Cybersecurity and Data Protection Norms in support of European policy

The first edition of the CSCG-ENISA workshop on standards will take place in Brussels, on the 19th September 2017.

conference

Cybersecurity and Data Protection Norms in support of European policy

The first edition of the CSCG-ENISA workshop on standards will take place in Brussels, on the 19th September 2017.

This event, jointly organized by the CEN-CENELEC Cybersecurity Focus Group and ENISA, aims to explore how the standards-developing world is responding to the fast-changing, demanding realms of Cybersecurity, Privacy and Data Protection. In particular, the event will review how standards can support European Union legislation and policy. The landscape in these (strictly interconnected) domains is rapidly changing and the European Standardization Organizations need to map how to support the implementation of the new framework for Data Protection (GDPR), Network and Information Systems (NIS), Privacy and Electronic Communications Code (ePrivacy Regulation proposal), among others. Aimed at policymakers and experts in the private sector, this workshop will contribute to a continuous dialogue among all the actors and stakeholders involved.

Tentative Agenda

  • 09:00 – 09:30  Registration & Welcome Coffee
  • 09:30 – 09:40  Greetings and Introduction - CEN-CENELEC (tbc)
  • 09:40 – 11:00  Keynote speeches by
    • Steve Purser – Head of Core Operations, ENISA
    • Jean-Pierre Quémard – Chair, CSCG
    • Wojciech Wiewiórowski - Assistant EDPS, European Data Protection Supervisior - European Commission (tbc)
  • 11:00 – 12:40  Cybersecurity Standardisation. Chair and Panel Moderator: Steve Purser
    • Security standardization and regulation – an industry perspective, by Ralf Rammig, Siemens AG
    • ETSI ISI-00x: a full set of new standards in Cyber Defence, by Gerard Gaudin, ETSI ISG ISI
    • ETSI TC CYBER Brief overview, by Charles Brookson, ETSI TC CYBER Chair
    • Management Systems Standards in Support of Policy, by Ralph Eckmaier
    • Q&A / Panel
  • 12:40 – 13:20  Lunch
  • 13:20 – 15:00  Privacy and Data Protection norms. Chair and Panel Moderator: Kai Rannenberg
    • Involvement of the Data Protection Authorities in standardization, by Matthieu Grall, Head of the Technology Experts Department, CNIL
    • Personal data protection certifications, by Fabio Guasconi, UNINFO/Bl4ckswan
    • Q&A / Panel
  • 15:00 – 15:20  Coffee break
  • 15:20 – 16:40  Challenges and trends: industrial automation control systems and the Internet of Everything. Chair and Panel Moderator: Holger Laible 
    • IACS Framework: behaviouristic and governance models, by Alessandro Lazari and Paul Theron, Joint Research Centre
    • An inconvenient truth about Vulnerability Analysis in IACS, by Michael Theuerzeit and Marcel Jutte, Hudson Cybertec/NEN
    • Jacques Kruse-Brandao, NXP
    • Luigi Rebuffi, ECSO (tbc)
    • Q&A / Panel
  • 16:40 – 17:40  The way forward
    • CEN-CENELEC New Technical Committees for Information  Security and Data Protection Standardization (CEN/TC 13 AND CEN/TC 8) - Work Programmes and Activities, by Alessandro Guarino
  • 17:40                  Closing notes