PwC Cybersecurity & Privacy Day - 12 March 2026 - Our speakers

Sadia Berdai leads the AI Innovation and Technology Division, where she guides supporting measure on emerging technologies and their responsible deployment. Her work focuses on shaping forward‑looking approaches to AI governance, fostering collaboration across sectors, and supporting the development of trustworthy, human‑centred innovation. She brings a nuanced understanding of both technological potential and regulatory ambition, contributing to national and European efforts.

20 years of experience in the corporate world; industry, IT and in particular the financial sector. A series of life-events and my passion for human performance led me to explore a different path in life. I learned certified techniques that got me back on track personally and profoundly changed my own life. Since that moment I started facilitating companies, leaders and athletes with unlocking their full potential and achieve their goals more quickly.

Alessandro is Director in the anti-financial crime & forensic services and part of PwC since 2015.

With 12 years of experience, he has led major AML engagements and has acted as a senior expert during supervisory interactions, including onsite inspections by regulatory authorities. He regularly oversees AML/KYC programmes covering customer due diligence remediation, screening enhancements, and comprehensive risk assessments for banks and asset management entities.

Alessandro has also reviewed, strengthened and redesigned Anti Financial Crime policies, procedures and process to align with evolving European and local regulatory expectations. His work supports top tier financial institutions in achieving regulatory compliance, enhancing governance, and embedding robust AML/CTF and Sanctions controls across their organisations, including new technologies.

Maxime is a Senior Manager within the Cybersecurity Advisory team of PwC Luxembourg. He develops his ethical hacker skills by committing himself to various assignments for big companies, banks, and European institutions. As a technical specialist, he takes part in penetration tests, incident response, vulnerability assessment, and information security advisory.

He contributes to the development of the team’s hacking capabilities by sharing the results of his technology watch and R&D and is now leading the CSIRT and Threat Intelligence initiatives of PwC Luxembourg. He especially enjoys sharing knowledge by presenting his results or by giving talks and training courses. Maxime teaches IT security at a French engineering school.

After 15 years in Human Resources in Luxembourg, including 4 years as an independent consultant, I felt the need to bring something new to people. 

I came across tools that deeply change my perception of myself and about the world surrounding me. Hence, it became obvious for me to help others with transforming their mindset and their physical state into a more balanced mental and physical well-being.

Edouard is a Cybersecurity Manager at PwC Luxembourg, specializing mainly in incident response and digital forensics. He has experience reviewing and improving Azure and Microsoft 365 security setups and helping build monitoring and SOC operations in those cloud environments. With a hands-on, generalist mindset, he also works in threat hunting, malware analysis, and security architecture, moving easily between real-world incidents and deep technical work to make existing infrastructures defensible.

Thomas Fargeix is a Cybersecurity Senior Manager at PwC Luxembourg. With over a decade of experience, Thomas helps organisations secure their IT infrastructures through architecture reviews, penetration testing, and implementation of advanced security solutions. He has led projects for European institutions and private sector clients, including the security of their facility management networks, focusing on hardening Windows and Linux environments, deploying PKI, and improving security operations for IT/OT/IoT networks.

Mr Ben Fetler has been part of the Luxembourg Directorate of Defence since October 2019. As Head of Cyber, he oversees the strategic and operational activities of the cyber team. At the Directorate of Defence, he contributed to the development of the first Luxembourg Cyber Defence Strategy and is in charge of coordinating the identification and development of cyber defence capabilities such as the Luxembourg Cyber Range and the Luxembourg Cyber Defence Cloud. He represents the Luxembourg Directorate of Defence in various national and international cyber defence and cyber security working groups, ensuring that Luxembourg meets its national and international cyber defence commitments.

Vincent is an experienced Information Security professional with over 10 years of expertise in cybersecurity audits, risk management, and governance. Proficient in leading strategic initiatives in multinational environments and navigating complex regulatory landscapes. Currently serving as acting CISO for a client, he provides strategic cybersecurity oversight and enterprise-wide security program management. Actively involved in developing AI Security practice at PwC Luxembourg, with focus on data governance frameworks for responsible AI implementation. Experienced in Digital Operational Resilience (DORA) compliance, cloud security initiatives, and third-party risk management. Skilled in multiple languages (French, English, Hungarian, Arabic), offering a global perspective to security challenges.

Certifications: CISSP, CISA, ISO27001 Lead Auditor

Hayk is a Cybersecurity Manager and seasoned penetration tester with a strong background in red teaming and adversary simulation. His work spans complex assumed-breach scenarios and stealth operations targeting mature and modern enterprise environments, with a particular focus on hybrid cloud infrastructures. Through his experience supporting client SOC operations in Azure, he also brings a solid purple-team perspective, helping bridge offensive tactics with defensive detection and response. This blend of hands-on attack expertise and operational defense enables him to turn real-world threat insights into practical advice for our clients.

Antoine is a Cybersecurity Senior Manager specialising in ethical hacking, with 10 years of professional experience delivering offensive security engagements for private companies, banks, European institutions, and public-sector entities. He has reported six CVEs and regularly performs advanced penetration testing and adversary simulation activities, while also supporting incident response and security advisory work

Jihane Guelzim is a Cybersecurity Senior Associate at PwC Luxembourg. With 6 years of experience, Jihane supports organisations in strengthening their security posture through advisory on information security, risk assessments and support for ISO 27001 certification. She has worked on projects for private companies, European institutions, and internal PwC initiatives, including maturity assessments, development of ISO/IEC 27001 audit tools, risk analysis, definition of information security frameworks, and support for facility management solutions implementation

Ines Haddar is a Senior Manager in the Forensic Services team at PwC Luxembourg, bringing over 15 years of experience in forensic accounting, fraud investigations, anti‑bribery and corruption compliance, and financial crime prevention.

She has led and supported complex multi‑jurisdictional investigations across Europe, Africa, the Middle East, and Canada, with a strong focus on uncovering sophisticated fraud schemes, many of which increasingly involve cyber‑enabled document manipulation. Her work includes forensic audits and integrity assessments related to fraud, embezzlement, money laundering, and corruption, as well as proactive integrity reviews for institutions managing EU funds where document authenticity and traceability are critical.

Ines also advises clients on building and enhancing compliance management systems aligned with major international frameworks such as the FCPA, UK Bribery Act, and Loi Sapin II. She leverages data analytics and behavioural science techniques to strengthen internal controls, detect anomalies, and support organisations in their broader fraud‑risk management efforts.

Her combination of investigative experience, compliance expertise, and understanding of emerging fraud vectors positions her at the intersection of financial crime and technology, supporting organisations in integrating AI‑driven document forensics into their defence and control frameworks. 

Alain Herrmann joined the Luxembourg National Commission for Data Protection (CNPD) in 2012. Appointed Commissioner in 2021, he currently oversees the “Compliance” and “Artificial Intelligence, Innovation and Technologies” divisions. His work focuses on AI governance, responsible innovation, GDPR certifications, international data transfers, EU large‑scale IT system audits and digital regulatory frameworks. He is actively contributing to preparing the CNPD for its new responsibilities under the AI Act and the Data Governance Act.

Bertrand Navarre has more than ten years of experience in the field of data protection compliance of public administrations which led him to build knowledge in related fields such as public archiving, whistleblowing procedures, staff regulation and access to documents. Since 2018, he is the DPO of the National Data Protection Commission (CNPD). Before joining the CNPD, he was assistant to the DPO of the Court of Justice of the European Union.

John leads the Data Protection & Artificial Intelligence Legal Team at Revolut, one of the world's fastest-growing and most profitable FinTechs. With over 70 million customers globally, John must daily translate the fragmented patchwork of data laws into clear, actionable and pragmatic legal advice for a business with unlimited global ambition.

Mathilde is a Senior Associate in Cybersecurity with hands-on experience in securing and monitoring network infrastructures. Her work focuses on cyber risk assessments, infrastructure security testing and regulatory compliance, including DORA assessments for both private companies and European institutions. She is also actively involved in Identity and Access Management (IAM) projects, where she helps clients improving access rights and profiles management, especially within Azure environments. She works closely with clients to strengthen their security posture while aligning technical controls with regulatory and operational requirements.

Samantha is the Global Head of Privacy, Risk & Compliance and Global Data Protection Officer at Bolt, where she leads a global team overseeing privacy, risk, and compliance across the company. In this role, she is responsible for the strategic direction of Bolt’s global privacy programme and the management of core functions including privacy legal, office of the DPO, employee health & safety, sustainability, data & systems, legal operations, and risk & compliance. She trained in private practice at Fieldfisher before moving in-house, where she built extensive experience as privacy counsel across industries including technology, pharmaceuticals, energy, automotive, consumer goods, marketing, and entertainment. Over her career, she has advised global organisations such as Spotify, Vodafone, BP, Astellas Pharmaceuticals, Coty Inc., Dentsu Aegis Network, WABCO, and Yum! Brands. She has a proven track record of building high-performing teams from the ground up and developing smart compliance solutions that balance innovation with business risk. Her approach ensures that trust, governance, and accountability are embedded into business strategy, enabling organisations to innovate and scale responsibly at pace on a global level.

Stefan Schiffner has been Professor of Computer Science (Privacy/ Dataprotection) at H-BRS since September 2025. Prior to that, he was Professor of IT Security and Computer Networks at the Hamburg University of Cooperative Education since October 2022. Since 2012, he has researched and taught privacy-friendly technologies at the WWU Münster, the University of Luxembourg and the TU Darmstadt. Between 2013 and 2017, he interrupted this research to work for the European Cybersecurity Agency ENISA. 

Stefan Schiffner was educated at the TU Dresden (D) and the KU Leuven (B), where he completed his studies with a diploma in computer science and a doctorate.

In addition to technical topics, he is also interested in the social and ethical implications of technology. In this context, he is an advisory board member of Europrivacy, an organisation that maintains a certification scheme under Art. 42 GDPR. This interest is also reflected in his research on privacy in location-based services.

Martino is a Senior Information Security Consultant specialized in Ethical Hacking. During his academic and professional career, Martino developed a cybersecurity mindset and a background in vulnerability assessment, penetration testing and research, which now leverages to provide advice and insights. Over the years, Martino has worked with organisations across both private and public sectors on a wide range of engagements, including large‑scale external attack surface assessments and penetration testing of web, mobile, desktop and LAN environments.

Michael Weis joined PwC Luxembourg in 2001 and is today the Financial Crime and Forensic Services Leader. He is regularly leading international and local forensic investigations and anti-money laundering (AML) projects with a specialisation on the Banking and Asset Management industry. He is qualified as a Certified Professional Int. Dipl. (Compl.), FICA, Certified Fraud Examiner (CFE) and ACFE.

Dr Sébastien Ziegler serves as President of the Europrivacy International Board of Experts, the Privacy and Data Governance Symposium, and the International Internet of Things Forum (IoT Forum). He also serves as Director of the foundation Mandat International, and has served as Rapporteur on Emerging Technologies at the ITU (SG20). He has been actively contributing to over 30 European and international research projects. Sébastien has a PhD in Information Systems. He graduated in International Relations at the Graduate Institute of International Studies, followed by a Master in Environment, a MBA in international administration (HEC Geneva), and complementary executive courses at Harvard Business School in Boston, Stanford University, UC Berkeley and EPFL. Founder of several organisations, he is actively involved in research, innovation, and international cooperation.