF Fellow, International Security Department,
Chatham House

Chronis KapalidisChronis is a Research Fellow at the International Security Department, Chatham House and an Academy Stavros Niarchos Foundation Fellow at the Queen Elisabeth II Leadership Academy. He is a Visiting Research Fellow at the Dartmouth Centre for Seapower and Strategy, Plymouth University. Chronis is also a certified Maritime Trainer by the UK DfT and teaches extensively on Maritime Safety and Security, Risk Assessment, Cyber Security at KCL Maritime Training Centre, Piraeus and several military institutions.

He has over 13 years of professional experience as a Navy Warfare Officer in NATO, EU and UN operations. His research interests include cybersecurity, defence studies, international and maritime security. Drawing from his combined professional, academic and policy-making experience Chronis leads a research project at Chatham House on Maritime Cybersecurity.

He has published widely at Chatham House, International Affairs, Foreign Affairs and the Academy for Strategic Analyses and has participated in several Maritime related conferences.

Panellists include:
click for bioDr Chris Henny, Project Manager, CSO Alliance

Dr Chris HennyDr Henny runs his own consulting company, Maxess SPRL, based in Brussels, Belgium. His career spans 30 years in innovation, business development, sales management, and the marketing of high tech products and services for Philips, Sony, SAIT, Telenor, Marlink and Airbus.

He launched the first CD ROM, developed an advanced tape drive, implemented a low-cost GSM system for ships, developed one of the first maritime communications online billing systems, inventing a prepaid cards and dialers system, and a telemedicine system for ships.

He has worked extensively in the maritime regulatory environment, and product managed a maritime satellite e-mail hub. He is also a long-time member or CIRM and the Royal Institute of Navigation.

Dr Henny is currently project managing a cyber support tool for the maritime community in a partnership between CSO Alliance and Airbus.


click for bioStein Are Hansen, Senior Intelligence & Exercise Advisor, Norwegian Shipowners’ Mutual War Risks Insurance Association

Stein Are HansenStein Are Hansen is working for DNKs Intelligence and Operations Centre.

DNK (Norwegian Shipowners’ Mutual War Risks Insurance Association) is the world’s largest War Marine Insurance company with over 3400 insured vessels/rigs/units. The Insurance policy delivered by DNK also covers cyber-attacks/incidents.

Mr. Hansen has an extensive background from the Norwegian Navy and Royal Navy, having worked “front line” on vessels and attack helicopters before joining Marine Insurance in 2006. Mr. Hansen is leading DNKs Cyber work with respect to interaction with shipping companies regarding Loss Prevention and Emergency Response.


1730 – Conference Conclusions - Are We Cyber Ready? Conclusions and Actions

1745 - Networking Drinks

**Please note all topics and timings are TBC and subject to change