Cybersecurity and Data Protection Standards in support of European policy - Agenda and presentations

09:00 – 09:30

Registration & Welcome Coffee

09:30 – 09:40

Greetings and Introduction

Wim De Kesel - Vice-President Policy, CENELEC

09:40 – 11:00

EU Policy Framework on Cybersecurity and Data Protection

Jakub Boratynski - Head of Unit, DG CONNECT, European Commission
Wojciech Wiewiórowski - Assistant EDPS, European Data Protection
Supervisor
Steve Purser – Head of Core Operations Department, ENISA
Jean-Pierre Quémard – Chair of CEN-CENELEC Focus Group on
Cybersecurity

11:00 – 12:30

Cybersecurity Standardisation
Moderator: Steve Purser - Head of Core Operations Department, ENISA

Security standardization and regulation – an industry perspective
Ralf Rammig - Siemens AG and CEN-CENELEC Focus Group on Cybersecurity

Management System Standards in Support of Policy
Ralph Eckmaier - CEN-CENELEC Focus Group on
Cybersecurity


A full set of standards in Cyber Defence: ETSI ISI-00x
Gerard Gaudin - ETSI ISG ISI

Building trust in the Digital Single Market - the role of international standards

Sachiko Muto - Chief Executive Officer, OpenForum Europe


ETSI TC CYBER Brief overview
Charles Brookson, Chair of ETSI TC CYBER


Panel Discussion

12:30 – 13:30

 Lunch

13:30 – 15:20

Privacy Management and Data Protection Standardization
Moderator: Kai Rannenberg - Convenor of the ISO/IEC JTC 1/SC 27/WG 5
‘Identity management and privacy technologies’, Deutsche Telekom Chair of Mobile Business & Multilateral Security, Goethe University Frankfurt


Involvement of the Data Protection Authorities in standardization
Matthieu Grall - Head of the Technology Experts Department, CNIL France
(Commission nationale de l'informatique et des libertés)


Personal data protection certifications
Fabio Guasconi - President, UNINFO CT 510 - ISO/IEC JTC1 SC27 mirror, Founding partner and President, Bl4ckswan Italy


The new ISO/IEC 27552- Enhancements to the ISO/IEC 27001 for privacy management
Alan Shipman - Information Security Expert ISO/IEC JTC 1/SC 27 ‘Information security’


Experiences from data protection certification and the use of standards or
the lack thereof

Sebastian Meissner - Head of the Certification Authority of
EUROPRISE


Interplay between standardisation and data protection regulation (GDPR)
Irene Kamara - PhD Researcher, Tilburg University and Vrije Universiteit Brussel


Panel Discussion

15:20 – 15:40

Coffee Break

15:40 – 17:00

Challenges and trends encountered in the implementation of EU
legislation
Panel Moderator: Holger Laible - Senior Safety Expert, Siemens AG

IACS Framework: behaviouristic and governance models
Paul Theron - Co-director of the Aerospace Cyber Resilience, Thales France

Challenges in IACS for essential operators
Michael Theuerzeit - ‎Senior Consultant , Hudson Cybertec

GDPR in the IoT: reducing financial risks by defining standards on ‘technical measures’ required by article 32
Jacques Kruse Brandao - NXP Semiconductors


ECSO and its approach to EU certification and standardisation
Luigi Rebuffi and Sergio Lomban- European Cyber security Organization (ECSO)

Q&A / Panel

17:00 – 17:40

The way forward for a standardization roadmap


New CEN-CENELEC Technical Committees for
Information Security and Data Protection Standardization
(CEN/CLC/TC 13 and CEN/CLC/TC 8)

Alessandro Guarino - chair of CEN/CENELEC/TC 8

Martin Uhlherr - CEN/CENELEC/TC 13

17:40

Closing notes