Agenda
Feb 28 - Day One |
|
|
All events for this day are hosted at the IMPACT office |
|
|
0800 - 0900 |
Registration |
|
Training Session - Management Track: Framework for National Cybersecurity Policy & Strategy |
|
|
0900 - 1030 |
Session 1: The Cybersecurity Challenge Dr. Frederick Wamala, Ph.D., CISSP ® ITU Sr Expert Advisor - Cybersecurity The session outlines the essential role ICTs play in daily life, commerce and national security. Using examples from different parts of the world, we discuss the increasingly sophisticated threats against critical information infrastructures and the information processed over those networks. We emphasise that no country is immune from online threats and risks because the Internet knows no boundaries. Team Activity: Working in teams, participants will identify and share views on “why” a secure and resilient cyberspace is important to their country’s well-being. |
|
1030 - 1100 |
Coffee/ Tea Break |
|
1100 - 1230 |
Session 2: National Cybersecurity Strategy Model Dr. Frederick Wamala, Ph.D., CISSP ® ITU Sr Expert Advisor - Cybersecurity We present a model for visualising the national cybersecurity domain. We use the Pillars of the ITU GCA and the Ends-Ways-Means strategy paradigm as the dual foundations for our dynamic view that grounds cybersecurity strategy in national values and interests. Using examples in national cybersecurity strategies of both developed and developing countries, we show how cybersecurity helps support economic, social and national security ends. We also identify typical stakeholders and propose a process for developing a coherent national cybersecurity strategy. Team Activity: Working in teams, participants will identify and share views on how cybersecurity would support identified national interests in their own countries. |
|
1230 - 1330 |
Lunch |
|
1330 - 1500 |
Session 3: National Cybersecurity Policy Framework Dr. Frederick Wamala, Ph.D., CISSP ® ITU Sr Expert Advisor - Cybersecurity A National Cybersecurity Policy Framework defines mandatory security requirements that relevant stakeholders have to meet to gain access to specified IT systems and services. The "Classified" or "Protectively Marked" systems often belong to the Government or critical infrastructure operators. The framework forms the basis for judging the adequacy of national and organisational cybersecurity decisions and thus verifying compliance. We identify stakeholders and provide a step-by-step guide for developing a national cybersecurity policy framework. |
|
1500 - 1530 |
Coffee/Tea Break |
|
1530 - 1700 |
Session 4: National Cybersecurity Policy Framework (continued) Dr. Frederick Wamala, Ph.D., CISSP ® ITU Sr Expert Advisor - Cybersecurity Continuing on from Session 3, we provide examples of national action to define mandatory cybersecurity requirements in areas such as Security Governance, Risk Management and Compliance; Data Classification; Personnel Security etc. Team Activity: Working together, participants will speak about the existence of mandatory cybersecurity requirements in their countries and/or any challenges. |
|
Training Session - Technical Track: Incident Response Framework |
|
|
0900 - 1000 |
Session 1: Incident Handling Process
|
|
1000 - 1030 |
Coffee/Tea Break |
|
1030 - 1130 |
Session 2: Availability Incident Response Process
|
|
1130 - 1230 |
Session 3: Malicious Code Incident Response Process
|
|
1230 - 1400 |
Lunch |
|
1400 - 1500 |
Session 4: Intrusion & Intrusion Attempt Incident Response Process
|
|
1500 - 1600 |
Session 5: Unauthorised Usage Incident Response Process
|
|
1600 - 1630 |
Coffee/Tea Break |
|
1630 - 1730 |
Session 6: Demo & hands on session
|
|
1900 - 2100 |
Speakers Dinner Shangri-La |
|
|
|
Feb 29 Day Two |
|
|
0800 - 0900 |
Registration |
|
0900 - 0915 |
Welcome Remarks Mohd Noor Amin, Chairman, Management Board, IMPACT |
|
0915 - 0945 |
Keynote Presentation: Cybersecurity: Global Threat Trends and Response Strategy Sang-Hun Lee, Director, Network Security Team, Network Policy Bureau, Korea Communications Commission |
|
0945 - 1015 |
Plenary: Cloud Computing: Security, Privacy, Identity & Compliance Goh Su-Gim, Manager-Threat Insight, F-Secure |
|
1015 - 1045 |
Break |
|
1045 - 1115 |
Data Security in the cloud - How safe is your data? Chaiyakorn Apiwathanokul, Chief Security Officer, PTT ICT Solutions Company Limited |
|
1115 - 1145 |
A Shortcut of International Cooperation with Chinese Power Overview of China Domestic IT Giant Nuesoft and its Products Ming Ye, Security Manager, Neusoft |
|
1145 - 1215 |
Security vs. Accessibility - Managing the Balance in Cloud Computing Chaiyanath Chamoraman, Director of Information Security Training Business Unit (ISTBU), ACIS |
|
1215 - 1300 |
Panel Discussion: Data Protection and Legal Issues in the Cloud Chair: Goh Su-Gim, Manager-Threat Insight, F-Secure |
|
1300 - 1400 |
Lunch |
|
1400 - 1430 |
Trusted Mobile Platform Ken Wang Kai |
|
1430 - 1500 |
Issues of Rising Incidents of Attacks with Connected Smart Devices Jane Lu |
|
1500 - 1530 |
The future of the Mobile Cyber-Threat: Growing use of Smart Devices in the Enterprise and Government Office. Jake Saunders |
|
1530 - 1600 |
Break |
|
1600 - 1630 |
Panel Discussion: Blackberry vs. Android vs. iOS vs. Windows Chair: Jake Saunders |
|
1630 - 1700 |
Mass Exploitation: The Underground, Script Kiddies, Governments, Fun! Dhruv Soi, Director, Torrid Networks |
|
1800 - 2000 |
Cocktail Reception Shangri-La |
|
|
|
Mar 1 Day Three |
|
|
0800 - 0900 |
Registration |
|
0900 - 0945 |
Global Cybersecurity Landscape: Cybersecurity - A Cooperative Approach Philip Victor, Director of Policy and International Cooperation, IMPACT |
|
0945 - 1030 |
Plenary: International Cybercrime Laws - A Harmonization Approach Dr. Frederick Wamala, Dr. Frederick Wamala |
|
1030 - 1100 |
Break |
|
1100 - 1130 |
Plenary: CNII - Security Challenges, Soutions, Implementation and Cooperation Manu Zacharia, Creator and Chief Architect, Matriux |
|
1130 - 1200 |
The Case for International Collaboration Today to Combat the Cyber Threats of Tomorrow Phannarith Ou, Director, Cambodia CERT |
|
1200 - 1245 |
Panel Discussion: Industry's Approach toward Future Threats Through Private-Public Partnerships and Technology Chair: Philip Victor, Director of Policy and International Cooperation, IMPACT |
|
1245 - 1400 |
Lunch |
|
1400 - 1420 |
CERT Case Study: Vietnam CERT Hoang Dang Hai, Deputy Director General, Vietnam CERT |
|
1420 - 1440 |
CERT Case Study: Sri Lanka CERT Lakshan Soysa, Manager, Operations, Sri Lanka CERT |
|
1440 - 1500 |
CERT Case Study: Oman CERT Badar Ali, Director, Oman CERT |
|
1500 - 1530 |
Break |
|
1530 - 1550 |
CERT Case Study: Thai CERT Dr. Chaichana Mitrpant, Head of ThaiCERT |
|
1550 - 1650 |
Panel Discussion and Demo: Mobilizing a CERT to Combat the Latest Cyberthreats Co-Chair: Anuj Singh: Director of the Global Response Center, IMPACT & Chris Horsley: Founder, CSIRT Foundry Panelists: Hoang Dang Hai, Lakshan Soysa, |
1650 - 1700 |
Closing Remarks and Prize Drawing Aaron Boyd, VP Strategic Development, ABI Research |