ISMS Forum organized its twenty-fourth edition of the International Information Security Day on November 17 at the Estadio Cívitas Metropolitano. This year, the conference was held under the title Next Level Cyber Security: main actors and boardroom, and our Sales Manager Roi Fortes was at the event to learn about the main challenges of cybersecurity in corporate culture, people, processes, systems, suppliers… emphasizing that cybersecurity is a responsibility of all components of the company.
The day was divided into 4 themes, on which numerous presentations were given in parallel. The four groups into which this event was divided were:
- Cyber Security Strategy
- Cyber Security Trends
- Cloud Security, IoT & Business Continuity
- Privacy
Some of the talks Roi attended and would like to highlight were:
THE REGULATION OF THE FIGURE OF THE DATA PROTECTION DELEGATE
In it, Julián Prieto, Deputy Director General of the General Registry of Data Protection. He spoke, among other things, about the Royal Decree that will come into force in the coming months, which will soon oblige all Public Administrations and companies with more than 50 employees to have a data protection officer (DPO).
WORKING GROUPS TO SUPPORT THE TRANSPOSITION OF NIS2
The following participated in this presentation:
- Ángel Pérez (CISO, Abertis Autopistas España).
- Sergio Padilla (Head of Information Security, Bank of Spain).
- Joaquín Castellón (CISO, Navantia).
- Francisco Lázaro (CISO, Renfe; Board Member, ISMS Forum).
During the meeting there was a debate on the NIS2 which, although it has not yet come into force, will soon do so. Some hints were given about the new features that NIS will bring, among them, the extension of protection measures throughout all supply chains. It is also important to note that when the NIS2 is adopted, Member States will be given 21 months to transpose the new elements of the directive into national legislation.
THE FUTURE OF CYBER SECURITY THREATS BRUCE SCHNEIER, CYBER SECURITY EXPERT
Bruce Schneier, cyber security expert cryptographer and writer, spoke about how the evolution of technology has forced increased and tougher protection measures to secure the devices we all use today in our daily lives. More and more electronic devices are becoming part of our lives, so the number of vulnerabilities and risks to which we are exposed is growing exponentially. He also briefly commented on a very interesting and increasingly relevant topic today, the distrust of governments to use technologies from manufacturers in other countries to avoid any possible cyber-espionage.
III EDITION OF THE CYBERSECURITY MATURITY INDICATOR
This section of the event was attended by:
- David Esteban (CISO, Cellnex Telecom; Board Member, ISMS Forum Barcelona).
- David Llorente (Board Member, ISMS Forum Barcelona).
- Santiago Minguito (BISO, PepsiCo; Board Member, ISMS Forum Barcelona).
- Óscar Sánchez (Cybersecurity Director, PUIG; Board Member, ISMS Forum Barcelona).
- Pedro López (Director CyberSecurity & Data Protection Master, UCM).
The results of the surveys conducted with the CISOs of the main Spanish companies were presented. They showed that all of them had increased their cybersecurity levels during the last two years. However, there was a need to include SMEs in the analysis, which after all make up the majority of the business fabric in Spain, in order to know if the scenario is similar.
In addition, the study “III Cybersecurity Maturity Indicator” prepared by the ISMS Forum Cybersecurity Observatory was explained. The aim of this study was to analyze the level of maturity, evolution and new phenomena in the field of information security, as well as to generate national indicators on the state of cybersecurity in private and public entities.
Finally, we would like to highlight that more than 1,000 people attended and there were 50 supplier stands at this edition of the International Information Security Conference, where the focus was on the key players in the development of cybersecurity. With the aim of defining a solid, resilient and stable model in an increasingly digital society and economy.