As organisations rapidly embed AI across business operations, security leaders face a new reality: cyber threats are evolving faster than traditional security models can respond. From autonomous attacks and AI-powered phishing campaigns to governance challenges and regulatory scrutiny, CISOs must rethink how security is managed, measured and communicated to the board.

This interactive keynote panel brings together senior security leaders to discuss how organisations are adapting their cyber strategies to defend against emerging threats while enabling innovation.

• Preparing for AI-driven attacks and increasingly autonomous threat actors
• Balancing AI adoption with governance, risk and compliance obligations
• Building cyber resilience amid escalating geopolitical tensions
• What boards should expect from security leaders over the next 12 months
• Where organisations should prioritise investment in an uncertain threat landscape

Security teams are overwhelmed with vulnerability data, alerts and risk indicators, yet many still struggle to determine which exposures pose the greatest threat to the business. As organisations operate across hybrid environments, cloud platforms and increasingly complex third-party ecosystems, CISOs require greater visibility and context to make informed decisions.

This session explores how leading organisations are evolving from reactive vulnerability management towards continuous exposure management, enabling security teams to identify, prioritise and remediate the risks that matter most.

• Understanding attack paths and exploitability in real-world environments
• Moving beyond CVSS scores to business-driven risk prioritisation
• Reducing alert fatigue and focusing resources on critical exposures

Strengthening visibility across cloud, on-premise and third-party environments

Identity has become the primary battleground for modern cyberattacks. As organisations adopt AI, automation and machine-to-machine interactions at scale, traditional approaches to identity and access management are being stretched beyond their limits. Attackers continue to exploit privileged accounts, compromised credentials and excessive permissions to gain access to critical systems and data.

• Managing privileged access across hybrid and multi-cloud environments
• Addressing the rise of non-human identities and AI agents
• Implementing continuous authentication and adaptive access controls
• Reducing the impact of credential theft and identity-based attacks

An opportunity to connect with fellow CISOs, security leaders and technology partners.

Ransomware groups and sophisticated threat actors continue to evolve their tactics, targeting organisations with increasingly coordinated and disruptive attacks. While prevention remains critical, many security leaders are recognising that rapid detection, effective containment and resilient recovery capabilities are equally essential.

• Emerging ransomware and extortion trends CISOs should be monitoring
• Accelerating threat detection and response across distributed environments
• Improving incident preparedness through realistic testing and simulations
• Strengthening cyber recovery capabilities and business resilience

Security operations centres are undergoing a fundamental transformation. AI-powered copilots, autonomous workflows and machine-led investigations promise greater efficiency, but they also introduce new risks, skills requirements and operational complexities.

This keynote explores how leading organisations are redesigning security operations for the next decade, balancing automation with human judgement and ensuring security teams remain effective in increasingly complex environments.

• Separating AI hype from practical SOC transformation
• Identifying security tasks that should and should not be automated
• Building trust in AI-assisted decision making
• New skills security teams need to remain effective
• Creating measurable improvements in detection and response

Recent ransomware attacks, supply-chain compromises, cloud outages and geopolitical events have demonstrated that prevention alone is no longer enough. The organisations that recover fastest are those that have embedded resilience into their technology, processes and culture.

This session examines how CISOs are shifting from traditional security programmes towards enterprise-wide resilience strategies that enable organisations to withstand and rapidly recover from cyber incidents.

• Lessons learned from major incidents over the past 12 months
• Integrating cyber resilience into broader business continuity planning
• Strengthening third-party and supply-chain resilience
• Measuring resilience beyond traditional security metrics
• Preparing leadership teams for high-pressure crisis scenarios