EVENT OVERVIEW

Cybersecurity has become a defining issue for Europe’s security, economic resilience and technological competitiveness. As cyber threats grow more sophisticated, artificial intelligence transforms both attack and defence, and geopolitical tensions reshape global technology supply chains, Europe faces a critical moment in strengthening the resilience of its digital economy.

With landmark initiatives including the proposed revision of the Cybersecurity Act (CSA2), the Cyber Resilience Act, NIS2, the Cyber Solidarity Act and the Critical Entities Resilience Directive moving from policy to implementation, attention is increasingly turning towards how Europe can build trusted digital infrastructure, strengthen operational resilience, foster globally competitive cybersecurity capabilities and prepare for the next generation of emerging threats.

Against this backdrop, the 13th Annual European Cyber Security Conference will bring together policymakers, industry leaders, and cybersecurity practitioners and examine the key challenges shaping Europe’s cybersecurity agenda. Discussions will explore trusted ICT supply chains, cyber sovereignty and competitiveness, collective cyber resilience, intelligence sharing and crisis response, and the transformative impact of artificial intelligence on cybersecurity. 

Throughout the day, participants will consider how Europe can balance security, innovation and openness while ensuring its regulatory, operational and industrial strategies evolve quickly enough to address an increasingly complex and interconnected threat landscape.

SPONSORSHIP OPPORTUNITIES

To discuss sponsorship and visibility opportunities at the 12th Annual European Cyber Security Conference 2025, please contact Anne-Lise Simon on [email protected].

Exclusive speaking positions

Your organisation can contribute to the discussion

Engaging and interactive format

Engage in a fully immersive and interactive debate with decision makers, businesses and policymakers

EU and global outreach

Convey your message to a broad and international audience

Networking opportunities

Connect with your fellow attendees during coffee and lunch breaks throughout the event

Visibility opportunities

Ensure maximum visibility through branding on the event website and marketing activities

Exhibition and demos area

Showcase your products and solutions or share a position paper with the audience at an onsite tabletop stand

KEY THEMES

SPEAKERS FROM LAST YEAR'S EDITION:

Doina Nistor

Doina Nistor

Deputy Prime Minister, Minister of Economic Development and Digitalisation

Republic of Moldova

Joanna Pawełek-Mendez

Joanna Pawełek-Mendez

Minister-Counsellor for International Aspects of Cyber Policy, Ministry of Foreign Affairs

Poland

Noortje Henrichs

Noortje Henrichs

Head of the Cyber Threat Intelligence team, NCSC

Netherlands

Rokas Jonikas

Rokas Jonikas

Director of the Cyber Security Operations Management Department

National Cyber Security Centre (NKSC/CERT-LT)

Héctor Laiz Ibáñez

Héctor Laiz Ibáñez

Technician Cabinet & National Coordination Centre (NCC-ES)

INCIBE

Aura Salla

Aura Salla

Member

European Parliament

Anne-Sophie Diehl

Anne-Sophie Diehl

Policy Officer, Cybersecurity and Trust, Cybersecurity Technology and Capacity Building, DG CONNECT

European Commission

Manon Le Blanc

Manon Le Blanc

Coordinator for Cyber Issues and Deputy Head of the Hybrid Threats and Cyber Division

European External Action Service (EEAS)

Kristel-Amelie Aimre

Kristel-Amelie Aimre

Policy Officer, Digital and Cyber Diplomacy Department

Estonian Ministry of Foreign Affairs

Alfredo Veneziani

Alfredo Veneziani

EU Affairs Expert

Italian National Cybersecurity Agency (ACN)

Aleksandra Kulikova

Aleksandra Kulikova

CISO Emerging Technology Risk Lead

Euroclear

Valentina Stadnic

Valentina Stadnic

Programme Officer

The ITU Office for Europe

Fabio Di Franco

Fabio Di Franco

Project Manager of Skills

ENISA

Roberto Cascella

Roberto Cascella

Chief Technology Officer

European Cyber Security Organisation (ECSO)

Marc Vael

Marc Vael

Chief Digital Trust Officer

Esko

Danielle Jacobs

Danielle Jacobs

CEO

Beltug

Matthias Sachs

Matthias Sachs

Cybersecurity Policy Lead Europe

Google

Skip Mann

Skip Mann

Executive Director, Enterprise Security Strategy, Assurance, and Trust

Lenovo

Siggi Stefnisson

Siggi Stefnisson

Chief Technology Officer

GEN Digital

Maurice Godschalk

Maurice Godschalk

Account Director

OPENVAS B.V.

Chris Gow

Chris Gow

Senior Director for EU Public Policy

Cisco

Ilias Chantzos

Ilias Chantzos

Head of Global Privacy and Government Affairs EMEA

Broadcom

Jeremy Rollison

Jeremy Rollison

Head of EU Policy, European Government Affairs

Microsoft Europe

Irina Michalowitz

Irina Michalowitz

Senior Director Policy and Government Affairs, EMEA

Palo Alto Networks

Christian Reilly

Christian Reilly

Field CTO EMEA

Cloudflare

Iva Tasheva

Iva Tasheva

CEO

CYEN

Visiola Pula

Visiola Pula

Principal Analyst

Cullen International

Lara Natale

Lara Natale

Senior Public Affairs Director

Centre For Future Generations (CFG)

Matthew Newman

Matthew Newman

Global Chief Correspondent

MLex

Sara Brandstätter

Sara Brandstätter

Data Privacy and Security Reporter

MLex

Júlia Tar

Júlia Tar

Data Privacy and Security Reporter

MLex

Visiola Pula

Visiola Pula

Principal Analyst

Cullen International

Lara Natale

Lara Natale

Senior Public Affairs Director

Centre For Future Generations (CFG)

Sara Brandstätter

Sara Brandstätter

Data Privacy and Security Reporter

MLex

Júlia Tar

Júlia Tar

Data Privacy and Security Reporter

MLex

AGENDA

*** Times are listed in CEST ***

The 13th Annual European Cyber Security Conference 2026
2026-11-03
08:30 - 09:00
Welcome Coffee
09:00 - 09:40
Keynote Session
09:40 - 10:50
Panel 1: Rethinking Cybersecurity, Resilience and High-Risk Suppliers: CSA2 and Europe’s Trusted ICT Supply Chains

Cybersecurity supply chains have become one of Europe’s most pressing security challenges. Increasingly sophisticated attacks targeting software dependencies, managed service providers and critical technology suppliers have demonstrated that a single compromised vendor can have cascading consequences across governments, businesses and critical infrastructure. As organisations become increasingly reliant on complex ecosystems of cloud providers, software vendors, telecommunications infrastructure, open source components and AI models, managing third-party risk has become central to Europe’s cybersecurity and economic resilience.

 

The European Commission’s proposed revision of the Cybersecurity Act (CSA2) represents a significant evolution of Europe’s approach to securing critical ICT supply chains. Alongside the new EU ICT Supply Chain Security Toolbox, the proposal would establish a harmonised framework for assessing critical ICT supply chains, identifying high-risk suppliers and, where necessary, restricting their use across sectors covered by NIS2. For the first time, the Commission proposes Union-level powers to assess non-technical risks linked to foreign ownership, control and influence, moving beyond the fragmented implementation of previous initiatives such as the EU 5G Toolbox. Together, these initiatives seek to strengthen trust, improve transparency and promote a more consistent approach to managing cyber risk across the Single Market, while reducing strategic dependencies and encouraging greater supplier diversification.

 

As cyber threats continue to evolve and geopolitical tensions reshape global technology markets, important questions remain. How can Europe strike the right balance between security, openness and competitiveness? Will the proposed CSA2 framework provide the consistency and resilience needed to secure Europe’s digital infrastructure, or introduce additional complexity for governments, operators and technology providers?

 

Possible panel questions:

  • How transformative are the ICT supply chain provisions within the proposed Cybersecurity Act?
  • To what extent will the new high-risk supplier framework deliver greater consistency than previous initiatives such as the 5G Toolbox?
  • What practical implications could the proposed high-risk supplier framework have for public procurement, operators of essential services and technology providers?
  • How can organisations improve visibility across increasingly complex supplier ecosystems and reduce concentration risk without significantly increasing costs or slowing innovation?
  • What role should certification, standards and international cooperation play in strengthening trusted ICT supply chains?
10:50 - 11:20
Coffee Break
11:20 - 11:40
Keynote
11:40 - 12:50
Panel 2: Building Europe’s Trusted Cybersecurity Ecosystem: Strengthening Sovereignty, Innovation and Competitiveness

Europe possesses a vibrant cybersecurity ecosystem, producing world-leading research, innovative startups and globally respected technology companies. Despite these strengths, the block continues to face significant challenges in scaling cybersecurity businesses, attracting investment and translating innovation into globally competitive companies.

 

As cybersecurity becomes a cornerstone of Europe’s economic security, competitiveness and digital sovereignty, policymakers are increasingly recognising that reducing strategic dependencies requires more than regulation alone. Building a trusted European cybersecurity ecosystem will depend upon stronger industrial policy, greater investment in innovation, improved access to finance, more effective public procurement, a genuine single market for cybersecurity products and services, and continued investment in research, skills and talent.

 

Initiatives such as the European Cybersecurity Competence Centre (ECCC), the Cyber Resilience Act and the revision of the Cybersecurity Act all seek to strengthen Europe’s cyber capabilities while supporting a more competitive digital economy. At the same time, Europe faces important choices over how to strengthen strategic autonomy without undermining competition, openness or international collaboration. This session will explore how Europe can build a trusted and globally competitive cybersecurity ecosystem capable of supporting long-term innovation, resilience and technological leadership.

 

Possible panel questions:

  • What should European cyber sovereignty mean in practice, and what industrial policies are needed to build globally competitive European cybersecurity champions?
  • How can Europe create a genuine single market for cybersecurity by reducing fragmentation in procurement, certification and regulation?
  • To what extent can public procurement play a greater role in supporting trusted European cybersecurity providers?
  • What are the biggest barriers preventing European cybersecurity startups and scale-ups from competing globally, and how can Europe improve access to investment, accelerate commercialisation and support growth?
  • How can governments, industry and academia work together to address Europe’s cybersecurity skills gap?
  • What role should open source software, international standards and trusted international partnerships play in strengthening Europe’s cybersecurity ecosystem while supporting Europe’s strategic autonomy?
12:50 - 13:45
Networking Lunch
13:45 - 14:00
Keynote Speech
14:00 - 14:40
Thinking Point: Building Europe’s Collective Cyber Resilience: Intelligence, Preparedness and Crisis Response

Cyber threats are becoming faster, more sophisticated and increasingly interconnected. From ransomware and AI-enabled attacks to supply chain compromises and state-sponsored operations, incidents now spread rapidly across borders and sectors, making collective preparedness and coordinated response more important than ever. As critical infrastructure operators become more digitally interconnected and operational technology environments face growing cyber risks, strengthening resilience across essential sectors has become a strategic priority for Europe.

 

Through initiatives including NIS2, the Cyber Solidarity Act, the Critical Entities Resilience (CER) Directive, the revised EU Cybersecurity Blueprint and the proposed revision of the Cybersecurity Act, the EU is building a more coordinated operational cybersecurity framework focused on intelligence sharing, crisis response and resilience. As attention turns from legislation to implementation, this session will explore how Europe can strengthen collective cyber resilience by improving operational cooperation, protecting critical infrastructure, enhancing cross-sector resilience and ensuring governments, industry and EU institutions can respond effectively to increasingly complex cyber and hybrid threats.

 

Possible questions:

  • How can Europe move from fragmented cybersecurity efforts towards a genuine model of collective cyber resilience?
  • To what extent can the Cybersecurity Blueprint and the Cyber Solidarity Act fundamentally improve Europe’s ability to prepare for and respond to large-scale cyber crises?
  • To what extent will the provisions of the Digital Omnibus Package and the proposed Single Entry Point simplify incident reporting while improving Europe’s collective situational awareness?
  • What practical steps are needed to encourage governments, industry and critical sectors to share high-quality threat intelligence more openly and securely?
  • What more is needed to strengthen cyber resilience across Europe’s critical infrastructure sectors as NIS2 and the CER Directive move into implementation?
  • How can Europe improve coordination between ENISA, national CSIRTs, EU-CyCLONe, CERT-EU, Europol and Member States during cross-border cyber incidents?
  • As cyber threats increasingly converge with hybrid and geopolitical risks, how should the EU strengthen cooperation with NATO and international partners?
14:40 - 15:50
Panel 3: AI and Cybersecurity: Can Defenders Keep Pace in the Age of Autonomous Threats and Frontier Models?

Artificial intelligence is transforming cybersecurity at unprecedented speed, accelerating both attack and defence. Recent developments, including Anthropic’s restricted release of Claude Mythos and the emergence of other frontier cyber-capable AI models, demonstrate that AI is becoming far more than another cybersecurity tool. It is rapidly evolving into a strategic capability capable of dramatically reducing the time between discovering and exploiting vulnerabilities, raising important questions about resilience, governance and who should have access to these powerful technologies.

 

As organisations increasingly deploy AI agents and integrate foundation models into critical business processes, policymakers must also address emerging risks including model manipulation, shadow AI, data leakage and increasingly complex AI supply chains. Against this backdrop, the European Commission’s Cybersecurity AI Action Plan set outs a strategic vision for strengthening Europe’s cyber resilience through AI while supporting innovation, investment and trusted deployment. Together with the AI Act, the Cyber Resilience Act and the wider European cybersecurity framework, it will help shape the next phase of Europe’s approach to AI-enabled cyber defence.

 

This session will examine how Europe can harness AI to strengthen cyber resilience while ensuring governance, regulation and operational capabilities evolve quickly enough to keep pace with rapidly advancing autonomous cyber threats. It will also explore the growing debate over frontier cyber-capable AI models, asking whether restricting access to the most advanced capabilities can meaningfully reduce cyber risk, how such decisions should be governed, and what they mean for innovation, open research and Europe’s long-term cybersecurity competitiveness.

 

Possible questions:

  • To what extent does the emergence of frontier models such as Claude Mythos represent a turning point for cybersecurity policy? Is Europe prepared for a future where vulnerabilities can be identified and exploited within hours rather than weeks?
  • How can organisations move from reactive cybersecurity to AI-native resilience and automated defence?
  • Should access to highly capable cybersecurity AI models be restricted to trusted organisations, or made broadly available with appropriate safeguards?
  • How should governments balance security, innovation and international competitiveness when considering export controls, open-source development and access restrictions for frontier cyber-capable AI models?
  • How should the AI Act, and wider cybersecurity legislation evolve to address autonomous cyber threats?
  • What role should public-private collaboration play in ensuring Europe develops both the governance frameworks and defensive capabilities needed to compete in the AI-driven cyber era?
  • How can Europe continue to support responsible vulnerability research and offensive security capabilities while preventing misuse by increasingly autonomous AI systems?
  • Beyond AI, how can organisations prepare today for the long-term cybersecurity implications of quantum computing and the transition to post-quantum cryptography?
15:50 - 16:15
Coffee Break
16:15 - 17:45
Cyber Mixer: CISO Exchange followed by a Networking Reception

Throughout the day, participants will have explored the latest developments shaping Europe’s cybersecurity landscape, from trusted ICT supply chains and cyber sovereignty to collective cyber defence, AI-enabled threats and operational resilience. This closing session brings the discussion from policy to practice. Drawing on the day’s debates and audience polling results, senior cybersecurity leaders will reflect on what Europe’s rapidly evolving cybersecurity agenda means for organisations on the ground. Rather than revisiting the policy detail, the discussion will focus on implementation, operational realities and the strategic decisions CISOs are making as they navigate an increasingly complex threat environment.

 

From managing AI-enabled cyber risks and securing increasingly interconnected supply chains to building resilience across critical infrastructure, responding to new regulatory obligations and preparing for the next generation of cyber threats, the session will provide an opportunity for participants to challenge assumptions, compare experiences and identify the practical priorities that should shape Europe’s cybersecurity agenda going forward.

 

Possible questions:

  • Looking back at today’s discussions and polling results, where is there greatest consensus, and where do significant differences remain between policymakers and practitioners?
  • What are the biggest cybersecurity challenges keeping CISOs awake today that are still not being adequately addressed by policy?
  • How should organisations adapt their security strategies as AI accelerates both cyber attacks and defensive capabilities, while managing increasingly complex supply chains and regulatory obligations?
  • What practical lessons are organisations learning about building cyber resilience, improving crisis preparedness and responding to increasingly sophisticated cyber and hybrid threats?
  • Looking ahead, what should be Europe’s top cybersecurity priorities over the next three to five years?

 

17:00 – 17:45 Cyber Mixer: Cocktail Reception

Select date to see events.

2025 HIGHLIGHTS

Check out the highlights from the previous Annual European Cyber Security Conference...

Forum Europe’s 12th European Cyber Security Conference took place in Brussels in September 2025. The achievements in cybersecurity in recent years were discussed over a series of panel and Thinking Point sessions and a keynote session. 

COSTS

  • Standard €180

    Applies to: Corporate Organisations, Trade Associations, Law Firms

  • Reduced €130

    Applies to: NGO, Not for Profit, Academic / Student

  • Complimentary €0

    Applies to: European Commission / Parliament / Council, National Government / Regulator, Diplomatic Missions to the EU, Permanent Representations to the EU, Accredited Journalists

* Fees do not include Belgian VAT @ 21%, and this amount will be added to the total price when you are invoiced.

Please note that all registrations are subject to approval by the organisers. The organisational categories listed reflect the most common attendee profiles from previous editions and may not capture every individual case. If you are uncertain which category best applies to you, please contact us at [email protected] before completing your registration. Selecting an incorrect category may result in delays or may prevent your place from being confirmed.

If any details or proof of affiliation are missing following your submission, a member of our team will contact you directly. Successful registrations will be confirmed automatically without further communication.

If you require a visa support letter, we will be pleased to provide this once your registration has been approved and the applicable admission fee has been finalised.

2025 PARTNERS & SPONSORS

Broadcom
Cisco
Cloudflare
ECSO
GEN Digital
Google
Lenovo Logo
Microsoft
MLex
OPENVAS B.V.
Palo Alto

PREVIOUS PARTNERS & SPONSORS

Accenture
Airbus Defence and Space
Broadcom
BSA
Cloudflare
ECSO
Ericsson
Google
Hewlett Packard
Internet Society
ISC
Leonardo
Mastercard
Microsoft
Norton
Orange
Qualcomm
SAS
SAP
T.Systems
Trellix
Trustonic
Vodafone
Workday

GET IN TOUCH

EVENT VENUE

To be confirmed...

CONTACT US

Charys Bestley

Event Manager

Forum Europe

+44 (0) 7718928580

STAY UP TO DATE

Subscribe

Sign up to receive updates on our upcoming policy events.