Discover how to identify, assess, and respond to insider risks before they escalate. In this interactive session, we’ll walk through a real-world scenario, from the moment an alert is triggered to a full investigation, showing best practices for mitigating data leaks, policy violations, and potential security threats.
You’ll learn:
- How insider risk signals are detected and prioritised
- Steps to investigate and remediate incidents effectively
- Strategies to reduce risk while maintaining user trust and compliance
Join us for a hands-on demonstration that brings insider risk management to life and equips you with actionable insights to strengthen your organisation’s security posture.
Session Hosts
Liam Newton
Senior Lead Microsoft Purview Consultant, Bridewell
Aimee Bush
Principal Consultant, Bridewell
Organisations invest significant sums of money to strengthen and protect their systems and data, but many continue to overlook publicly available information that can help attackers to breach their defences. Join us for a fun and engaging workshop that will explore how these risks materialise and the lengths that attackers will go to. No technical knowledge is required!
You’ll learn:
- What OSINT (Open Source Intelligence) is and why attackers use it
- How hackers piece together public data to target critical infrastructure
- Real-world examples of OSINT-driven attacks and their impact
- Practical steps to identify and reduce your organisation’s OSINT exposure
Join us for a fast-paced, engaging session that will challenge your assumptions and show you how attackers think—no technical knowledge required!
Session Hosts
Scott Hudson
Principal Consultant, Bridewell
Emran Ali
Associate Director - Cyber Security, Bridewell
An immersive escape-room challenge where you must work with your team to unravel a coordinated cyber-attack on the national power grid before cascading failures plunge the country into darkness.
Step into a high-stakes, cyber-themed escape room where you and your team must think like attackers to stop a cascading breach before it hits Critical National Infrastructure. Collaborate to solve puzzles inspired by real offensive-security tactics - from cracking suspicious credentials to uncovering leaked documents, decoding ransomware clues, and outsmarting insider threats.
No technical knowledge is required - just sharp thinking, teamwork, and the nerve to beat the clock as you race to uncover the adversary’s path and shut down the attack. This session is perfect for leaders who want to experience the thrill of hacking from the defender’s side.
Session Hosts
Luiz Simpson
Head of Offensive Security, Bridewell
JP Milne
Senior OT Security Specialist, Bridewell
Join us for a strategic discussion on how Continuous Threat Exposure Management (CTEM) is transforming security in Critical National Infrastructure. As IT and OT environments converge, organisations face unprecedented challenges in understanding their attack surface, managing risk, and meeting evolving regulatory demands.
This session moves beyond asset discovery to explore CTEM as an intelligence backbone that connects your entire security ecosystem. Discover how continuous exposure management feeds threat intelligence, empowers SOC teams, informs architecture decisions, and provides evidence-based compliance with NCSC CAF v4 and NIS 2 requirements.
Our CTO will be joined by Armis for an outcome-focused conversation that tackles real-world challenges:
- How do you balance security validation with operational uptime?
- How does CTEM translate technical exposure into board-level business risk?
- What does regulatory compliance look like when it's continuous rather than point-in-time?
Through practical examples and interactive discussion, we'll explore how leading CNI organisations are using CTEM to break down silos, prioritise what matters, and make risk-based decisions that protect both digital assets and physical operations.
Bring your questions - this is a conversation, not a pitch!
Session Hosts
Martin Riley
Chief Technology Officer, Bridewell
Andy Norton
Armis
