About Genev'Hack 2023

Genev'Hack is the first cybersecurity conference taking place in Geneva, being 100% free and open to all cybersecurity professionals, enthusiasts or students. In partnership with Splunk, the conference will be followed by a defense-oriented contest : Boss of the SOC (aka BOTS).

Event Schedule

Conference schedule , Halle 1 , Geneva Palexpo

06 June 2023 - Afternoon

Registration, welcome Coffee

  • Geneva Palexpo , Centre des congrés
  • 13:00 - 13:15
  • Main Hall

Program of the day, welcome by Hacknowledge

  • Paul SUCH
  • 13:30 - 13:40
  • Main Hall

Join us for Tech4Trust Season 4 Awards Ceremony, in which we will crown the best cybersecurity and digital trust startups for 2022-2023. Four exceptional startups will be honored with awards from our strategic partners, including State of Vaud, PwC Switzerland, Fortinet and the Herbert & Audrey Rosenfield Foundation.

  • TBC
  • 13:40 - 14:10
  • Main Hall

OpenAI and Cybersecurity - A view on generative AI - Generative AI has taken a front seat in our personal and professional lives. During this session, we will discuss what it is, its potential in terms of scenarios and applications as well as the necessary guardrails and practices.

  • William Heurdier
  • 14:15 - 14:45
  • Room G

Nonprofits, with their access to high-risk community data and substantial fundraising, find themselves under constant assault from cyber adversaries. Yet, the scarcity of cyber talent has rendered their defenses feeble. Join this talk as we delve into targeted attacks against nonprofits, unmask nascent initiatives aiding vulnerable populations, and reveal opportunities for immediate hacker engagement.

  • Adrien Ogee
  • 14:15 - 14:45
  • Room F

Securing the Elastic Way: an InfoSec Perspective - The Elastic InfoSec team is responsible for securing Elastic and responding to threats. We use our products everywhere we can — and for more than just logs. By harnessing the power and breadth of capabilities of the Elastic Stack, we are working on tracking risk and performance metrics, threat intelligence, our control framework, and control conformance information within Elastic. Our internal use of the Elastic Security solution has increased the Elastic InfoSec team’s level of visibility and has exponentially expanded its capabilities to more fully empower the broader organization to protect the Elastic enterprise from the threats of today and tomorrow. For our Elastic community of users and customers, this also translates to us delivering a better, leading security solution. We are excited to share our story….

  • Laura Voicu
  • 14:45 - 15:15
  • Halle 1 - Room F

Lessons learned in using force of communities for cybersecurity in particular for operation security

  • Marcel Zumbuehl
  • 14:45 - 15:15
  • Halle 1 - Room G

The Swiss Digital Initiative, a non-profit foundation based in Geneva, aims at bringing ethical principles and values into technologies through concrete projects. SDI has developed the first Digital Trust Label that denotes the trustworthiness of a digital service in clear, visual and plain, non-technical language for everyone to understand. Based on the criteria identified to secure the trustworthiness of services, SDI is launching a movement to raise awareness among businesses and consumers about the importance of digital trust, and how to check it.

  • Fathi Derder
  • 15:15 - 15:45
  • Halle 1 - Room G

ChatOps, ChatGPT, GitOps, cloud native, APIs » get the attention these days. Here is a brief walk through a chatbot proxying ChatGPT in Infomaniak kChat

  • René Luria
  • 15:15 - 15:45
  • Halle 1 - Room F

Discover the power of purple team exercises in improving your blue team's capabilities. Gain insights from industry experts on leveraging collaborative approaches to fortify your defenses against evolving threats. Explore practical techniques for simulating real-world attack scenarios, evaluating vulnerabilities, and refining your incident response strategies.

  • François-Jérome Daniel & Patrick Mkhael
  • 15:45 - 16:16
  • Halle 1 - Room G

During this session we will have a look about enabling defenders to move at the speed and scale of AI and we will introduce the new security vision combining the large language model (LLM based on Open AI) with a unique security-specific model from Microsoft.

  • Frederic Achy
  • 15:45 - 16:15
  • Halle 1 - Room F

coffee break and networking

As organisations look for new business opportunities in an interconnected, data-driven world, they’re increasingly embracing the potential of the Internet of Things (IoT). While this ongoing convergence of information technology (IT), operational technology (OT) and consumer technology (CT) is leading to new capabilities for exploring and using data, it can also create complex security challenges. In this session, Vincent Colonna and Doruntina Jakupi will introduce ways to improve and better monitor OT security.

  • Vincent Colonna and Doruntina Jakupi
  • 16:45 - 17:15
  • Halle 1 - Room F

What should CEOs and boards do in a world where geopolitics and cyber intertwine? In PwC’s 2023 Global Digital Trust Insights survey, CEOs across the world cited a catastrophic cyber-attack as the number one concern for their businesses. However, the survey also revealed that organisations are making progress towards effective cyber strategies. Throughout 2022, we found threat actors demonstrating their agility in reacting and responding to security measures implemented by defenders. For an organisation to stay ahead of an ever-evolving threat landscape it needs an effective threat intelligence capability to know how and why cyber threats are targeting entities in their sector or industry. In this presentation, Johannes Dohren and Danny Breunissen will present the findings of our latest Threat Intelligence report. They’ll also be explaining how maturing your threat intelligence programme will translate into other cost savings and risk reduction as your organisation increasingly implements intelligence-driven cyber strategies.

  • Johannes Dohren and Danny Breunissen
  • 16:45 - 17:15
  • Halle 1 - Room G

In this session, we will show you how standard operating procedure (SOP) can be imported into a SOAR and how the individual tasks can be automated. This reduces manual work, improves quality standards and increases the speed of incident handling.

  • Andreas Buis
  • 17:15 - 17:45
  • Halle 1 - Room F

Resilience in the Age of Automation: How Innovation Can Help Us Overcome Disruption . The past few years have seen organisations have to cope with disruption on a global scale, with business resilience being tested like never before. Disruption can also be a force for good, however, with AI being harnessed to improve resilience by predicting and preventing incidents before they occur, for example. In this talk we will discuss some of the practical considerations for improving your organisational resilience through use of AI and automation.

  • Greg Ainslie-Malik
  • 17:15 - 17:45
  • Halle 1 - Room G

Aperitive and networking

Boss of the SOC is a blue-team jeopardy-style capture-the-flag-esque (CTF) activity where participants use Splunk—and other tools—to answer a variety of questions about security incidents that have occurred in a realistic but fictitious enterprise environment

  • Splunk
  • 18:00 - 21:00
  • Halle 1 - Main Hall

Keywords / #Hashtags #splunk #SOP #SOAR #Automateeverything #speed
Andreas Buis

Andreas Buis is a member of the DACH Sales Engineering team, focused on IT Security with an emphasis on orchestration, automation and response. Starting his career as a developer for internet portals, Andreas has gone through various stations as support (Tier- 2/3), administrator (Windows & Linux) and project manager. He has worked as a systems engineer for various companies since 2012, successfully supporting projects in Germany and abroad. His unconventional handling of the demands in life as in IT is one of his secrets to success. In doing so, he always succeeds in balancing customer requirements with technical conditions. Andreas makes it his highest priority to convey things so that they are understood by all. If he is not busy with processes and python, you can find him in the evenings and at night with his camera as a street photographer — one of his many side hobbies.

Keywords / #Hashtags #splunk
Greg Ainslie-Malik

Greg is a recovering mathematician and part of the technical advisory team at Splunk, specialising in how to get value from machine learning and advanced analytics. Previously the product manager for Splunk’s Machine Learning Toolkit (MLTK) he helped set the strategy for machine learning in the core Splunk platform. A particular career highlight was partnering with the World Economic Forum to provide subject matter expertise on the AI Procurement in a Box project.
Before working at Splunk he spent a number of years with Deloitte and prior to that BAE Systems Detica working as a data scientist. Ahead of getting a proper job he spent way too long at university collecting degrees in maths including a PhD on “Mathematical Analysis of PWM Processes”.
When he is not at work he is usually herding his three young lads around while thinking that work is significantly more relaxing than being at home…

Keywords / #Hashtags #Hacknowledge #PurpleTeam #AdversaryEmulation
François-Jérôme Daniel

François-Jérôme is a confirmed professional with 7 years in the Offensive Security field.
He is leading the Hacknowledge offensive security team.
He has been working on a variety of missions, including Red Team engagements, adversary simulation tests with creative phishing scenarios, as well as all sorts of penetration tests (web application, internal, external, physical, etc.).
He also has experience in incident response, which is an advantage when he has to bypass detection/protection mechanisms.
Eager for knowledge and enthusiast, he participates in online security challenges (CTF) as well as training courses that have allowed him to acquire numerous certifications (OSCP, OSWA, GXPN, GCFA, GREM, etc.).

Keywords / #Hashtags #Hacknowledge #PurpleTeam #AdversaryEmulation
Patrick Mkhael

Patrick is an Offensive & Incident Response Engineer at Hacknowledge Luxembourg.
He holds a Master of Engineering and has a 9-year-background in IT Systems and has specialized for the last 4 years in Cybersecurity.
The deep knowledge acquired in his experiences in the installation and management of IT infrastructures allowed him to be particularly effective in his role in offensive and defensive engineering.
Patrick is today a key element in Hacknowledge offensive security team as he is in charge of purple teaming activities within Hacknowledge and he lead the detection engineering activity.
Keeping his knowledge UpToDate by attending and performing numerous certifications and trainings (SANS FOR508 – SANS SEC699 – CRTE – CPTA – ESCA – CEH – AZ:SC200)

Keywords / #Hashtags #GenerativeAI, #OpenAI, #MicrosoftCopilot
William Heurdier

During his 20 year career, spent in France, Canada and Switzerland, William has had the privilege to work with numerous organizations to become digital and data driven.
Engaging with both business and technical leadership teams, throughout his engagement in consulting, advisory, sales and architecture positions, he has helped them drive transformation, ensuring success through technology design, implementation, and change management.
One of his areas of focus is sustainability, where he is engaged in several internal and external initiatives around AI for good, bringing his technical and advisory skills to nonprofits and other educational organizations.
He has been involved with several agritech initiatives, working with customers and partners to help transform the food and beverage value chain.

Keywords / #Hashtags #GenerativeAI, #Cybersecurity, #MicrosoftCopilot, #SecurityCopilot
Frederic Achy

Frederic started his carreer 15 years ago in cybersecurity industry where he had the opportunity to work in the multiple industry bringing the knowledge and expertise towards customers and partners into their digitization.
Currently he drives conversations with customers about Cloud Security, leading with the multicloud strengths and going deep on how customers can have visibility into their cloud environment and protect their resources in the cloud.
And he also promotes the usage of technology which enable to govern and protect sensitive data across their multi-cloud, multi-platform data estates.

Keywords / #Hashtags #elastic
Laura Voicu

Laura has a PhD in data management and has previously held different positions in roles revolving around data, security and the intersection of the two: enterprise data architecture and governance, data operations, AI and RPA, security architecture and cyber risk quantification. At Elastic she leads the globally distributed security assurance and risk management team and currently focuses her work on exploring the use of data science and machine learning to improve information security assurance.

Keywords / #Hashtags #participativesecurity
Marcel Zumbühl

Marcel Zumbühl is CISO Swiss Post Group and Board Member of Hacknowledge SA. He holds a master degree in computer science with a minor in business administration. After studying at the University of Berne, he worked both in Switzerland and abroad for various companies such as Accenture, Swisscom and Credit Suisse before joining Swiss Post in 2018. Marcel is lecturer at ETH Zurich, HSLU and Bocconi Milano. Since 2020 is Co-President of the Information Security Society Switzerland (ISSS).

Keywords / #Hashtags #fluxcd #gitops #chatops #kchat #infomaniak #kubernetes
René Luria

CTO at Infomaniak, working at Infomaniak for the last 20 years+, tech evangelist and cloud native enthusiast.

Keywords / #Hashtags #digitaltrust
Fathi Derder

Fathi Derder is an economic and political journalist, and a former member of the National Council, the Swiss Parliament (2011 - 2019). As a member of the Committee for Science and Education, he was involved in issues of education, research, technology transfer, as well as the digital transformation of the country. Fathi is currently the Managing Director of the Swiss Digital Initiative, a non-profit foundation that aims at bringing ethical principles and values into technologies through concrete projects. The Swiss Digital Initiative and its partners have developed the first Digital Trust Label that denotes the trustworthiness of a digital service in clear, visual and plain, non-technical language for everyone to understand. With the Label, consumers can be assured of the trustworthiness of the digital service they consume. Swiss at heart, global in ambition: The Foundation is headquartered in Geneva.

Keywords / #Hashtags #Nonprofit #Battlefield #NGO
Adrien Ogee

Adrien began his career teaching piano but found his rhythm programming an obscure building automation protocol in Java Card. With degrees in telecommunication engineering and global security, Adrien spent the next 15 years in various cyber crisis response roles in the private sector, the French government, the EU and the World Economic Forum, before going back to school to get an MBA. Adrien likes to build things that connect people: he is the father of the EU cyber crisis response processes and the Cyber Europe exercise series, the founder of OpenCSAM and co-founder of the CyberPeace Builders. By day, Adrien helps NGOs in cyberspace and by night, builds LEGOs with his kids.

Keywords / #Hashtags OT / Operational technology / Risk monitoring / Risk management
Vincent Colonna

Vincent Colonna is a seasoned security professional with a wealth of experience in supporting Chief Information Security Officers (CISO’s) in their strategic and operational tasks. He helps organisations in various business sectors manage their cyber risks, either assessing the maturity of their security capabilities or assisting them in the implementation of organisational and technical measures to mitigate risks. He has supported many CISO’s in designing their strategies (TOM definition, assessment of capability gaps against best practices), operationalising them and reporting to the management.

Keywords / #Hashtags OT / Operational technology / Risk monitoring / Risk management
Doruntina Jakupi

Doruntina Jakupi is a manager at PwC, where her main focus is on incident response and cybersecurity resilience. She has more than eight years of experience in cybersecurity. In her current role, Doruntina leads large cybersecurity resilience programmes and acts as a crisis manager in major cyber incidents. Her portfolio includes several industry clients with a strong focus on OT security challenges.

Keywords / #Hashtags Threat intelligence / Cybercrime / Cyber threats / Cyber resilience / Cyber defence
Johannes Dohren

Johannes Dohren is the partner who leads the Cyber Resilience and Defence practice at PwC Switzerland. Over the last decade he has gained comprehensive insights into offensive cyber operations and helped companies develop security strategies to protect their most valuable assets. He supports organisations in the development of security strategies and the conceptual as well as practical protection of their information assets. Among other things, he has been responsible for cybersecurity at a financial services company and the attack detection and defence capability at a risk-exposed online portal. He has profound technical knowledge and management experience.

Keywords / #Hashtags Threat intelligence / Cybercrime / Cyber threats / Cyber resilience / Cyber defence
Danny Breunissen

Danny Breunissen recently joined PwC Switzerland’s Cyber Resilience and Defence practice. He participated in various projects in both technical and team lead roles. His technical studies gave him a profound and wide-ranging knowledge of security risk analysis and management, information governance through frameworks such as ITL and ISO27001, security & incident management as well as cloud security.