Register Now
December 4-7, 2023
ExCel London / United Kingdom

Black Hat Executive Summit

Tuesday, December 5, 2023

CentrEd at ExCel


Black Hat Executive Summit offers CISOs and other cybersecurity executives an opportunity to hear from a variety of industry experts who are helping to shape this next generation of information security strategy. The program dissects the latest technologies designed to stay ahead of sophisticated adversaries and provide a peek into future platforms; we'll outline the next-level skills and strategies CISOs need to bolster their relevance and we'll discuss the latest techniques for maintaining a proactive approach to data protection.

For CISOs and executives looking to transform from a mere manager of information into a corporate champion of business growth, it's imperative to stay on top of the latest insight. That journey begins at the Black Hat Executive Summit.

Application Portal is Now closed

The registration window is now closed, thank you for your interest.

*Please note: In order to create an open and candid environment that promotes the sharing of ideas, thoughts, and discussion, the Executive Summit will follow Chatham House Rule; neither media nor event coverage is permitted. This program is designed for executive security practitioners. Solution providers, consultants, and vendor attendees are not permitted, with the exception of event sponsors.


Agenda

Tuesday, December 5

8:00 – 9:00 AM Networking Breakfast
9:00 – 9:15 AM Welcome and Introductions
  • Jeff Moss

    Founder, Black Hat + DEF CON, U.S. Department of Homeland Security Advisory Council

    Jeff Moss advises companies on security issues, both, electronic and physical, as well as speaking globally on the topic. He sits on several advisory boards helping enterprises make informed decisions on cyber risks.

    In April 2011 Mr. Moss was appointed as the Chief Security Officer for the Internet Corporation for Assigned Names and Numbers (ICANN), a non-profit whose responsibilities include coordinating and ensuring the security, stability and resiliency of the Internet's unique global identifiers as well as maintaining the root zone of the Internet. This position involved managing the IT security of the ICANN networks and information systems, the physical security of ICANN facilities and meetings, and ensuring that ICANN meets its security and resiliency commitments to the multi stake holder community that oversees ICANN. This position involved extensive international travel and coordination with governments, law enforcement, and operational security communities in support of discussions around Internet Governance and security. Mr. Moss left this position at the end of 2013.

    Moss is the founder and creator of both Black Hat and DEF CON, two of the most influential information security conferences in the world, attracting over ten thousand people from around the world to learn the latest in security technology from those researchers who create it. Prior to creating Black Hat, Jeff was a director at Secure Computing Corporation where he helped establish their Professional Services Department in the United States, Asia, and Australia. His primary work was security assessments of large multi-national corporations. Jeff has also worked for Ernst & Young, LLP in their Information System Security division. Because of this unique background Jeff is uniquely qualified with his ability to bridge the gap between the underground researcher community and law enforcement, between the worlds of pure research and the responsible application of disclosure.

    Jeff is currently a member of the U.S. Department of Homeland Security Advisory Council (HSAC), providing advice and recommendations to the Secretary of the Department of Homeland Security on matters related to homeland security. Jeff is a life member of the Council on Foreign Relations, which is an independent, nonpartisan membership organization, think tank, and publisher.

    In 2013, Jeff was appointed as a Nonresident Senior Fellow at the Atlantic Council, associated with the Cyber Statecraft Initiative, within the Brent Scowcroft Center on International Security. In 2014, Jeff joined the Georgetown University School of Law School Cybersecurity Advisory Committee. Jeff is also active in the World Economic Forum, and recently became a member of the Cyber Security Global Agenda Council for 2014-2016. In addition, Jeff earned the ICSA President's Award for Public Service in 2011.


  • Steve Wylie

    General Manager, Black Hat



  • MC Quentyn Taylor

    Senior Director – Product, Information Security and Global Incident Response - Canon Europe, Middle East and Africa

    Quentyn Taylor is Director of Information Security at Canon Europe, Middle East and Africa.

    Using the power of stories and his own experience of testing products to destruction; Quentyn has embraced building business relationships across the world whilst driving Canon’s strategy and educating business customers to minimise their security risk.

    Before joining Canon, Quentyn has worked in a variety of industries such as Internet service providers as well as startup businesses.


9:20 - 9:50 AM Global Overview of Cybersecurity Today
  • Don Smith

    Vice President Threat Research, Secureworks CTU

    Don Smith leads the CTU Threat Research group: a global team of experienced threat analysts who, through the application of established intelligence practices, deliver actionable and timely intelligence products on the threats most relevant to Secureworks clients. Don also leads the CTU research team in EMEA.

    Don joined Secureworks in 2005 and, since then, has been instrumental in establishing a CTU presence in EMEA and building important relationships for Secureworks in the region. His enthusiasm and threat expertise means that he regularly represents Secureworks at industry events. Don has 29 years’ experience in the IT industry and was previously responsible for security architecture and operations for a multi-billion enterprise, where he took a lead role in successfully integrating 14 acquisitions. Don's first exposure to security was in 1991 responding to an intrusion at a UK University. He is a recognized subject-matter expert many areas of cybersecurity and advises Secureworks and Secureworks’ clients globally, with first hand experience of many significant cyber security incidents. Don is the industry co-chair of the Strategic Cyber Industry Group in the National Cybercrime.


9:55 - 10:35 AM Global Cyber Security Environment
  • Denis Onuoha

    Denis Onuoha is an experienced Chief Information Security Officer with a demonstrated history of working in the telecommunications industry. Currently Chairing the Association of International Broadcasters Cyber Security Working group with the aim of improving the cyber security posture of broadcasters across the globe.

    Graduated from University of Hertfordshire and completed an MSc Information Security with Distinction at Royal Holloway, University of London. Have gained numerous qualifications including ISACA CISM & CISA, ISO27001 Lead Auditor, ISO22301 Lead Auditor & Implementer & ISO27005 Risk Manager.


  • Erhan Temurkan

    Director of Information Security/CISO

    Erhan Temurkan is a Director of Information Security/CISO with over a decade of experience working in both the Private and Public Sector. They have a proven track record of success in managing information security operations in complex multi-supplier environments and implementing security protocols into cloud integrations.

    With an MSc in Information Security and an MBA, Erhan brings a wealth of expertise to the table, with a deep understanding of the industry and a comprehensive business acumen. They operate at both technical and commercial levels, delivering a business-driven focus to security that helps to drive innovation and growth.

    Erhan is a passionate advocate for information security, committed to staying up-to-date with the latest trends and technologies in the field. They are skilled at collaborating with key stakeholders, including executive leadership, to align security initiatives with organizational goals.


  • Don Smith
  • Becky Pinkard

    Recipient of the 2022 Global Cyber Security Leadership Award - Editor's Choice (Global), previously appointed to the ‘100 Global CISOs for 2020’ list and awarded ‘CISO of the Year, 2020’ by SC Awards Europe, Becky Pinkard is a renowned practitioner and commentator on the information security sector who has been working in information technology and security since 1996.

    A security transformation expert, Becky’s background and experience to date has provided her with broad information security expertise, coupled with global team management and in-depth, technical capabilities around cyber security operations.

    Becky is an active advocate for promoting diversity and inclusion in business and was a co-founder of the ‘We Empower Diversity in Start-ups’ (WEDS) group. She has been a CyLon mentor since 2017, providing cyber security, operations and client success guidance to entrepreneurs. She also co-hosted a monthly podcast, Cyber Warrior Princess, focused on cyber security related commentary.

    Becky was a SANS Certified Instructor for over a decade and served as a GIAC Certified Intrusion Analyst advisory board member and on the Strategic Advisory Council for the Center of Internet Security. She co-authored "Nmap in the Enterprise" and "Intrusion Prevention and Active Response, Deploying Network and Host IPS". Becky has shared her expertise in numerous publications, both written and in live interviews all over the world, including: The Wall Street Journal, Forbes, ChannelPost, The Telegraph, The New York Times, BBC News, Channel 4 News, and more.


  • Moderator: Alan Jenkins
10:35 - 10:55 AM Networking Break
10:55 - 11:30 AM CISO Liability – Lessons Learned
  • Joe Sullivan

    CEO, Ukraine Friends

    Joe Sullivan has worked at the intersection of government, technology, and security since the Internet went mainstream. He’s dedicated his career to helping to make the online world a safer place for everyone, where businesses and people can thrive without risk.

    He was the government employee who in 1995 was able to convince the Department of Justice to let him run a direct Internet cable into the office, where he used the connection to research global politics related to claims for political asylum in the United States. In 1997, the DOJ gave him special technical training and computer equipment and invited him to join the Computer and Telecommunications Crime Coordinator program. He eventually became 100% focused on technology-related crimes, received national recognition from the DOJ for outstanding service as a federal prosecutor, and worked on many first-of-their-kind cybercrime cases, including supporting the digital aspects of the 9/11 investigation.

    Joe thought he would spend his whole career with the government but was recruited to eBay in 2002 to build out their eCrime team, and since then has been working at the forefront of cybercrime investigations to build large teams that have fought hard to protect consumers from digital harm. While the governments of the world struggled to be proactive in preventing internet crime, Joe took jobs at companies at the forefront of the Internet, where the companies needed to invest in building out their defenses to try to prevent harm from happening in the first place. At eBay and PayPal between 2002 and 2008, those efforts were focused on protecting people who used those services from financial harm. At Facebook between 2008 and 2015 he prioritized child safety, at a time when children were joining social networks and parents were struggling to keep up. At Uber he focused on protecting riders and drivers from physical world dangers, as technology revolutionized transportation. From early 2018 through late 2022, Joe was part of the team at Cloudflare, prioritizing both building out the team protecting the customers of the company and the privacy and security tools that are given away for free for everyone to use online.

    Even though he left government service in 2002, he’s never stopped actively supporting government efforts to promote safety online for everyone. He’s testified before the US Congress twice, been a commissioner on the National Action Alliance for Suicide Prevention, a board member on the National Cyber Security Alliance, a many-time opening plenary speaker at the Dallas Crimes Against Children Conference, a participant in a White House anti-online-bullying effort, an advisor to the Department of Homeland Security, and accepted an appointment from President Obama to his Commission on Enhancing National Cybersecurity.

    Joe is currently the CEO of a nonprofit named Ukraine Friends where he focuses on providing humanitarian aid to the people of Ukraine. He also advises several startups and mentors security leaders.


11:30 AM - 12:00 PM Post Quantum Cryptography
  • Bill Buchanan, PhD

    William (Bill) J Buchanan OBE is a Professor in the School of Computing at Edinburgh Napier University, and a Fellow of the BCS and Principal Fellow of the HEA. He was appointed an Officer of the Order of the British Empire (OBE) in the 2017 Birthday Honours for services to cybersecurity. Bill lives by the sea, and is a believer in fairness, justice, and freedom. His social media tagline reflects his strong belief in changing the world for the better: "A Serial Innovator. An Old World Breaker. A New World Creator." He also has a strong belief in the power of education, and in supporting innovation from every angle. Bill currently leads the Blockpass ID Lab and the Centre for Cybersystems and Cryptography. He works in the areas of blockchain, cryptography, trust and digital identity. He has one of the most extensive cryptography sites in the World (asecuritysite.com), and is involved in many areas of novel research and teaching. Bill has published over 30 academic books, and over 300 academic research papers. Along with this, Bill’s work has led to many areas of impact, including three highly successful spin-out companies (Zonefox, Symphonic Software and Cyan Forensics), along with awards for excellence in knowledge transfer, and for teaching. Bill recently received an ”Outstanding Contribution to Knowledge Exchange” award, and was included in the FutureScot "Top 50 Scottish Tech People Who Are Changing The World”.


12:00 - 1:25 PM Lunch
1:30 - 2:15 PM

Rethinking Cyber Risk: Operational Resilience in the Wake of Digital Disruption

The acceleration of digital disruption in the wake of AI advancement and technological transformation has put the role of cyber risk, quantification and financial mitigation front and center in both the board and the c-suite. Methodology for risk understanding and the impact of cyber across all areas of a business is critical. Join us to learn about the current market landscape, how to better understand risk, and what should be considered as more new technologies are adopted.

  • Kate Kuehn

    Kate Kuehn has been an active thought leader in Security & Advanced Network Technologies for over 20 years. Kate aligns global cyber initiatives with internal practice and policy to drive trust, transformation, and risk mitigation internally, with clients, and within the entire cyber community.

    Early in her career, she had been given the opportunity to work with and lead some of the most innovative technologies that have shaped our industries. She led some of the industry’s first projects in DDOS, Ethernet as a network (CPA), SaaS and IaaS, and was on the front line with some of the earliest attacks against the financial services markets.

    Kate has purposely executed multiple roles across her career from CISO, CEO, Board of Director, Advisor, and she has worked for companies including vArmour, Senseon, BT Group plc, and Verizon. The culmination of her experience ensures Kate always brings expertise and a fresh perspective on emerging trends within cybersecurity.

    Kate has two main passions in life: bleeding-edge technology that helps secure our world and developing world-class people and companies. Kate is a trusted advisor in the industry and is currently a member of the board of directors for Redshield, Cybermainacs, and the National Technology Security Council. She is also an advisor for Senseon, rThreat, and Net Thunder. In addition, she serves on the IEEE steering committee for Cyber Security and collaborates regularly with ISSA, SINET & WSTA.

    In addition to professional endeavors, Kate loves to give back to her community. She is active in several STEM initiatives, including the Docent Group and the University of California, Berkeley. Kate also spends time as a volleyball coach at her children’s school.


2:20 - 3:10 PM Company Culture as a Cyber Security Asset: Lessons Learned from Aviation
  • Serge Christiaans

    Serge is a Singapore-based CISO and Data privacy Expert. He’s also a director and board member of the ISACA Singapore chapter. As a decorated former military pilot, he has accumulated extensive operational leadership experience.

    Before assuming his current CISO role, he obtained a business degree from the esteemed Royal Netherlands Military Academy and completed a master's degree in cybersecurity. With over 17 years of global IT and cybersecurity experience, he has served as a cybersecurity and data privacy leader for many organizations since 2005.

    He is widely recognized for his inspiring and people-oriented leadership style, as well as for his comprehensive aviation expertise. Serge enjoys talking about leadership and company cultures, and how these influence cybersecurity and data privacy.

    Serge also holds a commercial pilot license and is qualified to captain the Airbus A320 and Boeing B737.


3:15 - 3:35 PM Networking Break
3:35 - 4:25 PM AI in the Enterprise: Responsible Use; Artificial Intelligence and Machine Learning in Security
  • Kate Kuehn
  • Robin Lennon (Bylenga)

    Robin Lennon (Bylenga) is an industry-recognised and international speaker discussing topics such as human factors in cybersecurity, internal threat management, building a security culture and more recently AI Strategy from a CSO perspective. As a thought leader, she provides in-depth direction and guidance on a significant blind spot in cybersecurity—The human element. By speaking in various forums, Robin carefully engages, collaborates, and mentors different audiences on the value of human factors in cybersecurity. Bylenga’s recent thesis on leveraging the Human Factors Analysis Classification System in cybersecurity (HFACS-Cyber) is grounding breaking; this research provides an exclusive insight into the importance of applying an error taxonomy to determine the underlying causal factors that led to a breach.

    Bylenga is the Co-Founder of the Global Human Factors Cybersecurity Council, a working group to assist business organisations in addressing human performance and human behavioural issues in cybersecurity. She is VP and Information Security Lead at DWS and holds a master’s degree in Information Security with Distinction from Royal Holloway, University of London. She currently resides in London and is active in many professional organisations such as the Investment Association (Cyber Resilience Operating Group), SASIG, ISACA and the London Ladies Hacking Society.

    Robin Lennon (Bylenga), MHRD, MSc
    You can follow Robin on LinkedIn


  • Erhan Temurkan
  • Quentyn Taylor

    Senior Director – Product, Information Security and Global Incident Response - Canon Europe, Middle East and Africa

    Quentyn Taylor is Director of Information Security at Canon Europe, Middle East and Africa.

    Using the power of stories and his own experience of testing products to destruction; Quentyn has embraced building business relationships across the world whilst driving Canon’s strategy and educating business customers to minimise their security risk.

    Before joining Canon, Quentyn has worked in a variety of industries such as Internet service providers as well as startup businesses.


  • Moderator: Kai Roer

    Praxis Security Labs

    Currently serving as CEO at Praxis Security Labs, an innovative security software company which he co-founded in 2023, Kai has been providing actionable advice grounded in empirical evidence to public and private organizations around the world since the 1990s.

    Kai is dedicated to improving the knowledge and understanding of the human factors that influence security and the organizational impact they have, and in recent years has focused on helping organizations understand what culture they currently have, what culture they would like to have, and more importantly, how to get there. In 2010, he created the Security Culture Framework (SCF), a framework and methodology to build and maintain security culture, which he later gifted to the open-source community. The SCF evolved into several spin-offs, including the Cybersecurity Culture Framework by The European Union Agency for Cybersecurity (ENISA).

    In 2015, Kai founded CLTRe, the world's first SaaS-platform built to measure and manage an organization's security culture, which was acquired by KnowBe4 in 2019. After which, Kai served as their Chief Research Officer, where he led a team of researchers that focused on bridging the gap between theory and practice and collaborated with both academia and other industry leaders on numerous well-received publications.

    As best-selling author, an award-winning speaker, and guest expert lecturer, Kai works with the information security community on a global stage. He has written and co-written several best-selling books, including The Security Culture Playbook (Wiley, 2022) and Build a Security Culture (IT-Governance, 2015), which are recognized globally as the leading resources for industry leaders and practitioners to understand and learn how to improve security culture. Thanks to his invaluable contributions to the industry and unique background which combines leadership, communication, and technology, he is a popular keynote speaker, expert lecturer and makes frequent appearances in national and international media (newsprint, radio and TV) and on a variety of podcasts.

    Kai focuses on presenting complex challenges in easy-to-understand language and explains security in ways that resonate with non-security people. Throughout his career, Kai has received several awards, including the Ron Knode Service Award by the Cloud Security Alliance CSA for his extensive volunteer work for the security community around the world.

    When Kai is not working, he enjoys spending time outdoors, riding his motorcycles and BBQing with his family and friends.


4:25 - 4:55 PM Briefings Highlights
  • Daniel Cuthbert

    Black Hat Review Board

    Daniel Cuthbert loves doing security research. With a career spanning over 20 years on both the offensive and defensive side, he's seen the evolution of hacking from a small groups of curious minds to organized criminal networks and nation state we see today. He is the original co-author of the OWASP Testing Guide, released in 2003 and now the co-author of the OWASP Application Security Verification Standard (ASVS) and sits on the UK Government Cybersecurity Advisory Board.


4:55 - 5:00 PM Closing Remarks
5:00 - 6:00 PM Cocktail Reception

Advisory Board

Dr. Jessica Barker
Daniel Cuthbert
Jane Frankland
Phil Huggins
Becky Pinkard
Kai Roer
Quentyn Taylor
Erhan Temurkan

Sponsors

Reception Sponsor

We’re Kandji: the Apple device management and security platform that empowers secure and productive global work. Through advanced automation and thoughtful experiences, we’re bringing much-needed harmony to the way admins, end-users, and global teams work today and tomorrow.

www.kandji.io

Weldon Dodd

Become a Sponsor