Be safe, not sorry: creating an Incident Response Plan (N-sight)

Location:Abbey Hotel, Grimbergen


Security incidents and data breaches happen, despite our best efforts to prevent them. So we must be prepared to act quickly and directly when one happens. You need to plan ahead to ensure a smooth response: by creating an Incident Response Plan. But what should it include, and how can you ensure it complies with the regulations in force?


In this session, we’ll hear two real-life cases that highlight what questions other companies considered when drafting their plans. And we’ll get guidelines for creating a plan, and on the legal framework. Plus we’ll look into new technologies that will help fight the cybersecurity battles of the future.




Hotel Abbey
Kerkeblokstraat 5
1850 Grimbergen






*Beltug is offering Crowdbeamer streaming at our events, so that every participant can get the most from our speakers' expertise. Just download the free app, and then during the presentation you can see the current slide on your mobile device and annotate notes!



13:00 Welcome coffee


13:30 Introduction


Ann Guinée, Communication Manager, Beltug (English)


13:45 Incident response and the three C’s


Preparing for a breach is as important as detecting it. Let’s hear some concrete guidelines on how to adapt an incident response plan. We will deep dive further into responding during a breach with examples from real-life experiences.


Matthew Lawrence, Global Incident Response Lead, F-Secure (English)


14:15 Q&A: Your questions, your experience


14:30 The future impact of AI on cybercrime and the shift to self-learning and-defending networks


In this presentation, we’ll hear how machine learning and AI algorithms can be leveraged to defend against advanced, never-seen-before, cyber-threats. We’ll discover new immune system technologies that will pre-empt emerging threats and reduce incident response time, and about using automation and autonomous response help security teams to neutralize in-progress attacks, prioritise resources and tangibly lower risk. And we’ll learn how to achieve 100% visibility of the entire business: including cloud, network and IoT environments.


Miguel Pieters, Cyber Security Specialist, Darktrace (English)


15:00 Q&A: Your questions, your experience


15:15 Coffee break


15:45 Case: A privacy incident - panic or control?


In order to ensure a smooth, directed response to a privacy incident, we need to consider in advance the most important elements to include in the Incident Response Plan. For example, who takes on which role: advisor, decision-maker, implementor? Do we need to report to the data protection authority, and/or to those involved? Where are the risks and possible pitfalls, and do we need to provide aftercare?


Steven Verdonck, Data Protection Officer, Broeders van Liefde (Dutch)


16:15 Q&A: Your questions, your experience


16:30 Case: An Incident Response Plan based on SOAR


Responding to cybersecurity incidents can be a very time- and resource consuming, often manual process. In this presentation, we will find out how an Incident Response Plan based on SOAR (Security Orchestration, Automation and Response) principles is helping Danone to be more efficient in responding to these cybersecurity incidents.


Steven Decanniere, Risk & Compliance Manager, Danone (English)


17:00 Q&A: Your questions, your experience


17:15 Wrap up & Closing drink


18:00 End