Name: One year to comply with Part-IS: Key steps and potential pitfalls
Start: 2025-03-13T09:00:00Z
End: 2025-03-13T09:00:57.000Z
Location: BrightTALK
Rating: 4.5


Thales  offer a wider range of solutions to issue and verify identities, grant access to digital services, encrypt data, protect applications, secure digital transactions and counter cyberattacks. We will be providing security and identity webinars across different markets, from financial services to cyberdefence, mobile or automotive  

In the world of critical infrastructure, resilience isn’t just a goal - it’s a necessity.

As operating environments grow more complex and interconnected, the security of supply chains and the clarity of regulatory direction become central to national and organisational stability. 

Join leading experts in Australia from infrastructure operations, cybersecurity, and regulatory affairs as they explore the evolving landscape of critical infrastructure protection and share actionable insights to help organisations prepare for 2026 and beyond. 

In this comprehensive session, our panel will unpack:
The Operating Context of Critical Infrastructure: How evolving threats, interdependencies, and digital transformation are reshaping risk profiles and operational priorities.
Supply Chain Security in Focus: Why visibility, trust, and resilience across supply chains are now board-level concerns and how to address them. 
Regulatory Trajectory into 2026: What’s changing in the regulatory landscape, and how organisations can align with new obligations while maintaining agility. 

Guest Presenters:
Dr. Marthie Grobler, Principal Research Scientist, CSIRO - Data61 
John Moore, Director - Risk Advisory,  Ashurst

Securing Critical Infrastructure: Supply Chains, Regulation & Resilience

Hello Test,

In a cyber incident, speed matters - but so does accuracy. How you communicate can define the outcome. 

Media plays a pivotal role in shaping public perception during cyber incidents and the reputational wash up after an incident. For organisations, the 24/7 media cycle means speed, accuracy and legal obligations need to be balanced with the knowns and unknowns of a cyber incident. These challenges are compacted by third-party breaches and an ever-evolving regulatory landscape. 

Join leading voices from legal, cybersecurity, and media in Australia as they unpack the challenges of crisis communication and share practical strategies to strengthen organisational resilience during cyber incidents. 

The Big Questions We’ll Answer:
The evolving role of journalists - how media shapes the narrative in every cyber breach and how, through planning and preparation, organisations can own the narrative 

Why incident preparedness is non-negotiable - because threat actors don’t discriminate and poor preparation increases reputational damage 

The communication tightrope - balancing transparency with sensitivity and ambiguity under pressure 

Third-party breaches amplify chaos - why clarity and speed are critical

Cyber Crisis Communication: Where Law, Media & Response Converge

AI adoption is accelerating across all sectors and so are the mistakes.
Before many organisations even define their AI strategy, employees are already using public GenAI tools, internally developed AI prototypes are pushed live, and governance struggles to keep up.
In this webinar, Thales AI Security experts guide you through a fictional but highly realistic scenario: the journey of an organisation launching its first internal AI assistant.
What starts as an innovation initiative quickly turns into a series of cascading security incidents: data exposure, prompt manipulation, agent misuse, supply-chain risks, and compliance failures.

From shadow AI to secure AI

La próxima generación de tarjetas de pago ya está aquí, y queremos acompañarte en el camino hacia una opción más sostenible.
Thales tiene el placer de invitarles a un Webinar especial sobre PVC - Free, fabricada con 100% PETG reciclado que elimina la toxicidad del cloro y ofrece una solución más sostenible. Si buscas dar ese salto sostenible, le proponemos conocer más sobre la tarjeta ecológica PVC - Free.

La nueva generación de tarjetas de pago: Tarjeta PVC-Free

A nova geração de cartões de pagamento já chegou e queremos acompanhá-lo(a) nessa jornada rumo a uma opção mais sustentável.
A Thales tem o prazer de convidá-lo(a) para um webinar especial sobre o PVC-Free, fabricado com 100% de PETG reciclado, que elimina a toxicidade do cloro e oferece uma solução muito mais sustentável. Se você busca dar este salto em direção à sustentabilidade, está convidado(a) a conhecer mais sobre o cartão ecológico PVC-Free.

A nova geração de cartões de pagamento: Cartão PVC-Free

The Cyber Threat Intelligence department at Thales presents the Threat Landscape Report for the first half of 2025, which provides a detailed analysis of emerging threats that currently pose significant challenges to the security of both businesses and individuals.
Following an examination of the latest trends in malware, mobile threats, ransomware, and global vulnerabilities highlighted in the report, we will take a deeper dive into the most recent and sophisticated cyber threats specifically targeting critical national infrastructure.
This includes sectors such as finance, energy, defence, healthcare, industry, transportation, aerospace, and telecommunications. Our analysis aims to provide you with actionable insights to help you better understand and anticipate the evolving threat landscape affecting these crucial domains.

Threat landscape report - H1 2025

Traditional SOCs weren’t built for the speed, scale, or complexity of today’s advance threats.

Security teams are further stretched thin by too many alerts, outdated tools, and not enough skilled talent—making it harder to spot threats, respond fast, and stay compliant.

SOC Talent Crisis Is Driving Automation. AI-infused augmentation is becoming essential for cybersecurity resilience and compliance.

Join us for an exclusive webinar as Thales in Australia and Google unveil a modernised, adaptive, and AI-augmented SOC—engineered with Google’s technology backbone and delivered through Thales Cyber Services’ sovereign, security-cleared operations based in Australia.

In this exclusive showcase, you will discover: 
The Delicate State of SOC in 2025: How legacy SOCs are overwhelmed by alert fatigue, fragmented tooling, and a shortage of skilled analysts. 
Why Sovereign-Led Security Matters: How Thales Cyber Services delivers locally hosted, cleared-analyst SOCs that meet Australia’s SOCI Act compliance needs. 
Measurable Outcomes from AI-Augmented SOCs: How Google’s SecOps stack—Chronicle, SOAR, Mandiant, and Gemini—is revolutionising threat detection and response.
Real-World Impact: How Organisations are using Google SecOps to simplify operations and strengthen cyber resilience.
How to Begin Your Journey: Learn how to transition to a sovereign SOC with zero upfront cost, free licensing, and integrated training support from Thales Cyber Services and Google.

Reimagining the SOC: Sovereign, Scalable and Ready for Advance Threats

At Thales in Australia, join Patrick Butler, Director – Emerging Technologies, and Ashur Williams, Cybersecurity Solutions Lead, for a strategic deep dive into Exposure Management—a holistic, attacker-centric approach that goes beyond just scanning and patching.

Learn how Thales is redefining cyber resilience through integrated services, strategic partnerships, and real-world impact.

In this comprehensive session:
• Understand why organisations are moving toward continuous threat exposure management
• Discover how the holistic exposure management strategy powered by consulting, automation, and integration delivers unmatched visibility and control
• Explore how to manage identity, cloud, IoT/OT and other exposures with tailored solutions, from asset discovery right through to external attack surface management and everything in-between
• Learn how to empower security teams to bridge the gap between technical risk and executive decision-making

From Blind Spots to Business Resilience: Exposure Management as a Strategic Imperative

La transformación digital es hoy un pilar fundamental para que los gobiernos locales fortalezcan su gestión, garanticen la seguridad ciudadana y mejoren los servicios públicos.

En este webinar  podrá conocer:
• Cómo las ciudades inteligentes integran seguridad y eficiencia para ser más atractivas.
• La evolución de los Centros de Operaciones de Seguridad (SOC) hacia modelos modernos, escalables y basados en inteligencia de amenazas.
• La importancia de proteger a los ciudadanos en el mundo digital como parte de la seguridad urbana.
• Estrategias para generar confianza a través de la protección de los datos ciudadanos.

Thales es líder mundial en tecnologías avanzadas para los sectores de Defensa, Aeroespacial, Ciberseguridad y Digital. Su cartera de productos y servicios innovadores aborda varios desafíos importantes: soberanía, seguridad, sostenibilidad e inclusión.

El camino hacia una Ciudad Digital y Segura: Innovación para Gobiernos Locales

According to Forrester’s 2025 IAM trends, phishing-resistant authentication and shared risk signals are now essential components of Zero Trust identity strategies. This marks a pivotal shift: Identity is becoming a real-time sensor and response mechanism, not just a gatekeeper.

Join Shelley Godden, Director - Digital Identity, and Kevin Caballero, Principal DFIR Consultant, part of Thales's cyber security business in Australia, for an informative session examining how identity signals can be utilised to detect breaches and anomalies, disrupt adversarial activity, and adapt access controls in real time.

In this comprehensive session, our experts will address:
- How modern breaches exploit legitimate credentials and session tokens?
- Why do static rules and SOC alerts prove insufficient?
- How dynamic identity-based controls close the gap?
- Practical Applications of Identity-Based Defence Strategies: Use Cases

The New Firewall: How Identity Powers Real-Time Cyber Defence

Inside a Critical Cyber Mission: Risk Assessment in Air Traffic Control
Through a real customer use case, you will discover how our teams implemented a comprehensive cyber risk assessment using the EBIOS-RM methodology — a structured approach that helps identify, prioritize and treat risks based on realistic threat scenarios — and aligned it with ISO 27005 and ISO 27001 standards, ensuring both operational continuity and regulatory compliance.

Inside a Critical Cyber Mission: Risk Assessment in Air Traffic Control

Get to know more about Private Networks for your enterprise: https://www.thalesgroup.com/en/market...

This mini-training video will provide a behind-the-scenes technology overview on what makes SIM/eSIMs essential for efficient, secure & optimized Private Network connectivity. Including insights into the three key service areas where the SIM/eSIM excels!

What you'll find in our Connectivity Management and Security with SIM/eSIM Webinar:
00:00 Introduction
00:25 Agenda
00:59 Introduction - Private Networks
05:21 SIM Essentials: Securely & Seamlessly
18:21 Optimising Services; What the SIM can bring

Introduction to Private Networks - Connectivity Managament & Security with eSIM

Ensuring safe, reliable, and on-time Rail, Truck, and Bus Operations

With an increasing reliance on interconnected technologies—from smart tracks and automated trains to connected buses and data-driven traffic management systems—cybersecurity across transportation infrastructure is under constant threat. This webinar will explore the unique challenges of securing these systems, including how to address the integration of legacy systems with new technologies, the role of regulatory frameworks, and the steps needed to protect critical assets. We’ll provide you with practical guidance on developing a comprehensive cybersecurity strategy tailored to the specific needs of the transportation sector.

How cybersecurity keeps transportation running on time?

Face au nombre exponentiel de vulnérabilités divulguées, les équipes Cyber et IT sont confrontées à un risque de submersion devant les listes de correctifs et remédiations à appliquer. La méthode classique de traitement exploitant plusieurs outils différents et déployés sur des périmètres parfois hétérogènes ne permet pas aujourd’hui de traiter correctement le risque, avec pour conséquence une exposition prolongée des actifs vulnérables de l'entreprise aux cyberattaques. 

Au travers de ce webinar, nous vous présenterons comment le VOC opéré par Thales permet la transformation de la gestion des vulnérabilités en un processus centralisé et outillé, extensible à grande échelle, réduisant le nombre de ressources intervenant dans tout le cycle de vie, tout en englobant toutes les phases du traitement des vulnérabilités, depuis l’identification jusqu'à l’assistance à la remédiation.

Vulnerability Operations Center (VOC):  la promesse d'une gestion des vulnérabilités simplifiée

In an era of increasing digital threats, the maritime industry faces unique cybersecurity challenges, from securing vessels at sea with limited connectivity to protecting operational technology (OT) on board and in harbors. As we explore maritime operations, we must recognize the various risks posed by multiple stakeholders, including suppliers and logistics providers. Cyber incidents can disrupt operations, compromise safety, and result in significant financial and reputational damage. Each participant introduces unique vulnerabilities, heightened by the interconnectedness of modern technologies. GPS systems for navigation and communication tools for efficiency are often targeted by cyber threats. 
Understanding these risks and implementing strong security measures are crucial to protecting both individual operations and the integrity of the maritime supply chain. This webinar will explore the evolving cyber threat landscape in the maritime sector, drawing parallels with OT cybersecurity. Based on use cases, our industry experts will discuss innovative strategies to secure maritime assets, mitigate risks, and ensure operational resilience. 
Whether you’re involved in dredging, harbor operations, cruise services, offshore platforms, or commercial maritime transport, this session will provide actionable insights to enhance your cybersecurity posture.

From Ship to Shore: Cyber Defense Tactics for the Modern Maritime Industry

À une époque où les menaces s’intensifient, l'industrie maritime est confrontée à des défis de cybersécurité uniques, allant de la sécurisation des navires en mer avec une connectivité limitée à la protection des technologies opérationnelles (OT et IoT) à bord et dans les ports. Les risques peuvent également provenir des nombreux acteurs impliqués tels que les fournisseurs et les prestataires logistiques et peuvent entrainer la perturbation des activités, compromettre la sécurité, et entraîner des pertes financières ainsi que des atteintes à la réputation. Chaque acteur introduit des vulnérabilités spécifiques, exacerbées par l'interconnexion croissante des technologies modernes (systèmes GPS indispensables à la navigation, outils de communication, etc).
S’appuyant sur des cas d’usages réels, notre expert de la sécurité de l’industrie maritime abordera des stratégies innovantes pour sécuriser les actifs de ce secteur, atténuer les risques et garantir la résilience opérationnelle. Que vous soyez impliqué dans le dragage, la gestion des ports, les plateformes offshore, le transport maritime commercial, ou le secteur des croisières, cette session vous fournira des informations clés pour améliorer votre posture de cybersécurité.

Cybersécurité Maritime : Protéger les Infrastructures et Assurer la Résilience Opérationnelle

System integrators of complex systems, such as those in energy generation, transmission, and distribution, must demonstrate that their systems are secure from the design stage. In the past, we have seen how these critical systems, which directly affect society and have public repercussions, have been targeted by international cybercriminal groups to cause operational disruptions and even economic damage. The compliance process under international regulations or directives such as IEC62443-3-3 or NIS2 ensures the security of systems and their resilience, as well as the availability of an incident response plan to minimize downtime in the event of a critical event such as a cyberattack.
In this webinar, we will explain how we have supported the design of system security and the protection of the complete integration system of a wind farm integrator, implementing the necessary technical measures to meet the regulatory requirements and ensure the system's protection.
Join us and learn how to safeguard critical infrastructure in the energy sector against new digital threats.

Best practices for ensuring Compliance and Security in the Energy sector

Dans un environnement où les cybermenaces sont de plus en plus sophistiquées et fréquentes, il est impératif que les intégrateurs et opérateurs de systèmes complexes de production, de transport et de distribution d'énergie démontrent la sécurité de leurs systèmes dès la phase de conception. Ces infrastructures critiques sont souvent la cible d'attaques menées par des groupes cybercriminels internationaux, cherchant à provoquer des interruptions opérationnelles et des pertes économiques qui affectent non seulement les organisations elles-mêmes, mais aussi les populations qu'elles servent.
Face à ces défis, le processus de conformité selon des normes et réglementations internationales telles que IEC62443-3-3 ou NIS2, joue un rôle crucial. Ces référentiels garantissent non seulement la sécurité et la résilience des systèmes, mais assurent également l’existence d'un plan de réponse aux incidents, indispensable pour minimiser les perturbations en cas d’événements critiques, comme une cyberattaque.
Au cours de ce webinar, nous vous présenterons notre démarche d'accompagnement pour la conception sécurisée des systèmes, en prenant comme étude de cas l'intégration complète du système d'un intégrateur de parcs éoliens. Nous aborderons les mesures techniques qui doivent être mises en place pour répondre aux exigences réglementaires et garantir la protection de ces infrastructures vitales.
Rejoignez-nous pour découvrir comment protéger les infrastructures critiques du secteur de l'énergie face aux nouvelles menaces cyber.

Les clés d'une conception et gouvernance sécurisées pour le secteur de l'énergie

A deep dive into this cyber regulation and operational feedback from an organisation holding approval

Part-IS falls under the European Union Aviation Safety Agency (EASA) regulations, it applies to all organizations holding an approval and to suppliers working with organizations requiring approvals. 
Implementing Part-IS regulation is essential to retain approval for Airports, Airlines, Air Navigation Services Providers &  Aviation Authorities among the Aeronautical industry.

One year to comply with Part-IS: Key steps and potential pitfalls

Cyber Defence

Cyber Attacks

aviation

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

One year to comply with Part-IS: Key steps and potential pitfalls

Presented by

About this talk

Thales Cybersecurity and Digital Identity