The CISO Chapter UK

Third-party risk programs are under pressure to move faster without compromising security. In this forward-looking session, we’ll explore how Agentic AI is set to transform TPRM - from automating assessments and triage to enabling real-time, risk-informed decisions. Join us for practical insights into streamlining vendor reviews, reducing friction, and building trust through intelligent automation.

Key Takeaways:

• Learn how agentic AI can automate vendor assessments and risk triage, accelerating third-party risk management without sacrificing accuracy.

• Discover strategies for enabling real-time, risk-informed decision-making that improves both security outcomes and business agility.

• Understand how intelligent automation can streamline reviews, reduce operational friction, and strengthen trust with stakeholders and vendors.

"Redefining work by removing traditional barriers and embracing digital freedom"

• The reality behind supporting BYOD
• Applying the traditional approach to a modern workspace
• Expectations for the next generation

Technology can only go so far—people remain a critical line of defence. This session looks at how to embed security-first thinking across your organisation, designing training that is engaging, role-specific, and aligned to real-world threats.

Key Takeaways:

• Discover proven methods for shifting employee behaviour from compliance to active risk reduction.

• Learn how to measure and improve the effectiveness of security awareness programmes.

A focused deep dive into VEC (Vendor Email Compromise) - how adversaries compromise trusted partners, pivot through payment workflows, and exploit implicit trust. We show why static controls lag and how behavioural identity modelling and partner‑graph context stop vendor‑originated fraud without slowing the business.

Takeaways:

• The VEC lifecycle: from vendor account breach to invoice tampering and payment diversion - tactics, high‑risk signals, and the critical intervention points.
• Why SEG falls behind: limits of rules, reputation, and content filtering against trusted‑sender fraud - and the added value of behavioural baselines and relationship history.
• An actionable playbook: supplier verification steps, finance approval guardrails, vendor‑risk monitoring, and incident response patterns for the partner ecosystem.

Discover how Aryaka Unified SASE as a Service helps enterprises reduce their attack surface and simplify secure networking by converging networking and security into a unified platform. With integrated Zero Trust architecture, consistent policy enforcement and support for both onsite and remote users, Aryaka delivers a seamless solution that enhances performance, agility, simplicity and security. Join our session to explore how we’re transforming global secure networking by integrating WAN, security and observability into a single, cloud-delivered service and how to stay future ready in the era of hybrid work and AI transformation.

Key Takeaways: 

• Unified Networking and Security Everywhere: Converges networking and security into one platform, enforcing consistent zero trust policies across all users and locations.
• Full Visibility, Less Complexity: Delivers a single view of network and security operations, simplifying management and accelerating threat response.
• Performance with Compliance: Optimizes user experience while centralizing data protection to meet regulatory requirements efficiently.

Attackers are increasingly using AI to scale, personalise, and automate cyberattacks. From deepfake-enabled social engineering to AI-driven malware, the threat landscape is shifting fast. We’ll explore the tools, tactics, and intelligence needed to defend against this new class of adversary.

Key Takeaways:

• Identify the latest AI-powered attack vectors and their potential impact on enterprise security.
• Gain actionable defence strategies, from detection to proactive disruption of automated threats.

Downtime is today’s greatest threat, and prevention alone isn’t enough. True cyber resilience comes from the ability to act with clarity and confidence - powered by data and visibility. This keynote explores how organisations can turn insight into action, detect threats faster, and respond decisively, even in a chaotic cyber landscape.

With regulations tightening and data volumes growing, privacy is a moving target. This session covers the strategies and tools CISOs need to ensure sensitive data remains protected while meeting evolving compliance obligations.

Key Takeaways:

• Learn how to operationalise privacy across hybrid and multi-cloud environments.

• Gain insights into emerging regulatory trends and their security implications.

The AI era is here, and every organization is racing to harness its potential. Yet as proprietary data becomes the fuel for innovation, it also amplifies risk. Shadow AI, ungoverned data use, and emerging AI threats can derail progress before it starts. In this session, discover how leading enterprises are embedding data security and AI guardrails at the core of their strategies. Learn proven best practices to protect sensitive data, mitigate AI security and compliance risks at scale, and confidently accelerate your journey to the AI Promised Land. 

As organisations race to adopt revolutionary technologies, from generative AI and quantum computing to autonomous systems, security strategies must evolve without losing the proven principles that underpin resilience. This session explores how to apply timeless, “evolutionary” security fundamentals to cutting-edge innovations. Attendees will learn how to balance agility with control, enabling innovation without exposing critical vulnerabilities. Real-world examples will demonstrate how tried-and-tested frameworks can adapt to modern architectures to deliver secure progress at scale.

Key Takeaways:

• Discover how traditional security principles, such as least privilege, defence in depth, and secure-by-design, can be extended to protect emerging technologies.
• Learn practical steps to integrate innovation and security, ensuring governance keeps pace with rapid technological advancement.

Step away from passive listening and into active problem-solving. In this highly interactive session, you’ll work alongside your peers to explore some of the most pressing challenges and exciting opportunities facing your role today. Share experiences, exchange fresh perspectives, and leave with practical ideas you can take back to your organisation.

Discover innovative solutions in action. Our partners will showcase their latest tools, technologies, and strategies designed to address real-world challenges and unlock new opportunities. This is your chance to see the possibilities first-hand, ask questions, and explore how these solutions could drive results for your organisation.