International Workshop on
Cyber Risk & Security
Paris, September 13-14, 2023
Cyber risk and security are the two faces of the same coin to enhance the resilience of society against cyber-attacks. Recognizing that tackling cyber threats necessitates a multidisciplinary approach, experts from diverse disciplines will present their approaches and engage in discussions on the challenges faced in researching this field. We also aspire to use this opportunity to initiate new innovative research collaborations, further advancing our understanding of this important phenomenon.
Dr. Jérôme BARLATIER (France), Lieutenant Colonel, Gendarmerie Nationale
Dr. James BONO (USA), Security Economics Lead at Microsoft, principal applied scientist
Prof. Grazia CECERE (France), Institut Mines-Telecom, Paris
Dr. Michel DACOROGNA (Switzerland), Prime Re Solutions
Dr. Justin GRANA (USA), Principal Economist at Edge & Node
Dr. Steve JACKSON (USA), Director of Research at American Academy of Actuaries
Dr. Nikolaos PAPAKONSTANTINOU (Finland), Leading the Applied cybersecurity team at the VTT Technical Research Centre of Finland, docent in the field of information technologies in industrial applications
Corina PASCU (Greece), Cybersecurity expert, ENISA (European Union Agency for Cybersecurity)
Eric SALIBA (France), Head of the Scientific and Technical Division, ANSSI
Dr. Patrick SCHALLER (Switzerland), Senior Scientist in Computer Science at ETH Zurich
Prof. Isabelle WATTIAU (France), Information System, ESSEC Business School
Prof. Stefan WEBER (Germany), Institute of Actuarial & Financial Mathematics, Leibniz Universität, Hannover
Organization: Prof. Marie KRATZ (ESSEC IDS & CREAR) and Prof. Isabelle WATTIAU (ESSEC IDS)
Financial support: Labex (CY) - 'Fondation des Sciences de la Modélisation' and Ceressec; we are also grateful to COVEA to welcome us to their premises in Paris on Sep. 14th.
Other support: Groupe 'Risques Assuranciel, Economique & Financier' - Société Française de Statistique, and Institut des Actuaires
Sept. 13, Paris La Défense, ESSEC campus La Défense, CNIT, 4:40 - 8:00pm:
4:45 - 5:00 pm: Welcome by the organizers and program of the conference
5:00 - 6:40 pm: Talks
6:45 - 8:00 pm: Welcome cocktail
Sept. 14, Paris, Espace Diderot (COVEA), 19 rue de Londres, 75009 Paris, 9:15 am - 6:30 pm
9:15 - 9:30: Welcome by Emmanuel Dubreuil
9:30 - 12:40: Talks
12:45 - 2:10 pm: lunch
2:15 - 6:00 pm: Round table and Talks
6:00 - 6:10pm: Closing remarks
Jérôme Barlatier and Marie Kratz: "Cyber data from Gendarmerie Nationale: Analysis with a focus on extremes"
James Bono: "AI and Security: From Risk to Risk Management"
Grazia Cecere: "The Economy of Cybersecurity: Managing the risk of personal data and connected objects among children"
Michel Dacorogna: "What is so special about cyber insurance?"
Justin Grana: "Game theory and Security with an application to filter-user interaction"
Steve Jackson: "Cyber Risk and Public Policy: The American Academy of Actuaries Examines Cyber Risk"
Nikolaos Papakonstantinou: "Cyber risk assessment for complex systems"
Corina Pascu: "Artificial intelligence in cyber risk and cyber insurance - Research needs, challenges and opportunities"
Eric Saliba: "An overview of R&D activities within the ANSSI’s scientific and technical division. A case study: the transition to post-quantum cryptography."
Patrick Schaller: "Inducing Authentication Failures to Bypass Credit Card PINs"
Isabelle Wattiau: "AI in insurance activities - risk dimensions"
Stefan Weber: " Modeling and Pricing Cyber Risk and Insurance - Challenges and Perspectives"
Dr. Jérôme BARLATIER
Lieutenant-Colonel Jérôme Barlatier is a gendarmerie field officer. After a master in law , he joined the national gendarmerie in 2002 as part of the first university recruitment. In 2004, he was appointed Head of an investigation unit at the research section (SR) of Marseille, before occupying the position of staff officer at the general staff in charge of questions of criminal intelligence. In 2012, he took command of the Chantilly gendarmerie company. In 2017, he completed a Doctorate in Criminology at the University of Lausanne, before being assigned to the judicial center of the national gendarmerie (PJGN), where he heads the intelligence division within the Central Criminal Intelligence Service (SCRC). Since August 2023, he has headed the judicial support section (SAJ) of the Île-de-France gendarmerie region. Jérôme specializes in forensic investigations, intelligence-led policing (ILP) and evidence-based policing (EBP).
Dr. James BONO
James Bono is a PhD economist specializing in game theory and microeconomics. He currently leads a team of research scientists and engineers in Microsoft Security's AI research organization. At Microsoft, he has led studies on the causal drivers of security risk, an incubation on digital supply chain risk management, and has developed applications of AI to risk and posture management. Prior to joining Microsoft, James was a Senior Vice President at Economists Incorporated and Lead Strategist in dozens of high-stakes spectrum auctions. In this role, he also co-authored the design of the FCC's Auction 103, a two-sided incentive auction that netted $7B in proceeds and enabled a smooth transition of millimeter wave spectrum to 5G uses. Before that, James was an Assistant Professor of economics at American University, where he taught PhD microeconomics and published in peer-reviewed journals like Managerial and Decisions Economics and the Journal of Artificial Intelligence Research.
Prof. Grazia CECERE
Grazia Cecere is Professor of Economics at the Institut Mines Télécom, Business School, LITEM. She is Director of Research at the Institut Mines Télécom, Business School. She obtained her doctorate in economics from the University of Paris Saclay (France) and the University of Turin (Italy). She obtained her master's degree at the College of Europe, Natolin, Poland. She has been a visiting researcher at SPRU, University of Sussex, and ZEW, Mannheim. Her main research areas are digital economics with a focus on privacy economics, algorithms and machine learning, mobile app economics and digital marketing. In 2019, she was awarded the "Marie-Dominique Hagelsteen" prize for responsible advertising by France's professional advertising regulatory authority. She is a scientific expert for Arcom (Audiovisual Regulatory Authority) in France (2020-2024) and a scientific evaluator for INRAE (2020-2024). She has received funding from a number of institutions, including grants from the DataIA Institute (France), the ANR (Agence nationale de la recherche), and DAWEX (a French company). She was awarded the Social Science Foundation Research Prize in 2021. She collaborates with a number of researchers in the United States and major European institutions. She sits on the board of the "Association Francophone de Recherche en Economie Numérique".
Dr. Michel DACOROGNA
Michel Dacorogna is partner at Prime Re Solutions, a com- pany advising financial institutions on actuarial and eco- nomic matters. He is the former scientific advisor to the chairman of SCOR. He conducts research in the field of insurance mathematics, capital management and risks. He presents models and capital management techniques to management and customers. Michel was deputy group CRO of SCOR in charge of Solvency II and risk modelling. He was at the origin of SCOR’s internal model, which he developed with his team for more than 10 years. In 2009, he received from Risk Magazine the price of Insurance Risk Manager of the year. Author and co-author of more than 95 publications in refereed scientific jour- nals; he is often invited to present his results in international conferences and specialized seminars. His work is referenced in many publications. One of the papers he co-authored was the most quoted paper over 5 years in the Journal of Banking and Finance. His book: “An Introduction to High Frequency Finance” remains a reference in the field. He also lectures at the ETH and University of Zurich, and at Universita Cattolica del Sacro Cuore in Milan, at ES- SEC Business School (Paris) in their Master of Finance and insurance programs.
Dr. Justin GRANA
Justin is an Economist that works at the intersection of economics and technology. He has contributied to a variety of topics including cyber deterrence, adversarial machine learning and strategic content filtering. Justin currently works on mechanism design and platform competition at Edge and Node, a web3 company. Previously he was a researcher at Microsoft and an Economist at the RAND Corporation.
Dr. Steve JACKSON
Steve Jackson, Ph.D., is the director of research (public policy) at the American Academy of Actuaries. He works with all of the practice councils to generate, develop, and execute research projects that will enhance the work of the councils. In 2020, he was one of the principal authors of the Academy’s publication, Cyber Breach Reporting Requirements. He currently works with the Cyber Risk Committee on their Cyber Risk Toolkit, and with Prof. Kratz on a project modeling cyber risk involving breaches of personally identifiable information. Prior to his work at the Academy, Jackson was a member of the faculty at Cornell University and at Washington University in St. Louis, teaching courses in research methods, statistics, political economy, and public policy. He published several books and papers on a wide range of topics and consulted widely with government agencies, nonprofits, and in the finance industry.
Dr. Nikolaos PAPAKONSTANTINOU
Dr. Nikolaos Papakonstantinou is an electrical and computer engineer (Univ, of Patras/Greece, 2008), has a doctorate degree in information technology in automation from Aalto University, Finland (2012) and he is a docent in the field of information technologies in industrial applications (2020). He is leading the Applied cybersecurity team at the VTT Technical Research Centre of Finland. VTT is a large non-profit research organization with both commercial and public research activities. The interests of the team include security training, device testing, security design/architectures, platform security as well as holistic security assessment of industrial systems and other critical infrastructure. Papakonstantinou's personal interests focus on resilience (safety/security) engineering for complex sociotechnical systems
Corina joined European Union Agency for Cybersecurity (ENISA) in 2021 as a cybersecurity expert, where she covers cybersecurity certification and cybersecurity research and innovation. In 2022 she was involved in preparing the EU5G candidate certification scheme and leading a string of activities related to the preparation of the 2022 ENISA Research and Innovation Brief, particularly focused on AI. In 2023 she leads the feasibility study on cybersecurity certification of Artificial Intelligence, participates in the cybersecurity market activities (focused in 2023 on cryptographic products and services) and leads the R&I Observatory activity. Prior to her assignment in Athens, Corina worked with the European Commission Directorate General Research and Innovation on the formulation of European Open Science policies, European Open Science Cloud EOSC and co-chair for the European Commission of the G7 Open Science Open Science Working Group. She has also worked with European Commission’s in-house Science Hub on Sevilla site, as researcher and tech analyst on digital policies support and analysis (social and economic implications of ICTs and digital innovations in society and digital economy)
Eric Saliba is Head of the Scientific and Technical Division of the National Agency for Information Systems Security (ANSSI). ANSSI's scientific and technical division brings together the laboratories in which the experts ensure the definition and maintenance of the agency's technical standards, and provide their expertise to the various ANSSI structures as well as to their beneficiaries. Eric has worked for more than twenty years on upstream studies and major research and development or production projects, as an expert and technical manager within large companies in the defence and cybersecurity industrial sectors. Engineer in microelectronics and telecommunications, he participated in the design and the development of several secure components and embedded products or systems for civil and government use.
Dr. Patrick SCHALLER
After having studied Mathematics at ETH Zurich, Patrick has worked in information security related positions in industry at the time when the Internet was emerging in the early 2000s. Visiting what is today called the CAS in Computer Science at ETH Zurich, he has met the back then newly established Information Security Group of David Basin, where he did his PhD on the topic of formal modelling and verification of security protocols. After completion of his PhD, he stayed for another year in David Basin's group as a research assistant before he headed back to industry, where he worked in various information security related positions (software development, security architecture, prototyping, security research). In his last position, before joining ETH as a Senior Scientist in May 2020, he has worked as a scientific project manager in the external pageCyber Defence Campuscall_made at external pagearmasuisse Science & Technologycall-made. Over the last years, he has worked on a part-time basis as the coordinator and as a lecturer of the continuing education programs in cyber security at the computer science department of ETH Zurich.
Prof. Isabelle WATTIAU
Isabelle Comyn-Wattiau is Professor of Information Systems and holds the Chair of Information Strategy and Governance at ESSEC Business School. She holds a M.S. and Ph.D. in Computer Science from the University of Paris Sorbonne. Her research interests include information systems and database design, data quality and security, design science research, and conceptual modeling. She has published more than ninety journal and conference papers on information systems and database systems. Her research has appeared in journals such as the Journal of Management Information Systems, Decision Support Systems, Data and Knowledge Engineering, Expert Systems with Applications, and major academic conferences such as the International Conference on Conceptual Modeling (ER) and the European Conference on Information Systems (ECIS).
Prof. Stefan WEBER
Stefan Weber is a Professor of Actuarial and Financial Mathematics at Leibniz Universität Hannover where he is a Managing Director at the House of Insurance. Previously, he worked as an Assistant Professor at the School of Operations Research and Information Engineering at Cornell University. Stefan holds a PhD in mathematics from Humboldt-Universität zu Berlin. His research interests are in risk management in finance, insurance, and technology.
Groupe Risques Assuranciel, Economique et Financier