PLENARY SESSIONS:
Developing and Implementation of Risk Assessments and Emergency Management within CER and NIS2
Developing and implementing Risk Assessments under CER and NIS2 necessitates identifying critical infrastructure and entities and assessing all relevant hazards and threats, including natural induced disasters like floods and earthquakes and man-made incidents. Integrated governance ensures these assessments inform robust resilience planning and emergency management frameworks. It is important to establish clear responsibilities, communication protocols, and coordinated actions across sectors to prepare for, respond to, and recover from disruptions caused by both cyber and physical events, ensuring continuity of essential services.
Workshop/Table Top Exercise: Developing and Implementation of Risk Assessments and Emergency Management
How do we actively and successfully develop and implement a Risk Assessment at national level, identify critical infrastructures and entities, and assess all relevant hazards and threats? In this interactive and engaging workshop, we will discuss and highlight key factors in the process and how to translate them into a resilience strategy.
TRACK TOPICS:
Emerging Threats against CI/CE
The threats to critical infrastructure and entities continue to evolve. Cyberattacks are becoming more elaborate, threat of terrorism activities are on the increase, natural induced disasters worsen due to the changing weather patterns, and new threats like drone attacks and AI misuse emerge. This constant shift demands continuous updates to security measures. How can we identify, monitor and manage their potential damage?
Drones and UAS
Drones pose a growing threat to critical infrastructure due to their increasing accessibility, manoeuvrability, and payload capacity. They can be used for surveillance, delivering explosives, or causing disruptions. However, drones can also act as a facilitator to protect critical infrastructure. In this session we look into the threat, counter measures and impact drones can induce on CI.
Cybersecurity and Cyber Resilience in CI
Cybersecurity in CI focuses on preventing cyberattacks through robust defenses, threat detection, and incident response. Cyber resilience goes further by encompassing the ability of CI/CE to not only withstand attacks but also to continue operating and rapidly recover essential functions if an incident occurs. We need proactive measures for business continuity, disaster recovery, and maintaining operational integrity despite disruptions, ensure the security and reliability of vital services.
Collaboration, Information Sharing and Enhancing PPPs
Building trust and removing barriers to this exchange between governments, operators, and communities is essential for effective risk, resilience, and emergency plans, enabling informed decisions for critical infrastructure protection. Stronger public-private partnerships depend on this collaborative approach. How do we enhance and promote better co-operation and open information sharing across European CI.
Technologies to Detect and Protect
The latest technologies for detecting and protecting critical infrastructure and entities from physical and cyber threats, include ground, land, underwater, space-based, and cyber technologies, as well as enhanced access controls and sensors. Artificial intelligence (AI) is being utilized to improve the performance of these technologies, enabling more effective and efficient threat detection and protection.
Critical Systems and IT/OT
Protecting critical systems, such as ICS and SCADA, within CI is vital for security and public safety. The convergence of IT and OT networks increases cyber risks, demanding robust security measures. Safeguarding these interconnected environments from cyber threats is paramount to ensure the uninterrupted operation of essential services. What are the challenges, and how do we mitigate the threats?
AI and Cyber in CI
Is AI a force for good or evil? AI enhances critical infrastructure cybersecurity by improving threat detection, automating responses, and predicting attacks. Machine learning algorithms can analyze vast data volumes to identify anomalies, enabling proactive defense. However, AI also presents challenges, as malicious actors can use it to create sophisticated attacks. Effective critical infrastructure protection requires leveraging AI’s strengths while mitigating its potential risks through robust security measures and continuous adaptation.
Risk Management & Mitigation Strategies
Developing comprehensive resilience within the critical infrastructure community requires structured information sharing, a commitment to infrastructure preparedness, and robust risk management and mitigation strategies. How do we approach identifying, assessing and prioritising risks and build in resilience through reducing vulnerabilities, whilst planning for a potential disaster.
MINI SYMPOSIUMS:
Power & Energy Sector Symposium
Europe’s energy sector, encompassing oil, gas, and renewables, is of paramount importance. Its stability is crucial for the functioning of all other critical infrastructure/entities. The increasing frequency of cyberattacks and the impact of shifting weather patterns underscore the urgent need to protect energy assets, including IT/OT and SCADA systems. A key challenge is minimizing the impact of outages or attacks and strengthening Europe’s energy grids.
Communications Sector Symposium
Communication networks are the lifeline of communities and critical infrastructure. When these networks fail, businesses are crippled, and emergency response is chaotic. With every sector now reliant on the internet, European businesses, governments, and critical infrastructure must prioritize the protection and resilience of these communications networks and assets.
Transport , Logistics & the Supply Chain Sector Symposium
The Transport, Logistics, and Supply Chain sector faces critical infrastructure/entity challenges, including increased failure risks from interconnected networks, heightened cyber vulnerabilities due to IT/OT reliance, and operational disruptions from physical threats. The transport network, from rail, road, air and sea, requires better understanding of the impact of threats, whilst supply chain needs to enhance protecting sensitive data and ensuring business continuity through rapid recovery are crucial for building resilience.
Maritime & Port Sector Symposium
The port and maritime sector faces critical infrastructure challenges, including climate change impacts, cyberattacks, terrorist attacks and geopolitical instability, all threatening global trade, economic prosperity, national security and environmental sustainability. To protect and build resilience, the sector needs to embed climate adaptation, enhance cybersecurity measures, and foster collaboration between stakeholders. Resilient ports are crucial for economic stability and require a holistic approach.