In today's digital world, companies are increasingly falling victim to ransomware attacks. In these attacks, criminals gain access to company data, encrypt it and demand a ransom payment to release the data. This poses a serious threat that goes far beyond the mere loss of business-critical information. Attackers are now also threatening to expose confidential data, which puts additional pressure on affected companies.
Such security incidents not only lead to considerable financial losses, but also to massive reputational damage. In addition, there are often severe fines under the General Data Protection Regulation (GDPR), which can be imposed if personal data is not adequately protected.
In this Masterclass, we will discuss the effects of ransomware attacks and possible strategies for protection and damage limitation. Find out how you can better protect your company against attacks and what measures should be taken in an emergency to minimise the damage and secure your data.

Staying one step ahead of threats requires real-time visibility and intelligent prioritisation.  Learn how SentinelOne's Singularity Cloud Workload Security solution for real-time threat detection and response integrates with Snyk to enable developers to secure applications from code to cloud.
Together, Snyk and SentinelOne provide organisations with a comprehensive view of risk across their entire application portfolio, prioritised by real-world vulnerability and runtime context.

How does cyber security go from being necessary to strategic?

This presentation is about the transformation from isolated IT security to a company-wide business process. With a holistic view of continuity, posture and threat, it will show how security actively contributes to value creation. Automation, AI and modern detection strategies ensure agility and efficiency. This turns cyber security into a central control element.

Establishing a functioning cybersecurity system is an important investment that secures a company's existence.
Despite numerous tools and measures, companies are increasingly falling victim to attacks. Why is that? Because protection is often provided in the wrong places - and because many solutions are effective but not efficient.
In this masterclass, Paul Werther (CTO, greenhats) and Giovanni Serpi (CEO, INS Systems) show how modern companies can make their security strategy not only effective but also efficient.
Learn how to do the right thing right in the future. With a clear focus on the real threats, with intelligent orchestration and thus with targeted use of resources.
In this way, you can strengthen your company's resilience, reduce the burden on your IT and cut costs.
The solutions presented are based on the most common and critical vulnerabilities identified in the course of white hacking - practical, proven and immediately realisable.

Ideal for IT managers, CISOs and decision-makers who take a pragmatic approach to security.

CISOs and AppSec professionals are well accustomed to flexing with industry movements, whether it be in the form of new technology, emerging threats, or rapidly shifting regulatory and compliance environments. It’s certainly not easy, and generative AI exploding onto the scene has resulted in significant changes on the horizon for both the AppSec team and their developer counterparts. Touted as both a blessing and a curse for development and software security, there is no better time to ensure the enterprise security program is not just updated to accommodate the increased attack surface, but actively optimizing it for SDLC efficiency and cyber defense. 

In particular, the advent of AI coding tools promising rapid code generation and supercharged productivity has enthralled developers, who have adopted the technology in droves, embracing it as the pair programming partner they have been sorely missing. However, the trade-off for speed is a significant uptick in AI-borne security risk, and using these tools without verified security skills is a recipe for disaster.

World-class security leaders must rise to the occasion and lead proactive security programs that utilize all the tools available to them to reduce their attack surface. Developers have immense potential to be central to a defensive security strategy, and they can be enabled with the right knowledge to transform their approach to coding and shift to a security-first mindset. This revolution is vital as the use of AI coding tools grows, and critical thinking from the developer is a must to deploy them safely in their workflow.

In this presentation, Dr. Matias Madou, will reveal, based on AI experiments and key research with CISOs, the critical pathways security leaders can take to execute incredible developer-focused training programs that reduce risk, shift negative security sentiment in the development cohort, and safely adapt AI technology, including:

• Understanding comparisons between AI and human coding, what works, and what can affect enterprise security maturity.
• Navigating AI data quality issues and establishing safe pair programming.
• Developer upskilling, including benchmarking and growing key security skills with knowledge that leads to better risk mitigation.
• How to establish a skills baseline among developers, and grow relevant competency quickly.
• The pitfalls of AI vulnerability detection, and the skillset your developers must master to overcome hallucination, insecure code generation and misconfiguration.

CTEM was coined by Gartner and describes permanent attack surface management, which goes far beyond simple vulnerability scans. According to Gartner, it is about ‘identifying, assessing, and mitigating vulnerabilities’. Moritz Degenkolb heads the Security Operations Centre (SOC) at AirITSystems and emphasised the central importance of CTEM in central SOC processes in his presentation. ‘I can defend architectures better if I know them’, describes his attitude to CTEM.  AirITSystems is committed to ‘fighting system breaches’ and consistently dovetails security architectures, operational processes and IT governance tasks. The experts will be available at the Cybersecurity Summit - also to share experiences from the field. The experts have special trade fair offers in the form of GAP analyses: for IT security, information security and data protection.

Today more than ever, companies are under pressure to remain capable of acting in an increasingly unpredictable threat situation. The key lies in clear control over critical business processes and a resilient security strategy. In this presentation, you will learn how leading companies recognise risks at an early stage, manage them in a targeted manner and respond to incidents with the right technologies and structures. We will show practical approaches for building effective incident response plans, utilising threat intelligence and how you can anchor sustainable resilience in the digital age with vision and control.