Registration - Open from 9:00 am - Closes at 11:00 am

All delegates must complete their registration process before the 11:00 AM cut-off time. Please arrive in a timely manner to allow for registration and to avoid any inconvenience. Delegates who arrive after the registration deadline will be refused entry to the event.

We appreciate your cooperation in helping us maintain the event's schedule and ensuring that everyone can fully participate in the Identity Access Management Conference. If you have any questions or require assistance, our event staff will be available to assist you with the registration process.

Thank you for your understanding, and we look forward to an insightful and productive event together!

Chair Opening Address (Confirmed)

User authentication is a fundamental and essential element of cyber security and data protection.  However, the resulting user experience can be significantly varied, depending on the specifics of the approaches involved, and the extent to which the users themselves have been guided and supported in the process. The presentation considers the potential challenges inherent in enabling authentication technologies to be used effectively, and potential pitfalls from the user and management perspectives.

This panel will delve into the intricate landscape of security challenges faced by the NHS in managing identities and access. It will explore strategies to address vulnerabilities, mitigate risks, and ensure robust authentication and authorisation processes within the healthcare system.

• Steven Furnell, Professor of Cyber Security, University of Nottingham (Confirmed)
• Sally Berrill, Head of Data Security and Protection, University Hospitals of Northamptonshire (Confirmed)

Main Sponsor - CrowdStrike

Modern Attacks are getting faster and more sophisticated with adversaries like Scattered Spider and Cozy Bear increasingly using valid credentials to move laterally undetected within an organization’s environment. These stealthy identity-based attacks span both on-prem AD and cloud identity providers like Entra ID. Learn how CrowdStrike’s Falcon Identity Protection provides unified identity protection across hybrid identity environments to detect lateral movement, enforce risk-based conditional access and stop identity-based attacks.

Morning Break

Chair Morning Reflection (Confirmed)

Case Study - Sailpoint

Case Study - Bluefort

Synopsis: Join BlueFort Security, a leading Security Solutions Provider, and cybersecurity vendor Silverfort for an insightful session on how their partnership can greatly assist the NHS in navigating the complexities of MFA and IAM requirements outlined in the NCSC Cyber Assessment Framework (CAF) Silverfort’s Unified Identity Protection Platform enhances the NHS's cybersecurity by enforcing adaptive policies and secure access controls across all resources, access interfaces, and users, spanning modern, hybrid, and legacy environments. The session will also showcase how Silverfort successfully supported a large healthcare organisation’s Incident Response effort during a ransomware attack, facilitating a swift and secure recovery. Finally, we will discuss how BlueFort Security, as Silverfort’s premier partner, ensures expert deployment, configuration, and ongoing optimisation to maximize the technology’s value, thereby strengthening the NHS’s overall security resilience.

"Who Are You? Navigating Identity and Access Management in the NHS"

Key Points:

Understanding the Identity Ask in the NHS:

• Explore the unique identity and access management challenges faced by the NHS.
• Identify the key requirements and expectations for a robust identity management system.

Vision for the Future:

• Envision the ideal state of identity management in the NHS.
• Highlight the benefits and potential outcomes of achieving this vision.

The Path to Improvement:

• Outline the strategic steps and practical measures to transition from current practices to desired outcomes.
• Discuss the importance of organisational buy-in, technology adoption, and continuous improvement.

Session Goals:

• To provide a clear understanding of the current identity management landscape within the NHS.
• To inspire attendees with a vision for improved identity and access management.
• To offer practical guidance and a step-by-step approach for achieving enhanced security and efficiency in identity management.

Join Barry Richardson as he shares his expertise and leads you on a journey from identifying current cyber risks to realising a future where identity and access management are seamlessly integrated and highly secure within the NHS.

Case Study - CyberArk

Lunch and Networking

Chair Afternoon Reflection (Confirmed)

Case Study - IGEL

The NHS Cloud Strategy aims to deliver a flexible, cost effective and environmentally sustainable infrastructure. This session will show how a cloud strategy enables a fundamental rethink of the endpoint strategy to deliver on these promises whilst significantly improving security and integrating with IAM, UEM and SASE for a Zero Trust Architecture.  

Atlas Identity and Okta will discuss how Identity Management will play a crucial role in achieving the NHS’s priorities for 2024/25, focused on ensuring secure and efficient access to healthcare systems and data. This involves:

• Enhancing Security: Protecting patient data and healthcare systems from unauthorised access and cyber threats.
• Improving Access: Streamlining the process for healthcare professionals to access necessary information quickly and securely.
• Supporting Integration: Facilitating the seamless integration of various healthcare services and systems, improving overall efficiency.
• Compliance: Ensuring that all identity management practices comply with relevant regulations and standards.

These efforts will help the NHS focus on improving service quality, patient safety, and operational efficiency.

The insider threat can defeat the most sophisticated physical and data access controls. The threat is so significant that effective mitigation requires an organisation-wide culture shift. How to train key personnel to detect and combat the threat.

Hot Buffet Food & Drinks

End of Day