0830 - Registration and Welcome Tea/Coffee
0915 - Opening Notes from Conference Chair
Joseph Carson, Chief Security Scientist, Thycotic
A Cyber Security Professional with 20+ years’ experience in Enterprise Security & Infrastructure, Joseph is a Certified Information Systems Security Professional (CISSP). An active member of the Cyber Security community and a frequent speaker at Cyber Security events globally. Joseph is an adviser to several governments, critical infrastructure, startups and cyber security conferences.
Facing the Cyber Threat: An Overview of Maritime Cyber Challenges and Focus on Building Resilience
- What is the current cyber threat landscape?
- What are the major cybersecurity risks and threats affecting the industry?
- Is cyber the true disruptive innovation in maritime?
- Reviewing the cyber threat across other sectors and lessons learnt.
0930 - Opening Address – Reviewing Cyber Resilience
René de Vries, Harbour Master, Port Cyber Resilience Officer, Port of Rotterdam
René de Vries was appointed (State) Harbour Master of Rotterdam on 1 March 2010. He began his career with the Port Authority in 1982, as crew member on one of the patrol vessels. Through the years, he has progressed to his last position, as manager of the Traffic Planning & Operations department, which has 220 staff.
As (State) Harbour Master, he is responsible for the fast, safe and clean handling of shipping traffic in the Port of Rotterdam. Under his direction, around 550 people work, among other things, in traffic control centres, the Port Coordination Centre, bridges and locks, on patrol vessels and as inspectors on board visiting ships. On one hand, the (State) Harbour Master forms part of the Port of Rotterdam Authority and, on the other, is accountable to the Municipal Executive and the Minister of Transport, Public Works and Water Management with respect to his public duties. The Harbour Master is also port security officer and forms part of Rotterdam’s major security staff.
0945 – Reality of Shipping's Cyber Challenge
1010 - Keynote 1: Cyber Threats onboard
- Overview of threats
- How to implement into management systems
- Future automation challenges – single window, ECDIS, voyages
1035 - Tea/Coffee Break
1105 - Hacking Ships in Practice – Food for Thought
Ken Munro, Security Entrepreneur & Writer, Pen Test Partners
Ken Munro is Partner and Founder of Pen Test Partners, a firm of ethical hackers. He regularly blogs on everything from maritime security to hacking cars and the Internet of Things. This has gained him notoriety among the national press, leading to regular appearances on TV and News online as well as the broadsheet press.
He also writes for various newspapers and has contributed to maritime industry magazines in an effort to get beyond the unhelpful scaremongering put about by many security vendors. Ken has also become a voice for reform and legislative change in the largely unregulated IoT, briefing UK and US government departments as well as being involved with various EU consumer councils.
1130 - Viewpoint Panel Session
This session will be dedicated to showcasing cyber practices from other sectors and highlighting lessons that can be applied within the maritime sector. With input from those working in supply chain, logistics, ports and terminals, and academia.
Nick Lambert, Maritime Domain Expert, NLA Ltd.
A master mariner and a committed proponent of the maritime users’ perspective, Rear Admiral Nick Lambert concluded a long naval operational career as the UK National Hydrographer in December 2012. He advises on a wide range of maritime issues including the growing potential of the blue economy concept, the importance of spatial data infrastructures and hydrography for maritime economies, the evolution of eNavigation and GNSS vulnerability, near or real time situational awareness (especially that derived from space based assets and applications), human factors, and training and education in the maritime sector. He has a particular interest in the Polar Regions and is also engaged in a variety of situational awareness, marine autonomous systems and vessel efficiency projects.
Marijn van Schoote, Security Officer, Port of Rotterdam
Geert Janssens, Enterprise Architect and CISO, Dutch Pilots Corporation
Ad Krikke, CISO, DSM
Jamie Akhtar, CEO & Co-founder, CyberSmart
Jamie’s obsession with technology started at a young age, he has been building and breaking things since he could turn on a computer. He’s built over 100 web applications, served as the CTO of several organisations and wears a white hat as an ethical hacker.
Others to be announced
1225 - Lunch break
Business Planning and Cyber Preparedness
- Balancing cyber resilience with the business case.
- Best practices - modern connectivity.
- Mitigating risk - Identify, assess, respond.
- Safeguarding cyber security in an increasingly automated world.
1325 - Cyber Threat Management and Risk Analysis
Knowing who is attacking you, why they attack and how they work, can help to improve your cyber security posture. This session will discuss various models of threat intelligence and how to link these to your threat risk management
Matthijs van der Wel, Director Cyber Threat Intelligence & Incident Response, PwC
Matthijs is an experienced IT security professional, with a specialisation in Incident Response and Threat Intelligence. He has worked on many global investigations with teams of outstanding and diverse professionals. Together, they have investigated some of the worlds largest payment card related data breaches, suspicions of fraud and have provided litigation support. He has conducted risk assessments and red teaming exercises, including social engineering and obtaining physical access to secure locations.
1350 - Cyber Security: Actors and Behaviour
Prof.dr. Bibi van den Berg, Member, Dutch Cyber Security Council, Professor Cyber Security Governance & Head Research, Cyber Security Governance Institute Security and Global Affairs, Leiden University
Prof.dr. Bibi van den Berg has an MA and a PhD from Erasmus University’s Department of Philosophy. During her undergraduate degree and her PhD, she specialised in philosophy of technology. After completing her PhD Van den Berg transferred to Tilburg University for a 3-year postdoc appointment at the Tilburg Institute of Law, Technology and Society. In January 2012, she transferred to Leiden University’s Law School, to join eLaw, the Center for Law & Digital Technologies as an assistant professor.
Since the summer of 2015, Prof.dr. van den Berg works at the Institute of Security and Global Affairs (ISGA), which is part of the Faculty of Governance and Global Affairs in The Hague. She is head of the research group Cybersecurity Governance at this institute.
Van den Berg is a member of the Dutch Cyber Security Council, a Council that advises the Dutch Cabinet on how to improve cybersecurity in the Netherlands. She is also a member of the Board of Advisers for IT of the Central Bureau of Statistics (CBS) of the Netherlands.
1415 - Building Cyber Resilience in Practice
Pete Adsett, IT Manager & Certified Ethical Hacker, MOL LNG
1440 - Tea/Coffee Break
1510 - Panel Discussion: Balancing Cyber Risk in Practice
Aron Frank Sørensen, Head of Maritime Technology & Regulation, BIMCO
Aron Sørensen holds the position as Head of the Maritime Technology and Regulation and is responsible for BIMCO’s technical affairs. He manages BIMCO’s role in marine, operational and related regulatory matters at a number of international organizations such as IMO, ISO, IACS and IHO. His tasks include negotiating, monitoring and disseminating relevant conventions and assisting in the development of international standards, regional/national requirements, and assessing the impact on BIMCO members.
He led the development of the industry Guidelines on Cyber Security Onboard Ships, where the second edition was published in the summer of 2017. He was also project leader in the development of BIMCO/CIRM industry guidelines on software maintenance, which was published in January 2018.
Jack Hatcher, Legal Director & Mariner, Hill Dickinson LLP
Jack is a Legal Director and English qualified solicitor with international law firm Hill Dickinson LLP in London. He specialises in shipping advising vessel owners, P&I clubs, hull underwriters, salvors, charterers, managers, brokers and ports. Prior to joining the firm in 2011, Jack served at sea as a navigational deck officer predominately on passenger ships. He also spent five years at an International Group P&I Club dealing with P&I and freight, demurrage and defence (FD&D) claims. He has particular experience in the investigation and handling of high profile marine casualties worldwide and related disputes, with special interest in electronic navigation systems / instruments and the data they may store. Jack is a contributing author to the well-known industry publication “Guidelines for Collecting Maritime Evidence Handbook” and frequently presents on issues of electronic evidence, cyber and the legal risks associated with autonomous ships.
Marco van Rijsinge, Company Security Officer, Spliethoff Group
Pete Adsett, IT Manager & Certified Ethical Hacker, MOL LNG
New Developments in Maritime Cyber Regulations and Guidelines
- Standardising and sharing KPIs and guidelines.
- Legal, financial and insurance implications.
- The implications of the EU General Data Protection Regulation.
- The future of cyber reporting.
1600 - GDPR, IMO and the Effect on the Maritime Industry and Cyber Security
- What the regulations mean for ship managers and what are the pitfalls the industry needs to be aware of
Ian is a partner in the Marine Trade and Energy group at Hill Dickinson. A solicitor with 16 years’ experience, his practice focuses on shipping casualties, contract of carriage and unsafe port issues. He also advises on shipmanagement contracts and associated disputes. A Master Mariner with 12 years seagoing experience up to the rank of Chief Officer, after coming ashore and completing an MBA, he spent six years in various senior management roles with a major ship manager in Cyprus, where his responsibilities encompassed loss prevention, casualty response and ISM Code compliance. He is a vice president, director and general counsel of InterManager the trade association for shipmanagers and represents Intertanko on the Lloyds Salvage Committee.
1625 - Managing Maritime Cyber Security and Liability - Mitigating Risk
- How the industry can identify, quantify and mitigate cyber risk
- Insurance – Risk Transfer
Andrew is responsible for business development focused in and around the marine liability sector. He is primarily responsible for Ports & Terminals. After a degree in Geography, Andrew began his career as a shipbroker in London concentrating on towage and salvage. After obtaining membership of the institute of chartered shipbrokers he then worked overseas, based in Geneva and Singapore, as a trader for CRC Cargo Recovery Consultants, specialised in damaged commodities.
On returning to London in 1995, Andrew joined UK P&I Club dealing with Russian and Romanian owners' claims. 1996 saw a transfer to ITIC where he became an account executive dealing with Members in the Middle East and South America. At the end of 1999 he transferred to the TT Club, where he went to Dubai in 2000 to take over as general manager at TTMS (Gulf) dealing with TT and ITIC Members in the Middle East and Indian Sub-Continent. In 2002 he returned to London to take up the role of TT Clubs Loss Prevention director – a role that he held prior to making the move to UKTI on secondment as the International Business specialist – ports working with the International Sector team in the London headquarters. Secondment ended in June 2008 and a position with Savi Performance Logistics (a Lockheed Martin company) became open. Inchcape Shipping Services beckoned at the end of 2008 and waved goodbye at the end of 2009. A brief spell of independent consulting gave way to Jardine Lloyd Thompson.
Training, Awareness & Human Factor
- Turning guidance to training for the shipping industry.
- How to asses and change an organisations behaviour to respond to the cyber threat.
- Mobilising internal commitment on-board and on-shore.
- Incorporating cyber awareness into daily operations and procedures.
1645 - Closing Panel Discussion: Training, Awareness & Human Factors
Chronis Kapalidis, Academy SNF Fellow, International Security Department,
Chronis is a Research Fellow at the International Security Department, Chatham House and an Academy Stavros Niarchos Foundation Fellow at the Queen Elisabeth II Leadership Academy. He is a Visiting Research Fellow at the Dartmouth Centre for Seapower and Strategy, Plymouth University. Chronis is also a certified Maritime Trainer by the UK DfT and teaches extensively on Maritime Safety and Security, Risk Assessment, Cyber Security at KCL Maritime Training Centre, Piraeus and several military institutions.
He has over 13 years of professional experience as a Navy Warfare Officer in NATO, EU and UN operations. His research interests include cybersecurity, defence studies, international and maritime security. Drawing from his combined professional, academic and policy-making experience Chronis leads a research project at Chatham House on Maritime Cybersecurity.
He has published widely at Chatham House, International Affairs, Foreign Affairs and the Academy for Strategic Analyses and has participated in several Maritime related conferences.
Dr Chris Henny, Project Manager, CSO Alliance
Dr Henny runs his own consulting company, Maxess SPRL, based in Brussels, Belgium. His career spans 30 years in innovation, business development, sales management, and the marketing of high tech products and services for Philips, Sony, SAIT, Telenor, Marlink and Airbus.
He launched the first CD ROM, developed an advanced tape drive, implemented a low-cost GSM system for ships, developed one of the first maritime communications online billing systems, inventing a prepaid cards and dialers system, and a telemedicine system for ships.
He has worked extensively in the maritime regulatory environment, and product managed a maritime satellite e-mail hub. He is also a long-time member or CIRM and the Royal Institute of Navigation.
Dr Henny is currently project managing a cyber support tool for the maritime community in a partnership between CSO Alliance and Airbus.
Stein Are Hansen is working for DNKs Intelligence and Operations Centre.
DNK (Norwegian Shipowners’ Mutual War Risks Insurance Association) is the world’s largest War Marine Insurance company with over 3400 insured vessels/rigs/units. The Insurance policy delivered by DNK also covers cyber-attacks/incidents.
Mr. Hansen has an extensive background from the Norwegian Navy and Royal Navy, having worked “front line” on vessels and attack helicopters before joining Marine Insurance in 2006. Mr. Hansen is leading DNKs Cyber work with respect to interaction with shipping companies regarding Loss Prevention and Emergency Response.
1730 – Conference Conclusions - Are We Cyber Ready? Conclusions and Actions
1745 - Networking Drinks
**Please note all topics and timings are TBC and subject to change