top of page

φ Talks

Open dialogues on topics of interest.

Voices that need to be recognized.

Emerging technologies in cyber security. 

Open dialogues with clients.

The things that make the difference. 

Exchange of ideas

I will make public the still unheard voice of the industry I belong to through honest dialogues with experts in the field, on advanced or interesting topics.

News from CyberSecurity

You will learn about the latest developments in cybersecurity at a global level. 

Comparative analyzes of emerging technologies, documented opinions about new strategic directions. 

Discussions with clients

Assumed, honest discussions about the lessons learned by the client and the consultant. 

Past events

NIS and NIS 2 Directive. Practical approaches
Friday, March 22, 2024

55 participants

32 Companies

180 minutes of content

In an ever-evolving digital world, cyber security has become a necessity.

The attackers have already started to touch critical areas of society and are already impacting essential life services.

Information security management becomes an important component of company governance and the need to orchestrate business security and resilience (processes, people, technologies) in a coherent framework, becomes an imperative for any business.  

This webinar was a unique opportunity for professionals in the fields of IT and cyber security, security managers and management of essential service operators to learn and better understand the challenges and solutions related to the implementation of a management system specific to the NIS Directive.

With the help of Mădălin Bratu, founder of Sectio Aurea, a cybersecurity consultant with 20 years of experience, along with a panel of experts, this webinar provided valuable insights and practical approaches to successfully meet the requirements of the NIS Directive and implement a integrated security management system.

Agenda and Speakers:

  • Mădălin Bratu - "Security management. How to simplify something that seems complicated?".

    • Mădălin will share simple and effective mechanisms for a live security management system in the organization, in accordance with the provisions of the NIS Law. It will give practical and applied examples on critical areas of the law, applied through digitization of processes.

  • Ilie Voinea - "NIS 2 Directive: News and the impact on operators of essential services".

    • Ilie will give his opinion on the changes brought by the NIS 2 Directive, highlighting the additional requirements and practical approaches for compliance.

  • Open Panel with Mădălin Bratu and Virgil Pascu - "Strategic management decisions: Technologies, Processes, People, Digitization".

    • This open dialogue between Mădălin Bratu and Virgil Pascu, an IT professional in the field of water, explored concrete solutions and challenges in the implementation of the NIS Directive on concrete cases. Raja is a difficult environment in which you can manage security risks because it is the largest regional public operator in Romania in the field of supplying the population with drinking water and wastewater treatment and serves over three million beneficiaries from the counties of Constanța, Ialomița, Călăraşi, Ilfov, Dâmbovița, Braşov and Bacău.

  • Ovidiu Cucos, Demo - "Digitalization of the implementation of NIS requirements: Case study for vulnerability management through technologies fromQualys".

    • A cybersecurity specialist with almost 7 years of operational experience in this technology, demonstrated practically, guided by Madalin Bratu, how to quickly implement the asset management process and vulnerability management throughQualys.

Speakers

DSC03918.jpg

Madalin Bratu

CISM,

NIS Certified Auditor

CEO

Sectio Aurea

Madalin Bratu, founder of Sectio Aurea, with a professional experience of 20 years in IT. His experience covers a wide range of fields, from cybersecurity and IT service management to process management, hardware and software maintenance, and advanced consulting in secure information governance.

Madalin Bratu spent a decade working at IBM, where he contributed to some of the most sophisticated service projects in Central and Eastern Europe. He played a key role as Global Portfolio Manager for Cybersecurity Services at Atos - Eviden, one of the leading multinationals in the field of cybersecurity, managing global cybersecurity projects in areas such as identity management and cloud security. His experience also includes valuable contributions to local companies, such as Safetech Innovations, one of the most dynamic cybersecurity firms in Romania.

Through Sectio Aurea, he offers unique, flexible, and relevant services. The company's business model, refined over nearly 5 years, is based on an innovative concept - that of microservices. Madalin is accompanied by a carefully selected team of experts and authoritative voices in the field of cybersecurity (CISO, DPO, CIO, architects), with whom he has built a healthy professional relationship through successful projects. This relationship has led to the optimization of an innovative delivery method (microservices in audit and consulting). These experts are actively involved in solving the challenges you face, ensuring customized and high-quality solutions.

 

Madalin has served many clients as a consultant in the implementation of the NIS Directive across various sectors (water companies, banking, utilities) but has also participated as a certified NIS auditor in various audit missions in complex or difficult-to-analyze environments. Most of his clients recommend him from the level of general director to IT Managers, Security Managers, and technical managers.

Ilie voinea.jpg

Ilie Voinea

CISM,

Auditor Atestat NIS

With an impressive experience accumulated over 15 years of IT management in the pharmaceutical sector and four years in a key position as a Data Protection Officer (DPO), Ilie Voinea stands out as a renowned expert in the field of data protection and information security. His significant role as DPO in one of the most rigorously regulated sectors highlights a deep understanding and practical approach in managing and protecting sensitive data, as well as maintaining compliance in complex IT environments.

His expertise is not limited to the pharmaceutical field; Ilie has actively contributed to the broader cybersecurity community, participating in focus groups organized by ISACA and co-authoring the significant publication ISACA - PRACTICAL GUIDE FOR OSE, which serves as a manual for implementing security measures in networks and information systems. These contributions underline his commitment to the continuous improvement of cybersecurity and data protection at both national and international levels.

Recently, Ilie is an active member of the working group of the National Directorate for Cybersecurity, contributing to the adaptation and implementation of the NIS Directive 2 requirements into Romanian legislation. As a certified NIS Auditor, Ilie brings a level of expertise and integrity recognized in evaluating and certifying compliance with cybersecurity standards, further consolidating his status as a thought leader in the field.

At the webinar, Ilie Voinea will share the latest directions and challenges in implementing the NIS Directive 2 in Romania, offering valuable insight into its impact on national cybersecurity and organizational compliance. His presentation will provide participants with essential information and practical recommendations to successfully navigate the ever-changing landscape of cybersecurity.

virgil pascu.jpg

Virgil Pascu

IT Manager

RAJA S.A.

With an impressive experience of over 18 years in coordinating IT and OT departments at RAJA S.A., Virgil Pascu stands out as an innovative and dedicated leader in the field of information and communications technology, as well as SCADA systems. Leading the most important technological directions within the largest public regional operator in Romania in the field of drinking water supply and wastewater treatment, Virgil has demonstrated a remarkable ability to oversee IT&C and SCADA system security, direct operations, and set priorities between system development, maintenance, and operations.

His responsibilities include selecting and installing IT&C and SCADA resources, analyzing informational needs and specifying technologies to meet these needs, formulating and directing IT&C and SCADA strategies, policies, budgets, and plans. Virgil ensures that all operational systems and network components are secure, continuously reviewed, and improved. Additionally, he manages the team through recruitment, selection, orientation, and training, maintaining a safe and secure work environment and developing personal growth opportunities for employees.

By analyzing business impact and coordinating the implementation and maintenance of the business continuity system, Virgil Pascu plays a key role in minimizing the negative impact of threats on the company. He also provides consultancy on the appropriate technology and infrastructure to support the business objectives of the board of directors and directs the Security Operations Center he developed, maintaining a high level of cybersecurity in the company's IT and OT networks.

Ovidiu Cucos.jpeg

Ovidiu Cucos

Information Security Officer,

Vienna Insurance Group Management Service

Ovidiu Cucos is an expert in information security and risk management, with a distinguished career focused on protecting critical assets and information. His experience covers a wide range of essential areas, including Security and Risk Management, Asset Security, Identity and Access Management, Security Assessment and Testing, Security Operations, Incident Management, Incident Investigation, Incident Response, and Forensic Computing.

With a crucial role in analyzing and mitigating vulnerabilities, Ovidiu actively participates in Business Continuity Planning (BCP) exercises, focusing on implementing and managing physical security, addressing concerns related to the safety and security of personnel. He is also responsible for monitoring and auditing compliance with internal and external information security and cybersecurity policies.

His technical expertise includes working with SIEM & DLP Trellix, MDM, Qualys for vulnerability assessment, Burp, and PAM, demonstrating a remarkable ability to analyze security events and incidents. Ovidiu is a leader in establishing processes and protocols for triage, escalation, and remediation, managing escalated incidents in a prompt and efficient manner.

Holding a deep knowledge of best practices in incident, problem, and change management, his solution-oriented approach makes him a valuable panelist for any online event focusing on the latest trends and innovations in cybersecurity and risk management.

Ovidiu Cucos represents an invaluable resource for any organization, dedicated to protecting essential information and assets against increasingly sophisticated threats in today's digital environment.

Certifications

The people we work with have at least 5 years of experience in organizations of high complexity  (multinationals), with extensive experience in management and complex projects.
Most are opinion leaders, respected professionals. IT Managers, Security Managers, CISOs, DPOs, Architects.

We cover a wide range of certifications in very advanced or specialized fields, from cybersecurity, privacy, security management or information systems auditing.  

Highlights workshop 

68 participants

67 companies 

Gas distribution

Rail transport

Water distribution

Port administration

Private medical

Electricity distribution

Banking

Road transport

Workshop theme 

Staging of the implementation and recommendations for the preparation of the documentation. 
 

What are the main stages of implementation?

What is the approach for each stage?

How do you prepare the work documentation?

What are the most common mistakes and how can you avoid them?

Which are techthe mandatory ologies of the law and what are the minimum options? Basic architectural models based on open source / COTS solutions

Speaker. Madalin Bratu, General Director of Sectio Aurea.

Traininga for audit

How to structure the audit records as best as possible and how to naturally implement the operational procedures?

How to clearly request NIS audit services?

Open panel: Madalin Bratu, General Director of Sectio Aurea and special guest, Ilie Voinea.

Technical case study presentation

 

Innovative ICT application for ensuring the protection of cyber attacks at the level of critical industrial infrastructures.

Speaker: Cosmin Macaneata, Managing Partner Omega Trust.

Speakers

Madalin Bratu has 5 years of applied experience in consulting projects in the definition of informational security strategy, turnkey projects and security audit projects. 

Madalin was and is involved in consulting for the implementation of the NIS Directive in several essential organizations and is involved in the coordination of cyber security projects in Romania and worldwide. 

Ilie voinea.jpg

Ilie has a solid foundation in terms of cyber security, with at least 15 years of experience in IT management in the field  pharma and for 4 years he has the role of DPO in the same field.

cosmin macaneata.jpg

Cosmin is a specialist with a long experience in IT auditing and cyber security since 2004. Cosmin is a Managing Partner at Omega Trust. The Omega Trust company specializes in the area of cyber security auditing and testing, it is an NIS accredited auditor.

Upcoming Events

  • 22 Mar 2024, 10:00 – 12:50 EET
    Online
    Do you want to know if you are prepared for an audit on the NIS Directive? Participate in this open online session with a company accredited by DNSC for this audit. You will dialogue with specialists with applied experience in the implementation or audit of this Directive.
  • 03 Feb 2023, 10:00 – 11:40 EET
    Online
    Do you want to know if you are prepared for an audit on the NIS Directive? Participate in this open online session with a company accredited by DNSC for this audit. You will dialogue with specialists with applied experience in the implementation or audit of this Directive.
  • 04 May 2022, 10:00 – 11:00 EEST
    Online
    We invite you to an open, honest and committed dialogue on the topic. In which we will share our opinion and experience gained. After an NIS Audit with a positive opinion. Alin Moscalu, Head of IT Service, Apa Vital Iasi. Elena Lacatusu, NIS Manager. Vital Water Iasi. Madalin Bratu, CEO & Delivery Lead Sectio Aurea
  • 19 Nov 2021, 10:00 – 11:00
    Microsoft Teams
    Learn to quickly, effectively and intelligently implement the requirements of Law no. 362/2018 (EU Directive 2016/1148, or NIS Directive). Find out what the security risks are and the impact of cyber security incidents on ICS Scada Infrastructure.
  • 10 Sept 2021, 11:00 – 12:20
    Microsoft Teams
    Learn to quickly, effectively and intelligently implement the requirements of Law no. 362/2018 (EU Directive 2016/1148, or NIS Directive).
  • 22 Mar 2024, 10:00 – 12:50 EET
    Online
    Do you want to know if you are prepared for an audit on the NIS Directive? Participate in this open online session with a company accredited by DNSC for this audit. You will dialogue with specialists with applied experience in the implementation or audit of this Directive.
  • 03 Feb 2023, 10:00 – 11:40 EET
    Online
    Do you want to know if you are prepared for an audit on the NIS Directive? Participate in this open online session with a company accredited by DNSC for this audit. You will dialogue with specialists with applied experience in the implementation or audit of this Directive.
  • 04 May 2022, 10:00 – 11:00 EEST
    Online
    We invite you to an open, honest and committed dialogue on the topic. In which we will share our opinion and experience gained. After an NIS Audit with a positive opinion. Alin Moscalu, Head of IT Service, Apa Vital Iasi. Elena Lacatusu, NIS Manager. Vital Water Iasi. Madalin Bratu, CEO & Delivery Lead Sectio Aurea
  • 19 Nov 2021, 10:00 – 11:00
    Microsoft Teams
    Learn to quickly, effectively and intelligently implement the requirements of Law no. 362/2018 (EU Directive 2016/1148, or NIS Directive). Find out what the security risks are and the impact of cyber security incidents on ICS Scada Infrastructure.
  • 10 Sept 2021, 11:00 – 12:20
    Microsoft Teams
    Learn to quickly, effectively and intelligently implement the requirements of Law no. 362/2018 (EU Directive 2016/1148, or NIS Directive).
DSC03918.jpg

Madalin Bratu, founder of Sectio Aurea, with a professional experience of 20 years in IT. His experience covers a wide range of fields, from cybersecurity and IT service management to process management, hardware and software maintenance, and advanced consulting in secure information governance.

Madalin Bratu spent a decade working at IBM, where he contributed to some of the most sophisticated service projects in Central and Eastern Europe. He played a key role as Global Portfolio Manager for Cybersecurity Services at Atos - Eviden, one of the leading multinationals in the field of cybersecurity, managing global cybersecurity projects in areas such as identity management and cloud security. His experience also includes valuable contributions to local companies, such as Safetech Innovations, one of the most dynamic cybersecurity firms in Romania.

Through Sectio Aurea, he offers unique, flexible, and relevant services. The company's business model, refined over nearly 5 years, is based on an innovative concept - that of microservices. Madalin is accompanied by a carefully selected team of experts and authoritative voices in the field of cybersecurity (CISO, DPO, CIO, architects), with whom he has built a healthy professional relationship through successful projects. This relationship has led to the optimization of an innovative delivery method (microservices in audit and consulting). These experts are actively involved in solving the challenges you face, ensuring customized and high-quality solutions.

 

Madalin has served many clients as a consultant in the implementation of the NIS Directive across various sectors (water companies, banking, utilities) but has also participated as a certified NIS auditor in various audit missions in complex or difficult-to-analyze environments. Most of his clients recommend him from the level of general director to IT Managers, Security Managers, and technical managers.

bottom of page