Kenneth Brincat - CEO, Malta Digital Innovation Authority

Bio

Kenneth Brincat is the CEO of the Malta Digital Innovation Authority. With 25 years of experience in management and digital transformation, Kenneth is spearheading MDIA 2.0: A driving force in Malta's digital landscape. He is catalysing the national agenda for responsible and human-centric development of artificial intelligence (AI) and the enabling of cybersecurity across industry. Under Kenneth's leadership the Authority adopted a collaborative approach enabling policymakers, industry experts, and academia to synergize to ensure the optimal and safe uptake of emerging technologies.

Gary Carrera - Governance, Risk and Compliance Leader, Meta

Bio

As a seasoned security and privacy professional with nearly two decades of experience, Gary Carrera has established himself as a trusted leader in the tech industry. With a distinguished career spanning leadership roles at prominent companies like Meta, Apple, and Xerox, he currently serves as a Governance, Risk, and Compliance leader at Meta, overseeing multiple complex data practices programs on a global scale.

Gary's expertise encompasses a wide range of areas, including governance, risk management, compliance strategy, information security across multiple disciplines, privacy and data protection, antitrust and competition, and regulatory engagement. He holds an impressive array of prestigious certifications, including CISM, CISA, CDPSE, CCSP, CCSFP, ISO27001, and ISO9001, demonstrating his deep understanding of these fields.

A passionate advocate for security and data protection excellence, Gary regularly shares his insights through articles and presentations on topics relevant to the tech industry. He is committed to engaging with peers globally, fostering collaboration, and driving innovation in the field.

Session: The role of leadership in driving Digital Transformation

In this session, we will delve into key leadership strategies that ensure successful digital transformation within organisations. Participants will discover how to cultivate a culture that promotes both innovation and security, essential for thriving in today's digital landscape. We will provide actionable insights to help leaders navigate the complexities of digital transformation, drive change and embrace technological advancements effectively.

Onur Korucu - Non-Executive Director at DataRep, Managing Partner at GovernID, Women in Tech Global Ambassador & Council Member, and IAPP Advisory Board Member and Knowledgenet Chapter Chair

Bio

Onur Korucu is a globally recognized expert in cybersecurity, AI governance, and data protection. She is the Managing Partner at GovernID and Non-Executive Director at DataRep, with a multidisciplinary background in technology, law, and emerging tech. Onur advises global organizations on building digital trust, managing complex tech risks, and implementing ethical AI. She is a recipient of the IAPP Privacy Vanguard Award (EMEA) and was named one of the Top 100 Most Powerful People in Tech in Ireland by Business Post. Onur has held senior leadership roles at Microsoft, KPMG, PwC, and Grant Thornton, and actively contributes to academia, industry boards, and global tech policy.

Session: Safeguarding Digital Trust in the Age of AI

In today’s AI-driven economy, digital trust has become a defining factor in business resilience and competitive advantage. This session will explore how organizations can establish robust governance frameworks to mitigate emerging risks such as AI hallucination, cybersecurity threats, and ethical dilemmas in data use. Drawing on global experience, Onur Korucu will offer actionable strategies for leaders to future-proof their operations, enhance transparency, and foster trust in technology-enabled ecosystems.

Uroš Žust - IT Assurance & Advisory Partner at Forvis Mazars (Slovenia)

Bio

Uroš is a partner of IT Assurance and Advisory department at Forvis Mazars, covering Slovenia and the Balkan area. He has over 20 years of experience in the areas of information systems auditing, cyber security, risk management, governance and IT compliance across a wide range of industries, both in Europe and the US, where he lived and worked for 5 years.

As the Slovenian representative of the Slovenian Directors Association, he participated in the revision of the Cybersecurity Risk Oversight Manual for the governing and supervisory bodies of organisations in Europe and its alignment with the revised requirements applicable to them today.

Uroš holds a bachelor’s degree in economics (Business Informatics) from the Faculty of Economics and has also obtained CISA and CISM certifications from ISACA, as well as CISSP and PMP. He is also an accredited trainer for CISA and CISM certifications with ISACA and the current Vice President of ISACA Slovenia. Uroš is a regular presenter and moderator at professional conferences on information and cyber security, both in Slovenia and abroad.

Session: The evolution of Cyber Threat Landscape - Are we ready for what’s coming?

Cybersecurity is an old concept but becoming more and more popular and important throughout the years. As technology advances and companies digitise, the complexity and sophistication of cyber threats evolves as well. The presentation will provide an insight into the evolving cybersecurity threat landscape, highlighting the shifts in cyber threats in recent years and emergence of new attack vectors. We will explore the major trends and cover the typical threats organisations face today, the driving forces behind these changes and how we can build resilience against them. We will also address the uncertainty of the future and what we most likely can expect in coming years.

Oren Hadar - Founder CST-360 and ISACA Israel Chapter President

Bio

Oren Hadar is a seasoned cyber methodology expert with over 25 years of experience in cybersecurity and IT governance. Over the past decade, he played a pivotal role in shaping the cyber defense doctrine of the Israeli Defense Forces (IDF) and contributed to national-level cybersecurity standardization efforts. His work spans across the Israeli National Cyber Directorate, State Comptroller’s Office, government ministries, the Bank of Israel, and international private sector organizations.

Oren is the founder of CST-360, a successful cybersecurity consulting firm that was later acquired by a Big Four firm. He holds a BA in Political Science and International Relations, and holds leading industry certifications including CISA, CISM, CDPSE, and serves as a certified trainer for CCSK and CCAK. A platinum member of ISACA, Oren currently serves as President of the ISACA Israel Chapter, leading the local community in advancing security and governance practices.

Session: Cloud Governance: Navigating Security and Compliance Challenges

Cloud environments offer immense opportunity—but also introduce new layers of complexity when it comes to governance, security, and regulatory compliance. In this session, Oren Hadar will share nation-level insights on building a risk-based cloud governance strategy. Drawing from his experience with government institutions and critical infrastructure, Oren will guide participants through designing effective cloud control frameworks and aligning them with evolving EU regulations, including NIS2 and DORA. Attendees will leave with practical guidance for enhancing cloud resilience and accountability in their organizations.

Tania Postil - Cybersecurity Consultant & Trainer, Make Sense SRL and ISACA Belgium Vice President & Communication Director

Bio

Tania Postil is a seasoned infosecurity consultant and trainer with over 17 years of experience in risk management, governance, information security and no nonsense approach. She leads Make Sense SRL, a Belgium-based firm specializing in practical, business-aligned implementations of standards like ISO 27001, DORA, and NIS2.

Known for her pragmatic and strategic approach, Tania helps organizations bridge the gap between compliance requirements and real-world operational security. Her work spans financial services, public institutions, and logistic sector.

Session: Zero Trust Is Not What You Think: Rethinking Security in a Perimeterless World

Zero Trust is one of the most talked-about strategies in cybersecurity, yet it's also one of the most misunderstood. In this session, Tania Postil will challenge assumptions and expose the hidden risks behind technologies many organizations consider best practices—like SSO, VPNs, and traditional segmentation. This talk will break down the Zero Trust pillars, highlight common pitfalls in hybrid and cloud architectures, and offer a pragmatic roadmap for organizations looking to evolve beyond perimeter-based security.

Olga Troshkova - Group Information Security Manager, Mercell Group

Bio

Olga Troshkova has 17 years of experience in the information- and cybersecurity domain. She has worked in several sectors: maritime, finance, public procurement, and consulting. She has gained experience in various areas, such as incident response, IT auditing, ISMS, including the ISO27001 certification, and defining and implementing security frameworks, processes, and controls.

Olga enjoys working with the entire spectrum of the information security domain: from frameworks, laws, and regulations to the technical solutions, which must follow the standards or guidelines on the one hand and be in accord with the risk picture of a given company on the other. She likes following the common thread from the business goals to security controls and mechanisms. Last but not least, Olga enjoys working with people.

Demostration: Incident Management in a M&A SaaS Organization: our Transformation Journey

This presentation is about sharing our practical case on how we have moved from an inconsistent, "best effort" Incident Management process across the Group to a structured, coherent, and well-communicated approach. I will demonstrate how we established, implemented, and automated the Incident Management process across many SaaS customer-facing platform teams, coming from the acquired companies, and Enterprise IT.

--

Return to Conference Main Page