Blog

Quantum computing, automated threats, digital fraud, and shadow IT: new speakers for Swiss Cyber Storm 2026

3 min read

Swiss Cyber Storm 2026 takes place on October 20 at the Kursaal Bern under the motto „Shadow IT” – when employees work around corporate policies to get things done, and what that means for security and compliance. Artificial intelligence—not just in the form of Shadow AI—will also receive ample attention, alongside other current topics.

Illustrative image of a desktop computer used as a server under a desk with lots of cables
Old school shadow IT server

This year’s conference schedule is taking shape. Here are a few speakers who await you:

Stéphane Adamiste will present the lessons he learned from auditing the Swiss E-Voting system. His talk will serve as a travel guide through the many reports that have been published, namely on infrastructure and operations. Stéphane is an information security and data privacy specialist with many years of auditing experience in multiple industries.

Mazin Ahmed (FullHunt) is an information security specialist and penetration tester who presented at Swiss Cyber Storm 2016 while he was a student in Sudan working on Swiss bug bounty programs. He has since moved to Canada and founded FullHunt, a service that provides organizations with attack surface management on a large scale. In his talk, “Shadow IT as visible on the internet,” Mazin will share findings from Switzerland. He will discuss servers that were not intended to be exposed, etc.

Marco Brenner (IBM Quantum) will explain why IBM believes quantum is closer than many expect — no more than five to ten years away. His talk, whose title carries a promise („Here are your next steps as the development is accelerating”), will offer practical, hands-on guidance on next steps as the development accelerates. Marco’s view: the standard advice of „build an asset inventory” is a dead end.

Andres Maurer (Prod) will address digital fraud. FINMA released guidance on the topic in April, and the NCSC is pushing for more effective action in a field that is broad and affects the country directly. Andres will share first-hand experience with fraud from inside banking.

Sébastien Schnyder’s presentation is tentatively called: „Adversarial uses of AI: a voyage along vibe-coded kill chains”. Sébastian leads a cyber threat intelligence team at Google. His talk will cover what criminals are doing with cloud LLM models these days. Note: This talk will only be available to Swiss Cyber Storm 2026 attendees! It will not be recorded, and we will not publish his slides.

Ivano Somaini will talk about open-source intelligence (OSINT) in the age of AI. Ivano is an expert in offensive security, social engineering, and OSINT. He has a degree in computer science from ETH Zurich and many years of practical red team experience. Ivano honed his OSINT expertise under former FBI agent Mike Bazell. In 2024, he founded OSINT Switzerland.

Jeroen van der Ham-de Vos led the Dutch GovCERT before moving into academia. He sits at the intersection of technology and policy, and he is one of the driving forces behind DIVD. DIVD is an organization dedicated to responsible vulnerability disclosure on a global scale. Vulnerability management, including Shadow IT, will be at the center of his talk.

Tin Zaw (Fastly) has decades of experience in enterprise security, having led initiatives at industry leaders such as Qualcomm, Symantec, AT&T, Intuit, and Verizon. At Swiss Cyber Storm 2026, he will draw on his experience as project leader of the Automated Threats Project, which he has co-led since 2015. Automated threats are all the various problems that come with bots using your services, and that’s a lot.

More details on all speakers and the evolving program are available on the Schedule page.

Copyright © 2026
 
Swiss Cyber Storm
Hosting graciously provided for free by Nine