Workshops

Conecta Workshop
Joint Commission of RETECH Nodes
22th october, 16:00-18:00
Its purpose was to coordinate the relations and common objectives of the participants in the RETECH Call (Territorial Networks of Technological Specialization), in the field of Cybersecurity, of which INCIBE is a part. This Commission was made up of a representative from each of the autonomous entities that make up Retech, and a representative from INCIBE.
*Restricted access
Cybersecurity working group for the Autnomous Communities
22th october, 18:00-19:30
*Restricted access
AEI Ciberseguridad: Board of Directors Assembly
23th october, 12:00-14:00
*Restricted access
Talento Workshop
Capture the flag
21th october, 9:00-21:00
Aimed primarily at university students and high school technology students. Participants had to solve technical challenges in an environment that simulated real cybersecurity challenges. It was a unique opportunity to test themselves and develop their skills. With these competitions we seek to promote learning and development of key competences in cybersecurity, contributing to the training of future professionals in this field.
What was expected from the competition?
Participants had to solve technical challenges in key areas of cybersecurity such as:
Cryptography and stenography: Decipher hidden or encrypted messages.
Forensic analysis: Recover hidden information in memory images or hard drives.
Malware analysis: Understand and dismantle malicious software.
Traffic analysis: Investigate suspicious patterns in network traffic.
OSINT: Use public information available on the Internet to solve challenges.
Web security: Detect and exploit vulnerabilities in web applications.
Python: Solve challenges using code in this programming language.
Miscellaneous: Additional challenges spanning different areas of cybersecurity.
ES-ISAC-TIC constitution act
22th october, 11:30-14:00
INCIBE finalised the creation of a National Financial ISAC, a platform to share intelligence on cyber threats in the financial sector and to further improve collaboration in the sector. The system shared alerts with the industry in an anonymised form.
AMETIC and CONETIC made a brief intervention followed by a panel discussion.
*Restricted access
Infoday: Digital Europe Program
22th october, 15:00-19:30
The European Cybersecurity Competence Centre (ECCC) presented the new funding opportunities in cybersecurity under the Digital Europe Programme. This event served as a platform to disseminate crucial information on the latest calls for proposals and to provide networking opportunities for the European Cybersecurity Community.
Agenda:
15:00 – 15:10 Welcome remarks – Carla REDONDO (Secretary General, INCIBE).
15:10 – 15:40 Digital European Programme open calls – Ivan SCANNAPIECORO (Team Leader for Cyber Hubs, ECCC).
15:40 – 16:00 Q&A on the DEP open calls – Ivan SCANNAPIECORO (Team Leader – Cyber HUBs, ECCC).
16:00 – 16:30 Tips & Tricks for applying - Daniela BULARDA (Programme Officer, ECCC).
16:30 – 16:45 Coffee break.
16:45 – 17:05 DEP Project in focus: IRIUSCOMMED Juan GOMEZ-ACEBO (Finance Manager, Iriusrisk).
17:05 – 17:35 NCCs in focus - Miguel Angel Cañada (Head of National Coordination Centre NCC-ES).
17:35 – 18:30 Pitching session - Joanna Swiatkowska (Deputy Secretary General, European Cyber Security Organisation).
19:00 Networking reception.
AI for Cybersecurity Experts and Data Privacy
23th october, 10:00-14:00
This course offered specialized training in Artificial Intelligence (AI), designed not only to understand the technical aspects, but also to address security and compliance challenges in today's business environment. Participants learned how to identify key risks in AI systems, including machine learning (ML) models and large language models (LLMs), acquiring skills to implement effective protection, governance and risk mitigation strategies.
In addition, this training provided a deep understanding of regulatory compliance, with a particular emphasis on the European AI Regulation (EAR). Attendees gained knowledge on key regulatory obligations and strategies for adapting to an ever-changing environment. This course is considered key for any professional whising to be at the forefront of AI, improve their decision-making capabilities, and ensure the safety and legality of implementing AI systems in their organizations.
Activity organized by ISMS Forum.
Workshop "Create to transfer" (II Edition)
23th october, 16:00-18:30
In this workshop was presented the Cibersecurity R&D&I Capabilities Map, to later address and discuss projects related to the challenges of developing secure and reliable SW, privacy, Cloud Continuum, Quantum, AI and tools to facilitate cybersecurity compliance.
Activity organized by RENIC.
Emprende Workshop
INCIBE-CERT Workshop: Essential Services Operators
21th october, 16:00-17:30
Organized by INCIBER-CERT: the Workshop for Essential Service Operators was part of the actions and services that INCIBE-CERT has been providing as a reference CERT in our field of competence, as defined in RDL 12/2018 and RD 43/2021, in collaboration with the OCC regarding essential service operators identified as critical to the private sector.
*Restricted access, invitation only
INCIBE-CERT Workshop Digital Service Providers
21th october, 18:00-19:30
Organized by INCIBE-CERT: the Workshop for Digital Service Providers was part of the actions and services that we have been providing as INCIBE-CERT, as a reference CERT in our field of competence, as defined in RDL 12/2018 and RD 43/2021, in coordination with SEDIA.
*Restricted access, invitation only
Investment initiatives of the Autonomous Communities for 2025
22th october, 12:30-15:00
Presentation by the Autonomous Regions of their lines of investment, contracts and subsidies in cybersecurity projects, within the RETECH initiative. The Autonomous Regions showed the projects they plan to carry out and the budgetary allocations for this purpose, with this information being aimed at companies wishing to apply for these developments. The total economic endowment of RETECH is 162 million euros, implemented by the 17 autonomous regions in different investment channels.
Industrial Cybersecurity Session
23th october, 9:00-11:45
Automation and control systems are increasingly present in all areas of society. The technological evolution of recent years has provided them with new and important functionalities that have significantly improved the behaviour of the systems where they are applied, and has allowed them to expand into other fields of application. It is worth highlighting the use of critical infrastructures: water, gas/oil, electricity, communications, hospitals, transport, etc., where they are increasingly present, more complex and, of course, more vulnerable.
Systems and automation engineering, as a discipline that studies, researches, designs and trains automation and control systems, also addresses the problem of industrial cybersecurity within its own systems and technologies, as well as in the applications it deploys for both industry and society. The session organized by the Spanish Committee of Automatics, within the 18ENISE, aimed to show the importance of industrial cybersecurity and presented successful cases of application.
Workshop on OSINT techniques for investigating cybersecurity incidents
23th october, 16:00-17:00
The workshop was about OSINT and the importance of digital investments through the internet. OSINT concepts were defined, commenting on the importance of digital investigation as a complement to other types of investigations (financial, physical investigation, etc.) when it comes to clarifying crimes and unmasking their perpetrators.
Teams and professionals from the Civil Guard dedicated to carrying out digital investigations in the field of Judicial Police, Information and Intelligence, and other specialities (Ucoma-Seprona, etc.) were presented. A real case of the procedure carried out to unmask an important hacker, thanks to OSINT techniques, was also presented.
Cyber Challenge: The manager in critical situations
23th october, 17:30-18:30
An interactive dynamic designed to allow managers and entrepreneurs from SMEs to experience first-hand how to make decisions in cyber-crisis situations. In this practical exercise, participants gathered at tables where, through a real-time simulation projected on screen, they had to deal with four cyber-incident situations. The workshop concluded with a discussion focused on the cyber incident notification flow and lessons learned, addressing key aspects such as cybersecurity training, staff awareness and endpoint protection.
Activity organised by Cibertx.
DesafIA Workshop
Cybercrime in the Age of Artificial Intelligence: Personal Data and the New Battlefield
22th october, 12:00-12:45
This talk addressed the growing risk of cybercrime in an increasingly digitised world, with a focus on how Artificial Intelligence (AI) and new technologies are being used by both businesses and cybercriminals.
It explored today's most valuable assets, with personal data being one of the main targets for cyber criminals, and how to protect them effectively.
Recent cybercrime cases, such as ransomware attacks or massive personal data breaches, were analysed. These examples provided a practical framework for understanding current vulnerabilities and techniques used by cybercriminals.
A short activity was included in which attendees participated in a quick simulation of a phishing attack, identifying red flags in fraudulent emails. In addition, vulnerabilities of a fictitious company were assessed in order to propose protection measures.
The talk highlighted how cybercriminals exploit weaknesses in organisations and what steps should be taken to mitigate the risk, with a special focus on the protection of personal data and the role of AI in this emerging threat landscape.
Organised by Guardia Civil.
How to protect data? Information classification, DLP and IRM
22th october, 13:00-14:30
The session started with the presentation of the report ‘Classification of information, DLP and IRM’, prepared by the AUTELSI Quality and Security Group.
It was followed by the round table: Key elements in the protection of information. Data protection plan.
Moderator: Francisco Lázaro, President of the Quality and Security Group of AUTELSI and CISO of RENFE.
Rafael Hernández González, Head of Strategic IS/Cybersecurity Projects, CEPSA.
Mariano J. Benito Gómez, CiberSecurity & Privacy Ambassador of GMV.
Tomás Gómez Pérez, Head of Cybersecurity Area of the GOVERNMENT OF LA RIOJA.
Carlos Araújo López, CIO & CISO of SERMICRO GROUP.
Workshop Copilot for Security. Applying AI to cybersecurity
22th october, 15:30-18:00
The use of AI is transforming the market and trends in cybersecurity. In the Copilot for Security workshop, topics such as SOC modernisation, cognitive defence, and how cybercriminals are using AI were discussed.
A conventional SOC architecture was redefined by adding an AI layer on top of it and seeing how it behaves live.
Real case studies of AI applied to cybersecurity were also presented.
Organised by Microsoft and the University of León.
"The Future of Decision Making"
23th october, 10:00-11:30
The transition from Command and Control to Mission Command can be accelerated and optimised through the use of advanced technologies such as Artificial Intelligence (AI) and quantum computing. These tools enable more decentralised and autonomous decision-making, improve real-time information management, and strengthen cybersecurity and communications. They also optimise logistics and increase operational flexibility, allowing field units to act more quickly and accurately, aligned with overall strategic intentions.
Activity organised by UNINT (Intelligence Analysis Unit) of the School of Economic Intelligence. UAM.
Networking INCIBE-EMPRENDE
23th october, 12:00-14:00
In this space, the Collaborating Entities of the INCIBE Emprende Programme that are developing the actions of the Programme (talks, workshops, events, incubation, acceleration and express acceleration) in different areas of Spain, made a 5-minute ‘Reverse Pitch’ to tell what they offer, their experiences in the Programme, their conclusions on the situation of the ecosystem in their areas of action, and of course, they offered tips to be followed by entrepreneurs.
In the Workshop, any entrepreneur or potential entrepreneur had the opportunity to learn more about the Collaborating Entities, the ecosystems in which they operate and the actions being carried out within the INCIBE Emprende Programme.
It was aimed at graduates, university students, vocational training and baccalaureate students, cybersecurity or technology-based start-ups and anyone with the idea of entrepreneurship or looking for ideas for entrepreneurship.
Cybersecurity management for property managers
23th october, 16:00-17:00
Participants worked on a case study through which they improved their understanding of the main cybersecurity threats affecting property management firms, the assessment of risks and the implementation of prevention and response measures to ensure the continuation of the business.
*Restricted access
Activity organized by INCIBE-CERT.