Security Leadership 2026: What Keeps CISOs Awake at Night

Session 4: CLOSING PANEL

Security Leadership 2026:

What Keeps CISOs Awake at Night

Watch On Demand

Conference Room 1 – Session 4

Overview:

The day has covered a lot of ground, from geopolitical disruption and AI-powered attacks to regulatory pressure, ransomware resilience and the challenge of protecting critical infrastructure. In this closing panel, security leaders from across Irish industry reflect on what they’ve heard, share what resonates most with their own organisations, and offer a candid perspective on the decisions that will define cybersecurity leadership in the year ahead. Expect honest conversation about skills shortages, board-level expectations, AI governance and what it actually takes to keep an organisation secure in 2026.

Facilitator

Sinead O’Carroll

Editor, The Journal

Sinéad O’Carroll is a journalist, broadcaster and Editor of TheJournal, where she has worked for the past 12 years. She has presented a number of national television and radio shows and is a regular contributor to news, current affairs and sports programmes.

Panelists

Paul C Dwyer

President ICTTF International Cyber Threat Task Force / CEO, Cyber Risk International

Paul C Dwyer is recognised as one of the world’s foremost experts on cyber security, risk and privacy. As CEO of Cyber Risk International he specialises in corporate and enterprise security, development of cyber defence programs, and business operations protection for CRI clients. As founder and President of the ICTTF International Cyber Threat Task Force he is an advocate for diversity in the industry and leads a community of over 30,000 with a common goal to defeat cyber evil.

Michael Conway

Managing Director, Renaissance

Michael is Managing Director of Renaissance, having co-founded Renaissance Contingency Services in 1987 and continuing in the role following its acquisition by Northamber PLC in 2024. He leads the company’s Value-Added Distribution business and manages relationships with over sixty global cybersecurity vendors.He is the founder of CyberExpoIreland and CyberConIreland, and plays a key role in bringing new cyber and compliance technologies to the Irish market. A regular speaker and contributor on cybersecurity, Michael advocates for embedding security into organisational strategy.

He has supported continuity and crisis planning for major organisations across Ireland and the UK. Michael is a Fellow of both the Irish Computer Society and the Emergency Planning Society, a founder member of the Emergency Management Institute Ireland, and an Honorary Fellow of the EMII.

Patrick Burgess

Industry Education Instructor, GTIA

As a co-founder of Nutbourne Ltd, a Managed Service Provider, Patrick collaborates closely with MSPs, businesses and charities to enhance their IT strategies and bolster their security measures. Patrick also founded Clearbenchmark Ltd, a Benchmarking and Roadmap platform which helps Managed Service Providers drive best practice through their clients.

Patrick is also a member of GTIA where he is an Industry Education Instructor speaking across Europe at events supporting GTIA’s message of best practice, collaboration and continuous improvement. His specific areas of interest include Cyber Security, Supply Chain Management, and Client Experience.

As a Chartered member of the British Computer Society (BCS), Patrick frequently offers expert commentary on cyber and IT matters across various media platforms, including television, radio, and print.

Dr. Vivienne Mee

Founder VM Group

Vivienne has worked on large electronic discovery cases both in Ireland and across Europe with various forensic teams. As part of her PhD studies, Vivienne was a member of the Information Security Research Group at the University of Glamorgan. Here she spent a number of years working at their Forensic Laboratory, investigating cybercrimes and latest trends which fed into extensive research with the Serious Organised Crime Agency (SOCA), Ministry of Defence, Defence Science & Technology Labs and UK Security Service (MI5).

Neal Mullen

Chief Information Security Officer, Health Service Executive

Neal Mullen is a seasoned cybersecurity and resilience leader with over three decades of global experience spanning the Healthcare, Manufacturing, Technology, and Retail sectors. As Chief Information Security Officer and National Director of Cybersecurity at Ireland’s Health Service Executive (HSE), Neal leads critical initiatives to strengthen national cyber defence and operational resilience. He is also a Board Advisory Director for the Safehouse Initiative, a not-for-profit organisation working with CISA to streamline the adoption of the NIST Cybersecurity Framework for SMEs.

Cyber Conference 2026

KeyNote:

Power, Politics and AI: The Global Forces Driving Cyber Risk in 2026
Power, Politics and AI: The Global Forces Driving Cyber Risk in 2026

Cybersecurity is no longer just a technology problem; it’s also now a geopolitical one. State-sponsored actors are targeting critical infrastructure with increasing boldness, AI-powered political attacks are testing democratic institutions, and regulatory frameworks around data sovereignty are reshaping how organisations operate across borders. This opening keynote sets the tone for the day by examining the global forces that are driving cyber risk in 2026: from geopolitical disruption and the weaponisation of AI to the shifting regulatory landscape that every Irish organisation needs to navigate.

Watch On Demand

AI IN CYBERSECURITY

Attack, Defend, Govern: The AI Security Playbook
Attack, Defend, Govern: The AI Security Playbook

AI is now embedded in every layer of the cybersecurity landscape. Attackers are using it to launch autonomous operations, generate convincing deepfakes and discover zero-day vulnerabilities at speed. Defenders are building AI-driven SOCs that detect and respond to threats in real time. And organisations everywhere are grappling with shadow AI, model risk and a wave of new regulation including the EU AI Act. This stream brings together security vendors at the cutting edge to address the full AI picture: offensive threats, defensive tools, governance frameworks, workforce readiness and the strategic shifts that will define secure organisations in 2026 and beyond.

Watch On Demand

MSP & CHANNEL

Scaling Security: Building Profitable MSP Practices for 2026
Scaling Security: Building Profitable MSP Practices for 2026

MSPs serve as the frontline defence for hundreds of SMBs while managing their own operational and commercial pressures. This dedicated stream addresses security service delivery models, evolving customer expectations around compliance and cyber insurance, and practical approaches to vendor selection and stack consolidation. Speakers from successful MSPs share what’s working.

Not Available On Demand

DATA & INFRASTRUCTURE DEFENCE

Layered Defence: Protecting Data and Infrastructure Across Your Environment
Layered Defence: Protecting Data and Infrastructure Across Your Environment

No single control point is sufficient, and data remains the ultimate target. This session brings together endpoint, network, cloud and data security perspectives to explore how organisations can build layered defences that work together. We address EDR, next-generation firewalls, cloud workload protection, data discovery, classification and loss prevention, with particular focus on the risks introduced by generative AI adoption, the insider threat challenge, and the operational reality of tool proliferation and alert fatigue.

Watch On Demand

REGULATORY COMPLIANCE & GOVERNANCE

The Compliance Reality Check: What Irish Organisations Actually Need to Do
The Compliance Reality Check: What Irish Organisations Actually Need to Do

The deadlines have passed and regulators are watching. This session moves beyond theory to examine what NIS2 and DORA compliance looks like in practice. We address incident reporting, supply chain risk requirements, board-level accountability and the documentation regulators expect, with lessons from organisations that have been through the process.

Watch On Demand

RANSOMWARE & RESILIENCE

When Prevention Fails: Ransomware, Recovery and Operational Resilience
When Prevention Fails: Ransomware, Recovery and Operational Resilience

The question is no longer whether you’ll face a serious incident but how quickly you can recover. With ransomware attacks increasing in volume and sophistication, this session addresses the full lifecycle from prevention through to containment and recovery. We examine the critical importance of immutable backups, tested recovery procedures, and the often-overlooked challenge of Active Directory restoration.

Watch On Demand

EMERGING THREATS

From Deepfakes to Quantum: The Next Wave of Threats You Need to Prepare for Now
From Deepfakes to Quantum: The Next Wave of Threats You Need to Prepare for Now

Deepfake technology is already being used to impersonate executives and bypass verification. Quantum computing threatens to undermine the encryption we rely on today. And geopolitical shifts are reshaping who is targeting whom and why. This session cuts through the noise to examine the emerging threats that Irish organisations need to take seriously now, not in five years’ time, and provides practical frameworks for building preparedness into your security strategy today.

Not Available On Demand

IDENTITY, DECEPTION & HUMAN RISK

Identity Compromise, Deception and the Human Attack Surface
Identity Compromise, Deception and the Human Attack Surface

Attackers don’t need to find a vulnerability when they can steal a credential or trick a human. From AI-generated phishing that’s virtually indistinguishable from legitimate communication to credential theft, privilege escalation and Active Directory compromise, the most common path into organisations now runs through people and their identities. This session examines how social engineering and identity attacks are converging, why Zero Trust must address both technical controls and human factors, and what practical defences look like when the threat is designed to bypass every instinct your users rely on.

Watch On Demand

Closing Panel:

Security Leadership 2026: What Keeps CISOs Awake at Night
Security Leadership 2026: What Keeps CISOs Awake at Night

The day has covered a lot of ground, from geopolitical disruption and AI-powered attacks to regulatory pressure, ransomware resilience and the challenge of protecting critical infrastructure. In this closing panel, security leaders from across Irish industry reflect on what they’ve heard, share what resonates most with their own organisations, and offer a candid perspective on the decisions that will define cybersecurity leadership in the year ahead. Expect honest conversation about skills shortages, board-level expectations, AI governance and what it actually takes to keep an organisation secure in 2026.

Watch On Demand

Join Our Cyber Ecosystem

Become a part of our growing Cyber Security Ecosystem. We’re Bringing everyone together!

Vendors
+
VARs & MSPs
+
Cyber Experts
+
Attendees Registered Annually
+

©  2026 Cyber Expo Ireland. Built using WordPress and the Highlight Theme