28 – 30 October 2020 | Helsinki, Finland


Finlandia Hall

Palexpo Convention Centre

As the program is developed, we will continue to add information—check back frequently for updates!


CPE Hours Available

Grow Your Network. Enhance Your Knowledge.

Connect with the most dynamic minds and practitioners in information systems audit, control, security and cybersecurity.

Stay ahead of emerging trends and gain new tools, guidance and insight that will help set the course for the future of information systems and cybersecurity—and for your role in vitally important fields that assess, manage, protect, and drive the success of enterprises worldwide.

Secure your place today and save the most on a dynamic global event that brings together the best of ISACA's highly successful CACS and CSX conferences!


What's in it for you?

Grow Your Network

You’ll have direct access to the leaders in the industry with our expert speakers in the breakout sessions and the leading suppliers in the Innovation Exchange.

Enhance Your Knowledge

This year’s programme will offer topics that are current and timely, subject matter that is cutting edge, a thought-leadership perspective that today’s industry challenges as well as new ideas.

Who should attend?

EuroCACS/CSX 2020 brings together those in the area of audit, security, compliance, risk, privacy, control and IT, from a wide range of industries including; finance, banking, tech services, government, insurance, medical and more.

EuroCACS/CSX sessions are for professionals at any point in their career, with three learning levels, hands on labs, technical & soft skill training, lectures, panel discussions and more, there is something for everyone at EuroCACS/CSX 2020.

What is in it for your organisation?

Embrace fresh insights, tools and solutions you can apply immediately in your organisation with your choice of 50+ track sessions at ISACA’s EuroCACS/CSX 2020.

Bring back the latest regulatory trends, insight on cybersecurity threats and knowledge from other professionals who attend the conference. Ready your career and your organisation to see and shape what’s coming next in audit, security, control and business.

Follow @ISACANews and join the EuroCACS/CSX conversation by using the hashtag #EuroCACSCSX.

Like ISACA on Facebook to stay informed.

Follow @ISACANews on Instagram to see behind the scenes photos of the conference.

Follow ISACA’s Company page on LinkedIn for updates.

Continuing Professional Education Credits

To maintain ISACA certifications, certification holders are required to earn 120 CPE credit hours over a three-year period in accordance with ISACA’s continuing professional education (CPE) policy. Attendees can earn up to 32 CPE credits; 18 by attending EuroCACS/CSX, and 14 for attending a 2-day pre-conference workshop or 7 for attending a 1-day pre-conference event. ISACA conferences are Group Live and do not require any advanced preparation.

Please note that the session scanners at the Conference do not track CPE credit hours. You will still need to allocate your CPE hours in “My ISACA” following the conference. To view your certificate, log into your account at www.isaca.org/MyISACA. Select the “ISACA CPE Records tab” below your dashboard to see our ISACA CPE Certificates.

Your Certificate of Attendance details the maximum number of CPE hours you could have earned by attending this event. CPE policies for each ISACA certification, as well as details on how to report your CPE hours, are available here on ISACA’s website. Reporting can also be done by submitting information on the annual renewal invoice.


As the programme is developed, we will continue to add information to this page—check back frequently for updates!

What to Expect

Opening Keynote

Daniel Susskind
Expert on the Future of Work & Co-Author of the best-selling book, ‘The Future of the Professions’

Dr. Daniel Susskind explores the impact of technology, particularly artificial intelligence, on work and society. He is a Fellow in Economics at Balliol College, Oxford University, where he teaches and researches. He is the co-author of the best-selling book, The Future of the Professions, and the author of A World Without Work. His TED Talk, on the future of work, has been viewed more than 1.5 million times.

Previously he worked in the British Government – as a policy adviser in the Prime Minister’s Strategy Unit, as a policy analyst in the Policy Unit in 10 Downing Street, and as a senior policy adviser in the Cabinet Office. He was a Kennedy Scholar at Harvard University.

General Session Keynote

CEO, Hacker, Social Engineer

FC is a well-known ethical hacker and social engineer. He has been working in the information security field for over 20 years and excels at circumventing access controls. As an ethical hacker and social engineer, FC ‘breaks into’ hundreds of banks, offices and government facilities in the UK and Europe.

Closing Keynote

Jessica Barker
Leading Expert on Cybersecurity

Dr. Jessica Barker is a leader in the human nature of cybersecurity. She has been named one of the top 20 most influential women in cybersecurity in the UK and in 2017 she was awarded as one of the UK’s Tech Women 50. She is Co-Founder and co-CEO of Cygenta, where she follows her passion of positively influencing cybersecurity awareness, behaviours and culture in organisations around the world.

She is a popular keynote speaker and regularly shares her expertise in the media, for example on BBC News, Sky News, Channel 4 News and in Grazia magazine and the Sunday Times. She is the Chair of ClubCISO and a board member of BlackHat Executive Summit Europe and SANS Security Awareness Summit EU.

Interactive Workshops

ISACA will be hosting a variety of 2-day and 1-day workshops immediately before the EuroCACS/CSX Conference in 2020 to help you maximize your time, travel and CPE!

2-day Pre-Conference Workshops (14 CPE)
Monday, 26 October & Tuesday, 27 October 2020

  • WS1—Cybersecurity Audit Certificate
  • WS2—COBIT 2019 Foundation Course

1-Day Pre-Conference Workshops (7 CPE) 
Tuesday, 27 October 2020

Check back for information coming soon!

Do you have a topic that you think should be offered at this conference? We want to know! Tell us about it by submitting your idea on Twitter using #EuroCACSCSX

Go Green!


Unwind with colleagues in a festive hour of networking and fun!

Register now

Continuing Professional Education Credits

To maintain ISACA certifications, certification holders are required to earn 120 CPE credit hours over a three-year period in accordance with ISACA’s continuing professional education (CPE) policy. Attendees can earn up to 32 CPE credits; 18 by attending EuroCACS/CSX 2020, 14 for the 2-day workshops and 7 for the one-day workshops. ISACA conferences are Group Live and do not require any advanced preparation.

Please note that the session scanners at the Conference do not track CPE credit hours. You will still need to allocate your CPE hours in “My ISACA” following the conference. To view your certificate, log into your account at www.isaca.org/MyISACA. Select the “ISACA CPE Records tab” below your dashboard to see your ISACA CPE Certificates.

Your Certificate of Attendance details the maximum number of CPE hours you could have earned by attending this event. CPE policies for each ISACA certification, as well as details on how to report your CPE hours, are available here on ISACA’s website. Reporting can also be done by submitting information on the annual renewal invoice.

Conference Registration Fees

Act quickly to take advantage of early savings.

Standard Rate

Register and pay for the full conference before 11:59 PM CT on Friday 23 October 2020 to receive the standard rate:

Member Price: US $1,900 + VAT Non-Member Price: US $2,100 + VAT Your Price: Login to find out your price

Cancellation Deadline: Sunday, 27 September 2020

Terms and Conditions

Registration and Payment Policy

Registration submissions for this conference and any additional workshops are note processed and a seat is not confirmed or reserved until full payment is received. All submissions not paid in full will be placed on a waitlist and priority will be given to paid registrants in a payment first come, first-served basis. Space is limited, so it is highly recommended that payment is provided at the time of submission to guarantee a seat within the conference and related events.

Registration rate is determined by the date payment is received by ISACA HQ and current membership status. Please plan accordingly, as it may take 10 or more business days for a wire transfer or mailed check to reach ISACA. Should we receive payment after a registration rate deadline, your account will be adjusted to reflect the current due amount. Entrance to the conference and all related events is contingent upon full payment.

Discounts for the Conference are available, detailed below. Please note that discounts cannot be applied retroactively and must be applied at the time of purchase. All discounts are applied to the main conference registration fee, and cannot be applied to workshop registrations. Discounts cannot be combined with any other registration discount offerings



ISACA offers discounts to organisations sending 4 or more employees to a single conference. 

Government Employees

ISACA offers a US$350 conference registration discount to government employees. 

Academic and Students

ISACA offers a US$350 discount to academic institution employees and students. Please note that you must be an ISACA Student member in order to receive the student discount; additional membership and qualification details can be found here.

Please contact ISACA for more details and eligibility verification on any of the above discounts at +1.847.660.5505 or https://support.isaca.org.



Cancellation Policy

All cancellations must be received by the published deadline to receive a refund of registration fees. A cancellation charge of US$295 will be subtracted from conference refunds; a cancellation charge of US$250 will be subtracted from 2-day workshop refunds; and a cancellation charge of US$125 will be subtracted from 1-day workshop refunds. No refunds can be given after the cancellation deadline above. Attendee substitution is permitted at any time until the conference. If a nonmember is substituting a member, then there will be an additional nonmember fee due.

NOTE: If, for any reason, ISACA must cancel a course or event, liability is limited solely to the registration fees paid. ISACA is not responsible for other expenses incurred, including travel and accommodation fees. For more information regarding administrative policies, please contact ISACA:
Phone: +1.847.660.5505
Fax: +1.847.253.1443

Payment Methods

  1. Pay online at https://next.isaca.org/cart

  2. Mail your payment to:
    1055 Paysphere Circle
    Chicago, IL 60674 USA 

  3. Bank Wires—send electronic payments in US dollars to:
    Bank of America
    135 S. LaSalle St.
    Chicago, IL 60603
    ABA #0260-0959-3
    ISACA Account #22-71578
    S.W.I.F.T. code BOFAUS3N
    * Please include attendees name on the Advice of Transfer.


ISACA reserves the right to alter or delete items from the program in the event of unforeseen circumstances. Material has been prepared for the professional development of ISACA members and others in the IT audit, control, security and governance community. Neither the presenters nor ISACA can warrant that the use of material presented will be adequate to discharge the legal or professional liability of the members in the conduct of their practices. All materials used in the preparations on behalf of ISACA are original materials created by the speakers, or otherwise are materials which the speakers have all rights and authority to use and/or reproduce in connection with such presentation and to grant the rights to ISACA as set forth in speaker agreement. Subject to the rights granted in the speaker agreement, all applicable copyrights, trade secrets, and other intellectual property rights in the materials are and remain with the speakers.

Please note: unauthorized recording of presentations and workshops in any form is prohibited.

Please note that any attendee requested paperwork or documentation that ISACA needs to provide information or fill out, can take up to 10 business days.

Not a member of ISACA? Join today!

When you register for the conference as a nonmember, the difference between member and nonmember conference fees can be applied towards ISACA membership. This means you can become a member at the international and chapter level for little to no additional cost; it just depends on your local chapter dues. To take advantage of this great offer, check the box on the registration form. For more information about ISACA membership, visit the web site at www.isaca.org/membership or contact the membership department at membership@isaca.org.

NOTE: This offer expires 30 days after completion of the event. Nonmembers pay the nonmember conference fee when registering.

Consent for Photos, Audio and Video Recordings Taken at Events or for Marketing Purposes

I agree irrevocably and free of charge that ISACA or any third party who is acting on ISACA’s behalf may create images, videos and/or sound recordings of me (“works”) at the event for marketing purposes. For these purposes, the granting of rights in the works also includes the rights to adapt, reproduce, distribute, perform, making available to the public, broadcast, retransmit or sublicense the works to ISACA’s affiliates. The granting of rights in the works also includes all current and future media, goes beyond the repetition of an event and is not restricted to time or territory. View ISACA’s Privacy Notice >>


Business casual is appropriate for this and all ISACA conference events.

Justify Your Attendance

Click here for a deeper dive into how EuroCACS/CSX 2020 benefits your enterprise


Watch highlights from the 2019 EuroCACS/CSX conference and mark your calendar for 2020!



Review highlights from the 2019 CACS and CSX conferences to learn more about the sessions, speakers and networking you can expect at EuroCACS/CSX  2020.


EURO CACS CSX 2019 report


Welcome to Helsinki, Finland!


Welcome to EuroCACS/CSX 2020’s destination city, the capital city of Finland, Helsinki. Take a break from the conference programme and explore the city by foot or through the easy to navigate public transportation system. This modern city has a vibrant restaurant and bar scene while also being surrounded by the ocean, beautiful islands and great green parks!

Finlandia Hall

All conference events take place at Finlandia Hall, unless explicitly noted in the event schedule.




More information coming soon!

Getting Around

Helsinki has a well working public transport system (HSL) consisting of bus, tram, metro, local railway and ferry services. With a single ticket you can hop aboard trams, busses, the metro and even the ferry to Suomenlinna. Single tickets can be purchased from ticket machines, R-kiosks and other HSL sales points or by using HSL mobile application. On buses you can also buy your ticket from the driver.Daytickets are available for unlimited use on public transportation for 1-7 days. They can be purchased from ticket machines, from the Tourist Information at Helsinki Airport Terminal 2A (1-3 days) or from the Helsinki City Transport service point in the Central Railway Station. One day ticket is also sold by the drivers.

Thank You to Our 2020 Sponsors!


Vanguard Integrity Professionals
Vanguard Integrity Professionals

Vanguard Integrity Professionals is the largest independent provider of enterprise security software addressing complex security and regulatory compliance challenges. Vanguard continuously drives innovation in security software and technology to stay ahead of evolving regulatory requirements and an ever-changing threatscape. Led by some of the most knowledgeable minds in the cybersecurity industry our security solutions lead the industry.


OneTrust Vendorpedia
OneTrust Vendorpedia

OneTrust Vendorpedia™ is the largest and most widely used technology platform to operationalize third party risk, security, and privacy management. More than 5,000 customers of all sizes use OneTrust, which is powered by 75 awarded patents, to offer the most depth and breadth of any third party risk, security, and privacy solution in the market. OneTrust Vendorpedia is purpose-built software designed to help organizations manage vendor relationships with confidence and integrates seamlessly with the entire OneTrust platform, including – OneTrust Privacy, OneTrust GRC, OneTrust DataGuidance™, and OneTrust PreferenceChoice™. To learn more, visit vendorpedia.com or connect on LinkedIn, Twitter and Facebook.



Supporting Sponsors

The EuroCACS/CSX 2020 Call for Speakers is now closed.

If you have submitted an abstract to speak at EuroCACS/CSX 2020 you can expect to receive feedback by late March to early April 2020. Please see our projected* timeline below:

  • Call for speakers deadline: 17 January 2020
  • Abstracts reviewed by Conference Subject Matter Experts: 20 January 2020 – 13 March 2020
  • Program finalized: Week of 16 March 2020
  • Notifications sent to speakers/submitters: 23 March 2020 – 10 April 2020

*Timelines are subject to change


EuroCACS/CSX 2019 Top-Rated Speakers

According to our post-conference survey results, these speakers were all rated 4.70 or higher (on a 5-point scale) by the attendees of their sessions. Minimum of 20% survey response required to qualify.

Congratulations to the following speakers who were rated in the top 5% at the EuroCACS/CSX 2019 Conference!

Mike Dodson

Mike Dodson

VP WW Customer Security Strategy & Solutions, Venafi

Mike Dodson is VP Worldwide Customer Security Strategy and Solutions at Venafi, where he helps Global 5000 companies and organizations protect their machine identities—securing keys, certificates, and cryptographic systems that form the basis of privacy, security and identity in all enterprises. A Master's degree in computer engineering with additional training in cryptography, combined with 25 years of operational experience and consulting, give Mike a deep and practical understanding of the problems that occur in real-world IT environments.

Bob Findlay

Robert Findlay

Global Head of IT Audit, Glanbia

Currently the Global Head of IT Audit at Irish dairy and protein leader Glanbia, Bob has over 30 years IT, audit and security experience. Having started in mainframe computer operations for a French Bank in the 1980’s Bob has managed most IT functions including programming, project management and data centre operations in addition to significant stints in IT audit and as Chief Information Security Officer. Bob started working in IT audit in the Audit Commission and has since managed and set up IT audit functions in global businesses, such as British Airways, The Co-operative Group, ARYZTA, Paddy Power and now Glanbia as well as spells consulting for EY.

Tony Gee

Security Researcher and Consultant, Pen Test Partners LLP

Tony has over 13 years of security experience, he has worked both as an internal blue team consultant within the finance industry and for the technology partner for the world leading Oyster card system and more latterly as an external security tester and auditor. Tony speaks the world over at technology events highlighting key risks with the internet of things, automotive and maritime and key payment systems. Tony is able to illustrate and demonstrate critical issues in these systems in a way the audiences of all levels can understand. He has spoken at PCI events in Europe and Asia, at the SC Congress in London, ISACA CSX Europe, technical conferences such as BSides and many other partner events, including speaking at the US Congress, European Central Bank and the European Parliament.

Joseph Mayo, CRISC

Program Manager, J. W. Mayo Consulting LLC

Joseph W. Mayo is an award-winning project manager and Internationally recognized risk management expert. Mr. Mayo is an Information Technology professional with over 28 years of experience. He holds a bachelor’s degree in Information Technology and a master’s degree in Information Systems. Mr. Mayo is a PMI certified Project Management Professional (PMP), Risk Management Professional (RMP), holds Certified in Risk and Information Systems Control (CRISC) credential from the Information Systems Audit and Control Association (ISACA), and is certified by the Risk Management Society (RIMS) as a Certified Risk Management Professional (RIMS-CRMP). Mr. Mayo is the first risk practitioner to be credentialed by the three internationally recognized, risk management credentialing bodies; PMI, ISACA, and RIMS. He is an active industry volunteer who regularly participates in industry working groups and strives to enhance global risk management and project management practices. He is an author, speaker and conference presenter on topics that include risk management, project management, and quality assurance.

Dina Numan, COBIT Certified Assessor

Head of Advanced Governance & Management Consultancy Service, ScanWave Comprehensive Technical Solutions

12 years of experience in IT Service Management, Quality Assurance, Quality Control, Process Reengineering, IT Governance. Leading COBIT 5 and COBIT 2019 adoption and implementation projects in Jordan.

Paul Phillips, CISA, CISM, MBA

Technical Research Manager, ISACA

Paul Phillips holds a bachelor’s degree in Accounting and an MBA with concentration in both Management and MIS. He also holds a Doctorate in Divinity from the Hope Seminary and Bible Institute. He is a Certified Information Systems Auditor and a Certified Information Security Manager. He has worked in corporate America in various capacities for 33 years. He has also worked as a part-time professor for several universities and other various institutions of higher learning for 17 years.

Ramzi Sunna

Dr. Ramzi Sunna, COBIT Certified Assessor

Chairman, ScanWave Comprehensive Technical Solutions

Case Study - Bridging Program for the Banking Sector from COBIT 5 to COBIT 2019 MENA & GCC Region

Ira Winkler

Ira Winkler

President, Secure Mentem

Ira Winkler, CISSP is President of Secure Mentem and author of Advanced Persistent Security. He is considered one of the world’s most influential security professionals, and has been named a “Modern Day James Bond” by the media. He did this by performing espionage simulations, where he physically and technically “broke into” some of the largest companies in the World and investigating crimes against them, and telling them how to cost effectively protect their information and computer infrastructure. He continues to perform these espionage simulations, as well as assisting organizations in developing cost effective security programs. Ira also won the Hall of Fame award from the Information Systems Security Association, as well as several other prestigious industry awards. Most recently, CSO Magazine named Ira a CSO Compass Award winner as The Awareness Crusader.

Contact ISACA's Sponsorship Department:

Please address Sponsorship questions to: sponsorship@isaca.org

Contact ISACA's Customer Experience Center:

Tel: +1.847.660.5505


Contact ISACA's Communications Department:

Tel: +1.847.660.5512 or