What is the Cyber Marathon?
The Cyber Marathon is the culmination of years of public engagement aiming to inform the public, businesses, charities and governments on all issues related to online threats, crime and risks.
This engagement was developed to include other aspects of cyber, including industry trends, predictions and information on how different sectors deal and cope (or do not cope, for that matter) with Cyber challenges.
Most people perceive everything that has to do with online threats as a "technical" issue, for "those who understand computers", whereas the truth is that it is more about people, behaviours and states of mind.
This goes for all sectors of our society, from teenagers and pensioners to businesses and charities.
The Cyber Marathon has a plethora of special guests, all experts and specialists in their domains, providing a more comprehensive approach to Cyber Scotland Week, than ever before.
This engagement was developed to include other aspects of cyber, including industry trends, predictions and information on how different sectors deal and cope (or do not cope, for that matter) with Cyber challenges.
Most people perceive everything that has to do with online threats as a "technical" issue, for "those who understand computers", whereas the truth is that it is more about people, behaviours and states of mind.
This goes for all sectors of our society, from teenagers and pensioners to businesses and charities.
The Cyber Marathon has a plethora of special guests, all experts and specialists in their domains, providing a more comprehensive approach to Cyber Scotland Week, than ever before.
Location
Online [Zoom]
Date & Time
February 27-28, 2024.
Event starts at 09:00 GMT on the 27th February and ends 09:00 GMT on the 28th of February 2024.
ATTENTION:
This is a collection of 24 events over 24 hours. You will need to register individually for each of the event you want to join, thus allowing more space for other people.
Event starts at 09:00 GMT on the 27th February and ends 09:00 GMT on the 28th of February 2024.
ATTENTION:
This is a collection of 24 events over 24 hours. You will need to register individually for each of the event you want to join, thus allowing more space for other people.
Countdown to the Cyber Marathon
part of Cyber Scotland Week 2024
Why should you sponsor the Cyber Marathon and help the Scottish SPCA?
Scottish SPCA Sponsors
This space is dedicated to those who sponsored the Cyber Marathon by donating to the Scottish SPCA. The names are listed in the order the donation was made.
Thank you all from the bottom of my heart.
- Zeynep Arslan (LinkedIn)
- Mark Houstin (Linkedin)
- Jay Kirkland
- C.K. (Anonymous)
- Karen Meechan & the ScotlandIS team, CEO, ScotlandIS (LinkedIn)
- Kyle Hutton
- Dafydd Evans
- David Taylor, Head of Cyber Security at BrightSolid (Linkedin)
- Prof Christos Grecos (LinkedIn)
- Mark Frame
- J.B.P. (Anonymous)
- E.W. (Anonymous)
- A.A. (Anonymous)
- Kelda Sinclair
- Adrian Currie
- Lorna Taylor
Thank you all from the bottom of my heart.
- Zeynep Arslan (LinkedIn)
- Mark Houstin (Linkedin)
- Jay Kirkland
- C.K. (Anonymous)
- Karen Meechan & the ScotlandIS team, CEO, ScotlandIS (LinkedIn)
- Kyle Hutton
- Dafydd Evans
- David Taylor, Head of Cyber Security at BrightSolid (Linkedin)
- Prof Christos Grecos (LinkedIn)
- Mark Frame
- J.B.P. (Anonymous)
- E.W. (Anonymous)
- A.A. (Anonymous)
- Kelda Sinclair
- Adrian Currie
- Lorna Taylor
Register for one or more events
Tuesday, 27th February 2024
09:00 AM
GMT
GMT
CSW2024: Cybersecurity Graduate Apprenticeships at Edinburgh Napier University
Join us for our first webinar of the Cyber Marathon, to find out more about the key to bridging Cyber Security skills gaps and unlocking potential in your business – the Graduate Apprenticeships scheme.
Hosting the event will be Scott Killen, Employer Liaison Manager for Graduate Apprenticeships at Edinburgh Napier University.
10:00 AM
GMT
GMT
CSW2024: In conversation with ... Beverly Bowles, Nicola Taylor and David Ferguson (ScotlandIS)
Our second session comprises a unique event. It is three leading personalities (rarely seen together on the same panel) from ScotlandIS [Scotland's defacto professional body for the IT industry].
They are none other than Beverly Bowles (Head of Cyber), Nicola Taylor (COO) and David Ferguson (Head of Data & Cyber Development Lead).
They will talk about ScotlandIS's work with Managed Service Providers, Cyber Cluster, Skills and Development and Space.
This is a unique opportunity to get an all-round update on Scotland's cyber ecosystem.
11:00 AM
GMT
GMT
CSW2024: Get Ready Contestants...
Cary will talk about the race between Blue Team, and Red Team and the value of Incident Response in the GRC context.
Cary is an experienced digital forensics expert and cybersecurity professional. He actively supports clients in projects in Serbia, Indonesia, Malaysia, Hong Kong, Korea, Kenya, Tanzania, South Africa, Jordan, UAE, Cyprus, Italy, the Netherlands, Belgium, Bulgaria, Croatia and the United States of America.
He holds various certifications and has an extensive career ranging from the military to working with law enforcement worldwide.
He provides consultancy on the following services :
* Penetration testing, Ethical Hacking and Computer Forensics
* Assisting legal firms with investigations
* Special projects for Intelligence Agencies, Police and other governmental groups.
* Intelligence systems consultant
12:00 AM
GMT
GMT
CSW2024: Exploring diversity to mitigate the cyber professional shortage
James Kwaan CIPM CISM CISSP is one of the most experienced Intelligence CTI and Incident Response leaders in the banking sector.
He has served as Vice President of ISACA (Scotland chapter) and is currently the President of the (ISC)² Scottish Chapter.
In 2017, he was named Cyber Evangelist of the Year, at the Scottish Cyber Awards.
James will discuss the issue of diversity in the cybersecurity industry and how this diversity can help mitigate the shortage in highly skilled professionals.
13:00
GMT
GMT
CSW2024: Delivering Scotland’s AI Strategy
Steph Wright will give us an overview of Scotland's current AI strategy and talk about the Scottish AI Alliance and its key programmes of work.
Who is Steph Wright:
Steph is currently playing a leading role in the delivery of Scotland's AI Strategy's vision for Scotland to be a leader in the development and use of TRUSTWORTHY, ETHICAL and INCLUSIVE AI.
Co-founder of Diverse AI, working to support and grow diversity in the field of AI.
Listed on 100 Brilliant Women in AI Ethics 2023.
A data science enthusiast with specific experience in the healthcare domain. Especially passionate about the potential of data in improving healthcare for all.
A versatile professional with project and programme expertise in research, events and communications with 20 years of experience in a wide range of sectors including film/TV, the arts, higher education and the technology sector.
14:00
GMT
GMT
CSW2024: On Social Engineering
This presentation is an introduction to Social Engineering, the most important of all cyber threats.
Social Engineering is the art of a criminal who convinces their victims to behave in a way that will help them take advantage of their vulnerabilities to their benefit. Social engineering is found in all aspects of our lives, not only in cyber, but it is often this that makes the news.
Cats, dolls, kettles and websites: all play their role in deceiving you and coming after your most valuable possessions.
You will be scared, but you will get a taste of how bad things are out there, and maybe you will be motivated to change the way you think and the way you behave online.
15:00
GMT
GMT
CSW2024: In conversation with Laura Irvine
Join me with the inimitable Laura Irvine, one of the top data protection lawyers in the country. Laura is a Partner and Head of Regulatory Law at Davidson Chalmers Stewart LLP and an Accredited Specialist in Data Protection Law.
Laura will talk about why data protection is not only about security - some of her reflections on why she thinks there is too much focus on security and not enough on fairness and transparency.
After a 20-minute presentation, she will talk about the principles of fairness and transparency.
About Laura Irvine
Laura is a regulatory lawyer, a criminal solicitor advocate and is accredited by the Law Society of Scotland as a specialist in Data Protection Law. She wrote the Guide to the GDPR for the Society and works across all sectors helping organisations comply with data protection laws.
She also assists clients in relation to contentious mattes when the regulator gets involved or compensation claims arise. Laura also advises on cyber security issues. Laura leads the session on data protection for TCPD Module 1.
16:00
GMT
GMT
CSW2024: Understanding Risk in your Digital Supply Chain.
Jacob Duane is a young, up-and-coming cybersecurity professional, the founder and CEO of Stellastra, a cybersecurity comparison platform.
Jacob will talk about understanding risk in your digital supply chain. A very important area of cybersecurity that is often overlooked.
Join me and Jacob for a deep dive into supply chain vulnerabilities and high-risk attitudes.
17:00
GMT
GMT
CSW2024: Cyber Intelligence & Digital Forensics
Eng Selene Giupponi will join the Cyber Marathon and will share her vast experience in digital forensics and cyber investigations. She has been working tirelessly in the field and is an authority in giving expert evidence and opinion in Italian courts.
Today she will talk about Cyber Intelligence and Digital Forensics. These two topics often complement each other and often source information from each other, to achieve their objectives. Selene will talk about the differences and common denominators for us.
Who is Eng Selene Giupponi?
Eng. Selene Giupponi is one of the (very) few ladies involved in Digital Forensics and Cyber Security Investigations.
She graduated in Computer Engineering at Università La Sapienza in Rome, while working on many digital forensic investigations, during and after her academic studies. Then she graduated in Computer Forensics & Digital Investigations with the Italian Cyber Crime Police (Min. of Interiors) over the very same year.
Selene is a consultant and Law Court Expert Witness in those criminal cases where DF is called in. She has been a speaker and trainer at different Digital Underground and Cybersecurity conferences, as well as a teacher at various Universities, MoDs and Law Enforcement agencies in Italy and abroad. She has been a consultant for Swascan since it was founded.
Currently, Selene is Managing Director (Europe) at Resecurity Inc., a security company which does undercover investigations on the DarkWeb.
She’s been a member of the Council of Women4Cyber (EU) since Dec 2020 and one of the founder members of the W4C Italy Chapter. Secretary General Women4Cyber Italy.
18:00
GMT
GMT
CSW2024: Responding to the ever-evolving threat landscape
The Secureworks CTU Threat Research team is tasked with understanding the world of cyber badness, allowing Secureworks to best inform and protect our clients.
Today we are honoured to have Don Smith to talk to us about their highly specialised work.
In this session Don will discuss his team's observations on the threat landscape, both the evolving tactics and techniques of advanced threat actors as well as financially motivated criminals. Don will also include a short look behind the scenes of a global threat research team that just happens to be led out of Edinburgh.
About Don
Don Smith leads the CTU Threat Research group: a global team of experienced threat analysts who, through the application of established intelligence practices, deliver actionable and timely intelligence products on the threats most relevant to Secureworks clients. Don joined Secureworks in 2005 and, since then, has been instrumental in establishing a CTU presence in EMEA and building important relationships for Secureworks in the region. Don has 29 years of experience in the IT industry and was previously responsible for security architecture and operations for a multi-billion enterprise, where he took a lead role in successfully integrating 14 acquisitions. Don’s first exposure to security was in 1991 responding to an intrusion at a UK University.
He is a recognized subject-matter expert in many areas of cybersecurity and advises Secureworks and Secureworks’ clients globally, with first-hand experience with many significant cybersecurity incidents. Don is the industry co-chair of the Strategic Cyber Industry Group in the National Cybercrime Unit at the UK National Crime Agency and a member of the UK National Cyber Advisory Board.
19:00
GMT
GMT
CSW2024: Neurodiversity & Cyber. A match made in heaven?
Christine Eckford is an amazing individual and a dear friend. Today she will talk about neurodiversity and how being neurodivergent affected her studies (at Edinburgh Napier University, where she completed her BEng in Cyber Security & Digital Forensics), paving the way for her career as a lecturer at West Lothian College and as a co-founder & CEO of the charity "Citizens of Cyber". She will talk about why neurodivergent people may be the best fit in certain cyber roles, and why inclusion in the sector will only make us safer and better off.
About Christine
Christine has a long and diverse experience working for West Lothian College, Digital Made Easy, The National Trust and Project Scotland.
She started with her HND in West Lothian College, moved to Edinburgh Napier University to study for her BEng in Cybersecurity & Digital Forensics, and completed the circle by coming back to WLC as a lecturer!
20:00
GMT
GMT
CSW2024: Gaming industry in Scotland
Brian will give us his views on the growing and ever-changing gaming industry. His experience in the Scottish market will provide an invaluable insight on the challenges, dynamics and opportunities of a sector that is often overlooked and misrepresented.
About Brian Baglow FRSA
Brian Baglow is a 20-year veteran of the global interactive media and video games industries, who has worked with some of the world's leading digital technology companies - and run several of his own.
He is an executive, leader, creator, designer, ambassador, advocate, speaker, supporter, lecturer, writer, communicator and expert on the rapidly evolving interactive, digital and creative industries.
He has worked with over 150 companies in the last ten years, in-house and as an independent consultant, helping companies to start up, find funding, develop games, establish brands, organise events, design apps, educate a new market, launch products, build a profile, meet the right people and make things happen.
In 2006 he created the Scottish Games Network, the only inclusive community and focal point for the rapidly evolving interactive sector in Scotland.
He now works with creative companies across the board, from video games, digital media, technology, film, and television to music, performing arts and the wider creative industries.
21:00
GMT
GMT
CSW2024: In Conversation with Sharon Moore MBE
Sharon Moore MBE is joining the Cyber Marathon for a one-on-one conversation about technology, change, government and citizenship.
About Sharon Moore MBE
Sharon Moore MBE, has set her life's mission in transforming public service with technology; her purpose is to make a difference, for the better. She helps the Government do better for citizens, and she drives change for good in the tech industry; she is currently doing this as IBM Technology’s Global CTO for Government.
She has 20+ years of experience working in outsourcing, consulting, and sales, across multiple sectors and diverse technologies. She was instrumental in the inaugural UK Government and IBM Memorandum of Understanding for Cloud in 2020. You’ll often find her on stage championing the positive impact of technology, shaping its role in making government work, and advocating for responsible technical advancement. She is also a Chartered IT Professional.
Sharon is a catalyst for change in inclusion through BCSWomen, formerly through Scotland Women in Technology, and other organisations, and is a published co-author on the subject. She was awarded her MBE in the Queen’s Birthday Honours in June 2018.
She is a Trustee of BCS, the Chartered Institute for IT and a non-executive Director of CTS.
She was recently listed in the Computing IT Leaders 100 for 2022 and the Computer Weekly Most Influential Women in UK Tech Hall of Fame, having been included in its top 50 since 2018.
22:00 GMT
CSW2024: Weird Tales from the vault of cyber
Weird Tales from the vault of cyber. What can be learned from previous attacks and future trends?
Mark is going to talk about how businesses can (or often do not) learn from cyber attacks, data breaches and the study of future trends.
About Mark Mitchell
Mark Mitchell is educated to a University Research master's Degree level and vendor-qualified IT professional with over 24 years of experience in the telecoms and data industry. He is a highly experienced senior manager. Some of his competencies (to name a few) include: Network & Systems Security, Unified Communications, cyber security, Office 365 deployment, Virtualisation environments, Data Security, ISO 27001 and GDPR compliance, Big Data Systems, Content Delivery Systems, HPC and HTP Systems Design & Support, Integration & Maintenance, Business Impact Analysis, Regulatory Adherence, Massive Scale distributed data systems, International Reporting responsibility to academic, industrial and governmental groups.
Mark's work experience includes big names like Fortinet, Checkpoint, Glasgow International Airport, Vodafone and the University of Glasgow.
23:00 GMT
CSW2024: In Conversation with Christopher Church (INTERPOL)
Christopher Church has been working in the field of phone forensics since 2005, dealing with national and international cases. He has specialized in Drones and Car Cyber threats/forensics for the last three years. He has gained a reputation for innovation in the forensics field as well as hosting innovative conferences that look at specific issues and challenges to law enforcement and industry.
He is also lead in iPhone and Android forensics.
He manages investigations into mobile applications that have been installed from the application stores and the evidential possibilities these applications contain.
Christopher is an Expert Witness, providing evidence in court and he is:
- Lead for Drones and CUAS at INTERPOL
- Head of ENLETS Drone Forensic Technology Interest Group
- Lead for INTERPOL Metaverse Metaverse Forensics Group
- Package leader at Project Courageous - An EU Security Funded Program to develop a Framework for the assessment, selection and testing of CUAS for Law Enforcement
His work is to assist 195 member countries of INTERPOL in understanding the new risks and threats from technology. Once a change has been identified, he will collaborate with industry and law enforcement to establish a shared understanding and process to tackle the issue.
Wednesday, 28th February 2024
00:00 AM
CSW2024: Bulletproof Forensics: Planning & Executing Private Search Orders
Mark Cunningham-Dickie is a seasoned digital forensics and Incident Response Expert.
Mark's experience comes from a career of more than 15 years at different police posts in Scotland, the SBRC and now Quorum Cyber.
About Mark
Mark deals with cyber incidents all over the world. Cloud computing and remote working have enabled Incidents to be managed and investigated from pretty much anywhere in the world; though he confesses that during particularly severe incidents having a presence on-site is useful for both parties and helps the humans involved to understand and recover, not just the machine (Never underestimate the power of physical being there for a distressed human or organisation).
And this is what he enjoys: Being there to help people. Working through the phases of incident response, making sure that whatever has happened is isolated appropriately while making sure that the impacted organisation can continue to function as much as possible. He works long hours wading through logs, analysing memory and disk images, pulling apart malware and obfuscated code, understanding timelines, and finding answers to questions like: how did they get in? what did they do? Are there any persistence mechanisms? What else is compromised? Is everything contained? how can we remove or repair the damage done? who was the threat actor?....etc…etc…
Mark leads a small but brilliant and dedicated team of Incident Response and Digital Forensic Consultants and pulls analysts from the SOC (when/where possible) to help train them in incident response and forensic techniques so that they can develop and gain greater understanding and insight into the impacts of the alerts they see and open up potential career path progression.
01:00 AM
CSW2024: Health informatics and wearable technologies
Dr Adrian Smales is joining me for an in-depth discussion on all things wearable and IoT. He has a long research history in Health Informatics (he received his PhD from Edinburgh Napier University) and he is currently working at the National Robotarium at Heriot-Watt University.
About Dr Adrian Smales
Adrian has a vast pool of business experience, including the Natural History Museum, National Trust of Scotland, Borders Council, Simplcare, Edinburgh Napier University and now at the National Robotarium.
His combined experience in the industry and especially in Healthcare, coupled with his PhD and his MBA, make Adrian an extremely competent scientist, a problem solver; someone who will think outside the box and come up with more than one solution to a problem.
Adrian has a natural skill in communicating and disseminating knowledge and that is something appreciated by anyone who had the luck to be in one of his classes.
02:00 AM
CSW2024: OSINT Check your Digital Footprint
This presentation is an introduction to Open Source INTelligence (OSINT), a selection of methodologies used in online investigations. This short presentation will give you an idea about how researchers and law enforcement investigate crimes online, as well as how criminals find information about you, and how your Digital Footprint (the things you posted online, but also the things other people posted online about you) are coming back to haunt you.
03:00 AM
CSW2024: On Cyber Stalking
This presentation is an introduction to Cyber Stalking, a different kind of perverted crime, that has moved from the physical to the cyber world.
Cyber stalking takes online crime to the next level, further than financial losses or embarrassment. Cyberstalking victims live in fear for their lives.
Cyberstalkers destroy people's lives, their mental health and peace, and in extreme cases they lead their desperate victims to take their own lives.
Find out more about this plague and how you can spot the signs and how you can protect yourself and your loved ones.
04:00 AM
CSW2024: Blurring the lines: Physical and Cyber Crime
In the modern digital age, the boundaries between physical and cyber realms have become increasingly blurred. As technology continues to evolve, so do the methods and avenues through which criminal activities manifest. The distinction between traditional physical crime and cybercrime is becoming less defined, with a growing intersection between the two domains. Understanding the differences and overlaps between physical and cybercrime is crucial for effective law enforcement and policymaking in the digital era.
At their core, physical and cybercrime differ in their execution and medium, yet both share the common objective of illicit gain or harm. Physical crimes typically involve tangible actions or tangible assets, such as robbery, assault, or vandalism, whereas cybercrimes occur in the virtual space, encompassing activities like hacking, phishing, and identity theft. While the means and tools may differ, the motives driving both types of crime often remain consistent: financial gain, personal vendettas, or ideological agendas.
The distinction between physical and cybercrime is becoming increasingly nuanced as technology continues to advance. The convergence of these two realms presents new challenges and opportunities for law enforcement, necessitating a multifaceted approach to combatting crime effectively. By understanding the intersections and overlaps between physical and cybercrime, policymakers and law enforcement agencies can develop strategies to address emerging threats and safeguard society in the digital age.
05:00 AM
CSW2024: On Fake News, Deep Fakes and Synthetic Media
Fake News is not something new. It is a concept that existed since ancient times. Disinformation and misinformation were tools used to deceive rivals, from personal competitors to hostile states.
It was elevated to an art in the 19th and 20th centuries, in the form of propaganda and disinformation, from times of peace to times of war.
It is now that these issues are exploding in exponential ways, so fast and so intense that we cannot even follow developments.
Today we are going to talk about three related issues: fake news, deep fakes and synthetic media.
06:00 AM
CSW2024: In Conversation with Annabel Turner
Annabel Turner is passionate about protecting children online.
She practised as a barrister for 10 years specialising in cases involving child protection, non-accidental injury to children and child sexual abuse.
In 2016 she worked with the International Justice Mission on their Not on My Screen campaign and that changed the course of her life. Initially, she was working to protect children in the Philippines, abuse of whom was being live-streamed back to the UK. Then she led the research into case law and legislation in Scotland, working with a wide range of stakeholders (including the Scottish Government and Police Scotland 🏴), while in parallel developing a full understanding of the opportunities and challenges in the landscape nationally, in relation to child trafficking, online child sexual exploitation and abuse.
With IJM’s support, she founded Cybersafe Scotland which partnered with local councils to begin the process of understanding the digital landscape through the eyes of the children who are most at risk of exploitation and abuse—simultaneously developing approaches to support their digital literacy wherever they lack that support.
She became Chair of the Child Exploitation Group for the Child Protection Partnership in 2018. This is a multi-agency partnership between the Police, Health, Education, CSW and Third Sector. She has led the development of data across the partnership and guidance around CSE, Child Trafficking and Child Criminal Exploitation.
07:00 AM
CSW2024: On Cyberbullying & Doxing
Cyberbullying is the harassment of an individual or a group of people online. It is an abusive and often illegal behaviour that can have grave consequences.
Doxing (or Doxxing) is the publishing of private information about an individual without their will and consent.
Although Doxing is not always technically illegal, it may be the trigger for committing other serious and violent crimes and can be prosecuted in many jurisdictions.
This short session will help you identify some of the basic behaviours of cyberbullying and help you understand what happens and what your choices are when doxing occurs.
08:00 AM
CSW2024: Approaching the Finish Line.
There is a saying that’s commonly used, it’s a marathon and not a sprint. In the world of cyber this saying also applies. Keith has decided, at 47 years of dedicated public service, that he has gone beyond the 42k that makes up a Marathon and is now in Ultra territory and it’s nearly time to retire and take it easy.
His interest in cyber like his interest in distance running came late in his career, He considers himself a non-traditionalist and has held the self-acclaimed title of Cyber Resilience Integrator which reflects his views on his role.
In the session, Keith reflects on his career through policing and into cyber the changes and challenges encountered over the years and his thoughts on the future.
About Basil Manoussos
Expert Witness, Digital Evidence & Cybercrime
Basil Manoussos is a seasoned Digital Forensics & Cybercrime Consultant, with 15 years of professional experience in Digital Evidence. Basil is also the Manager of the Cyber Academy at Edinburgh Napier University.
He is a Member of the BCS Influence Board. He is also a non-solicitor member of the Privacy Law Subcommittee and the Technology Law and Practice Committee at the Law Society of Scotland. Basil has designed and delivered the Society's Cybersecurity Certification, the only one of its kind for solicitors in the UK.
He has contributed to INTERPOL's Projects LEADER & SIRIUS as a guest speaker and participated in transnational exercises and mock trials. He is a regular keynote speaker at conferences around the world, and a regular guest speaker to universities and colleges, including UCL, Robert Gordon, Glasgow Uni, the University of Strathclyde (where he obtained his MSc in Forensic Informatics), University of West of Scotland, various colleges and the American College of Greece (his alma mater).
He is a visiting lecturer at Sheffield Hallam University, West Lothian College and has served in delivering training to postgraduate law students at the Catholic University of Lyon (UCLy).
Basil has won the Best Educator Award (2023) at the PICCASO Privacy Awards, and he has been a finalist at the Scottish Cyber Awards in 2018 and 2019 (Cyber Evangelist of the Year) and 2023 (Community Award).
Basil's Profiles
