José Valiente is Director of the Industrial Cybersecurity Center. Technological and Security consulting specialist. He has more than 20 years of experience working in large consulting firms, in which he has developed his professional career both in the field of information technology and in the industrial automation sector. He has participated in more than a dozen publications on industrial cybersecurity, as well as in multiple conferences, events and specialized courses on cybersecurity. He currently holds multiple certifications in IT and security vendor solutions, as well as CISM professional certifications from ISACA and Global Industrial Cyber ​​Security Professional (GICSP) from GIAC.

Computer Engineer and career civil servant of the Higher Corps of Information Systems and Technologies of the State. Prior to the administration he worked as an engineer for Hewlett-Packard. In the State he has carried out his activity in the General Directorate of State Heritage and in the Secretary of State for the Information Society and Digital Agenda. He has been a professor of Electronic Public Procurement at the Institute of Fiscal Studies. He is currently the Deputy Director General of Industry Digitization and Collaborative Environments

Leaders who are managing cybersecurity risk in industrial environments will share their experience incorporating cybersecurity in the early planning and design stages of new industrial projects.

The following questions will be discussed:

What kind of industrial digitization projects is your organization tackling? Who participates in defining the cybersecurity requirements in these projects? What type of risk assessment is being done to identify the appropriate cybersecurity requirements? What difficulties are you encountering? In which components of the new automation and / or industrial digitization projects are more cybersecurity requirements being needed? Which is the reason?

Panel moderated by Maite Carli, CCI.

Telecommunications Engineer and with a Master’s Degree in Cybersecurity. Experience in the field of IT and OT cybersecurity both in the Blue Team and Red Team fields. His certifications include Prince2 project manager, Scrum Foundation Professional, ISO 27001 Lead Auditor and CCNA Cyberops. He is currently a OT cybersecurity consultant and trainer at Everis where he accumulates experience in strategic and technical consulting for critical infrastructures and the implementation and validation of security solutions.

Team leader of the Industry, Telco and Public Sector team at CheckPoint Spain. With 20 years of experience in the sector and two and a half years of experience in securing industrial environments. Holder of multiple security certifications and the black CCI credential.

Ron Brash is a well-known technical expert in the ICS community, with a long history in the oil and gas sectors from an early age, but he is also involved in difficult-to-solve industrial solution development proposals. Today, he has more than a decade of experience with industrial networks and technologies, embedded systems, system design, risk assessment, and in different verticals ranging from aviation, energy, gas, etc. Currently, he is a director of Verve Industrial Protection, where his role includes global community engagement, product ownership, risk analysis, research, and facilitation relationships in the IT and OT organizational divisions.

Susana Sánchez has a degree in higher industrial engineering. With more than 20 years of experience, her professional career has developed in the critical infrastructure sector closely linked to industrial automation projects, where she has played different roles. In the last 8 years, she has focused on the industrial cybersecurity area where he collaborates with Accenture Security to develop this practice and help clients in this regard.

Antonio Navarrete is a technical engineer in computer systems with more than 20 years of experience. The last 15 years focused on industrial cybersecurity. Currently from Fortinet he leads the technical expertise for this area in Iberia advising clients on best practices and related solutions.

Sergio Medina has been working in the cybersecurity sector for more than 15 years. He currently plays the role of Cloud Solutions Architect at Microsoft. In this role, he helps Microsoft’s technology partners realize their full potential. Their main mission is to fully exploit the technologies offered by the Redmond company in terms of security, identity and regulatory compliance.

Pablo has 15 years of experience as a Solutions Architect / Sales Engineer focused on continuous improvement and meeting customer expectations. He has a deep knowledge of IT systems, networks and cybersecurity, designing solutions and integrating multiple IT technologies for demonstrations and hands-on labs. He also has extensive experience in ICS / SCADA solutions for public services, process controls and digital factories (SANS GICSP Certification).

Ramón Quirós is  Product Manager in control and communications systems at Phoenix Contact. Specialized in functional safety (Safety Relays, Configurable Safety modules, Safe I / Os,…), HMIs and Industrial PCs, industrial communication technology (Industrial Ethernet, Remote Communication, Wireless ..) and cybersecurity.

Managers who are in charge of the quality process, safety risk or cybersecurity in industrial environments will share their experience when integrating cybersecurity in their processes.

The following questions will be discussed:

What relationship exists within your organization between the areas of Quality, Safety and Cybersecurity? How is cybersecurity considered when managing quality and safety risk in your organization? What difficulties do you consider to exist to manage quality and safety and cybersecurity risks in an integrated way? What do you think will change in the coming years in your sector with regard to the integration of Quality, Safety and Cybersecurity? Which is the reason?

Panel moderated by CCI.

Currently Anton it an Industrial Cybersecurity lead of Kaspersky, a head of International Kaspersky Industrial Cybersecurity conference program committee, a co-founder and leader of the Russian industrial cybersecurity community RUSCADASEC, and Coordinator for Russia at the Industrial Cybersecurity Center (CCI).

Specialist in cyber security since 2005 with experience in the areas of architecture, integration and operation of the cybersecurity system, cybersecurity audit, consulting and project management, global industrial cybersecurity market and technologies intelligence and analysis, and business development.

Passionate about industrial cybersecurity and critical infrastructure protection, knowledge and information exchange with certifications such as Certified SCADA Security Architect (CSSA) and Certified Information Systems Security Professional (CISSP). Responsibly sharing on Twitter: @shipulin_anton and LinkedIn.

Andres is responsible for promoting market positioning and achieving cybersecurity business results in Spain. Engages with clients in strategic discussions to provide the best cybersecurity and guidance in the industry to maximize the client’s long-term business goals.

Carmen has a doctorate in Computer Science from the Carlos III University of Madrid. She currently works at Telefónica, linked to the Cybersecurity and Cloud area. Among her areas of expertise are Cybersecurity, Cryptography, Machine Learning, IoT and OT security. She currently leads the OT & IoT Security Monitoring product within Telefónica Tech. In the 2019-2010 period she was elected as CSE (Chief Security Envoy) of Eleven Paths (recognition of professionals in the sector). At the same time, she develops teaching work in various Spanish universities and educational centers. She is also co-author of the book «Machine Learning Applied to Cybersecurity. Techniques and examples in the detection of threats ”from the editorial 0xWord.

She has recently been appointed ambassador for Telefónica’s #Women Hacker initiative.

Carmen has published in numerous conferences, has developed patents and participates as a regular speaker at industry conferences, collaborating in the dissemination of scientific-technical content.

Robert is a recognized pioneer in the industrial security incident response and industrial security incident response community. He started in security as a US Air Force Cyber ​​Warfare Operations Officer in charge of the National Security Agency, where he launched the first mission dedicated to identifying and analyzing national threats to industrial infrastructure. It went on to build the first dedicated industrial community incident response and monitoring class at the SANS Institute (ICS515) and the industry recognized Cyber ​​Threat Intelligence course (FOR578).

Joan has Industrial engineering training, incorporated at Allen-Bradley (Rockwell Automation today) in October 1989, thus almost 32 years of experience, of which approximately half in technical training and support of control, communications and software products and technologies and the other half as commercial manager for the service area. Specialized in obsolescence modernization projects, Safety machinery services and Connected Services.

A long way from control technologies, but quickly to communications technologies, among which living different stages due to the important technological revolutions in the OT field in this long period.

Already fully incorporated into our European group of Industrial Networks and Cybersecurity specialist and working together with the team, already fully Rockwell Automation as of October 1, from Oylo.

Pablo Municio is a partner in Deloitte’s cybersecurity area with more than 15 years of experience. He is currently responsible for the cybersecurity business in OT-IoT environments as well as the Energy & Resources sector.

He is a Senior Telecommunications Engineer from the Polytechnic University of Madrid and has certifications as Director of Security authorized by the Ministry of the Interior as well as CISA, CISM, CISSP, etc.

Francisco Ramírez is a member of the Naturgy’s OT Cybersecurity team. With more than two decades of experience in cybersecurity and communications in the operational and information environments of the energy sector. Currently his functions are focused on promoting the Cyber ​​Security Management System (CSMS) for Naturgy’s industrial environments, aligned with the business strategy and collaborating in the evaluation of high and low level risks, the definition of policies, the selection of countermeasures and continuous improvement of industrial cybersecurity processes.

He is a telecommunications engineer from the University of Zaragoza and has certifications such as CISM (Certified Information Security Manager), CISSP (Certified Information Systems Security Professional) and was the first ISA / IEC 62443 Cybersecurity Expert certificate in Spain. He is a collaborator of the Industrial Cybersecurity group of ISA Spain.

Marco Genovese has more than 20 years of experience in the security sector. Before joining Stormshield in 2008 he collaborated with several cybersecurity companies.  After 8 years of experience in the presales field, he moves to Paris to cover the role of product manager for the Firewall/IPS and Centralized Management Systems. Since 2020 he is back on the field joining the Stormshield Industrial Business Unit and he is following all the international industrial projects helping all the international partners to improve their technical knowledge in OT protocols.

Jose Badia is Country Manager for Spain and Portugal at Darktrace, a leading autonomous artificial intelligence company for cybersecurity. Jose leads client teams from a variety of industries that use artificial intelligence to defend their companies, including but not limited to banks, government entities, and energy companies. Jose has an extensive academic career that stands out for his Degree in Commerce from the Complutense University of Madrid, as well as an MBA from Cesma Business School.

Maite Carli is the Communications Manager and European Coordinator of the Industrial Cybersecurity Center. Specialized in administration of networks and communications, critical industrial infrastructures, industry 4.0, data analysis technologies in the Health sector and industrial cybersecurity, having completed several courses and a master’s degree. She has developed her professional career in the UK for almost 9 years.

Susana Asensio is Director of the Professional School of Industrial Cybersecurity, and Project Manager at the Industrial Cybersecurity Center. Graduated in Software Engineering, and Technical Engineer in Management Informatics, both from the Polytechnic University of Madrid (UPM), Susana is a specialist in research and development projects in security and technology. She has a postgraduate degree as a Specialist in Promotion and Management of International R & D & I Projects and Actions from the UPM. After working as a researcher in Information Technology (IT) at the UPM, she has been, in recent years, and prior to joining CCI, combining the management of IT security projects, and the coordination of various IT security forums in the Multisectoral Association of Electronics, Information and Communication Technologies, Telecommunications and Digital Content Companies (AMETIC).

Patrick Miller shares more than 35 years of IT / OT experience through his consulting services as an independent security and regulatory advisor for the critical infrastructure and key resource sectors. He is currently the CEO of Ampere Industrial Security, an industrial security consultancy based in Portland, Oregon, USA Patrick is also the founder, president emeritus, and is currently a member of the board of directors of the Energy Sector Security Consortium, Inc. ( EnergySec), a 501 (c) (3) nonprofit organization in Portland. He is the CCI coordinator for the USA.

Managers who are in charge of cybersecurity risk in industrial environments will share their experience in incident management.

The following questions will be discussed:

How is incident management organized internally and externally in large industrial entities that you know? What are the main difficulties in managing incidents in large industrial organizations? What actions or changes do you think would help reduce these difficulties? What do you think will change in the coming years in incident management in large industrial organizations?

Panel moderated by CCI.

Jesus is a mathematician by training, he began his professional career as a 24×7 analyst in a SOC providing managed security services to multiple national and international clients. Currently at Entelgy Innotec Security after passing through Telefónica and Deloitte, he has more than 5 years of experience as a cybersecurity consultant and is focused on creating value proposals for large companies with different service models and their evolution, which they require an overview to adapt the different components and activities to their often complex environments and organization.

Antonio is Telecommunications Engineer from the University of Seville and PDG from IESE, he has developed his professional career in the field of information technologies, the last 20 in Ayesa where he has held different responsibilities. He is currently in charge of the Industry Division of the Digital Transformation area where he is leading the business line in the industrial sector.

Serial founder & CEO with 25+ years of experience building companies in the critical infrastructure space. He grew his last company, NaturEner, to $100M ARR in 6y.

He found cyber risk management was expensive, inefficient, and left the organization exposed to information gaps and inadequate insurance products.

He created DeNexus, not only to help address a problem he was experiencing first-hand, but to fill the gap which tens of thousands of companies also experience.

Luciano is Coordinator of the Industrial Cybersecurity Center in the  United Kingdom. He works as Head of Cyber ​​Security Advisory (Competent Authority) at Office of Gas and Electricity Markets (Ofgem), the energy regulator in the United Kingdom. His team leads the implementation of the cybersecurity regulation NISR (Network and Information Security Regulation), promoting and supporting companies to implement their cybersecurity programs throughout the sector.

He has more than 20 years of professional experience in Cybersecurity working as a consultant, architect, auditor, global leader in IoT / Operational Technology, as IT security manager and pentester in international companies such as KPMG, DXC Technology (HPEnterprise) and IBM. Luciano has extensive experience in critical infrastructure protection and extensive experience in various sectors such as Manufacturing, Utilities, Pharmaceutical, Banking and Finance among others.

Santiago de Diego is a Mathematician and Computer Engineer from the University of Granada (UGR) and a master’s degree in information security from the International University of La Rioja (UNIR). He is also doing a doctorate at the University of Granada under the supervision of Dr. Gabriel Maciá and Dr. Cristina Regueiro. He is currently working as a cybersecurity researcher at TECNALIA Research & Innovation. His current research interests include distributed ledger technologies (DLTs), cybersecurity for critical infrastructures, and identity management systems.

Cristina Regueiro is a Telecommunications Engineer (2010) with a doctorate in Information Technologies and Communications in Mobile Networks (2017) from the Basque Country’s University. She began as a researcher at the University of the Basque Country on issues related to digital signal processing, wireless communications and mobile communications (2011-2017). She has continued her research work at the Innovalia Association (2017-2018) with a clear focus on industrial communications, Industry 4.0, IoT and processing in the Edge and in the cloud. Her experience in cybersecurity was later completed at Ikerlan (2018-2019) participating in the Cybersecurity teams for IoT and Cybersecurity in Digital Platforms. In December 2019, she joined the Cybersecurity and Blockchain team within Tecnalia, where she is currently a senior researcher focused on cybersecurity solutions and Blockchain-based systems.

Jose Antonio is a Senior Telecommunications Engineer and has more than 15 years of experience in the field of systems security, in which he has developed his professional career both in the field of systems auditing and cybersecurity, as well as in the field of cybersecurity governance. He is currently the global head of Cybersecurity Policies, Regulation and Monitoring at Siemens, as well as Manager of the Siemens Cybersecurity Hub in Madrid. His role includes the definition of cybersecurity policies for IT and OT aligned with international standards and relevant legislation, as well as the monitoring of these policies.

David currently belongs to the Axians Innovation department, specialized in industrial technologies and IoT. David has worked in the IT environment for more than 25 years in different System Integrators and manufacturers as a Field Engineer, Pre-Sales Engineer and BU Manager. Specialist in communications networks and cybersecurity solutions. He is currently Business Manager of the Industry vertical working on Hyperconnectivity, Cybersecurity and IoT solutions as fundamental bases for the development of Industrial and Industry 4.0 digitization processes.

Maite Carli is the Communications Manager and European Coordinator of the Industrial Cybersecurity Center. Specialized in administration of networks and communications, critical industrial infrastructures, industry 4.0, data analysis technologies in the Health sector and industrial cybersecurity, having completed several courses and a master’s degree. She has developed her professional career in the UK for almost 9 years.