36th ANNUAL FIRST CONFERENCE
FIRST is an international confederation of trusted computer incident response teams who cooperatively handle computer security incidents and promote incident prevention programs.
Established in 1990, the Forum of Incident Response and Security Teams, Inc. (FIRST) is an international non-profit association of Computer Security and Incident Response Teams (CSIRTs), Product Security and Incident Response Teams (PSIRTs), and independent security researchers from the public, private, and academic sectors.
FIRST aims to foster cooperation and coordination in incident prevention, to stimulate rapid reaction to incidents, and to promote information sharing between members and the community at large. Membership comprises of over 600 teams with representation from over 100 nations.
Named one of the Top 19 Information Security Conferences of 2020 by TripWire, the FIRST annual conference promotes worldwide coordination and cooperation among computer security and incident response teams.
The conference provides a forum for sharing goals, ideas, and information on how to improve computer security on a global scale. This yearʼs annual conference will be held June 9-14, 2024 Fukuoka, Japan with a virtual option.
FIRST is a front-line enabler in the global response community, providing access to the best practices, tools, and trusted communication. Join us in Fukuoka!
2024 CALL FOR SPEAKERS NOW ACCEPTING SUBMISSIONS!
Submissions will be accepted up to November 30, 2023 at UTC 19:00.
Program Committee
Program Committee members are selected for their expertise in key areas relating to program objectives, regional balance, and previous program & content committee experience.
AGENDA
AT-A-GLANCE
The following Preliminary Agenda has been provided to help participants of the conference plan their travel prior to the publishing of the detailed agenda in march 2024.
Sponsor Highlights
Support the 36th Annual FIRST Conference through sponsorship! The annual conference is by far one of the most unique international assemblies of incident response and computer security professionals. Sponsorship opportunities are limited and are on a first-come, first-served basis.
View Available Sponsorship Packages
-
Local Host
JPCERTCC
JPCERT/CC is the first CSIRT (Computer Security Incident Response Team) established in Japan. The organization coordinates with network service providers, security vendors, government agencies, as well as the industry associations. As such, it acts as a "CSIRT of CSIRTs" in the Japanese community. In the Asia Pacific region, JPCERT/CC helped form APCERT (Asia Pacific Computer Emergency Response Team) and provides a secretariat function for APCERT. Globally, as a member of the Forum of Incident Response and Security Teams (FIRST), JPCERT/CC cooperates with the trusted CSIRTs worldwide. www.jpcert.or.jp/
-
Diamond
CyCraft
CyCraft Technology, established in 2017 and headquartered in Taiwan, stands as a pioneering force in AI plus cybersecurity, bolstered by the support of leading venture capitalists. CyCraft has developed the world’s first autonomous AI platform called XCockpit focusing on scalable identity threat management in AD/Entra ID and fast Incident Response (IR) forensics. This innovative platform is specifically designed to cater to the needs of red-teaming and cyber insurance scenarios. CyCraft’s solutions are particularly vital for organizations, including government agencies, major banks, the defense industry, leading semiconductor foundries and IC design houses. These entities often face the daunting challenge of defending against state-sponsored attacks and notorious ransomware, all while managing limited manpower resources. Furthermore, hundreds of small and medium businesses in Japan are using CyCraft AI to automate endpoint detection and response. CyCraft proudly holds membership in FIRST, the Nippon CSIRT Association, and is an active committee member of the SEMI Cybersecurity Working Group. Please visit CyCraft at cycraft.com.
-
Diamond
LAC
Founded in 1986 as an IT Systems Development business, LAC has a proven track record in the development of financial platform systems and other social infrastructure systems. In 1995, we pioneered the Japan's very first Information Security Service and we are currently the leader in the Cyber Security field in Japan. Utilizing advanced IT Total Solution Services, we offer cutting-edge security technology for our customers including government offices, private companies and organizations. LAC is one of the most experienced managed security service providers in Japan, whose security services are gaining increasing popularity among local businesses due to the evolution of sophisticated cyber-attacks. LAC is a member of FIRST and the Nippon CSIRT Association and is actively involved in various security industry organizations. Since April 2003, LAC, as Team JSOC and later Team LACERT, became the third Japanese member of FIRST, contributing significantly to the community with cyber security awareness in events. Through workshops and active involvement in SIGs, program committees, and FIRST Cyber Threat Intelligence events, LAC has been supportive to enhance community knowledge and engagement. For detailed information on LAC's corporate initiatives, visit www.lac.co.jp/english.
-
Diamond
NISC
The National center of Incident readiness and Strategy for Cybersecurity (NISC) was established on the Basic Act on Cybersecurity in 2015. As the Japanese national cybersecurity center, NISC plays a leading role in the cybersecurity policy in Japan. NISC has a role as the secretariat of the Cybersecurity Strategic Headquarters of Japan as well.
NISC is also the operational body, the Computer Emergency Response Team of the Government of Japan.
As the part of its mandate, NISC monitors and analyzes governmental information systems, provides necessary advice or information and other assistance in ensuring cybersecurity.
NISC also hosts the large-scale cyber exercise called “Cross-Sectoral Exercise” that involves critical infrastructure operators, responsible ministries, and other stakeholder organizations. Moreover, NISC runs the Cybersecurity Council and the Japan cyber-security Information Sharing Partnership (JISP) for enhancing the Japanese public and private partnership in the cybersecurity field.
In December 2022, Japan adopted the National Security Strategy (the NSS), which indicates that it will seamlessly protect its national interests by promoting cross-governmental policies in diverse fields, including the cyber domain.
The NSS states that to ensure secure and stable use of cyberspace, especially the security of the nation and critical infrastructures, the response capabilities in the field of cybersecurity should be strengthened equal to or surpassing the level of leading Western countries.
In order to realize and promote these efforts, the NISC will be constructively restructured to establish a new organization which will comprehensively coordinate policies in the field of cybersecurity, in a centralized manner.
https://www.nisc.go.jp/eng/index.html -
Platinum
Amazon
At Amazon, security is job zero. The Amazon Security organization is central to maintaining customer trust and delivering delightful customer experiences. Our mission is to maintain a high bar for security across all of Amazon’s products and services. Our teams lead in protecting company and customer data by continuously assessing our systems, identifying and evaluating risks, and driving mitigations. www.amazon.com/
-
Platinum
Cisco
Cisco joined FIRST in 1991, recognizing early on that computer security is essential to business. As the worldwide leader in technology that powers the internet, Cisco is focused on security as a strategic enabler now more than ever. Cisco's solutions provide unmatched protection; from Secure Endpoint to Secure Network Analytics, from Duo to Umbrella, Cisco has you covered. As a Cisco customer, you also get SecureX, an unparalleled XDR solution, connecting your entire security portfolio visibility in one place, with automated workflows that maximize operational efficiency. The Cisco Secure Advantage encompasses: 6,500+ endpoint security customers | 15M+ protected endpoints | 70K AMP ecosystem customers | 100M DNS security customers | 200B DNS requests inspected daily | 500K+ authentications per month 6.8B threats blocked daily | 2.2 trillion artifacts analyzed daily – more than any vendor. cisco.com.
-
Platinum
IIJ (Internet Initiative Japan)
Ever since its establishment in 1992 as the first Japanese Internet Service Provider, IIJ has been taken initiatives in the field of Internet technology. By leveraging the technological expertise gained through its Internet connectivity services, the company has expanded its business portfolio as a total solutions provider offering from highly reliable network services, various value-added outsourcing services, including cloud computing, WAN services to systems integration services. In this way, we have grown as a corporate group that responds to customers’ requests for every type of network application with one-stop services.
The IIJ-SECT (IIJ group Security Coordination Team) was formed in 2001 to respond to incidents on the Internet, in particular those involving IIJ equipment or customers. Its chief missions are to identify and analyze incidents occurring on IIJ equipment and coordinate with related organizations. This team consists mainly of members from the Office of Emergency Response and Clearinghouse for Security Information, while also including members from a number of other IIJ organizations involved in areas such as equipment operation and integration.
Since 2002 the team has forged international ties through participation in FIRST, an international group of CSIRTs. It also works on strengthening coordination with other organizations to improve mutual incident response capacity through activities such as participation in the establishment of the Nippon CSIRT Association in Japan. For more information, please visit IIJ at www.iij.ad.jp. -
Platinum
Stairwell
Stairwell is next-generation threat detection and response. Instead of legacy log-based methods, we capture, store, and analyze and reanalyze every interesting file across an enterprise. Our platform uses tailored automation and homegrown AI to help you find what others have missed and instantly tells you if you're affected by the latest threats. This is STAIRWELL: Security operations, Threat Analysis, Incident Response, done WELL. For more information, visit stairwell.com.
-
Gold
Bitdefender
Bitdefender is a cybersecurity leader delivering best-in-class threat prevention, detection, and response solutions worldwide. Guardian over millions of consumer, enterprise, and government environments, Bitdefender is one of the industry’s most trusted experts for eliminating threats, protecting privacy, digital identity and data, and enabling cyber resilience. With deep investments in research and development, Bitdefender Labs discovers hundreds of new threats each minute and validates billions of threat queries daily. The company has pioneered breakthrough innovations in antimalware, IoT security, behavioral analytics, and artificial intelligence and its technology is licensed by more than 180 of the world’s most recognized technology brands. Founded in 2001, Bitdefender has customers in 170+ countries with offices around the world. For more information, visit www.bitdefender.com.
Gold
Bitdefender
Bitdefender is a cybersecurity leader delivering best-in-class threat prevention, detection, and response solutions worldwide. Guardian over millions of consumer, enterprise, and government environments, Bitdefender is one of the industry’s most trusted experts for eliminating threats, protecting privacy, digital identity and data, and enabling cyber resilience. With deep investments in research and development, Bitdefender Labs discovers hundreds of new threats each minute and validates billions of threat queries daily. The company has pioneered breakthrough innovations in antimalware, IoT security, behavioral analytics, and artificial intelligence and its technology is licensed by more than 180 of the world’s most recognized technology brands. Founded in 2001, Bitdefender has customers in 170+ countries with offices around the world. For more information, visit www.bitdefender.com.
-
Gold
Deloitte Tohmatsu Cyber
Deloitte Tohmatsu Cyber LLC, a member of the Deloitte Tohmatsu Group, is a professional services company providing cyber security services. We are offering expert, broad advisories ranging from formulating cybersecurity strategies, assessing IT/OT networks to providing operational services such as IT asset management, incident response, security-monitoring, and more. We also own the R&D laboratory which engages in the research and development of emerging technologies related to cyber security. Through our extensive knowledge and experience, we support the sustainable growth and competitiveness of clients. www2.deloitte.com/ | www2.deloitte.com/jp/ja/pages/risk/topics/cyber-risk.html
Gold
Deloitte Tohmatsu Cyber
Deloitte Tohmatsu Cyber LLC, a member of the Deloitte Tohmatsu Group, is a professional services company providing cyber security services. We are offering expert, broad advisories ranging from formulating cybersecurity strategies, assessing IT/OT networks to providing operational services such as IT asset management, incident response, security-monitoring, and more. We also own the R&D laboratory which engages in the research and development of emerging technologies related to cyber security. Through our extensive knowledge and experience, we support the sustainable growth and competitiveness of clients. www2.deloitte.com/ | www2.deloitte.com/jp/ja/pages/risk/topics/cyber-risk.html
-
Gold
PwC
In recent years, very sophisticated, strategic and organized cyber attacks have increased. Attackers' technology levels are constantly evolving, outpacing various defenses. PwC conducts co-ordinated attacks against client companies based on the tactics, techniques, and procedures of real attackers to identify vulnerabilities and evaluate resilience capabilities. In addition, we will provide necessary responses and measures based on the evaluation according to the needs of clients' business operations. www.pwc.com/gx/en.html
Gold
PwC
In recent years, very sophisticated, strategic and organized cyber attacks have increased. Attackers' technology levels are constantly evolving, outpacing various defenses. PwC conducts co-ordinated attacks against client companies based on the tactics, techniques, and procedures of real attackers to identify vulnerabilities and evaluate resilience capabilities. In addition, we will provide necessary responses and measures based on the evaluation according to the needs of clients' business operations. www.pwc.com/gx/en.html
-
Silver
Censys
The Censys Platform is the leading internet intelligence platform for threat hunting and exposure management. Censys empowers governments, enterprises, and researchers with the most comprehensive, accurate, and up-to-date map of the internet to defend attack surfaces and hunt for threats. censys.com
-
Silver
Corelight
Corelight transforms network and cloud activity into evidence that security teams use to proactively hunt for threats, accelerate response to incidents, gain complete network visibility and create powerful analytics. Corelight's global customers include Fortune 500 companies, major government agencies, and large research universities. Based in San Francisco, Corelight is an open-core security company founded by the creators of Zeek®, the widely-used network security technology. For more information, visit https://corelight.com or follow @corelight_inc.
-
Silver
Fortinet
Fortinet® (NASDAQ: FTNT), is a global leader in broad, integrated and automated cyber security solutions to CSP's around the world. Fortinet’s security solutions and ecosystem delivers security that is tailored for and integrates with the current and evolving infrastructure and technologies of today’s Mobile Network Operators and Managed Service Providers. Please visit Fortinet at www.fortinet.com.