Chief Information Security Officer Middle East 4th Annual Summit

The Agenda That Speaks directly to those Responsible for Information Security in Business & Cyber CNI
27 - 29 February 2012, Park Rotana Hotel, Abu Dhabi, The United Arab Emirates
International Speaker Panel Includes Information Security Directors & Cyber Experts from:
The United Arab Emirates Computer Emergency Response Team, aeCERT tunCERT: Tunisian Computer Emergency Response Team Webster University, Geneva Information Technology Authority (ITA) of Oman Cloud Security Alliance Zynga Saudi Arabian Airlines Saudi Aramco Canon Europe Euroclear SA/NV Field Fisher Waterhouse Investec Bank Group Jumeirah Group, UAE BT Global Services Qatargas Operating Company Limited Trust Bank Algeria ITSEC Associated Limited Jumeirah Group Websense National Bank of Canada nCircle Guidance Software American University of Sharjah (AUS) FireEye

NEW 5 Workshops & Roundtables...

Cloud Security & Securing Virtualisation Securing the Consumerization & Mobilization of Enterprise IT Advanced Persistent Threats & Hacking Building Cyber Threat Response Capacity to Protect Critical National Infrastructure CISO Middle East Roundtable Benchmarking Held Under The Chatham House Rule

Abu Dhabi Securities Exchange Bank of America Merrill Lynch Travelex Cumbria Police, UK Barwa Bank, Qatar British American Tobacco plc. British Bankers' Association British Telecommunications plc.

Very useful programme for risk decision making & for creating value & trust between IT security & the business Information Technology Authority (ITA) of Oman Great conference! I wish MIS all success for future such events that I also hope to attend Jumeirah Group, UAE
Gold Sponsor Lead CISO Roundtable Sponsor Gold One to One Meetings Sponsor

Reasons to Attend:
Fully oriented towards Middle East issues - what is actually in place in the Middle East & how it can be embedded & matured... NEW case studies from major regional & multi-national companies lessons learnt, action taken, proven do's & don'ts. Apply this knowledge to your own organisation Emerging trends in cyber crime & advanced persistent threats now & in the next 5 years. Prepare an appropriate response Engage with those responsible for cyber security in big business & Critical National Infrastructure. Expand contacts & develop partnerships with CERTs & business CISOs at the forefront of Middle East cyber defence

Bronze Sponsor

Association Partners

Education Partner

Riyadh

Egypt

The Global Leader In Audit and Information Security Training

www.mistieurope.com/cisome

Chief Information Security Officer Middle East

Highlighted International Speakers by Sectors Include...

Government / Law Enforcement: The United Arab Emirates Computer Emergency Response Team, aeCERT (a TRA Initiative) Information Technology Authority (ITA) of Oman Forensic Institute, Ministry of Justice, Netherlands tunCERT: Tunisian Computer Emergency Response Team Danish GovCERT, Ministry of Defence, Denmark (provisional) Cumbria Police, UK Multi-National Business Groups: Jumeirah Group, UAE Canon Europe British American Tobacco plc. Field Fisher Waterhouse Qatargas Operating Company Limited Saudi Arabian Airlines British Telecommunications plc. Zynga Cloud Security Alliance Financial Sector: Abu Dhabi Securities Exchange Bank of America Merrill Lynch Barwa Bank, Qatar British Bankers' Association Euroclear SA/NV Investec Bank Group Lloyds Travelex Trust Bank Algeria

Dear Colleague, Participate in the programme that speaks directly to those responsible for Information Security in business & protecting cyber space for Critical National Infrastructure. Directors of information security, CIOs & senior cyber professionals in the Middle East will meet for MIS Training Institutes 4th CISO Middle East Summit & Roundtable, taking place 27-29 February 2012 at the Park Rotana in Abu Dhabi, the United Arab Emirates. With an international speaker faculty that includes leaders of the most prominent businesses, government cyber commands & critical national infrastructure, this agenda drives new thinking in how to build holistic information security & risk management in the face of CyberCrime; IT Consumerization; Cloud & Virtualisation Launches; Advanced Persistent Threats; Mobile & Social Networking Risks; BCP Challenges & Convergence... Abu Dhabi 2012 promises to provide the most thoughtful discussions yet. Attend to gain insights into crux questions about what the future holds & how your peers are preparing all in the Middle East business & government context.

Agenda at a Glance
Day One: CISO Summit
Includes Deployment Roundtables - Peers Share Valuable Roll-Out Experiences on: Wrapping Security Around Cloud & Virtualisation Launches Led by: Nils Puhlmann, Co-Founder, Cloud Security Alliance & Chief Security Officer, Zynga Advanced Persistent Threats: Stopping Cyber Criminals

Day Two:

CISO Summit

Includes 360 Degree Workshops - Gain a Holistic Risk Analysis on: Securing IT Consumerization: Mobile & Social Networking Risks for the Enterprise When Security Fails: Practicalities & Pitfalls For When It Goes Wrong

Day Three: CISO Middle East Roundtable

Held Under the Chatham House Rule: Focus on Security Awareness, Training & Performance: How Do You & Your Organisation Measure Up?

Gold Sponsor

New 5 Workshops & Roundtables...

Deployment Roundtables - Peers Share Valuable Roll-Out Experiences on: Wrapping Security Around Cloud & Virtualisation Launches Advanced Persistent Threats: Stopping Cyber Criminals 360 Degree Workshops Gain a Holistic Risk Analysis on: Securing IT Consumerization: Mobile & Social Networking Risks for the Enterprise When Security Fails: Practicalities & Pitfalls For When It Goes Wrong CISO Middle East Roundtable Held Under the Chatham House Rule: New Focus on Security Awareness, Training & Performance: How Do You & Your Organisation Measure Up?

FireEye is the leading provider of next-generation threat protection focused on combating advanced malware, zeroday and targeted APT attacks. FireEye's solutions supplement security defenses such as traditional and nextgeneration firewalls, IPS, antivirus and Web gateways, which can't stop advanced malware. These technologies leave significant security holes in the majority of corporate networks. FireEye's Malware Protection Systems feature both inbound and outbound protection and a signature-less analysis engine that utilizes the most sophisticated virtual execution engine in the world to stop advanced threats that attack over Web and email. Our customers include enterprises and mid-sized companies across every industry as well as federal agencies. Based in Milpitas, California, FireEye is backed by premier financial partners.

Lead CISO Roundtable Sponsor

nCircle is the leading provider of Information Risk & Security Performance Management Solutions

Gold One to One Meetings Sponsor

Websense, a global leader in unified web security

Bronze Sponsor

Guidance Software is recognized worldwide as the industry leader in digital investigative solutions. The EnCase Enterprise platform is used by over half of the Fortune 100, and thousands attend Guidance Software's renowned training programs annually

REGISTER NOW at www.mistieurope.com/cisome | ENQUIRIES Tel: +44 (0)20 7779 7208

Day One, CISO Middle East Summit Monday 27 February 2012

09:30 Chairmans Opening Mr. Charles Pask, Managing Director, ITSEC Associated Limited 14:25 New DEPLOYMENT ROUNDTABLES benchmarking discussions led by experts & peers who will share proven roll-out experiences in these high risk launch areas. Advanced Persistent Threats & Cyber Crime: What is the Emerging Threat Horizon? How to Deploy Effective Network Defences Facilitators include: Mr. Kausar Mukeri, Head of Infrastructure & Security, Barwa Bank, Qatar; Mr. David Cripps, CISO, Investec Bank Group; Mr. James R. Gay, Chief Information Security Officer, Travelex; Ray Kafity, Regional Sales Director (Middle East, Turkey& Africa), FireEye What does the emerging threat horizon look like - cyber crime; phishing; mobile phones; credit card scanning; identity theft...? Proven strategies for facing the growing threat of online fraud against customers Botnets & malware: understanding the threat - evaluating tools & techniques on capturing malware Penetration testing: assessing vulnerability testing tools What role will hacktivism play in shaping the future security landscape? Security Awareness, Legal Challenges & Tomorrows High Value Targets? 15:00 Afternoon Coffee Break & Exhibition 15:20 A Pragmatic Approach to Application Access Control KEY CASE STUDY Mr. Ahmed M. Saleh, Manager, IT Security, Saudi Arabian Airlines 15:55 Why do I need a comprehensive incident response platform? Dennis Oommen, Sr. Regional General Manager, Guidance Software 16:10 Awareness & Training: Where are Tomorrow's New CISOs coming from? What New Technology Challenges Do They Face? PANEL Which organizations face the biggest threats & how this is changing? Which new technologies define todays & tomorrows challenges? What do you feel the single biggest change to security professionals will be in 2011? What are you/ your organization doing to prepare for this? Chaired by: Tareque Choudry, Head of Security Practice and Professional Services MEA, BT Global Services Panellists: Mr. Emad Ali Maisari, Director of IT Security, Jumeirah Group; Zynga; Dr. Fadi Aloul, Associate Professor of Computer Science & Engineering, American University of Sharjah (AUS), UAE; Mr. Kais Barakat, Senior Information Protection Analyst - Information Technology, Saudi Aramco; Mr. Dorairaj Balasubramanian, Information Technology Authority (ITA) of Oman 16:40 Close of Day One 17:30 Networking Canapes and Refreshments on Yas Island, overlooking the harbour and the famous Yas Marina Race Circuit Sponsored by:

New Perspectives & Partnerships to Build Holistic Security & Risk Capacity for Business & CNI
09:40 Promoting a Safer Cyber Culture in the UAE OPENING KEYNOTE Eng. Meshal Abdulla Binhussain, Head of Cyber Security Operations, The United Arab Emirates Computer Emergency Response Team of The Telecommunications Regulatory Authority (TRA), UAE 10:00 Managing Information Security & Business Continuity KEYNOTE Mr. Illyas Kooliyankal, Chief Information Security Officer, Abu Dhabi Securities Exchange 10:25 Security in 2012 KEYNOTE Tareque Choudry, Head of Security Practice and Professional Services MEA, BT Global Services 10:50 Coffee Break 11:10 How to Integrate Security Management into the Overall Enterprise Risk Management Framework KEYNOTE Mr. Rick McConnell, Chief Security Officer, Euroclear SA/NV 11:35 How to tackle next generation cyber threats, attacks and crime? (Modern Malicious Malware, Zero hour exploits, advanced persistent threats and targeted attacks) Ray Kafity, Regional Sales Director, Middle East, Turkey and Africa, FireEye What are the new and emerging threats? Anatomy of the modern malware and next generation cyber threat infection lifecycle What current solutions are available in the market place? What are the next generation malware protection solutions and architecture available in the market place? 11:50 Partnerships & Tools to Build Emergency Cyber Response & Business Continuity Capacity to Protect Critical National Infrastructure PANEL Forging national & international partnerships, collaborations & frameworks Controls & response strategy in place to be manipulated to cause catastrophic damage? What exactly is the level of threat facing your organisation? How do we identify & develop the appropriate cyber security capability for the future when technology is evolving so fast? Panellists Include: Eng. Meshal Abdulla Binhussain, Head of Cyber Security Operations, The United Arab Emirates Computer Emergency Response Team, aeCERT (a TRA Initiative); Mr. Rick McConnell, Chief Security Officer, Euroclear SA/NV; Mr. Haythem El Mir, CTO, National Agency for Computer Security, tunCERT: Tunisian Computer Emergency Response Team; Federico De La Mora, Director EMEA, nCircle 12:25 Effective IT security embraces productivity whilst defending against advanced blended threats Mr John Rutherfurd, Territory Manager, Websense 12:35 Lunch

Proven Approaches to Emerging Risks & Advanced Persistent Threats

13:35 Managing Identity Management, Security & Privacy KEY CASE STUDY Mr. Kais Barakat, Senior Information Protection Analyst Information Protection Management Division, Saudi Aramco 14:05 Data Retention, Destruction and Discovery; and the issues when juggling consumerisation,Web2.0 and the cloud Mr. David Cripps, Chief Information Security Officer, Investec Bank Group

REGISTER NOW at www.mistieurope.com/cisome | ENQUIRIES Tel: +44 (0)20 7779 7208

Day Two, CISO Middle East Summit Tuesday 28 February 2012

08:55 Chairmans Opening (Coffee & Breakfast will be Served in the Conference Room) Mr. Quentyn Taylor, Director of European Information Security, Canon Europe 09:00 09:35 Social Media Risks & Security: Balancing Security with Open Communication GROUP DISCUSSION Harnessing social media for business advantage How have networking sites influenced recent protests & uprisings in the Middle East? Should this be a cause of concern? Corporate risk assessment of modern technology risk planning for the mitigation of reputational damage Led by: Mr. David Cripps, Chief Information Security Officer, Investec Bank Group & other speakers; Mr. Rick McConnell, Chief Security Officer, Euroclear SA/NV 12:20 Lunch 13:20 - 14:00 WORKSHOP Securing IT Consumerization: Mobile & Social Networking Risks for the Enterprise Facilitators include: Mr. Quentyn Taylor, Director of European Information Security, Canon Europe; Mr. David Cripps, Chief Information Security Officer, Investec Bank Group & other speakers; Kais Barakat, Senior Information Protection Analyst Information Technology, Saudi Aramco; Kawther Haciane, Senior IT Security & Disaster Recovery Manager, National Bank of Canada As the i-revolution & a wave of new tablets & mobile handsets engulf businesses, the security risks & challenges around securing your workforce become ever more pronounced with the growth & workplace integration of social networking. Mobile security in the Middle East context How can the enterprise protect IT endpoints & secure data? Crux - where to put the security controls? Mitigating social networking risks the human factor GSM Attacks: mobile malware the trillion dollar threat?

Security Governance & Information Risk Management (Data Leakage)

09:35 Information Security Governance: What it Takes to Succeed KEY CASE STUDY Dr. Eduardo Gelbstein, Adjunct Professor, Webster University, Switzerland 10:05 Social Media: Friend or Foe to the Enterprise? KEY CASE STUDY Mr. James R. Gay, Chief Information Security Officer, Travelex

14:00 Afternoon Tea Break & Exhibition

10:45 Morning Tea Break & Exhibition 11:05 Protecting Sensitive Data: How can Security Better Address Existing & Pending Risks? What Role will Hacktivism Play in Shaping the Future Security Landscape? PANEL Avoiding inappropriate disclosure of sensitive information What are the real, perceived & unknown risks to data? Internal & external What is the right blend of technology, processes & policies? Panellists: Mr. Illyas Kooliyankal, Chief Information Security Officer, Abu Dhabi Securities Exchange; Mr. Emad Ali Maisari, Director of IT Security, Jumeirah Group, UAE; Mr. Kausar Mukeri, Head of Infrastructure & Security, Barwa Bank, Qatar 11:40 Dont Be a Statistic! Securing Data Assets KEY CASE STUDY Mr. Quentyn Taylor, Director of European Information Security, Canon Europe

Business Continuity, Forensics & Incident Response

15:30 National Strategy to Secure the Cyber Space KEY CASE STUDY Mr. Haythem El Mir, CTO, National Agency for Computer Security, tunCERT: Tunisian Computer Emergency Response Team 15:50 The Business Continuity Planning In Financial Institutions: New Threats & Challenges KEY CASE STUDY Mr. Sofiane Chafai, Security Officer, Direction Contrle Interne, Trust Bank Algeria 16:10 Close of Day Two

REGISTER NOW at www.mistieurope.com/cisome | ENQUIRIES Tel: +44 (0)20 7779 7208

Day Three, CISO Middle East Roundtable Wednesday 29 February 2012

Security Awareness, Training & Performance: How Do You & Your Organisation Measure Up?
Chaired by: Mr. Charles V. Pask, Managing Director, ITSEC Associates Limited Co-Facilitated by: Federico De La Mora, Director EMEA, nCircle Mr. James R. Gay, Chief Information Security Officer, Travelex Mr. Kais Barakat, Senior Information Protection Analyst - Information Protection Management Division, Saudi Aramco Mr. David Cripps, Chief Information Security Officer, Investec Bank Group Mr. Emad Ali Maisari, Director of IT Security, Jumeirah Group Mr. Quentyn Taylor, Director of European Information Security, Canon Europe Start 09:00 / Coffee Break 10:45 - 11:10 / Lunch and Close 12:45 CISO Roundtable Middle East held under the Chatham House Rule is an open benchmarking forum on topics requested directly by you the attendee. The key theme for the 2012 roundtable is Security Awareness, Training & Performance: How Do You & Your Organisation Measure Up? The focus is on interactive discussion & group work, with sessions facilitated by established information security practitioners & industry experts from the Middle East & internationally. Held Under The Chatham House Rule - No press are permitted. 'Closed doors' session Notes from the session discussion summaries will be distributed to all roundtable attendees following the event Key topic areas of focus - will be determined by the input of participants beforehand Further discussions including for example: How do you measure up against your peers in security performance? How are you preparing for the future? Insider threat: building a secure workforce Securing the right funding & justifying ROSI

Very interesting & informative event, Central Bank of Lebanon A great platform to meet experienced people & gain invaluable insights into information security practices. Keep it up! Central Bank of Oman Provides an exceptional opportunity for networking with security professionals from different regions & to learn more about emerging security threats & counter measures, BAE Systems UAE

2 events, same place, same time!

MIS is hosting the 2nd Middle East Fraud & Corruption Summit alongside the 4th CISO Middle East Summit. See www.mistieurope.com/fraudME Recommend this event to your audit colleague & receive a group discount!

Call +44 (0)20 7779 7208 for details.

REGISTER NOW at www.mistieurope.com/cisome | ENQUIRIES Tel: +44 (0)20 7779 7208

Chief Information Security Officer Middle East

27 - 29 February 2012, Park Rotana Hotel, Abu Dhabi, The United Arab Emirates
Registration Code

IS120209-W
5 Easy Ways to Register
Web: Enquiries: Email: Fax: Mail: www.mistieurope.com/cisome +44 (0)20 7779 7208 mis@mistieurope.com +44 (0)20 7779 8293 Sara Hook, MIS Training, Nestor House, Playhouse Yard, London EC4V 5EX UK

About the Venue & Accommodation International Speaker Panel Listings

The 4th Chief Information Security Officer Middle East Summit will be held at: Park Rotana, Abu Dhabi, P Box 43377 Abu Dhabi U.A.E .O. The 5-star Park Rotana Abu Dhabi provides a combination of deluxe accommodation, diverse culinary experiences with signature dining venues, state-of-the-art meeting & recreational facilities. The Park Rotana is winner of Abu Dhabis Leading Business Hotel 2011. MIS Training has arranged limited discounted rates at the Park Rotana Hotel: Single Occupancy Room: AED 790 per night Double Occupancy Room: AED 860 per night
* Note these prices are exclusive of 6% Tourism Fees & 10% Service Charge but inclusive of Breakfast.

International Speaker Panel Listings Fees / Registration Information

Special CISO Rate * - 1,500 Vendor/Advisory Rate - 2,195
Included in the Fee: Entry to 3-day event All lunches & daily refreshments Confirmed networking dinners, receptions & local tours (details subject to confirmation) Certificates & accreditation for CPE points for Continued Education Official presentation materials (onsite) & web-link to all updated presentations (post event)
*Please note the following terms & conditions apply to the above CISO rate: CISO must demonstrate that they are currently practising as CISO, head of information security, or in a senior information risk or corporate security role (& not in a sales or marketing related role.) The Guest must not be working for an organisation (or subsidiary, or independent consultant) that provides professional security product, vendor or recruitment services, software development, outsourcing, ICT or consultancy / advisory services to security or technology professionals. The rate applies to registrations for the CISO Middle East Summit & Roundtable (3 days) & fully paid registrations. The final decision on the rate applicable is at the discretion of MIS Training Institute.

Guests to make their own reservations by contacting Teodoro Bernales Dy (Group Coordinator) Phone: Fax: Email: Web: +971 (0)26573333/3252; +971 (0)26573000/3259; groups.park@rotana.com www.rotana.com

Cancellation Policy - Should a delegate be unable to attend, a substitute may attend in his or her place. A credit or refund, minus 10% administration charge, is available if written notification is received by Monday 6th February 2012. Thereafter, no refunds will be given. MIS reserves the right to change or cancel this programme due to unforeseen circumstances. Founded in 1978, MIS Training Institute is the global leader in internal audit, fraud, IT audit & information & corporate security training. MIS' expertise is drawn from years of experience gained in providing training courses, summits & conferences, as well as onsite training to professionals across the globe. MIS Training Institute sits within the Euromoney Training Group, a division of Euromoney Institutional Investor Plc (FTSE250). Euromoney Institutional Investor Plc is part of the Daily Mail & General Trust (DMGT). The information you provide on this form will be used by Euromoney Institutional Investor PLC & its group companies (we or us) in relation to your registration for this event. [We may share this information with the sponsors of this event]. We may also monitor your use of our website(s), including information you post & actions you take, to improve our services to you & track compliance with our terms of use. Except to the extent you indicate your objection below, we may also use your data (including data obtained from monitoring) (a) to keep you informed of our products & services; (b) occasionally to allow companies outside our group to contact you with details of their products/services. As an international group, we may transfer your data on a global basis for the purposes indicated above, including to countries which may not provide the same level of protection to personal data as within the European Union. By submitting your details, you will be indicating your consent to the use of your data as identified above. Further information on our use of your personal data is set out in our privacy policy, which is available at www.euromoneyplc.com or can be provided to you separately upon request. Marketing choices: If you object to contact as identified above by telephone , fax , or email , or post , please tick the relevant box & return to: K Bevan, MIS Training, Nestor House, Playhouse Yard, London EC4V 5EX. If you do not want us to share your information with other companies (including the sponsors) please tick this box .

REGISTER NOW at www.mistieurope.com/cisome | ENQUIRIES Tel: +44 (0)20 7779 7208