Operating critical digital infrastructure means accepting an inevitable reality: you will be attacked, likely multiple times, by sophisticated adversaries who adapt in real time. Finansiell ID-Teknik - BankID, Sweden's national identity infrastructure handling billions of transactions annually, has faced serious nation-state-level attacks including week-long volumetric DDoS campaigns where adversaries monitored and countered defensive measures as they were deployed.

In this session, led by Andreas Bergqvist, CISO/chief security officer, Finansiell ID-Teknik - BankID, you will learn:

• How to integrate security from code review through production using independent verification at each stage;
• Crisis communication strategies that maintain trust and control the narrative during active attacks;
• Why continuous training, external partnerships and gradual implementation of security tools are essential for effective incident response.