As the leading global platform for innovation and digital defence, International Cyber Expo showcased cyberspace as both an invaluable asset and a formidable challenge, driving the future of cybersecurity forward.
The event not only informed but also engaged and empowered visitors, whether they were seasoned cybersecurity suppliers or newcomers navigating the complexities of the digital landscape. Designed to help visitors source solutions to enhance the security and resilience of their businesses and critical infrastructure, the event thrived on its wealth of networking and business opportunities, attracting cybersecurity professionals from across the globe.
With over 7,543 attendees from over 90 countries, a 16% increase from the previous edition, International Cyber Expo at Olympia London showcased 137 pioneering exhibitors, along with more than 120 talks, demos and roundtable discussions. At the heart of the event was the theme of resilience, a critical issue shaping every facet of the industry, from geopolitical tensions to emerging technologies.
Creating a resilient future
Resilience was a central theme at the 2024 International Cyber Expo, where industry leaders, guided by Advisory Council Chair Ciaran Martin, highlighted the need for building hardware that is digitally secure by design as a key step towards a more resilient future. The discussions underscored the importance of regulation, shared responsibility and a vetted supply chain, all essential for ensuring the UK’s resilience.
The increasing overlap between physical and cybersecurity was also addressed, with concerns about a gap in understanding what ‘secure by design’ truly entails, despite its growing significance. As we face new technologies and geopolitical tensions, the summit reinforced the importance of community collaboration to foster a stronger, more resilient future.
The Global Cyber Summit kicked off with a keynote address by Ciaran Martin, titled ‘Navigating the Future: Key Cybersecurity Trends Shaping Our Digital World’. Drawing on his expertise as an Oxford University professor and former CEO of the National Cyber Security Centre, he explored six critical questions that will define cybersecurity in 2025. He captivated the audience with insights on the failures of current cyber deterrence, the urgent need for safer software, the industry’s role in supporting government security, the importance of securing hardware in supply chains, and the looming threat posed by legacy technology.
In his talk, ‘Beyond Gut Feelings: The Science of Cyber Resilience’, NormCyber’s Solutions Consultant Manager, Paul Wilford, debunked common myths surrounding cyber-risk measurement. With the calm confidence that defines NormCyber’s approach, Paul walked attendees through the shift from relying on instinct to adopting a data-driven approach to cyber- resilience. Participants left with practical insights on how to measure, track and report cyber resilience in quantifiable terms, enabling them to demonstrate tangible ROI and progress to their leadership teams.
Steve Sherar, Chief Revenue Officer, NormCyber, said: “At a time when cybersecurity is becoming the backbone of operational resilience – and increasingly, a Board-level responsibility – being able to demonstrate the return on cyberspend is crucial. A clearly defined improvement programme can instil confidence at all levels of the organisation to execute cybersecurity best practices, which can then serve as the springboard for company innovation and even open up new markets.”
“Gaining clarity over cyber-resilience has a compounding effect – helping organisations secure cyberinsurance, avoid ICO fines and reputational damage, and ensure business continuity,” Sherar continues.
The widely debated ‘security by design’ challenge took centre stage during a panel featuring Agata Samojlowicz, Deputy Challenge Director of Digital Security by Design at UK Research and Innovation, Michelle Kradolfer, National SBD Manager at Police CPI, and Jake Verma, Chief Technology Officer at Quantaco.
The panellists discussed how security by design should be the foundational standard for software and hardware development, but all too often, the rush to market takes precedence over security. They explored how we can create a more resilient ecosystem, one that isn’t vulnerable to patching issues and zero-day threats, by prioritising security from the outset. As Samojlowicz emphasised: “Secure software doesn’t exist. By design means fixing hardware,” underscoring the need for suppliers to adopt a security-first mindset.
Rising complexity of cyberthreats and defence
International Cyber Expo highlighted several urgent challenges that organisations are facing in today’s increasingly complex cyberenvironment.
Ray Burke, Cyber Assurance Manager at Toro Solutions, discussed the immense strain that businesses are facing due to the growing sophistication and frequency of cyberattacks. “The current cyber threat landscape is really pushing organisations to their limits,” he noted, emphasising that attackers are using AI to craft more realistic and harder-to-detect threats.
Security teams are not only struggling to keep pace with these advancements but also facing significant hurdles in investigating increasingly complex attacks. Burke also highlighted the broader operational pressures, skills gaps, resource shortages and budget cuts, that compound the difficulty of maintaining robust cyberdefences. “It’s a bit of a double-edged sword,” he said, “with companies needing more investment in cybersecurity just as budgets are being tightened.”
Steve Sherar, Chief Revenue Officer at NormCyber, pointed to another key challenge: the lack of clarity in understanding an organisation’s cyberposture.
“An effective strategy relies on people understanding the level of risk exposure facing their organisation and the steps they can take to plug weaknesses,” Sherar explained. Without this clarity, he warned, cybersecurity operations lose direction, weakening a company’s ability to proactively defend against threats.
For instance, while human risk management programmes can help employees spot phishing attempts, Sherar stressed that, without the confidence and clarity to act decisively, gaps will remain for cybercriminals to exploit.
These challenges illustrate the complex balancing act that organisations must perform as they strive to stay ahead of increasingly sophisticated cyberthreats.
Diversity, skills and career transitions
The new Diversity and Skills Stage quickly became a focal point for progressive discussions. The stage launched with an InClusive InCyber-led panel, hosted by LT Harper, which delved into the value of risk-taking in cybersecurity.
Across two days of engaging conversations, industry leaders gathered to discuss strategies aimed at tackling critical challenges, such as burnout and the growing skills gap. The focus was on empowering people as the key to future-proofing organisations and fostering a more inclusive, resilient industry.
One of the key discussions centred around the concept of risk in cybersecurity, both in terms of decision-making for security teams and career development. During the inaugural InClusive InCyber breakfast event, LT Harper’s Co-Founder Kunjal Tanna and Community Manager Aymun Lashlari led a panel exploring the idea of taking calculated risks in cybersecurity careers. The session highlighted personal stories and bold insights, demonstrating that sometimes, taking a leap of faith can lead to significant growth and opportunity.
Another important conversation revolved around career transitions into cybersecurity. The Pentest People panel sought to dispel the myth that it’s too late to start a career in this field. Michael Keddie, Training Academy Team Leader at Pentest People emphasised the many factors that draw career changers to cybersecurity, challenging work, clear career progression and a thriving job market. “Career changers have to commit time and resources, but once the transition is made, the future is bright,” said Keddie. He stressed that soft skills from previous careers often prove invaluable in cybersecurity, and the industry is collaborative and supportive, with colleagues ready to help newcomers succeed. His advice for aspiring career changers? “Believe in yourself, go for it, but have a plan and stick to it.”
The discussions on the Diversity and Skills Stage underscored the importance of personal growth, resilience, and the value of diverse experiences in shaping the future of cybersecurity.
The future of Ethical Hacking and Cyber Recruitment
In light of Defence Secretary John Healey’s plans to fast-track tech-savvy recruits, including gamers and cyberexperts, into the UK’s military cyberforces to bolster defences against rising threats from Russia, the Hacking Games presentation was particularly timely. The session explored what the future of ethical hacking might look like, offering insight into how the next generation of ‘Cyber Warriors’ could be cultivated from a young age.
According to the panel led by The Hacking Games, we may soon see schools fostering more cyber talent, with reward schemes for positive online behaviours in popular games like Roblox, Minecraft and Fortnite. The discussion also touched on the potential for global campaigns to proactively combat disinformation and misinformation, as well as the gamification of cyberskills to engage young minds. Featuring personal anecdotes from experts with experience on both sides of the hacker divide, the panel provided valuable advice on how to inspire the next generation of ethical hackers.
One of the key challenges raised was the on-going cyberskills shortage, which has been well-documented. However, the panel also highlighted a lesser-known issue, the growing trend of organised crime groups recruiting young hackers, some as young as eight years old. The conversation focused on how to encourage this talent pool to steer away from crime and instead use their skills for the greater good of society. By engaging these young minds early and fostering a positive cyberculture, the panel emphasised that today’s youth have the potential to build a more resilient and secure future.
“International Cyber Expo 2024 has once again demonstrated the incredible drive and collaboration across the cybersecurity industry,” said Rachael Shattock, Event Director – International Cyber Expo.
“From tackling the most pressing global cyberthreats to fostering diversity and skills development, we’ve seen real progress towards building a more resilient digital future. With thought-provoking discussions, innovative solutions and a strong sense of community, this event continues to empower the next generation of cybersecurity professionals and businesses alike. We’re proud to have hosted such a dynamic platform that truly drives the industry forward.”
