As cyberattacks grow faster and more sophisticated, traditional SOC models can't keep up. This session reveals how Generative and Agentic AI work together to create a predictive security operations model based on human-AI collaboration. It outlines the path from legacy SIEM and manual SOC workflows toward an autonomous, AI-orchestrated security model designed for speed, scale and resilience, that helps SecOps outpace attackers.

A practical look at how hybrid networks function today, focusing on visibility across applications, policies, and cloud environments. The talk highlights common connectivity gaps, misconfiguration risks, and ways to simplify security operations across multi-cloud and on-premise environments.

Enterprise compliance with cybersecurity and AI governance standards has traditionally relied on static frameworks, manual audits, and document-heavy reporting. This approach is no longer scalable in the age of rapidly evolving threats and regulatory complexity. This session presents a transformative solution: Next-Gen Cyber GRC Agents — autonomous LLM-based systems powered by embedded RAG (Retrieval-Augmented Generation) that can interpret regulations, audit controls, and generate evidence-backed reports in real time.Drawing from live implementations aligned with ISO 27001:2022 (ISMS), NCA ECC, and SDAIA AI Ethics, we demonstrate how LLMs can automate internal audits, cross-reference policies against regulatory clauses, and dynamically track compliance gaps using organizational data stored in secure vector databases.Key features include:-Agentic role separation (e.g., Clause Interpreter, Policy Auditor, Evidence Assembler).-Document ingestion pipelines using enterprise knowledge bases.-Interactive dashboards for human-in-the-loop GRC governance.Support for multi-standard audits and continuous compliance tracking.The session will showcase how embedded RAG enhances traceability and reduces hallucination, and how generative AI can be both regulation-aware and operationally embedded. It also outlines architectural considerations to ensure explainability, reproducibility, and alignment with national compliance expectations.This talk is ideal for CISOs, compliance leads, auditors, and AI governance professionals looking to future-proof GRC operations.

This session celebrates WiCSME’s world record–breaking journey and the women who made it happen. Expect stories, milestones, and moments from the community that’s putting women in cybersecurity on the global map - and having fun while doing it.

This workshop is designed for aspiring cybersecurity professionals who want to stand out in a crowded field. You’ll learn how to build a personal brand that showcases your skills, passion, and credibility even if you’re just getting started. From crafting your story to positioning yourself on LinkedIn and in interviews, this session will help you turn visibility into opportunity and make your name known in cyber.

A raw discussion between those funding the future and those trying to secure it.

INTERPOL’s Global CISO shares stories and lessons from working with cyber teams across continents – from unexpected culture clashes to creative problem-solving under pressure. It’s a fast-moving tour of what “global” really looks like in security, and how those experiences change the way you lead, think, and respond to threats.

Penelope is a shell handler designed to be easy to use and intended to replace netcat when exploiting RCE vulnerabilities. It is compatible with Linux and macOS and requires Python 3.6 or higher. It is a standalone script that does not require any installation or external dependencies, and it is intended to remain this way.

I’ll break down the GraphQL flaw that led me to win the Ambassadors World Cup and show the offensive mindset behind uncovering high-impact logic bugs in web applications.

This session examines how AI agents can be built and used for both offensive and defensive cybersecurity operations. Mohammed Alshehri explains the core components of AI driven agents, how they automate tasks, and where they introduce new risks. The talk highlights practical use cases for detection, response, reconnaissance, and exploitation, along with the controls needed to keep these systems safe and predictable.

Explores how to build systems and teams that stay strong under pressure and respond quickly when attacks hit. Learn practical steps to boost resilience and sharpen incident response in today’s hostile threat landscape.

Every hacker starts with curiosity. For Marco Liberale, it began with locks, tools, and a drive to understand the “why” behind every mechanism. Join him as he shares his personal journey through physical and cyber security—and why mentorship remains the most powerful exploit of all.

Visual Studio Code (VS Code) is one of the most trusted and widely used tools in software development. With an extensive ecosystem of extensions enhancing its functionality, it has become indispensable across enterprises and individual developers alike. But what if the very extensions developers trust could be used against them?This talk will expose a critical and largely unexplored attack surface in the software supply chain: the VS Code and Cursor AI extension marketplaces. Through original research and live demonstrations, I will show how I developed and successfully published a malicious VS Code extension capable of exfiltrating sensitive environment variables, bypassing Microsoft's marketplace security checks, evading endpoint detection solutions, and escalating to a full backdoor implant using a stealthy post-exploitation agent.We will walk through the technical journey of crafting "Piithon-linter," the techniques used to bypass both static and dynamic marketplace analysis (including sandbox scanning evasion in Microsoft Marketplace ecosystem), and how open ecosystems like Open VSX (used by Cursor AI and others) offer even less security scrutiny. The session will highlight why developer machines are high-value targets, how traditional security tools fail to monitor this vector, and what security teams, developers, and marketplace operators must do to defend against such threats.

This session is the story of how we built the world’s first Intelligence Graph at spiderSilk. We started with a crazy idea. Take only the name of an organization and rebuild its entire external reality. Assets. Risks. Exposures. Hidden links. All of it.We walk through how we actually pulled it off. The tough parts. The engineering that kept breaking. The moments where it finally clicked. And how we taught AI to understand the open internet in a real, useful way.

Artificial Intelligence (AI) adoption is rapidly accelerating, transforming critical sectors such as healthcare, recruitment, finance, and public services. While these technologies promise efficiency and accuracy, they also raise significant ethical concerns, including bias, discrimination, lack of transparency, and accountability gaps. Existing AI governance model often focus primarily on algorithmic fairness or technical aspects, overlooking broader societal, legal, and ethical dimensions where harm can occur.This session introduces a multi-lens approach to AI governance. Instead of evaluating only the algorithm, we explore AI through four interconnected lenses: technical, legal, ethical, and social. Each lens reveals a different layer of risk, from biased training data to gaps in accountability to unintended societal harms.By applying this approach to real-world cases such as recruitment systems and facial recognition, we show how hidden risks surface when you look at AI from multiple perspectives. In this session, we will demonstrate the power of a multi-lens AI governance model, offering actionable insights for more responsible, and transparent AI deployment.

The security operations model that organizations have relied on for decades is under strain. Alert fatigue, talent shortages, and increasingly AI-powered attacks are exposing the limits of static playbooks and automation-only approaches. This keynote explores the shift from automation to autonomy in cybersecurity operations. It examines how advances in large language models, real-time context retrieval, graph reasoning, and reinforcement learning are converging to create a new paradigm: AI-driven SecOps. Rather than focusing on tools or vendors, the session will discuss the broader implications of autonomous security, how it changes the role of analysts, the speed and scale of response, and the future architecture of the SOC.

Explore how a strong security culture can sometimes outperform even the best tools. From daily habits to organization-wide mindset shifts, we’ll look at how people, awareness, and shared responsibility can become a powerful layer of defense against modern threats.

This talk explores how the digital advertisements which we encounter daily on websites and apps can be weaponised as an intelligence source. We’ll demonstrate how ad networks can reveal population density as well as demographics in target areas without leaving forensic traces. We will also discuss how it is possible by agencies and companies to extract more personal level of information. Finally, we’ll examine how governments and agencies can exploit this invisible vector to gather insights effortlessly, evading conventional detection and defenses. At the same time we will also discuss strategies to safeguard from this whether at an organisational or individual level.

A look at how cybersecurity VCs are influencing the next generation of defense - from funding emerging technologies to shaping market trends and guiding what innovations break through. Learn how investment decisions today are defining the future of digital security.

This session explains why cybersecurity ROI breaks when teams measure effort instead of outcome. It highlights tool duplication, misaligned purchases, and weak KPI tracking that waste budget. The presentation outlines practical methods to prioritise spend by real exposure, validate impact, and map product-service dependencies to security results.

This talk explores five critical challenges energy CISOs face and provides practical strategies to overcome them, enabling stronger resilience and security for the energy transition.

This session examines why mobile security is essential to any data perimeter strategy. Boris Gekhtman outlines how unmanaged devices, mobile apps, and cloud connected workflows create blind spots that attackers exploit. The talk highlights common risks such as data leakage, weak device posture, and unmonitored network activity, along with practical controls that strengthen visibility and protect sensitive information across mobile endpoints.

Building strong cyber defense doesn’t require endless budgets. This session shares practical organizational, technical, and hands-on strategies to maximize impact with limited resources. Learn how to prioritize what matters, eliminate waste, and strengthen security even in constrained environments.