Information Security: Get ready for change

Venue: Etc Venues Victoria, 1 Drummond Gate, London, SW1V 2QW

Date: Thursday 12 September 2013, London

Information security Conference image

An effective information security management system (ISMS) helps you coordinate all your security efforts coherently, consistently and cost-effectively. In today’s business world, information is a chief asset that presents endless advantages. However whilst reaping benefits, businesses often overlook the security challenges involved.

As you may be aware, the two internationally acclaimed standards for information security management ISO/IEC 27001 and 27002 are currently under revision and due to publish prior to the end of 2013.

Join us on Thursday 12 September 2013 to get up to speed with the latest developments around these highly anticipated standards and how these may affect you.

An opportunity not to be missed

By attending, you will:

  • Gain an in depth understanding of the forthcoming ISO/IEC 27001 and ISO/IEC 27002 prior to publication
  • Understand why these changes are necessary and how they affect you
  • Receive essential information on cloud certification
  • Hear practical case studies from organizations who have successful information security management systems in place
  • Learn from key industry players
  • Network with industry experts and peers 

Eligible for CPD points



Sponsored by:

Who should attend?

Those responsible for information security, risk management and ICT within their organizations:

  • Information Security Officer
  • Head of Information Security
  • Information Security Consultant
  • IT Systems Manager
  • Operations Manager
  • Risk and Information Security Manager
  • Quality Systems Manager
  • ICT Manager
  • Network Engineer
  • Head of Risk
  • Head of IT
  • Information Security Advisor
  • Business Devolvement Manager
  • Compliance Officer
  • Implementation and Standardisation Process Manager
  • Technical Director
  • Production Control Manager
  • Information Assurance Manager
  • Risk Management Officer
  • IT Support Coordinator
  • Lecturer in Computing
  • Practice Manager
  • Quality Manager
  • Quality Director
  • Infrastructure Manager
  • IT Supervisor
  • Data Analyst
  • Governance, Risk & Compliance Manager
  • Training Tutor
  • IT Project Officer
  • IT Support Services Manager


9:30 – 9:45 Chairman’s Introduction

Vernon Poole, Head of business consultancy, Sapphire

9:45 - 10:10 Prepare yourself for ISO/IEC 27001 2013?

Professor Edward Humphreys, Hagenberg University, BRE

  • Why change?
  • 27001 The next generation of MSS
  • Cover-to-cover look at all the changes
  • Comparing old-to-new
  • Being ready for Certification to the new edition

10:10 – 10:35 ISO/IEC 27002 - The forthcoming changes and challenges

Bridget Kenyon, Head of Information Security, UCL

10:35 – 11:00 Have your say – What does standards update mean to you?

10:45 – 11:05 Morning tea and coffee

11:05 - 11:35 Economics of IS Management

Richard Henson, Senior Lecturer in Computing, University of Worcester

  • Educate management on impacts of Information Security
  • Need to support investment in IS
  • Estimation of security breach cost
  • A risk management approach
  • Cost effective technology configuration
  • Value from deployment of multiple technologies

11:35- 12:05 Case study - implementation and certification of ISO27001

Bill Millar, Head of Security, Infrastructure Outsourcing Services UK

  • Drivers
  • Gaining management and business buy in
  • Use of external consultants
  • Road to certification
  • Challenges
  • Post certification – What’s next?

12:05 – 12:35 Case Study – Details to follow

Phil Willoughby, Technical Services Manager, LRQA

12:35 – 12:45 Q&A

12:45 – 14:00 Lunch

14:00- 14:30 BS ISO /IEC 27005 and BS/ISO27031

Ron Miller, Principal Consultant, SunGard

  • Pragmatic approach to managing the risk
  • Policies, procedures and technical controls
  • Bridging the SME awareness gap
  • An introduction to ICT Readiness and where it sits within Information Security and Business Continuity
  • The consequences of the ICT Readiness Gap
  • How to justify the costs of ICT resilience using ISO 27031

14:30 – 15:00 Information Security Skills for the Future

Vernon Poole, Head of business consultancy, Sapphire

15:00- 15:30 Afternoon tea and coffee

15:30 – 16:00 Cloud Computing Certification

Andreas Fuchsberger, Regional Standards Officer, Microsoft

16:00 – 16:30 Legal Issues in the cloud

Renzo Marchini, Counsel, Dechert LLP

  • Myths (and FUD - Fear, Uncertainty and Doubt) in the Cloud
  • Data Protection and Regulatory Requirements
  • Security and Contractual Issues

16:30 – 16:40 Q&A

16:40 -17:00 Chairman closing remarks

Delegates are cordially invited to a complimentary drinks reception at the close of the conference. The drinks reception is an ideal forum for networking opportunities and discussing the day’s findings.

To book your place simply click on the one of the options below link below.

Definition of rates:

Standard rate:  Includes organizations that are not controlled by the government. Often have Ltd or plc at end of full company name.

Public Sector: organizations providing basic government services including, the police, military, public roads, primary education and healthcare. This rate also applies to local authorities, councils and government departments, schools and hospitals.

SME rate: An organization that employs fewer than 250 persons and which have an annual turnover not exceeding £25 million

* This combined package price includes a 15% discount on the total price for attending both conferences. This price is not available with any other offer, member rates still apply.

Information Security Conference - Standard


Information Security Conference - SME/Public


Information Security & BCM Conferences - Standard


Information Security & BCM Conferences - SME/Public

 Your basket
Your basket is empty