Programme Draft

Subject to Change
To be considered contact marketing@cybersenate.com

On mobile: swipe left/right to view concurrent sessions

Day One March 10th 2026

Time	Strategy Theatre	Tech Breakout
8:00	Registration	No Sessions
8:45	Welcome from Cyber Senate Jamison Nesbitt \| Introduction to Chairman Kevin Wood, Thales	No Session
9:00	Rail in the Grey War Jeanette Van Halteren, Managing Consultant, Thales	No Session
9:45	From CyberResilient to Antifragile. How Railway CISOs Can Orchestrate Complexity. Dimitri van Zantvliet, Directeur Cybersecurity / CISO, Dutch Railway \| Nederlandse Spoorwegen	Technical session slot available. Contact marketing@cybersenate.com
10:15	Building Resilient Rail Systems: Leveraging Reference Architecture and IEC 63452 for Cybersecurity Christian Juel-Jensen, Head of Security Engineering and Advisory, Bane NOR & Geir Reset Simonsen, Chief Security Architect, Bane NOR	OT Intrusion Detection Systems – The Journey and Lessons Learnt Petros Tsekouras, Cyber Security Advisory Lead, Transport for London
10:45	Networking Break (One Hour)
11:45	Building a Cyber Risk Assessment Tool for Rail OT Arinder Badyal, Head of Information Security, Transport UK Group & Liam Sterling, Head of Information Technology, Angel Trains	Supplier Management Working Group Discussion Invite only for suppliers. Contact marketing@cybersenate.com
12:15	Digital Risk Assessment in the Engineering Change Process James Woodhouse, Digital Systems Engineer, Angel Trains & Darren Fitzgerald, Chartered Engineer, RSSB	Supplier Management Working Group Discussion Invite only for suppliers. Contact marketing@cybersenate.com
12:45	AI in Rail OT Security: Risks, Opportunities, and the Path Forward Miki Shifman, CTO and Co-Founder, Cylus	Supplier Management Working Group Discussion Invite only for suppliers. Contact marketing@cybersenate.com
13:15	Networking Lunch
14:15	Inside the Threat: Human Risk, Ransomware, and Intelligence Phil Butterworth, Fraud & Investigations Lead, TransPennine Express	Bridging IT and OT: Governance and Cybersecurity in a Secure by Design Framework Gertjan Tamis, Enterprise Architect Cybersecurity, NS / Dutch Railways
14:45	From multiple ISMS (chaos) to one ISMS (tranquility) Amin Ben Karroum, Information Security Architect, Sporveien	Cyber-Hardening Legacy Signalling & Interlocking Systems Francisco Lozano Ovejero, Head of R&D, Enyse
15:15	Networking Break
15:45	Safe Tracks Ahead: 5 years on, rolling stock design evolution Bruno Corasolla, Global Head of Digital Train \| LoB Vehicles, Hitachi Rail	Beyond the Mirror: Achieving Total Onboard Visibility Alex Cowan, CEO, RazorSecure
16:15	The Cyber Resilience Act (CRA): Status, Scope, and Open Questions Eddy Thesee, Vice President Products Cybersecurity, Alstom	Technical session available. Contact marketing@cybersenate.com
16:45	Regulatory Readiness, GBR Bidding & TOC Cyber Assurance Marc Silverwood, Onboard Systems Manager, Northern Trains Limited	Technical session available. Contact marketing@cybersenate.com
17:15	End of Day One

Day Two March 11th 2026

On mobile: swipe left/right to view concurrent sessions

Time	Strategy Theatre	Tech Breakout
8:00	Registration	No Sessions
8:45	Welcome Back from Jamison Nesbitt, Director Cyber Senate and Kevin Wood, Cyber Design Authority, Thales	Closed
9:00	TABLE TOP PANEL EXERCISE: Incident Response Under Pressure Kenny Holmes, Head of Group Cyber Operations, Nuclear Decommissioning Authority Lu Wang, Group SOC Engineering Manager, Nuclear Decommissioning Authority Joseph Mager, Information Security Officer, Nederlandse Spoorwegen	Closed
9:45	Using an AI Toolset to Verify and Assess Cybersecurity Cases Against IEC 63452 Dr Howard Parkinson, Research Fellow, University of Huddersfield	Beyond Safety: Addressing the Security Gap in Railway Software Standards Lucia Capogna, Cybersecurity and Software Assurance Team Leader, Systra
10:15	Cyber Risk or Safety Risk? A Multidisciplinary Approach Jon Torode, Head of Engineering and Asset Performance, RKH Qitarat	Available
10:45	Networking Break
11:15	Roundtables NIS2 Oversight & Supervision David Vonk, Ministry of Infrastructure Antifragile Rail Systems Dimitri van Zantvliet, CISO, Dutch Railway Reference Architecture & IEC 63452 in Practice Christian Juel-Jensen & Geir Reset Simonsen, Bane NOR Cyber Risk in Engineering Change James Woodhouse, Angel Trains Detection, Visibility & Monitoring in Rail OT Miki Shifman, Cylus Building a Cyber Risk Assessment Tool for Rail OT Liam Sterling, Angel Trains From Challenges to Action Shared outcomes with the wider industry	Closed during Roundtables
12:45	Roundtable Outcomes	Closed during Roundtables
13:15	Networking Lunch
14:15	NEW FOR 2026! Crisis Lab: Rail Cyber Response Simulation	Closed
15:15	Networking Break
15:50	End of Day Two

Speakers Corner

NIS2 Oversight & Supervision in Rail
Gallery

NIS2 Oversight & Supervision in Rail

By Jamison Nesbitt|2026-01-26T14:00:42+00:00January 26th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News, Uncategorized|Tags: compliance challenges, cross-border rail, cyber resilience, cyber risk governance, cybersecurity inspection, digital rail systems, ERTMS, ERTMS BL3, EU rail sector, infrastructure protection, legacy rail systems, national competent authorities, NIS2, NIS2 implementation, NIS2 oversight, NIS2 supervision, operational resilience, Rail Cybersecurity, rail operators, rail regulation, rail supervision, rail supply chain, regulatory enforcement, regulatory oversight, safety-critical infrastructure, secure by design, supervisory practices, system upgrades, technology modernisation|

David Vonk Senior [...]

Incident Response Under Pressure: What Rail Can Learn from Mature OT & Safety-Critical Sectors
Gallery

Incident Response Under Pressure: What Rail Can Learn from Mature OT & Safety-Critical Sectors

By Jamison Nesbitt|2026-01-26T13:46:30+00:00January 26th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News, Uncategorized|Tags: Crisis Decision-Making, Critical Infrastructure Security, Cross-Sector Learning, Cyber Incident Management, Cyber-Physical Systems, I’d recommend trimming it down to: incident response, Incident Recovery, incident response, nuclear sector lessons, operational resilience, operational technology security, or a separate inter, or tags aligned only to your Rail Cybersecurity Summit taxonomy, OT Incident Response, OT security governance If you want a shorter / tighter set (e.g. 8–12 tags for performance), OT Security Operations, Rail Cybersecurity, Rail Operations, rail resilience, Rail Safety, safe return to service, safety critical systems, SOC Operations, SOC operations Say the word if you want: tags optimised purely for search|

[...]

Francisco Lozano Ovejero | Head of R&D | Enyse
Gallery

Francisco Lozano Ovejero | Head of R&D | Enyse

By Jamison Nesbitt|2026-01-21T14:28:47+00:00January 21st, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: cybersecurity architecture, cybersecurity resilience, cybersecurity standards, interlocking systems, legacy rail systems, operational resilience, Operational Technology, Rail Cybersecurity, Rail Operations, Rail OT Security, rail performance and safety, rail system architecture, rail system integration, railway cybersecurity, safety critical systems, secure signalling, signalling systems, vulnerability management|

Francisco Lozano Ovejero [...]

Lucia Capogna | Cybersecurity and Software Assurance Team Leader | Visiting Professor in Cybersecurity and Operational Technology | Systra
Gallery

Lucia Capogna | Cybersecurity and Software Assurance Team Leader | Visiting Professor in Cybersecurity and Operational Technology | Systra

By Jamison Nesbitt|2026-01-20T12:15:49+00:00January 20th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: critical infrastructure, cybersecurity, digital risk, railway software, railway standards, railways, regulatory compliance, safety critical systems, safety vs security, secure by design, software assurance, software security|

Lucia Capogna Cybersecurity [...]

Dr Howard Parkinson, Research Fellow, Institute of Railway Research, University of Huddersfield
Gallery

Dr Howard Parkinson, Research Fellow, Institute of Railway Research, University of Huddersfield

By Jamison Nesbitt|2026-01-20T11:53:29+00:00January 20th, 2026|Categories: Cyber Senate News, Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: AI in Cybersecurity, AI risk assessment, AI verification, automated security assessment, critical infrastructure cybersecurity, cyber risk management, cybersecurity assurance, cybersecurity compliance, Cybersecurity Governance, cybersecurity validation, IEC 63452, Rail Cybersecurity, rail digital safety, rail engineering systems, rail operators, rail supply chain security, rail systems security, Railway Cybersecurity Standards, safety critical systems, standards-based security|

Dr Howard Parkinson [...]

AI in Rail OT Security: Risks, Opportunities, and the Path Forward
Gallery

AI in Rail OT Security: Risks, Opportunities, and the Path Forward

By Jamison Nesbitt|2026-01-07T15:45:25+00:00January 7th, 2026|Categories: Rail Cyber Speakers 2026, Rail Cybersecurity News|Tags: AI for Defensive Security, AI in Cybersecurity, AI-Enabled Attacks, Artificial Intelligence Security, Asset Visibility, Automated Exploit Development, critical infrastructure protection, cyber risk management, ERTMS Security, Generative AI Threats, ICS cybersecurity, IEC 62443, Industrial Control Systems Security, Industrial Protocol Security, operational resilience, operational technology security, OT Asset Management, OT Cybersecurity, Rail Cybersecurity, Rail Infrastructure Security, Rail OT Security, Rail Safety Systems, Railway Systems Security, safety critical systems, secure by design, Signalling Systems Security, Train Control Systems, TS 50701, Vulnerability Discovery|

Miki Shifman CTO [...]

12 Next

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.