Purpose of the Network

As artificial intelligence transforms the digital landscape, organizations face an unprecedented convergence of opportunity and risk. This network brings together legal, compliance, and technology leaders to explore the critical intersection of AI and cybersecurity, from emerging threats such as data poisoning and AI-generated deepfakes to the complex regulatory frameworks reshaping European compliance, including NIS2, the Cyber Resilience Act, and beyond. Our agenda is deliberately dynamic: members shape the topics for each session, ensuring we address the most pressing vulnerabilities and governance challenges as they emerge. By fostering global collaboration and practical knowledge exchange, we equip participants to navigate supply chain risks, strengthen board-level oversight, and build organizational resilience in an era where AI is redefining both the threats we face and the tools we use to defend against them.

List of topics for next season:

The agenda is highly dynamic, with members influencing topics for upcoming sessions to ensure we address the most pressing vulnerabilities in the digital landscape.Cybersecurity Under the EU AI Act: Key Points for Practitioners

• Trends in 2026: AI Agents, AI redefines software lifecycle, Cloud 3.0., etc.
• Regulatory Framework and Scope: Accuracy, Robustness, and Cybersecurity
• Interaction with Other EU Cybersecurity Legislation
• Obligations for Providers and Deployers
• Conformity Assessment and International Standards
• Enforcement and Penalties
• Practical Considerations

Attention points in the event of a cyber attack

• Role of legal in cyberattacks
• The first hours (privilege, team, forensics etc.)
• Cyber insurance
• Board & Executive management
• Regulatory mapping and timelines
• Law enforcement
• Notification, Third parties, supply chain
• Enforcement, Litigation, Monitoring

Cybersecurity Compliance Across Europe

• What are the critical compliance obligations?
• The Evolving EU Cybersecurity Regulatory Landscape ( NIS 2, CRA, CER, DORA, AI Act and sector specific considerations)
• Enforcement Trends and Regulatory Expectations. Where country‑specific nuances are important, the speakers can address those directly in their sessions.
• Cross-Border Compliance Challenges
• Practical Compliance Recommendations
• Key Takeaways

ICT Supply Chain & Third-Party Risk

• Key Legal and Regulatory Frameworks
• Core Risk Categories (Cybersecurity, Operational, Compliance, Concentration)
• Governance and Program Structure
• Due Diligence and Assessment
• Contractual Protections
• Ongoing Monitoring and Oversight
• Incident Response and Breach Management
• Key Takeaways for Legal and CISO Collaboration

AI Governance & Accountability

• Risk-Based Classification Framework
• Obligations for High-Risk AI Systems
• Transparency and Disclosure Requirements
• Accountability Framework and Allocation of Responsibility
• Civil Liability Considerations
• Documentation and Record-Keeping for Liability Purposes
• Serious Incident Reporting and Post-Market Obligations
• Key Considerations for Practitioners

Who is the target group? 

This group brings together General Counsel, AI Officers, and technical leaders like CIOs and CISOs, as well as lawyers and senior advisors tasked with overseeing cybersecurity and AI governance both strategically and operationally within their organisations.

What do the participants gain from this network?

Participants gain cutting-edge expertise at the intersection of AI and cybersecurity while building valuable cross-jurisdictional connections with peers facing similar challenges. For organizations, the network provides strategic insights for navigating regulatory complexity, strengthening cyber resilience, and contributing to the broader debate on AI regulation.