Cyber Security

Building Resilience, Reducing Risks

19 May 2014 - 09:00 to 20 May 2014 - 15:30

Chatham House, London

New partnerships are required to address critical cyber security issues. Amid competing visions of the future of the internet, how can businesses and states cooperate to secure an open and free internet?

This Chatham House conference will evaluate the emerging landscape of cyber risk and identify the policies, practices and investment required to build global cyber resilience.

Participants from governments, business and civil society will address key questions including:

  • What are the roles and responsibilities of the state?
  • What investment is required to address critical vulnerabilities?
  • How are the private sector demands on government changing?
  • How can the international community build trust?

  • Jaak Aaviksoo

    • Former Minister of Defense (2007-11)
  • David Chinn

    • Director
  • Michael Clarke

    • Director General
  • Nick Fuller

    • EMEA Head of Business Continuity Management
  • Chris Gibson

    • Director
  • Andrew Gracie

    • Executive Director for Resolution
  • Jason Healey

    • Director of Cyber Statecraft Initiative
  • Theresa Hitchens

    • Director
  • Richard Knowlton

    • Group Corporate Security Director
  • Dr Patricia Lewis

    • Research Director, International Security
  • Jane Holl Lute

    • President and Chief Executive Officer
  • David Pollington

    • Director of International Security Relations
  • Steve Purser

    • Head, Core Operations Department
  • James Quinault

    • Director, Office of Cyber Security and Information Assurance
  • Dick Schoof

    • National Coordinator for Counterterrorism and Security
  • Jamie Shea

    • Deputy Assistant Secretary General for Emerging Security Challenges
  • Dr Gabi Siboni

    • Director, Cyber Warfare Program, Institute for National Security Studies (INSS)
  • Sean Watts

    • Professor of Law, Creighton University School of Law and
  • Christopher Painter

    • Coordinator for Cyber Issues

This conference will be held under the Chatham House Rule. Information for journalists
Press can request a press pass using the form below.

 Microsoft logo

If you are interested in becoming a sponsor for this event, please contact George Woodhams on +44 (0)20 7957 5732 or email [email protected].

Epicos logo

Future Intelligence logo


Interfax logo


Police Oracle

 Tech UK logo

If you are interested in becoming a media partner for this event, please contact Zara Berry on +44 (0)20 7957 5756 or email [email protected].


Chatham House

[email protected]

Telephone: +44 (0)20 7957 5729
Fax: +44 (0)20 7957 5710

If you wish to book the venue for your event please phone +44 (0)20 7314 2764

Conference Unit
Chatham House
10 St James's Square


Although we cannot book accommodation for delegates, we have arranged a reduced rate at some nearby hotels, where you can book your own accommodation. Please inform the hotel that you will be attending a conference at Chatham House (The Royal Institute of International Affairs) to qualify for the Institute's reduced rate.

Please note all rates are subject to availability.

Flemings Mayfair
Half Moon Street
London W1J 7BH
Tel: + 44 (0)20 7499 2964
Fax: + 44 (0)20 7499 1817
Standard Single from £199 + VAT

The Cavendish London
81 Jermyn Street
Tel: + 44 (0)20 7930 2111
Fax: + 44 (0)20 7839 2125
Standard Single £205 + VAT

To book The Cavendish online

The Stafford London by Kempinski
St James's Place
Tel: 020 7518 1125
Fax: 020 7493 7121
Standard Single £230 +VAT

Monday 19 May

Overview Session | Shifting Relations in Cyber Security   
09:30 - 11:15

  • What progress have national governments and international organisations made in securing an open, free and global internet?

  • How have recent revelations of state surveillance affected national security approaches?

  • How are public policy approaches to the cyber security of the private sector evolving?

  • Are the private sector demands on government changing?

Chair’s introduction
Dr Patricia Lewis, Research Director, International Security, Chatham House 

Keynote Addresses
Christopher Painter, Coordinator for Cyber Issues, US State Department

Jaak Aaviksoo, Former Minister of Defence 2007-11, Estonia

Questions and discussion     

10:45- 11:15 Refreshments

Session One | Evaluating the Risk
11:15 – 13:15

  • Which state and non-state actors pose the greatest threat to the public and private sector?

  • With limited ability to predict future developments, how can organizations prioritize risks?
  • What challenges are posed by ‘insider threats’ and what is the latest thinking on how to address them?

  • What are the legal rights and responsibilities of businesses to defend against, detect and respond to cyber attacks?

Jamie Shea, Deputy Assistant Secretary General for Emerging Security Challenges, NATO

Richard Knowlton, Group Corporate Security Director, Vodafone

David Chinn, Director, McKinsey and Co

Rosemary Jay, Senior Attorney, Hinton & Williams

Questions and discussion

13:15 – 14:15 Lunch

Session Two | Building Resilience
14:15 – 15:45

This session will assess which processes and mechanisms can enhance cyber resilience at a national, regional and global level. 

  • What is required for a company, government or internet user to be cyber resilient?

  • How can government-industry partnerships enhance cyber resilience?

  • Does current regulation encourage a cyber-resilient private sector?

  • What more is required to incentivise action? 

  • How can privacy concerns around information exchange be resolved?

  • With escalating costs, where should spending be prioritized?

Jane Holl Lute, President and Chief Executive Officer, Council on Cyber Security

James Quinault, Head, UK Office of Cyber Security & Information Assurance (OCSIA), Cabinet Office

Steve Purser, Head Core Operations Department, European Network and Information Security Assurance (ENISA)

David Pollington, Director of International Security Relations, Microsoft

Questions and discussion
15:30 – 16:00 Refreshments

Session Three | Protecting Critical Infrastructure: Lessons from the Financial Sector
16:00 - 17:30

Protecting the financial sector from cyber threats is a priority for governments and businesses alike. This session will focus on recent efforts to enhance cyber resilience in the financial sector and draw out lessons for other areas of critical national infrastructure.

  • What resources are required and what is needed to ensure effective coordination across an industry?

  • What are the respective roles of the private and the public sector? What partnerships are required?

  • What lessons can be learned from recent attack simulations such as the UK’s ‘Waking Shark II’ exercise?

  • Given that ICT systems cross sovereign borders, what cooperation is needed by governments at the international level?

Michael Clarke, Director General, Royal United Service Institute

Andrew Gracie, Executive Director for Resolution, Bank of England   

Nick Fuller, EMEA Head of Business Continuity Management, Credit Suisse

Chris Gibson, Director, CERT-UK

17:30 End of day one and drinks reception hosted by Chatham House


Day Two
Session Four| Evolving State Responsibilities
09:30 - 11:00

  • To what extent does cyber space challenge conventional approaches to interstate relations?

  • How are national doctrines evolving and how are different states developing their cyber capabilities?

  • How are states balancing the development of offensive and defensive capabilities?

  • To what extent do policy approaches take in to account the potential negative repercussions of cyber activity? 

  • Given the challenges of attributing cyber attacks, how can states establish accountability?

  • What principles of international law apply to state activity in the cyber domain?

  • Does a focus on offensive capabilities and espionage come at the expense of protecting citizens and commerce?

High Level Moderated Discussion
Jason Healey, Director of Cyber Statecraft Initiative, Atlantic Council

Sean Watts, Professor of Law, Creighton University School of Law and Senior Fellow, NATO Cooperative Cyber Defence Centre of Excellence

Dr Gabi Siboni, Director, Cyber Warfare Program, Institute for National Security Studies (INSS), Tel Aviv University

Dick Schoof, National Coordinator for Counterterrorism and Security, Ministry of Security and Justice, The Netherlands

11:00 - 11:30 Refreshments


Session Five | Enhancing Trust and Encouraging Cooperation
11:30 - 13:00

The session will consider how to reconcile competing visions of the future of the internet. Participants will consider what action can be taken to enhance trust, articulate norms and use laws to enhance cyber security.

  • What are the limits of cooperation in cyber space? How can governments and business build a shared understanding to enhance trust?

  • There is an emerging consensus on the applicability of international law to cyber space; what consequences will this have for global cyber security?

  • By what mechanisms can international and regional organizations develop shared norms for cyber space?

  • The next 2 billion internet users will come from developing economies. What effect might this have on global cyber security?

Dr Patricia Lewis, Research Director, International Security, Chatham House 

Jane Holl Lute, President and Chief Executive Officer, Council on Cyber Security

Theresa Hitchens, Director, United Nations Institute for Disarmament Research

Questions and discussion

Chair’s Closing Remarks
Dr Patricia Lewis, Research Director, International Security, Chatham House 

13:00 Close of conference and lunch

©The Royal Institute of International Affairs 2014

This conference will offer a unique opportunity to network with senior officials from businesses, government and academic institutions.

Our previous Cyber Security conference saw delegates from the following companies and institutions:

Atkins Global
Australian Defence Staff
BAE Systems plc
Bank of England
Chaire Castex
Chevron Ltd
City University London
Control Risks
European Business School London
Federal Department of Foreign Affairs (Switzerland)
Foreign & Commonwealth Office
Foundation for Multimedia Communications
Freshfields Bruckhaus Deringer
G4S plc
High Commission of Canada
Imperial College London
International Alert
Jersey Financial Services Commission
Kroll Advisory Solutions
Lockheed Martin UK
Malaysian Institute of Defence and Security
Microsoft Corporation
Ministry of Defence
Ministry of Foreign Affairs (Netherlands)
Ministry of Security and Justice
Nominet UK
Nomura International plc
Office of the National Security Adviser, Nigeria
Pricewaterhouse Coopers
Raytheon Systems Limited
Rio Tinto plc
Royal Bank of Scotland (RBS)
Salex ES
Standard Chartered Bank
The Independent Communications Authority of South Africa
Thomson Reuters
University of Glasgow
University of Oxford
University of Warwick