Jul
31
6:30 pm18:30

Ladies, ready for a thrilling career change?

If you are ready to ride a rocket, we are looking for astronauts!

CyberWayFinder (CWF) is inviting all women, regardless of their educational or professional background, to our information event for our workforce development program in Brussels on Wednesday, 31st of July, 2019. CWF is a women’s cybersecurity workforce development program, which aims to help women transition (through training, mentorship and a field related job) to a career in cybersecurity. The program’s main goal is to provide women, with any type of background (IT or Engineering background is not mandatory), training in the ‘Common Body of Knowledge’ so they can successfully start a new career.

During this event we will explain the ‘how and why’ CyberWayFinder could help you transition into this exciting field, and describe what it means to be a cybersecurity practitioner.

Get your free ticket here!

Event outline:

The event will start with a presentation, where we will take the time to answer all your questions as well as:

- Detailed explanation about the program

- Explain the role of a cybersecurity professional

- Explain the application process

View Event →
Hostage Negotiation skills for Cybersecurity Professionals, workshop
Jul
13
9:30 am09:30

Hostage Negotiation skills for Cybersecurity Professionals, workshop

Take a Deep Dive into the minds of some world-class hostage and crises negotiators.

Crises management and negotiation is a hugely emotional skill set where the goal is often harm minimization and recovery with zero ‘good’ outcomes on the table. When all options are bad, the clock is ticking and people around you are screaming, how do you have confidence that you have what it takes, you have the mental-muscle-memory, world-class techniques and skills to step forward and say “I’ve Got This!” Moreover, how to recognize a situation has really reached the beyond,it is time to call in the professionals, and when you make the call, do you know how to adequately manage their outcome?

Can you drop into business conversations “according to my hostage negotiation instructor we approach these by …” Finally, during your next performance appraisal and salary negotiation, do you want to know how to utterly maximize your personal return? Then join us for a deep-learning masterclass in real-world critical event handling.

View Event →
Cyber Extortion and Critical Incident Handling
Jul
11
6:00 pm18:00

Cyber Extortion and Critical Incident Handling

Hostage Negotiation, Cyber Extortion, Critical Incident Handling and You!
To Pay or Not To Pay used to be the question, now, Are You Ready to Negotiate?

What are the lessons from state-of-the-art Hostage Negotiation and Critical Incident Handling via law enforcement and other global expert geopolitical and terrorist incident handlers that can be applied to cyber-attacks and incidents? Are we ready to support our C-suite, board executives and businesses through an extortion incident? When a major crypto-malware strikes a client, are we ready? Do we understand the psychology of our opponents during an incident? Are we truly engaged using all our resources to derive maximum harm mitigation and optimal outcomes? When things go really really wrong, do we know where, how and who to go for help supporting us through a stressful time?

Cyberwayfinder has the pleasure to host InterVentis Global's Calvin Chrustie (formerly Senior Director Operations for the Royal Canadian Mounted Police), Schmulik ZoltakTimo der Weduwen and team to walk us through this sea-change in our approach to cyber incident handling. Join us for a pre-meeting networking session, a presentation, an open forum and lively debate and discussion about how ‘real-world’ crises and critical incident negotiation and handling as it applies to cyber and security. We want you voices and feedback and challenges, please come prepared with the tough questions!

* “Ransomware attacks … account for nearly 24 percent of incidents where malware was used. Ransomware has become so commonplace … a serious threat to all industries. …
C-level executives were twelve times more likely to be the target of social incidents and nine times more likely to be the target of social breaches … financial social engineering attacks… that compromised executives rose ...”-2019 Verizon Data Breach Investigation Report

InterVentis Global Profile

InterVentis Global is a group of internationally recognized crisis negotiators, specializing in hostage takings, (cyber) extortions and kidnapping. They have decades of experience dealing with some of the worlds most difficult and high risk negotiations with criminals and terrorists. They have taught, coached and advised corporate and government leaders for several decades while serving in the police, military and private sectors. Three of the team members are joining us in Brussels to further the interconnectivity between cyber security managers and crisis negotiators, with the aim of infusing the cyber responses with the proven and sophisticated techniques of international crisis negotiations.

Shmulik Zoltak, M.A. - former Commander of the Israeli National Police Crisis Negotiation Team for 15 years and retired in recent years and is a founding member of InterVentis Global. He is recognized internationally in the field of Crisis Negotiations with extensive background extortions, kidnapping and related crisis negotiations and the management of these incidents. In addition to being trained in Israel, he is a graduate of the FBI Hostage Program, and a certified clinical psychologist, has consulted and taught around the world, including recently in the cyber world. He is currently based in Tel Aviv.

Timo der Weduwen - MA - formerly a United Nations senior security official and the resident-expert in hostage negotiations, has led, coached, managed and advised senior leaders around the world in the field of kidnap, hostage and extortion negotiations. He is a graduate of Scotland Yards Hostage Negotiation Program and has led the largest negotiation team in the Netherlands police. He has extensive global experience in the field of negotiations with criminals and terrorist entities. He is currently a founding member of InterVentis Global based in New York.

Calvin Chrustie, LLM - formerly the Team Leader of Canada’s Royal Canadian Mounted Police’s (RCMP) International Negotiation Team. A team designed to respond top international kidnap and crisis situations involving criminals and terrorist groups. In addition to his negotiation training with the RCMP, he is a graduate of both the FBI’s and Scotland Yard’s Hostage Negotiation Programs. He has extensive experience negotiating and managing kidnap and extortion incidents. He is currently based in Vancouver, Canada.

Two other members of InterVentis Global not appearing in Brussels include, Marc Varri, a former FBI agent, well known internationally for his experience in managing kidnap and extortion cases, with extensive experience in crisis management. Marc is currently based in Madrid. And Moty Cristal, MPA, LLB, who is the former Commander of the Israelis Military Crisis Negotiation and internationally recognized as leading in the development of cyber and extortion negotiations. Moty is based in Tel Aviv.

View Event →
From Security Awareness to a Security Culture: Pitfalls and Opportunities
Jun
13
9:30 pm21:30

From Security Awareness to a Security Culture: Pitfalls and Opportunities

"Amateurs hack systems, professionals hack people.", Bruce Schneier

According to the Verizon Data Breach Report 2019, social engineering attacks have increased by 18% in the last five years. Breaches made possible by social attacks now constitute 33% of the total number.

Research points to users being significantly more susceptible to social attacks they receive on mobile devices. This is the case for email-based spear phishing, spoofing attacks that attempt to mimic legitimate webpages, as well as attacks via social media. - Verizon DBIR 2019

Is organising an annual or bi-annual security awareness campaign sufficient enough in addressing the human factor vulnerabilities which may lead to data breaches?

How do organisations succeed in lowering the click rates during phishing campaigns, and how can progress be measured? Are there rules of thumb in creating a security culture - where staff, partners and all stakeholders become the best line of defense for any organisation?

Join us in a lively discussion, with our panel of speakers coming from different sectors - who will share their experiences, successes and challenges.

The program will be as follows:

  • 18h00 Networking with drinks and finger-food

  • 18h30 Start of Event: Welcome Words

  • 18h45-19h30 Presentations (Each speaker will have about 10-12 minutes to talk about their experience in organising, creating and evaluating cyber campaigns.)

  • 19h30-19h55 Discussion and Q&A

  • 19h55-20h Wrap-up and Takeaway

  • 20h-20h30 Networking

Our speakers are:

Leila Taghizadeh

Leila is a passionate learner and teacher! She has a heart for science and bunches of other things including Cyber Security! Currently, she leads security awareness at Euroclear. Working at Cyber Security gives her fulfillment feeling, as she helps individuals in improve their life quality. She uses design thinking and agile to help entrepreneurs shaping their ideas, and setting up their businesses. She has a PhD in physics and an Executive MBA from the second best world class program, Trium.

Denislava Simeonova

Denislava Simeonova is a communication expert with more than 20 years of experience in non-profit, media, public and private sectors. Currently, she is Communication Officer in the Informatics Directorate of the European Commission and is contributing to its cyber awareness activities. In 2015 Deni was member of the team which carried out the first fake phishing campaign to all Commission staff, analyzing results and drawing conclusions from this large scale training exercise. The campaign laid the foundations of the current Cyber Aware program, which was established to continuously educate and raise cyber awareness in the Commission

Ann Mennens

Ann Mennens is working in the IT Security Directorate of the Informatics Directorate General (DIGIT) of the European Commission. She manages the corporate Cyber Aware Programme, aimed at enhancing the skills and knowledge of the Commission staff on issues related to cyber security and secure use of IT systems. Objective is to promote and support a culture of cyberhygiene throughout the institution.
Ann is also in charge of the network of Local Informatics Security Officers (LISO) in the Commission and is dealing with training and communication on cybersecurity.

Before joining the Commission in July 2016, Ann Mennens was since 2011the Manager of the Belgian Cybercrime Centre of Excellence for Training, Research and Education (B-CCENTRE), from within the KU Leuven. As such, she coordinated the activities of several academic research groups, public sector bodies and businesses in Belgium dealing with cybercrime and cybersecurity.
She is one of the driving forces behind the creation of the Belgian Cyber Security Coalition in 2014, a coalition of public authorities, the academic world and the business sector joining forces against cybercrime in Belgium. She is an active member of the Awareness Raising working group of the Coalition.

Emmanuel Nicaise

Emmanuel is a seasoned security professional and psychologist specializing in human-centric enterprise security. He's combining 25 years of experience in IT (Network, systems & web development), in corporate security (Information, cyber, operational and physical security) and in psychology (Master in clinical psychology, a decade of work as psychotherapist and an ongoing PhD on the social cognition of trust and vigilance in the digital age) to help companies foster a better security culture and transform into a more efficient security organization.

View Event →
Jun
3
6:30 pm18:30

CyberWayFinder Luxembourg: Career Shifts into Cybersecurity

Have you felt like it’s the perfect time to level up in your career? If so, CyberWayFinder (CWF) is inviting all women, regardless of their educational or professional background, to our information event on Wednesday, 6th of March, 2019. CWF is a women’s cybersecurity workforce development program, which aims to help women transition (through training, mentorship and a field related job) to a career in cybersecurity. The program’s main goal is to provide women, with any type of background (IT or Engineering background is not mandatory), training in the ‘Common Body of Knowledge’ so they can successfully start a new career.

During this event we will explain the ‘how and why’ CyberWayFinder could help you transition into this exciting field, and describe what it means to be a cybersecurity practitioner. 

Event outline:

The event will start with a presentation, where we will take the time to answer all your questions as well as:
- Detailed explanation about the program
- Explain the role of a cybersecurity professional
- Explain the application process

Presenters will be the founders of CWF:

Rosanna Kurrer 

Patrick Wheeler

View Event →
Mar
14
6:30 pm18:30

CWF Forum: Cyber Threat Intelligence - Bringing Military Intelligence to the Corporate World

Join the CyberWayFinder community on 14 March, 2019 for an exciting discussion around Cyber Threat Intelligence. Our speaker is Becky Pinkard, VP, IT and Intelligence at Digital Shadows, is a renowned practitioner and commentator on the information security sector who has been working in information technology since 1996. 

A security transformation expert, Becky has built and managed global information security teams, designed risk and compliance strategies, led security audits and assessments, and developed security awareness training in small and large environments.  She began her current role with Digital Shadows in December, 2015.

Becky was a SANS Institute certified instructor for over a decade, beginning her training career with SANS in 2001. She has also served as a GIAC Certified Intrusion Analyst advisory board member and on the Strategic Advisory Council for the Center for Internet Security. Becky has co-authored "Nmap in the Enterprise" and "Intrusion Prevention and Active Response, Deploying Network and Host IPS".

View Event →
Feb
27
8:30 pm20:30

CWF Forum: Re-thinking the Human Factor in Cyber. The Uncomfortable Truth.

Presentation 
What makes humanity great is the root cause behind why people are the weakest link when it comes to security. It’s a biological fact! On a deeply personal level I have faith in humanity. But is this belief rational? Or, more to the point, is there evidence to back this belief up?

In this new edition we've invited Bruce Hallas. He will share a small part of what he discovered as part of his Re-thinking the Human Factor research project. We will be exploring one of the fundamental limitations, in nearly every effort to date to drive positive security behaviours.

Bruce Hallas
Bruce is the driving force behind the Re-thinking the Human Factor #RHF movement. He is an authorpodcast host, speaker, consultant and trainer in the field of security awareness, behaviour and culture.

His journey into information security started with formal training in law, finance and marketing. This made him, for many years, an outsider looking in, to a tech centric industry and approach to security. 

To survive he had to innovate and find his own path.  He did this by focusing on the human aspects of the challenge starting with risk, governance and compliance and then 6 years ago he kicked off an industry movement to re-think the human factor.

Bruce has now completed 6 years research into Re-thinking the Human Factor which has culminated in the development and launch of the SABC™ (Security Awareness, Behaviour & Culture) Framework in 2016. 

The Framework has been implemented in organisations covering 24 countries and in 4 languages. His research, vision and experience has attracted the attention of many industry stakeholders including ISC2 and the SANS Institute. He’s a regular speaker and panellist on the human factor where he’s been sharing his disruptive thoughts and uncomfortable truths on education and awareness now for 6 years.

Bruce shares his insights with CISO’s, Education and Awareness Managers and Security professionals through his podcast called Re-thinking the Human Factor, online and face to face training or over a coffee with decent chocolate. 

View Event →
Dec
20
8:30 pm20:30

Cyber Diplomacy - Can we hope to succeed in this?

The internet is an infrastructure not only dominated by people, companies and criminals, but also by nation states. The way in which countries have been engaging with cyberspace, will likely have a lasting impact on the internet. Efforts to establish global norms of state behavior in cyberspace have had mixed results, and have spurred numerous discussions in the international fora. Our speaker will provide insights on this global debate, and shed light to developments of international law on cyber conflict.

Come and join us for a talk, and fireside chat, with Nathalie Van Raemdonck of the EU Institute of Security Studies - facilitated by Rosanna Kurrer of CWF.

Nathalie Van Raemdonck – associate analyst in the field of Cyber Diplomacy at EU Institute for Security Studies. Nathalie has worked across a number of prominent cyber security roles in her home country of Belgium. She is currently tasked with research, policy analysis and outreach activities for the EU Cyber Direct project, supporting EU cyber diplomacy efforts. She has recently been included in SCMagazine's Top 50 most influential women in cyber security UK.





View Event →
Nov
21
6:30 pm18:30

Paying it Forward; Women in Cybersecurity who help strengthen the internet

                             "Behind every great man, there's a great woman cleaning up the mess"

Women are often the silent driving forces behind great things happening, in cybersecurity this is no different. For its next Women in Cybersecurity meetup, CyberWayFinder would like to put the spotlight on those women sacrificing their time, energy and patience and listen to their motivations and drive to help strengthen the internet. 

We will have a panel discussion with a few warriors for the good cause, followed by some networking with other women in cybersecurity. 

Stella Dineva had started her IT career in communications technologies and security. Assuming early responsibilities for governmental Network Security Administration in her home country of Bulgaria, Stella has had the opportunity to demonstrate not only her Technical prowess but, steadily, growing into an experienced, all round Information Security Manager with Security contributions within the Financial Industry.

Since her days at ING, Stella has pioneered the development of communities that strengthen, engage and motivate Women in IT and her drive to see a fair and equal opportunities workplace has led her to contribute assume a seat role at the Ingenico’s Women Network board and a within the Belgian OWASP chapter.

Outside work Stella is a mother, wife and video game enthusiast. 

Stephanie Vanroelen is passionate about security. She has multiple years of experience as a penetration tester and security researcher. She often gives talks and trainings to other security professionals. Stephanie is a co-organizer of BruCON, the Belgian based annual Hacker and security conference, and founder of cyberSKool, teaching kids IT security awareness and hacking by doing STEM related activities.

Program:
18h30: arrival, snacks and drinks will be provided
19h30: panel discussion
20h15: networking

Please be advised to arrive before the panel, as the doors close automatically. 

View Event →
Mar
14
8:30 pm20:30

How To Build a Security-Driven Organisation?

Cybercrime is on the rise, and all organisations undergoing digital transformation are especially vulnerable. What are the first-steps to securing an organisation from ransomeware, DDOS attacks and data breaches? How do we to stop being the "low-hanging fruit" for cyber criminals? Our discussion will cover these topics, and more, including a short introduction to the upcoming General Data Protection Regulation, and what the EU Digital Agenda is, including a walkthrough of the cyber policy priorities for SMEs.

Our speakers are:

Nathalie Van Raemdonck - Nathalie has been propagating cybersecurity awareness for a few years now. She has a background in political sciences, from which she explored the relationships between states concerning cybersecurity. She worked on three national awareness campaigns, and is currently creating cybersecurity webinars for SME's at the Centre for Cybersecurity Belgium. 

Luisa Laranjo - Luisa is an IP and ICT Law specialist, with several years experience working in large international organisations. She is currently working as a Data Protection and Privacy Advisor for a major financial organisation. Her interests include legal compliance in advanced analytical systems in the age of quantum computing. 

Daria Catalui - Daria Catalui is a passionate learner and cyber awareness professional with over 8 years' experience in EU's cyber security agency ENISA and the European Commission. She is an advocate for the following projects which she started and helped grow: European Cyber Security Month,  NIS quizNIS educational map, European cyber security challenge and the Annual Privacy Forum.

View Event →
Jan
6
9:30 am09:30

Malware Fundamentals

Malware Fundamentals with Bart Parys

Bart is a Threat Intelligence Analyst working for a leading consultancy firm in London. He has extensive experience in the field, and spends his time researching, analyzing and reversing malware. He is also the author of the blog Bart's Security Blog (https://bartblaze.blogspot.be/) which focuses on internet and malware threats.

This is an introductory course to malware threats, consisting of a slides-based presentation and hands-on exercises. Topics discussed will be: malware analysis, threat intelligence and reverse engineering.

In this course, students will learn how to:

-analyse malware statically and dynamically,

-learn what threat intelligence is and how to leverage it,

-get familiar with reverse engineering, and

-learn the general life-cycle of an incident.

Tech requirements for participation: a laptop, with the latest version of VirtualBox installed. Bart will share custom VMs for installation at least a week before the workshop.

We will start promptly at 9:30am. Please try to be there at least 5 minutes before the time. There is a lot to learn! ;) Don't forget to bring your own snack and/or sandwich.

View Event →