Event Agenda
23rd – 24th September 2026 // London, UK
Theme: Building Intelligence-Driven OT Resilience in an Era of Increasing Risk
Track A: Strategies For Overcoming The Biggest Cyber Issues of Today
Track B: Proactive Roadmaps for Overcoming Common OT Challenges
| Day 2 // 24th September 2026 08:15 – 05:30 (BST) |
|
 |
08:15Registration & Coffee |
 |
08:50Chairman’s Opening Address by Thomas Mortsell, CSO, Aneo |
 |
09:00Panel Discussion: Is a Holistic Approach to IT/ OT Threat Intelligence an Essential Strategy or an Overambitious Ideal? . • How is cyber threat intelligence different in OT compared to IT or is it just applied differently in practice? • Where do traditional IT threat intelligence approaches fail when applied to OT environments? • How does IT-OT convergence influence the need for a holistic approach between the two? Should this be the case? • What makes threat intelligence truly actionable in OT where safety and uptime are critical? • How should organisations balance integration versus separation of IT and OT threat intelligence strategies? . – Alfonso José Álvarez Calderón , Global IT/OT Lead & CIO, Exolum – Paul Mackie, Group CISO, Fern Trading Limited – Sarah Hadfield, Head of Energy System Risk, National Energy System Operator – Damien Ploix, Head of Infrastructure and Cybersecurity Services, Endis . |
 |
09:40Presentation: Building Cyber Resilience Through Today’s Geopolitical Landscape . • How organisations should be accounting for increasing geopolitical challenges through their IT/OT Strategies • Where threat intelligence and scenario planning can be utilised to anticipate ransomware, supply-chain, and state-sponsored attacks while aligning with European regulations • How organisations can safeguarded their systems through targeted awareness campaigns and realistic simulations of credential theft • Where zero trust principles, segmentation, MFA, and contingency planning can be utilised to minimise operational disruption and ensure business-critical functions continue . – Scott Lennox, CISO, Envision Energy . |
|
10:10Presentation: Anticipating Tomorrow’s Threats: Strategic Insights for 2026 and Beyond . • Explore the increasing use of AI by cyber attackers and how defenders will benefit from AI • Discuss the evolving threat landscape from across the globe such as increasing ransomware and multifaceted extortion as the most disruptive form of cybercrime • Examine how security operations in the cloud & The growing threat of infostealer malware can play a role, and what we can do to secure them • Why we need to prepare for post-quantum cryptography • What can be done to best overcome this landscape, moving forward, and what solutions we can implement through our systems to do so . – Senior Expert . |
 |
10:40Break & Networking |
| TRACK A Developing Comprehensive Business Cases for OT Cyber. Hosted by: Thomas Mortsell, CSO, Aneo |
|
|
11:20Presentation: How You Can Best Sell Risk To The Board Industrial organisations face growing cyber risks in operational technology (OT) environments, yet communicating these threats to the board can be challenging. This session explores how to translate OT security risks – like ransomware, ICS vulnerabilities, and operational disruptions – into clear, actionable business impact for executives. Learn practical strategies for framing risk, prioritising mitigation, and building board-level support for cyber security initiatives, ensuring your OT security investments are understood, valued, and properly resourced. . – Senior Expert, Forescout Technologies . |
|
11:50Presentation: Building Strong Business Cases for OT Cyber Security Investment Securing funding for OT cyber security requires more than technical justification. This session explores how to build compelling business cases by translating cyber risk into operational, financial, and safety impacts. Learn how to align OT security initiatives with business priorities, quantify risk, and communicate value effectively to gain executive and board-level support. . – Senior Expert . |
 |
12:00Case Study: BOur Roadmap for Navigating OT Risk Management Utilising Quantifiable Metrics . • How we established meaningful, quantifiable risk metrics across complex OT environments • How we translated technical OT vulnerabilities into business-relevant risk scores and insights • The key actions we utilised to create measurable OT risk management metrics we can present to board-level executives . – Emyr Thomas, Head of Cyber Futures, National Highways . |
| TRACK B Strategies for Building Holistic Cyber Defence Hosted by Nuno Teodoro, Global Cybersecurity Director, Hovione |
|
|
11:20Presentation: Strengthening Industrial Cyber Defence for OT Environments Through Utilising Threat Intelligence While threat intelligence offers valuable insights into attacker behaviour, too often it remains underused in operational contexts, leaving critical processes exposed. This session highlights the latest advancements that enable security teams to proactively hunt threats targeting OT assets, from detecting malicious activity in industrial protocols to identifying lateral movement between IT and OT. We will explore how critical infrastructure operators can operationalise threat intelligence to strengthen resilience, minimise downtime, and safeguard production environments against the next wave of cyberattacks. . – Senior Expert, SEL . |
|
11:50Presentation: Embedding High-Level OT Cyber Defence Through Organisations This session explores how critical infrastructure operators can strengthen their OT cyber security posture against an evolving landscape of threats. Through proven defence frameworks, advanced monitoring approaches, and real-world case examples, attendees will gain insights into how to safeguard critical operations while maintaining productivity. The discussion will also highlight the importance of vendor–operator collaboration in building long-term resilience, offering practical guidance for both technical teams and decision-maker . – Senior Expert . |
|
12:00Case Study: How We Leveraged OT Incident Experiences to Build Actionable Cyber Defence . • How we built a framework of continuous monitoring for real-time anomaly detection and rapid incident response • How we leveraged automation to neutralise threats before they could disrupt critical OT operations • Where we applied zero trust principles to control access, verify identities, and contain risks proactively • How we utilised strengthened collaboration between IT and OT teams to ensure unified visibility, faster decision-making, and sustained resilience . – Jonathan Sinclair, Head of Cyber Security for Pharma Technical Operations (PT), Roche . |
| – | |
 |
12:30Lunch |
| TRACK A Developing Effective Outlooks for OT Governance Hosted by Thomas Mortsell, CSO, Aneo |
|
|
13:30Presentation: How You Can Build Requirements to Achieve Compliance and Security by Design Learn how critical industry organisations attest for compliance. See into a process that:
. |
|
14:00Fireside Chat: Is Europe Getting OT Security Regulation Right?
|
|
14:40Panel Discussion: Driving Effective Governance Through Our IT-OT Convergence . • How we overcame governance challenges through our IT-OT Convergence • How establishing a joint IT-OT Security Operations Center (SOC) has helped us to centralise monitoring and response • How we overcame cultural differences between IT-OT professionals • How we achieved effective governance through IT-OT convergence . – Kevin White, Head of Cyber Security, SSE PLC . |
| TRACK B Tackling The Issues of Tomorrow, Today Hosted by Nuno Teodoro, Global Cybersecurity Director, Hovione |
|
|
13:30Presentation: Securing OT, IoT and IIoT Devices Through Effective Risk Management In this session we explore safe methods for discovering, classifying, and assessing IoT, OT, and IIoT devices without disrupting operations. Learn how advanced techniques combine scanning, monitoring, and machine learning to identify devices, assess vulnerabilities, and prioritise risks. We’ll provide real-world examples to showcase how organisations can enhance security and resilience while meeting compliance needs. . – Senior Expert . |
 |
14:00Fireside Chat: How Should IT and OT Security Leaders Prepare for AI & Quantum Risk? . • What are the fundamentals of quantum computing that organisations need to understand today? • Where is quantum computing being practically applied right now? • How is quantum computing expected to impact cyber security? • What key takeaways and actions should organisations be considering today to prepare for the risks of tomorrow? . – Moderator: Emyr Thomas, Head of Cyber Futures, National Highways – Trish McGill, Executive Subject Matter Expert – Cyber Security IT/OT, De Heus Voeders B.V. . |
|
14:40Case Study: Utilising AI Practically Through Our OT Environments . • How we utilised AI to stay one step ahead of new AI threats in light of increasing use of ransomware-as-a-service and geopolitical threats • How we operationalised AI across our OT environments to improve detection, response, and resilience • A deep-dive into how we adapted technically through a holistic new strategy . – Claudio Sangaletti, Corporate Head of Infrastructure & Communication, PERSÁN . |
| – |
|
|
15:10Break & Networking |
| TRACK A Developing Effective Outlooks for OT Governance Hosted by Thomas Mortsell, CSO, Aneo |
|
|
03:40Presentation:Are Organisations Over-Reliant on People Rather Than Technical Cyber Defences?
. |
| TRACK B Tackling The Issues of Tomorrow, Today Hosted by Nuno Teodoro, Global Cybersecurity Director, Hovione |
|
|
03:40Presentation: Practical Defence Insights for Strengthening OT Cyber Resilience . • How best to build a framework of continuous monitoring for real-time anomaly detection and rapid incident response • How you can leverage automation to neutralise threats before they could disrupt critical OT operations • Where Zero-Trust principles can be applied to control access, verify identities, and contain risks proactively • How strengthened collaboration between IT and OT teams can ensure unified visibility, faster decision-making, and sustained resilience . – Matilda Rhode, Head, Security Operations, Dŵr Cymru Welsh Water . |
| – | |
 |
16:25Roundtables: . T1: Building a Culture of Security Throughout Our Enterprise – Paul Holland, Cyber Capability Manager, Royal Mail . T2: Developing Quantifiable Narratives for Board Level Buy-In – Adam Paturej, Cyber Security Director, International Centre for Chemical Safety and Security (ICCSS) . T3: How Can We Build the Next Generation of Cyber Experts? – Thomas Mortsell, CSO, Aneo . . |
|
17:00Closing Remarks by Thomas Mortsell, CSO, Aneo |
|
17:05End of Conference |
