is now

The next evolution of QSC, where the brightest minds in cybersecurity unite to chart the future of cyber risk management.

April 22 | London, UK

MEDIA BRIEFING: Qualys ROCon EMEA 2026

By submitting this form, you consent to Qualys' privacy policy

  • ROCon EMEA
  • Speakers
  • Agenda
  • Highlights
  • Venue
  • Code of Conduct

    • De-risk Your Business

    Join us at ROCon EMEA, the premier cybersecurity event where top security leaders and practitioners come to get cutting-edge strategies, insights, and discover new solutions that proactively manage and reduce cyber risk.

    ROCon, The Risk Operations Conference, delivers thought-provoking keynotes, high-impact sessions, and hands-on workshops on threat detection, cloud security, automation, and risk-driven security strategies. You will discover how to streamline security operations, reduce noise, maximize ROI, and strengthen business resilience, and align security initiatives with your leadership. Don't miss this opportunity to shape the future of modern cybersecurity and de-risk your organization.

    Banner

    Keynote Speakers
    Read Bio

    Sumedh Thakar

    President and CEO

    Read Bio

    Sarah Armstrong-Smith

    Executive Cybersecurity and Crisis Leader

    Featured Speakers
    Read Bio

    Etienne Ladent

    Head of Cert
    Read Bio

    Andy Powell

    CISO
    Read Bio

    Shailesh Athalye

    Sr. Vice President, Product
    Management
    Read Bio

    Richard Seiersen

    VP, Cyber Risk

    Read Bio

    Etienne Ladent

    Head of Cert

    Andy Powell

    CISO

    Read Bio

    Shailesh Athalye

    Sr. Vice President, Product
    Management

    Read Bio

    Richard Seiersen

    VP, Cyber Risk

    Agenda

    Training Sessions

    Conference Sessions

    8:30 AM

    9:10 AM

    9:15 AM - 10:00 AM

    Join us for an inspiring keynote session with Sarah Armstrong-Smith, one of the UK's most influential cybersecurity and crisis management leaders. With nearly 30 years of frontline experience, including roles as Chief Security Advisor at Microsoft and Group Head of Crisis Management at The London Stock Exchange, Sarah brings unparalleled expertise in navigating the complexities of digital disruptions and global crises.

    In this session, Sarah will share transformative strategies to help organizations build resilience, adapt to evolving cyber threats, and thrive in the face of uncertainty. Her insights will empower leaders to rethink their approach to cybersecurity, crisis management, and operational continuity in today's fast-changing digital landscape.

    Don't miss this opportunity to gain actionable takeaways from a true industry trailblazer.

    10:00 AM - 10:50 AM

    Qualys Keynote

    10:50 AM - 11:20 AM

    11:20 AM - 12:00 PM

    Product Update

    12:00 AM - 12:30 PM

    12:30 AM - 1:00 PM

    In this insightful session, Kering will share their journey in Vulnerability and Risk Management. Beginning with an overview of Kering's operational context, followed by an in-depth discussion on the rapid growth of CVEs and the critical importance of prioritisation. Attendees will learn how Kering leverages Qualys and other frameworks to effectively prioritise vulnerabilities and implement a robust operational strategy to patch systems efficiently, including best practices for agent deployments.

    1:00 PM - 2:00 PM

    2:00 PM - 4:00 PM

    Operations Track

    Operational cyber risk management

    Business Track

    Business of cyber risk management

    4:00 PM - 4:30 PM

    4:30 PM - 5:00 PM

    5:00 PM - 5:30 PM

    Fireside Conversation

    5:30 PM - 5:45 PM

    5:45 PM - 7:30 PM

    8:45 AM - 9:30 AM

    9:30 AM - 11:00 AM

    The shift to a Continuous Threat Exposure Management (CTEM) framework is an operational necessity. This session moves beyond basic scanning to bridge the gap between data collection and decisive action. During this session, we will showcase:

    • Visibility & Automation: Optimising VMDR and CSAM for 100% asset discovery across hybrid environments
    • The ETM Logic: Unifying third-party data and Qualys telemetry into a single, actionable risk score
    • Contextual Prioritization: Moving past static CVSS scores to prioritize remediation based on exploitability and business impact
    • Operational Roadmap: A technical guide to evolving daily SecOps into a 360-degree risk posture

    At the end of this session, we will bring in a former Global CISO in an Executive Spotlight to include:

    • How to translate technical data into executive clarity
    • Frame vulnerabilities as "Residual Risk to Revenue" rather than CVE counts
    • The three data points that actually matter to leadership when justifying spend to look at key metrics

    Why Attend?

    Stop managing noise and start managing risk. Learn how to automate prioritization, reduce manual overhead, and effectively communicate security value to stakeholders

    11:00 AM - 11:30 AM

    11:00 AM - 11:30 AM

    Join Qualys for this capture the flag competition, putting your knowledge of the Qualys Platform to the test.

    With prizes to be won, do you have what it takes to be a Qualys Risk Buster?

    12:30 PM - 1:30 PM

    1:30 PM - 3:00 PM

    Achieving audit readiness doesn’t have to be a daunting task. In this session, discover how Qualys Policy Audit can streamline your compliance efforts and ensure your organization is always prepared for audits. Learn how to automate policy checks, identify gaps, and generate comprehensive reports that satisfy auditors and stakeholders alike. This session will provide practical insights and best practices to help you build a robust, audit-ready environment with confidence. Whether you’re preparing for your next audit or looking to enhance your compliance strategy, this session will equip you with the tools and knowledge to succeed.

    In a world of ever-growing vulnerabilities, effective risk remediation starts with prioritization. This session will showcase how Qualys TruRisk Eliminate empowers organizations to focus on what matters most by identifying and addressing the highest-risk vulnerabilities. Learn how to leverage TruRisk’s advanced analytics to prioritise remediation efforts based on business impact, reduce noise, and streamline your security operations. By the end of this session, you’ll have actionable strategies to enhance your risk management approach and drive meaningful security outcomes with Qualys TruRisk Eliminate.

    3:00 PM - 3:30 PM

    1:30 PM - 3:00 PM

    In a world of ever-growing vulnerabilities, effective risk remediation starts with prioritization. This session will showcase how Qualys TruRisk Eliminate empowers organizations to focus on what matters most by identifying and addressing the highest-risk vulnerabilities. Learn how to leverage TruRisk’s advanced analytics to prioritise remediation efforts based on business impact, reduce noise, and streamline your security operations. By the end of this session, you’ll have actionable strategies to enhance your risk management approach and drive meaningful security outcomes with Qualys TruRisk Eliminate.

    APIs and web assets are the backbone of modern digital ecosystems, but they’re also prime targets for cyber threats. In this session, discover how Qualys TotalAppSec provides a comprehensive approach to securing your APIs and web applications. Learn best practices for identifying vulnerabilities, mitigating risks, and ensuring compliance, all while maintaining the performance and reliability of your digital assets. This training will equip you with actionable strategies to build resilience, streamline security operations, and protect your organisation’s critical web and API infrastructure.

    5:00 PM - 6:30 PM

    8:30 AM

    9:10 AM

    9:15 AM - 10:00 AM

    10:00 AM - 10:50 AM

    10:50 AM - 11:20 AM

    11:20 AM - 1:00 PM

    1:00 PM - 2:00 PM

    2:00 PM - 3:30 PM

    Operations Track

    Operational cyber risk management

    Operations Track

    Business of cyber risk management

    3:30 PM - 4:00 PM

    4:00 PM - 5:00 PM

    Operations Track

    Business Track

    5:00 PM - 5:15 PM

    5:15 PM - 7:30 PM

    Conference Highlights

    Explore and secure the digital journey.

    Dive into the profound impact of the digital journey and explore how to build in security automation from the data center to the cloud. Industry experts and Qualys leaders discuss automation strategies, preview product roadmaps, listen to your challenges, and answer your questions.

    Get inspired

    Engage with Qualys’ customer-facing teams and your peers around best practices and user case studies for applying security automation to real-world challenges.

    Sharpen your expertise

    One day of free training covers forward-looking strategies, best practices to improve effectiveness and productivity, and core and expanded product features to up-level your security program.

    Who Should Attend

    CIOs, CSOs and CTOs; directors and managers of network, security and cloud; developers and DevSecOps practitioners; Qualys partners and consultants; or any forward-thinking security professionals.

    Register Now

    Hilton Park Lane

    London, United Kingdom

    Qualys Security Conference will be held at the Hilton Park Lane.

    Hilton Park Lane
    22 Park Ln, London W1K 1BE, United Kingdom
    T: +44 20 7836 2400

    Conference Pricing

    Attendance at ROCon is complimentary. This includes access to all general sessions, breakfast, lunch and breaks, and training.

    Travel and hotel accommodations are not included with ROCon or pre-conference training.

    Book Your Hotel Now

    Register Today

    Join us to learn how to effectively secure your hybrid IT environment, streamline your security and compliance initiatives and enable digital transformation. There is no cost to attend this event.

    Register Now
    Scroll to Top