PrivSec Risk In Focus With Microsoft

 

 

 AGENDA

 

30th March 2022

A Global Livestream Experience

 

 

CATCH-UP & WATCH ON-DEMAND

 

Agenda

PrivSec Risk In Focus, a partnership between PrivSec and Microsoft Security

BST Wednesday 30th March 2022
09:55

Opening Remarks
13:55 - 14:00

Speakers
14:00

International Data Transfers: Your Biggest Unresolved Privacy Risk?
14:00 - 14:50

Transferring personal data out of “adequate” GDPR jurisdictions is arguably the most complex and time-consuming problem in data protection, particularly since the invalidation of the “Privacy Shield” framework in June 2020.

Even with fresh guidance from the European Data Protection Board (EDPB) and a new sets of standard contractual clauses, many unanswered questions remain.

There has been a flurry of regulatory activity against controllers using common tools like Google Analytics, Zoom and Stripe.This means hundreds of thousands of companies are potentially exposed to the risk of enforcement action.

PrivSec Risk In Focus will speak to experts on data transfers and senior data protection professionals to discuss the steps your organisation should be taking to mitigate the risk of unlawful data transfers under the GDPR.

Host

Speakers

  • Anne Joséphine Flanagan, Data Policy & Governance Lead, Centre for the Fourth Industrial Revolution, World Economic Forum
  • Lori Baker, VP, Legal & Director of Data Protection, DIFC
  • Manisha Aurora, Global Privacy| CIPM | CIPP-US| CIPP-E| CIPM| CA & India Bar Licensed | Privacy | Security | Technology Transactions at Verizon, Global Privacy Legal Advisor, Axiom
  • Scott A. Warren, Partner, Squire Patton Boggs
  • Juhamatti Järvi, LL.M.; Senior Legal Counsel Data, Digital and IP, Zurich Insurance Company Ltd
14:15
14:30
14:50
15:00

Creating an Insider Threat Programme
15:00 - 15:50

Much of the work of security professionals focuses on securing an organisation’s perimeter and keeping malicious actors out.

But whether through maliciousness or negligence, insider threats are a common cause of data breaches and security risk.

PrivSec Risk in Focus will take an in-depth look at how leading organisations manage the risk from insider threats—and how you can build an effective and systematic insider threat programme.

Host

Speaker

  • Noemí Alonso Calvo, Managing Partner/Principal Privacy Consultant, The Privacy ACES, GmbH
  • Alexis Perdereaux-Weekes, CISA, CISM, CRISC, Msc, Associate Reserch Fellow, Americas Institute for Cybersecurity Leadership
  • Jonathan Craven, Privacy and Compliance Lead, iRhythm Technologies Ltd
  • Idayat Ibraheem, Cybersecurity Compliance Global Black Belt | EMEA, Microsoft
  • Joseph MacMillan, Senior Technical Specialist for Cybersecurity EMEA - Advanced Compliance, Microsoft
15:15
15:30
15:50
16:00

Improving Organisational Resilience
16:00 - 16:50

Organisations worldwide have navigated some extremely difficult waters over the past few years, with the pandemic showing just how quickly and dramatically organisational risk can change.

But while many companies have failed, others have come out stronger—and with a renewed appreciation for the importance of organisational resilience.

PrivSec Risk in Focus will consider the best practices for managing overall organisational resilience and ask risk management experts what they’ve learned from the past few chaotic years.

Host

Speakers

  • Bill Mew, Founder and CEO, Crisis Team
  • Magdalena Avanesian, CIPP/e, BSc. LL.B., Founder, Legal Counsel & Privacy Officer, The Tech Lawyer
  • Glen Hymers, Head of Data Privacy and Compliance | Data Privacy and Compliance Team | CDIO Directorate, Cabinet Office
16:15
16:30
16:40
17:00

Intelligently investigate and take action on insider risks with Microsoft
17:00 - 17:30

Detecting insider risks is crucial to your security, especially as organizations are weathering corporate change in 2022. These workplace evolutions include the Great Reshuffle, an ongoing shift to hybrid or remote work, and continued growth digital collaboration and communication.

In this session, Microsoft’s Talhah Mir will be sharing the importance of understanding data activity in your organization, establishing inside risk standards and policies, and investigating high-risk users, and how to do this with Insider Risk Management in Microsoft 365.

Speakers
17:15
17:30
17:45

Third-Party Due Diligence: How Deep Should You Dig?
17:45 - 18:35

Conducting due diligence on prospective third-party providers is a vital part of ensuring compliance and lowering risk exposure.

The due diligence process can be resource-intensive, but getting this crucial part of third-party risk management wrong can be disastrous for your business and its stakeholders.

PrivSec Risk In Focus will explore best-practice tips to help systematise and prioritise your company’s third-party due diligence process.

Host

  • Joel Schwarz, JD, CIPP, CDPSE, Director & Data Protection and Privacy Capability Lead at MBL Technologies Inc., and Adjunct Professor of Law, Albany Law School

Speaker
18:00
18:15
18:30
18:45

Artificial Intelligence As a Risk Vector
18:45 - 19:35

Forget Terminator 2 or The Matrix: The real AI risks today lie in discrimination, bias and automated errors—together with the lawsuits, enforcement action and reputational damage that could result.

Automated AI systems are driving efficiency and effectiveness in millions of businesses. But regulators are drawing up new rules on automated decision-making, and the public is increasingly aware of the inherent bias that machine-learning systems can exhibit.

PrivSec Risk in Focus will consider the main risks presented by AI systems and explore best-practice tips to mitigate them.

Host

  • Caro Robson, MBA, LLM, FIP, Senior Consultant Legal Advisor, Data Protection & Technology, Milieu Consulting

Speakers
19:00
19:10
19:20
19:30
19:40

Closing Remarks
19:40 - 19:45

More information to follow

Speakers
20:00
20:05