Securing Your Digital Supply Chain

Event Summary

12:30-14:00 | Lunch and networking
14:00-18:00 | Bitsight customer panels and keynote sessions
18:15-20:00 | Cocktails, Hors d'oeuvres and networking

Featured Sessions

Building Resilience in a Hyper-Connected World: Perspectives from Industry Leaders

Presenter/Moderator: Stephen Boyer, Co-Founder &Chief Innovation Officer, Bitsight

Customer Panel:
David Boulton, Head of Cyber Security/CISO, XPS Group
Lucile Coupez, Corporate Security Governance and Third-Party Risk Management, EssilorLuxottica

In today's hyper-connected world, risks are hidden across the attack surface and are growing at an unprecedented pace. The transition to cloud environments, greater dependencies on third parties and a growing regulatory landscape have heightened concerns around compliance, operational, and supply chain risk. This session will explore the intricate web of cyber risks that security and risk leaders must navigate, transforming risk management into an operational mandate to build resilience across the entire digital infrastructure. Our panel members Lucile Coupez (EssilorLuxottica) and David Boulton (XPS Group) will share differing perspectives in their current roles on how they are approaching these growing challenges in their day-to-day work.

Compliance in Focus: Managing Supply Chain Risk Through Regulatory Mandates

Moderator: Francisco Fonseca, SVP National Cybersecurity, Bitsight

Customer Panel:
Paulo Moniz, Director Information Security and IT Risk, EDP - Energias de Portugal
Tiago da Cunha Oliveira, Head of Cyber Risk Management, Galp

As supply chain risk rises to the forefront of cybersecurity regulations, frameworks like NIS2 are reshaping how organizations manage third-party risk. This session will explore first hand accounts of the unique challenges that supply chain risk presents and how regulatory shifts are driving organizations to strengthen their programs. Join our discussion with Paulo Moniz (EDP - Energias de Portugal) and Tiago da Cunha Oliveira (Galp) as they discuss how they’re navigating these evolving challenges, sharing practical insights on compliance, prioritizing and managing vendors all while maintaining cyber resilience in the face of tightening regulations.

Supply Chain Risk Foundations: Best Practices and Strategies for Success

Moderator: April Loureiro, Senior Director, Account Management, Bitsight

Customer Panel:
David Perstl, Head of Cyber & Information Security, BearingPoint

Ready to elevate your supply chain risk program? Join industry leader David Perstl from BearingPoint for an engaging fireside chat on building an end-to-end program and strategy. We’ll dive into the best practices for mastering supply chain risks and how a comprehensive supplier assessment program can set the foundation for success. Discover how understanding your suppliers creates cyber resiliency, reduces potential disruptions, and fuels long-term growth. Whether you're just starting out or looking to take your program to the next level, this session promises fresh insights and actionable takeaways that will leave you inspired and ready to act.

Bitsight TRACE Cyber Risk Series: CrowdStrike. A Look Into the Days Leading Up to the Event

Pedro Umbelino, Principal Research Scientist, Bitsight TRACE

Join Bitsight TRACE's Pedro Umbelino for a comprehensive analysis of two cutting-edge research initiatives conducted by the TRACE team. This session will delve into the swift global response and recovery efforts following the CrowdStrike event on July 19th, 2024, as well as the discovery and responsible disclosure of multiple 0-day vulnerabilities in critical infrastructure operational technology. Attendees will gain valuable insights into these pivotal developments and their implications for cybersecurity resilience.

A Road to Resilience. Bitsight’s Roadmap for Managing Exposure Risk and Protecting the Supply Chain

Gregory Keshian, CPO, Bitsight

Learn more about what the Bitsight Product, Engineering, and Data teams are exploring and bringing to market in the next 12-18 months. Initiatives span a broad array of capabilities, including advances leveraging AI for the vendor assessments and document parsing, threat intelligence mapping for security frameworks like MITRE ATT&CK, and next-generation asset discovery and attribution for Bitsight GROMA and Bitsight Graph of Internet Assets.