Agenda

As the global security environment becomes increasingly volatile, cyberspace has emerged as a critical domain shaping geopolitical competition, national stability and societal resilience. In the context of ongoing conflicts, hybrid threats, and rapid technological change, cybersecurity and trusted digital solutions are no longer technical enablers but strategic assets. This panel/session explores how governments, industry, and international partners can align their approaches to cyber resilience in 2026–2027, transforming national capabilities into a shared security advantage. Drawing on lessons from Ukraine’s experience, the discussion will examine the role of secure technologies, cross-border cooperation, and trusted partnerships in countering hybrid aggression and reinforcing the resilience of democratic societies in an increasingly fragmented global order.

This panel will address the evolution of international cooperation amidst global cyber warfare. The discussion will focus on transitioning from political declarations to tangible deterrence mechanisms, exploring how diplomatic coalitions can effectively enforce sanctions and uphold stability in cyberspace. The session will also address secure-by-design exportability and trusted supply chains that support U.S. commercial and security interests.

Ukraine serves as a real-time laboratory where the next generation of global tech giants is being forged. This panel will focus on the evolution of dual-use technologies, analyzing how rapid wartime adaptation creates unique competitive advantages for businesses on the global stage and drives the demand for security-first innovations. Focus will be placed on measurable priorities such as safeguarding life‑saving information, emergency services continuity, and institutional trust during outages.

Rapid geopolitical shifts and Russia’s sustained use of disinformation have blurred the boundaries between cyber operations and psychological influence, reshaping the modern threat landscape. This panel examines how coordinated cyber activities, information manipulation, and narrative warfare are used to exert psychological pressure on societies, institutions, and decision-makers. Drawing on Ukraine’s frontline experience, experts will discuss how cybersecurity frameworks can be expanded to address cognitive threats, strengthen societal resilience, and protect the information domain. The discussion will also explore the role of trusted technologies, public-private cooperation, and international partnerships in countering disinformation as a core element of hybrid aggression. The panel will highlight long-term reliance on trusted vendors, PRC/RU supply-chain risks, resilient last‑mile and backhaul connectivity, and redundancy planning, including satellite solutions where appropriate.

Reliable and secure communications have become a foundational element of national resilience, enabling civilian connectivity, emergency response and strategic coordination under conditions of constant physical and cyber disruption. In Ukraine, telecommunications infrastructure is exposed daily to kinetic attacks, cyber intrusions and hybrid interference, underscoring the need for comprehensive, multi-layered security across networks, data transmission, and access technologies. This panel explores how secure telecom solutions—including 5G, resilient network architectures, and trusted encryption—can be deployed and protected in high-risk environments. The discussion will highlight the critical role of government leadership, private-sector innovation, and international expertise in strengthening secure connectivity as a pillar of national and regional security. A dedicated segment will explore how to enhance or establish new mechanisms for timely and trusted threat intelligence sharing.

This session is dedicated to a deep dive into cyber threat evolution viewed through the lens of real-world incidents and intelligence reports. Threat analysts from both public and private sector focus on identifying emerging attack vectors, analyzing APT group activity, and modeling forecasts essential for proactive infrastructure defense.

As hybrid threats evolve, the focus of attack is shifting from physical infrastructure to decision-making processes and public perception. This session combines strategic insights and expert dialogue on countering next-generation FIMI, focusing on the practical application of advanced AI tools for detecting hostile narratives, attributing botnets, and forecasting information attacks. We will analyze emerging tactics in psychological operations and define the priorities for building national resilience.

In the era of AI-Native conflicts, the battlefield is transforming into a contest of algorithms, where the cybersecurity of military platforms is a critical survival factor. Experts will discuss the specifics of securing drone command and control systems amidst EW and cyber attacks, sharing Ukraine's unique experience in countering an adversary that also targets production lines and supply chains. Case studies from Kyiv will be used to demonstrate rapid restoration and recovery under active threat conditions. The discussion will be defensively anchored, focusing on AI‑enabled protection of critical infrastructure and the security of autonomous systems, avoiding kinetic framing.

This session examines the escalating sophistication of attacks targeting Operational Technology (OT), specifically within the energy and telecommunication sectors. Experts will discuss advanced defensive architectures for securing industrial control systems, methodologies for managing complex supply chain risks, and strategies for rapid service restoration amidst a permanent crisis environment.

Workforce development is the cornerstone of national security in the age of AI and hybrid threats. This session focuses on building a comprehensive training ecosystem that includes pipeline development for critical infrastructure defense, women’s leadership initiatives, and strategic veteran reskilling programs to bolster the cyber frontline. Operator needs—including OT defenders, incident commanders, and municipal SOC teams—will be explicitly incorporated.

International donors and implementers, and trusted technology providers play a critical role in strengthening Ukraine’s cyber and digital resilience amid sustained hybrid aggression. This panel highlights how donor-funded programs are translated into practical, scalable solutions—protecting critical infrastructure, government systems, and key economic sectors. The discussion will examine how harmonized efforts among donors, implementers and national stakeholders reduce fragmentation, maximize impact, and accelerate the adoption of best-in-class cybersecurity solutions. Panelists will also explore emerging opportunities for deeper collaboration and future implementation to secure Ukraine’s digital perimeters and reinforce long-term resilience across all sectors. Private sector technology providers will be integrated into coordination efforts alongside donors and government stakeholders, with emphasis on trusted procurement, shared frameworks, and scalable implementation.

This session provides a comprehensive analysis of the virtual asset ecosystem, bridging the gap between legislative frameworks and technical enforcement. Experts will discuss the harmonization of global and Ukrainian regulation alongside the practical application of blockchain forensics to detect sanctions evasion. Key topics include de-anonymizing illicit flows, utilizing advanced monitoring tools, and implementing strategies to prevent crypto-assets from serving as a financial backdoor for aggressors. The session will be anchored to sanctions evasion detection and enforcement, rather than general cryptocurrency discussions.

This specialized thematic area focuses on the direct experience of Ukrainian experts and practitioners who are safeguarding critical infrastructure during full-scale war under shelling and cyberattacks. Participants will gain practical knowledge, insights, and strategies to enhance resilience against physical attacks, cyberattacks, and information operations — threats faced daily by Ukraine’s energy, communication, transport, and government sectors.

A hands-on walkthrough of the entire incident lifecycle: from detecting initial anomalies to the final after-action report. Participants will master rapid containment techniques to stop threat propagation, proper forensic evidence collection procedures, data recovery techniques, business operations restoration, and the essential coordination protocols between technical teams and management during a crisis.

Running alongside the Forum, the Expo serves as a strategic hub for fostering partnerships between Ukrainian startups and tech leaders from allied nations. This exhibition accelerates the development of AI and cybersecurity technologies, offering EU and US companies a prime opportunity to integrate into Ukraine’s resilience ecosystem for collective protection.