PHDays VII Business Program: Search for Concrete Answers to Real Threats

Is Internet of things the next spurt of IT development or a global threat to the development of enterprises, the Internet, and the modern world? What will SOCs be like tomorrow? UEBA—already tomorrow or never? These and other topics are included in the business program of Positive Hack Days VII. Below are the presentations that you just cannot miss.

Day 1

The forum opens with a plenary discussion in two parts. "Information security today: the splendor and misery of corporate security" devoted to the main factors characterizing the state of security of enterprise information systems will be held from 10:00 a.m. to 11:30 a.m. in the Amphitheater Hall. Is the bug bounty approach applicable in government institutions? What should be done to really prevent and detect attacks on enterprise systems? What prevents the industry from developing? These issues will be discussed by government officials and heads of IS departments of major Russian companies. Vitaly Lyutikov (FSTEC), Artem Sychev (CBR), Sergey Lebed (Sberbank), Alexander Baranov (FTS), Muslim Medzhlumov (Rostelecom), Sergey Gordeychik (Kaspersky Lab), Evgeny Klimov (Infosec), Sergey Danilov (Rosatom), Roman Kalina (Supreme Court) are invited to take part. The discussion will be moderated by Boris Simis, Deputy General Director for Business Development at Positive Technologies.

The second part is called "Information security tomorrow: is it a stop factor for digitalization of economy?" The participants will discuss what aspects of information security can hinder the process of digitalization and what risks going digital can pose. Deputy Minister of Telecom and Mass Communications Aleksey Sokolov, Kirill Kerzenbaum (Kaspersky Lab), Denis Baranov and Dmitry Finogenov (Positive Technologies), Ilya Sachkov (Group-IB), Georgy Gritsay (Open Networks Association), Roman Chaplygin (PWC) will share their views on the issue. The discussion will be moderated by Alexey Kachalin, Deputy Director for Business Development in Russia at Positive Technologies (11:30 a.m. – 1:00 p.m., Amphitheater Hall).

From 1:00 p.m. to 2:00 p.m. in the Press Hall, Dmitry Gusev, Deputy General Director of InfoTeCS, together with the participants of the round table will try to figure out how import substitution will affect the overall level of security of Russian information systems and the IT industry in general. Is it possible to create competitive high-tech products and export them to foreign markets? Experts of the Russian IT and IS market will present their forecasts.

The key theme of PHDays is the Internet of things. From 4:00 p.m. to 6:00 p.m. in the Amphitheater Hall, Alexey Lukatsky, an expert in information security, will host the panel "IoT (in)security". The participants of the discussion will try to look at IoT security from different angles, touch upon the technical, organizational, and legal issues of IoT security, the details of attacks and defense. Dmitry Berezin and Alexander Butenko (CROC), Igor Girkin (Cisco), Vladislav Shershulsky (Microsoft), Pavel Novikov (Positive Technologies), Nikita Utkin (TC 194) are invited.

In the afternoon, the Valdai Hall will be given to a whole series of presentations on the experience of operating SOCs. Over the past year, the topic of SOCs was picked up by many organizations in Russia. The presentations will show how SOCs are operated by Russian companies, such as Rostelecom, Sberbank, MTS, and how internal SOCs are operated by global vendors, SAP and Microsoft. At 2:00 p.m., Andrey Dugin, Head of the Information Security Department at MTS, will start talking about the Security Operations Center built by MTS. What can you face? What peculiarities need to be considered in technological implementation and business processes when providing security for an IP/MPLS network of this scale? What conclusions did the company make after participating in the Standoff during PHDays VI?

The panel "SOC Evolution 2017" (3:00 p.m. – 6:00 p.m.) will continue the topic. The floor will be given to representatives of companies that have real experience in constructing and operating centers for monitoring and responding to IS incidents—both internally and for customers. Among the panelists are Alexander Lesnikov (Sberbank), Alexey Novikov (Positive Technologies), Arkady Prokudin and Alexey Shabanov (SAP), Elman Beybutov (IBM), Alexander Bondarenko (R-Vision), Vladimir Dryukov (Solar Security), Dmitry Pudov (ANGARA Technologies), Vladimir Shadrin (Rostelecom), Sergey Soldatov (Kaspersky Lab).

Another panel is "Innovations in protection tools and security tests" (11:00 a.m. – 1:00 p.m., Conference Hall A). Developers will present new technologies for providing information security, and their customers will confirm the effectiveness of these solutions by their experience. The moderators are Egor Nazarov, Key Partners Manager at Positive Technologies, and Anton Ivanov, Head of the Department for Information Security Technologies at Skolkovo. Among the participants are Wallarm, Yulmart, SafeTech, Vozrozhdenie Bank.

Day 2

Today, information security is experiencing acute internal contradictions. Everybody is saying: "Who needs you?", "They will still hack!", "Buy new solutions". Developers of IS solutions and those who use them have lost some of their faith and motivation. The brightest representatives of the IS community will gather in the Amphitheater Hall to talk about what they feel are burning issues and share their ideas, which, in their opinion, can affect everyone and the industry as a whole. The panel will include a series of presentations on various aspects of technology, security, the development of the IS community, and business: what do those who motivate teams of IS developers, customers, and the entire IS branch think about? And what motivates them? The participants of the panel are Alexey Kachalin and Vladimir Bengin (Positive Technologies), Alexey Lukatsky and Mikhail Kader (Cisco), Ilya Sachkov (Group-IB), Elman Beybutov (IBM), Dmitry Manannikov (SPSR Express), Ivan Novikov (Wallarm), Alexey Volkov (Sberbank). The panel will be held from 10:00 a.m. to 12:00 p.m. in the Amphitheater Hall.

Those interested in where protection technologies are moving should stop by the Valdai Hall to see the presentations during the panel "Security practice" (12:00 p.m. – 3:00 p.m.). Denis Remchukov together with the representatives of technology companies Oleg Bakshinsky (IBM), Pavel Zemtsov (ICL System Technologies), Konstantin Goldstein (Microsoft), Andrey Revyashko (WildBerries), Sergey Rysin (STLC) will discuss innovative technologies for information protection. The key topics are "How to choose and implement a SIEM system?", " UEBA—already tomorrow or never?", "When will you stop buying these useless endpoint antiviruses?"

The day will be rounded off with the panel "Security Path: Dev vs Manage vs Hack" devoted to the problem of human resources in the IS industry: how to build a career in security, what helps in development, and where hackers and defenders can face career deadlocks. Is it possible to hunt bugs during your whole career or is a transition to paperwork expert or people manager inevitable? Which is more attractive to hack and design—software or "bulletproof" enterprise processes. Dmitry Manannikov (SPSR Express), Mikhail Levin (Positive Technologies) and other panelists will try to answer these questions from 4:00 p.m. to 6:00 p.m. in the Amphitheater Hall.

See the PHDays VII full schedule on the forum's official website.