THE 2018 AGENDA

     Monday 29th October
9:30 Welcoming address
  HOW DO SECURITY AND SAFETY AFFECT YOUR BOTTOM LINE?
Security threats are becoming both more numerous and more complex, and high profile cases of companies being hacked are becoming daily news features. Transportation leaders are waking up to the reality that security breaches have the potential to cause billions of dollars in lost revenue, damage trust and reputation, and cause injury and loss of life among staff and the general public. This session will bring together leaders from multiple modes of transportation to discuss how to make safety and security priority from the top down.
9:40 Transportation, a sitting duck?
• The evolving threat from criminals, terrorists, and hostile states
• Why attackers are focusing on transportation more than ever before
• How is transportation vulnerable to attack?
9:55 Security as a global threat
• The challenges caused by the international nature of transportation.
• An overview of different major jurisdictions and their approaches to security regulation.
• How can transport providers and international governing bodies work together to build a security framework?

Faroud Illikoud, Group Chief Information Security Officer, Transdev Group
10:10 Building an efficient but secure transportation network
• How can additional security shut systems down?
• Balancing the requirements of security with the need for a functional system
• How is new technology key to responding to ever changing security concerns?
10:25 Business continuity planning and risk management
• Identifying the threats and risks to your business
• A risk based approach to asset protection
• Having backups in place for when disaster strikes
10:40 NIS cyber security standards: are you compliant?
• An overview of current security requirements
• Operational changes needed to ensure compliance
• Putting robust incident reporting measures in place
10:55 Panel discussion: Safety and security as a strategic priority
• What can different transportation modes learn from each other?
• How can we incentivise information sharing, even with competitors?
• Do all security incidents get reported? What is the right approach?
• What are the barriers to reporting security incidents and how can we overcome them?
• Are new standards and frameworks needed for the evolving transportation security landscape?
• Are shareholders and senior leadership teams aware of the financial costs of insufficient security?
• How can CISOs and CIOs engage others in the organization over security?

Panellists:
Faroud Illikoud, Group Chief Information Security Officer, Transdev Group
11:30 Networking coffee break
  ROUNDTABLE DISCUSSIONS
The roundtable sessions promote niche and open discussion amongst delegates. The conference hall will be divided into zones, each themed around a different challenge. Delegates can choose which zone they would like to join and a moderator will lead the group in discussion of the topic.

Following the discussion, each table leader will feedback to the whole group their key conclusions from the session.
Cyber security Physical security
Cyber security: more than just an IT issue
• Standards and processes for good cyber hygiene
• Technology to reduce the chances and impact of human error
• Insider threats: do you have the right processes in place to counter them?
Managing Security Teams
• What does good policing look like?
• Training and quality of service
• Handling security during peaks and troughs in service demand
• Effective use of security contractors: partnerships and collaboration
Andy Billings, Regional Head of Security and Contingency Planning, Associated British Ports
Adapting to an evolving cyber security threat landscape
• What are the biggest risks to cyber security?
• How has ransomware changed the nature of the security threat?
• “Hybrid attacks” – combined threats to digital and physical security
• How can security teams keep staff up to date with evolving threats?
• How are cyber security threats likely to develop in future?
Emergency management
• Preparing staff for emergency situations
• Having the communication links in place with authorities and emergency services
• Investing in technology for effective crisis management
• Using apps and social media channels to both gather and disseminate information
• Problems caused by fake news and the spread of misinformation
• Dealing with media and public relations during a security or safety crisis
Ladislav Kaspar,
Head of Security and Emergency Response Planning, Czech Airlines Company
13:30 Networking lunch
  DIGITAL TRANSFORMATION
Transport assets are becoming increasingly digitalized, and with it comes benefits for operational efficiency and customer service. Yet with growing numbers of connected devices, there are far more potentially vulnerable entry points that transportation operators must secure.
14:30 Evolving security risks in a rapidly digitalising transport landscape
• The benefits of digitalization for transportation organizations
• How is digital capability outstripping investment in security?
• Big Data: useful for business, valuable and vulnerable to hackers
14:45 Internet of Things: securing your devices, assets, and infrastructure
• Separating vulnerable, externally facing systems from mission-critical networks
• Building security into the design of devices
• Keeping track of your data ports and sensors
15:00 Vulnerabilities of connected vehicles: is this the end of the road?
• The potential damage caused by a hacked vehicle: risks to driver, data and the general public
• After sale care and incident response planning: managing security throughout the product lifecycle
• How are the risks multiplied with the introduction of autonomous vehicles?
15:15 Digital infrastructure and data analytics as the basis for smarter safety and security operations
• How do remote sensors help operators identify risks efficiently?
• Communications infrastructure needed for smarter operations
• Accessing data in a timely manner to impact decision making capabilities
15:30 Panel discussion: Opportunities and threats of the internet of things
• Overcoming challenges with legacy technology
• Future proofing for new technological developments
• Baancing security of hardware and software
• Collaborating with stakeholders from vendors and partners to customers
• How are security threats likely to develop in future?
• How can data analytics increase efficiency?
• What is the potential of 5G communications technology?
• Gaining the best ROI by balancing technological with traditional solutions
16:00 Networking coffee break
  ROUNDTABLE DISCUSSIONS
The roundtable sessions promote niche and open discussion amongst delegates. The conference hall will be divided into zones, each themed around a different challenge. Delegates can choose which zone they would like to join and a moderator will lead the group in discussion of the topic.

Following the discussion, each table leader will feedback to the whole group their key conclusions from the session.
Cyber security Physical security
The risks posed by Industry 4.0
• Vulnerable points of digitalised networks
• The risks posed by an interconnected network of operators and stakeholders
• How could hijacking of sensors and smart objects cause major service disruption?
• Skills needed by engineers and operational staff to combat security threats
Technology, standards, and training
• Implementing security requirements and legislation into practice
• How can the senior leadership team lead from the top?
• Internal training and processes to reduce safety and security incidents
• What technologies can be used to monitor and identify at-risk staff members?
Richard Kubilka, Security Manager and Chief CC Instructor, Czech Aviation Training Centre
The AI and machine learning impact on cyber security
• An AI arms race: how can cyber criminals use AI to find weaknesses in your defences?
• Predictive analytics to identify weaknesses and risks before they occur
• What are the potential future capabilities of AI?
Operating both effectively as well as safely and securely
• Technology to improve security while keeping transport networks moving.
• Minimizing disruption to service when introducing new security technologies, standards, and procedures
• Operating during emergencies: what is the minimum acceptable level of service?
• What’s your back up plan when things go wrong?

Jozef Decelle, Head of Punctuality and Security Manager, Infrabel
18:00 Networking drinks reception and end of Transport Security Congress Europe
Top