Illustrative programme subject to change.
More presentations to be announced
Copyright IOE Events Ltd 2019

Day Two November 6th 2019


8:20 am -9:00 am
Delegate Check in


9:00 am - 9:05 am

Welcome Back from the Cyber Senate


9:05 am - 9:35 am

Surfing the Inevitability Curve of IT/OT Convergence

  • Converging IT and OT networks provide fundamental economic advantages

  • Those who best navigate the journey from policy by network configuration will lead their fields

  • Security leadership must provide business leadership with options that address associated risks

  • Looking at the shape of the wave ahead frames the options available

Chris Blask, Global Director Industrial and IoT Security, Unisys


9:35 am - 10:05 am

Understanding the ATM Regulatory Developments and their Effects

John Hird, ATM Security Specialist, Eurocontrol


10:05 am - 11:00 am

Panel: NIS Directive and Implementation for the Aviation Sector

  • What progress has been made in the last six months and what implementation challenges remain for the sector?

  • To what extent are we on track to meeting our cyber security objectives?

  • How can cyber security requirements be better integrated into the sector's safety regime?

Panellists:
Nicky Keeley, Head of Cyber Security Oversight, Civil Aviation Authority
Further Panellists to be confirmed


11:30 am - 12:00 pm

Aviation Cyber Security – Why Depending on the Regulators and OEMs is a Fool’s Game.

Bruce Jackson, President and Managing Director, Airinformatics


12:00 pm - 12:30 pm

Aviation Cyber Security: Flight or Fancy?
The security of satellite communication systems is far from ideal. Pen Test Partners has spent several years examining satcom management systems and satellite terminal hardware security, and will be sharing some of our findings.

To provide context and make it accessible, we'll show exactly what an attack looks like with some live demonstrations on our own satellite terminal.

Satcoms do not exist and function in isolation, they are part of a wider control and management ecosystem. We’ll discuss and demonstrate how a compromise in flight or on the ground could lead to interference with other on board systems.

We will also look at the extensive legacy issues around the security of network protocols used in flight surface controls. By reverse engineering an LRU we'll give you a rare insight into the problems.

Ken Munro, Partner, Pen Test Partners


12:30 pm - 1:00 pm

Security in a World of Safety: The Curious Case of Cyber Resilient CNS Systems

  • Comparison of the views of hackers, academics, authorities

  • Safety vs. security: different requirements, different solutions

  • Why security by design won't happen for (most) CNS systems

  • Feasible short term threat mitigation

Matthias Schaefer,  Co-Founder and Board member of the OpenSky Network and a Lecturer in the Computer Science Department at TU Kaiserslautern, Managing Director SeRo Systems


1:00 pm - 2:00 pm

Networking Lunch


2:00 pm -2:30 pm

Cyber Security by Design the OEM perspective

  • Network design with cyber security as a priority

  • Adopting the right cybersecurity architecture

  • Reducing the noise threshold, engineering out cyber risk

  • Implementing the right processes and procedures

  • Cryptography, compliance and audit considerations


2:30 pm - 3:00 pm

Cyber Security as Business Enabler: A MRO perspective

  • How are MROs addressing the threat from supply chain attacks considering their 24/7 operational model?

  • How can we mitigate attacks on organisations like MRO’s that have a global reach?

  • Are MRO’s progressing working towards international standardization for cybersecurity assurance?

  • Are MRO’s developing cybersecurity models to address insider threats, software tampering and potential data breaches?

  • Are we as an industry addressing cybersecurity in the asset management and operations sectors appropriately?


3:00 pm - 4:30 pm

Networking Break to departure