Hybrid Event is over

The fallout from CrowdStrike: managing systemic risks in future EU cyber security policy

AI, digitalisation and innovation

When
Tuesday
Where
CEPS & Online
Place du Congrès 1, Brussels, Belgium

This hybrid event is free and open to the public but registration is mandatory.

Hybrid Event

The fallout from CrowdStrike: managing systemic risks in future EU cyber security policy

1

In person event & live on YouTube

Software is an integral part of our critical infrastructure and broader economy. Its resilience is therefore primordial to avoid failures in essential services, financial losses, and vulnerabilities that can be exploited by threat actors. On 19 July, a CrowdStrike software update generated a global digital outage, which led to widespread disruption. As a result, the cyber security industry has been in the public eye more so than ever before, and policymakers across the globe are considering their response to this outage.

While questions still remain, it appears this was a result of a faulty software update largely deployed within the Microsoft operating system, causing crashes across various Windows systems. This incident illustrates the systemic fragility of our core internet infrastructure and the limits stemming from overreliance on a single provider in cyber security. At the same time, this outage showed the limits of many companies and organisations in preventing and responding to systemic outages.

This event will gather policymakers, regulators, cyber security professionals, academics and industry representatives to explore how to mitigate against future risks resulting from global digital outages. It will focus on whether existing frameworks, such as NIS2, the Cyber Resilience Act and Digital Markets Act, provide the right incentives for implementing incremental software updates across critical entities while also enabling contestability and interoperability between critical security technologies.

This event will be followed by a networking lunch

Jointly organized with TRELLIX

Host
Lorenzo Pupillo Lorenzo Pupillo
Lorenzo Pupillo

Associate Senior Research Fellow and Head of the Cybersecurity@CEPS Initiative

Speakers list
Mo Cashman

Field Chief Technology Officer EMEA, Trellix

Bernold Nieuwesteeg

Co-Founder of the Centre for the Law and Economics of Cyber Security, Erasmus University, Rotterdam

Christian D’Cunha

Head of the Cyber Coordination Task Force, DG CNECT, European Commission

Martin Michelot

Executive Director Europe Region, TIC Council

Claudia Canelles Quaroni

Senior Policy Manager at the Computer & Communications Industry Association's Brussel