2020 CTI-EU | Bonding EU Cyber Threat Intelligence

CTI-EU Event 2020

PLEASE NOTE: Presentations done during the event are available for download. Please use the links below.

Just as in previous years (2017, 2018), ENISA organizes the third version of its bonding event on Cyberthreat Intelligence (CTI). The event is going to take place in the THON-EU Hotel in Brussels on 30th and 31st January 2020.

The event aims at bringing together experts, practitioners, researchers, academia and individuals who are interested in the developments in the area of CTI. CTI EU is a forum for discussing European and international developments in CTI, get informed about the current trends in CTI, meeting CTI service providers and get informed about current CTI offerings, requirements, use cases, tools and practices.

Indicative topics to be covered in this year’s events are:

• CTI Good Practices and developments
• CTI Technology (Tools/Services/technologies)
• CTI in various sectors
• CTI Data and CTI Metrics
• Developments in the Threat Landscape
• Threat intelligence platforms
• CTI production and consumption with the European Commission and its bodies

PLEASE NOTE: Presentations done during the event are available for download. Please use the links below.

European and international speakers will present a number of talks related to CTI. Some examples:

1. “Cyber Threat Intelligence, the Microsoft Way", Tom Finley, Microsoft
2. “Threat Intelligence Orchestration and Automation”, Martin Ohl, McAfee
3. “Turning data into actionable intelligence - advanced features in MISP supporting your analysts and tools”, Alexandre Dulaunoy, Andras Iklody, CIRCL.LU
4. “Building actionable threat intelligence knowledge using OpenCTI: a case study”, Samuel Hassine, ANSSI
5. “Technology enablement in the intelligence cycle and the role of TIPs”, Andreas Sfakianakis
6. “Script-kiddies Today, Cybercrime Kingpins Tomorrow: How Malware-as-a-Service Providers Change Your Threat Landscape” , Marco Riccardi, Quoscient
7. “Public-Private Partnership in the Fight Against Cybercrime: Cybercrime Landscape in Japan and JC3 Initiatives", Shin Yasui, Japan Cyber Crime Centre
8. “The CTI Cloud Context Dilemma - Evaluating and building CTI for the Cloud”, Neil Thacker, Netskope
9. "Full Stack Cyber Attack model", Francisco Perez
10. “Cybersecurity and Hybrid Threats: Putting in context incidents and open source intelligence “, Georgios Giannopoulos, JRC
11. “Implementation of TIBER-BE”, Dominik Smoniewski, National Bank of Belgium
12. “CTI Data and Metrics - what, where, who, how many? time to take out the garbage”, Jart Armin, SISSDEN BV NL
13. "Cyber Threat Intelligence for a Cyber Situation Awareness Capability", Salvador Llopis Sanchez, EDA
14. "CTI to support the use of the EU cyber diplomacy toolbox", Manon Le Blanc, EEAS
15. “CTI & Information FusionBenefits and Challenges", Frederic Garnier, CERT-EU
16. “CTI: a unified European approach for shared situational awareness and coordinated response”, Ioannis Askoxylakis, DG-CONNECT
17. “ENISA Threat Landscape for 5G Networks”, Marco Lourenço, ENISA
18. “Keeping Track: The Mounting Challenges of Group Identification in the Cybercriminal Ecosystem”, Paige Higbie, Nicholas Farnham, DCSO

During the event, a panel discussion will take place. Subject of this panel will be a discussion on CTI production and consumption within European Commission, focussing on requirements and priorities. Short statements (ca. 5-10 minutes) from EDA, EEAS, CONNECT, CERT-EU and ENISA will be presented on what kind of CTI they are interested in, what are the methods for producing, how this is going to be developed in the future (new Commission, Joint Cybersecurity Unit, Cybersecurity Competence Centres, etc.).

Besides the presentations, in this year’s event demos, tools and approaches will be showcased in a special room. Attendees will be in the position to visit the stands of presenting organizations, interact with organizations and get informed about CTI service and tool offerings.

Agenda

You can download here the Event Agenda