The Digital World: Cybersecurity in a changing world

The Digital World: Cybersecurity in a changing world and revisions to the ISO/IEC 27000 series standards

Recorded: 3 November 2022

Timing: 14.00 – 17.00 (GMT)

What’s this Digital World: Cybersecurity webinar about?

Continuing our popular Digital World series, this webinar is tackling cybersecurity. We will discuss the latest revisions to the ISO/IEC 27000 series of infosec standards and examine how these are addressing current trends and emerging threats. We’ll also explain how the changes can help businesses, how the standards will impact the certification process and unlock opportunities.

NOTE: This is the second of two Digital World webinars on 3 November. The first session in the morning will touch on artificial intelligence.  

Who should attend the Digital World: Cybersecurity webinar?

• Organizations that either have or intend to achieve certification to ISO/IEC 27001
• Consultants in cybersecurity and implementing Information security management
• Cybersecurity professionals e.g. cybercrime investigators, cybersecurity specialists, IT specialists
• Quality & Assurance Team
• ISMS auditors and assessors
• Digital related policy makers
• Interested parties that implement cybersecurity measures, such as cloud service providers, IT departments etc

What will participants gain?

• First-hand information on new and planned changes to the ISO/IEC 27000 series
• An overview of the latest and emerging trends and threats in the cyber-verse
• Information on how the revisions can manage risks, impact certification and help businesses
• A post-event copy of all presentations and a recording of the webinar

* The ISO/IEC 27000 series of international standards are mutually supporting info-security international standards that can be used in unison to implement a globally recognised framework for best practice information security management.

AGENDA

13:45 -14:00 Welcome

– An overview of the top trends and threats in Cybersecurity

– Brief mention of the 27k series standards revised in 2022

14:00 – 14:45 ISO/IEC 27001 - Information security management systems

Steve Watkins, Director, Kinsnall Consulting Ltd, Chair of IST/33 Cybersecurity

Bridget Kenyon, (CISM) is CISO, Shared Services Connected Ltd

14:45 – 15:30 ISO/IEC 27002 - Information security controls

Sabrina Feng, Global Head of Technology, Cyber and Resilience Risk, Editor of ISO/IEC 27002, LSEG

15:30- 15:40 Break

15:40 – 16:10 ISO/IEC 27005 Information security risk management

Masato Kikuchi, Expert of ISO/IEC JTC1/SC27 WG1 and co-editor of ISO/IEC 27005

16:10 – 17:00 ISO/IEC 27036 - Cybersecurity — Supplier relationships

17:00 Closing comments and end of event

Steve is a Director at Kinsnall Consulting Ltd., providing board-level advice and assessment services in relation to cyber security, information security and privacy protection standards.

Steve has previously been a Board member of a FTSE AIM listed provider of cyber governance, risk management and compliance where he was responsible for the Professional Services division and operations in the US and across Europe. He has provided information and cyber security support to a wide range of training and consultancy clients in both private and public sector including subsidiaries of the big four accountancy firms, businesses providing financial services and telecoms, international clients in the enforcement/justice arena as well as a wide selection of SMEs. He is a contracted technical assessor for UKAS, conducting assessments of certification bodies offering ISMS/ISO 27001 and ITSMS/ISO 20000-1 accredited certification.

Steve is a member of ISO/IEC JTC 1/SC 27, the international technical committee responsible for the ISO 27k family of standards and is Chair of the BSI technical committee IST/33 (Information Security, cybersecurity and privacy protection) that mirrors SC 27.

Bridget’s experience in information security started in 2000 at DERA, following which she has been a Qualified Security Assessor against PCI DSS, Head of Information Security for UCL, and has held both operational and consultancy roles in industry and academia. Bridget has been on the editing team for ISO/IEC 27001 since 2006, coordinating development of information security standards; she is currently editor for ISO/IEC 27001 and ISO/IEC 27014.

Bridget’s interests lie in the security of all types of systems, and the human aspects of system vulnerability. She’s the sort of person who will always have a foot in both the technical and strategy camps. She enjoys helping people to find solutions to thorny problems, and strongly believes that information security is fundamental to resilient business operations, not a 'nice to have'.

Sabrina joined LSEG in January 2019 prior to joining Sabrina was Group CISO for four years, at Equiniti, where she set up and matured its Group Security function and delivered a transformation programme.
Prior to that she held senior roles at AXA Group and VISA EMEA managing Security and Risk.
She actively participates in ISO standard drafting activities, currently serving as Vice Chair of IST33/1, the UK Mirror Committee of ISO/IEC SC27/WG1, and the Editor for the revision of ISO/IEC 27002:2013. She is a guest lecturer for the MSC in Information Security at Royal Holloway, University of London.
Sabrina has an MSc. Information Security from Royal Holloway, University of London.

Masato Kikuchi is an expert of ISO/IEC JTC1/SC27 WG1 and co-editor of ISO/IEC 27005.

He has been working as an expert in the area of information security and cybersecurity for more than 20 years, including at Oracle Global Information Security.

He is a fellow of the British Computer Society. His current interests are cyber resilience and systems thinking.