Small and Medium-size Enterprises (SMEs) are an important driver for innovation and growth all over the world. At the same time, SMEs also stand to gain the most from innovative technologies that promise convenient deployment and economical operation of ICT. Taking into account cyber-security, SMEs do not always understand all the risks and business consequences for the development of technologies without the adequate level of protection against cyber-crime. The European Union Agency for Network and Information Security (ENISA) declares in the "Information Security and Privacy Standards for SMEs" study of 2016 that, despite rising concerns about information security risks, the level of SMEs information security and privacy standards adoption is relatively small. The project SMESEC aims to develop a cybersecurity framework that offers different tools for supporting the day to day ICT operation of organizations. This way, our solutions range from monitoring tools to antivirus or risk analysis, etc. All these functionalities are offered in an independent way from the framework, facilitating to companies they can buy and use only the ones they really need for their business and requirements. Additionally, and as a complement to the security tools, the project also offers cybersecurity training and awareness for employees, managers, etc.

The workshop is collocated with the 21st International Symposium on Research in Attacks, Intrusions and Defenses ( RAID 2018)

Important Dates

Invitations Deadline: July 10, 2021
Authors’ confirmation: August 1, 2021
Final programme release: August 10, 2021

Workshop Schedule

The workshop will consist of two parts a technical one and a non-technical one. The technical part of the workshop will include invited papers covering the following fields:

  • Threat and security models for ICT systems and communication networks
  • Security architectures and frameworks suitable for SMEs and enterprises
  • Security validation for Small and Medium-sized Enterprises
  • SME-oriented Hardware security, Cryptographic engineering
  • Intrusion Detection, Intrusion Prevention
  • Secure Software Development, Malicious Code Analysis
  • Identity and access management
  • Privacy Enabling Technologies
  • Deception technologies
  • Security training
  • Risk assessment – safety and security
  • Threat detection threat mitigation, Incident management for SMEs
  • Digital Forensics
  • Anonymization and Pseudonymization technologies

The non-technical part of the workshop will include invited speakers to address with matters such as:

  • Cybersecurity framework accessible to SMEs
  • Recommended Practices towards GDPR compliance
  • Personal Data definition and handling practises
  • Data Protection Officer role
  • Certification of Data Protection Officer


Program Chairs

Sotiris Ioannidis Foundation for Research and Technology Hellas (FORTH)

Our Speakers

Dr Kostas Lampropoulos

Research Associate
University of Patras

Argyro Chatzopoulou

Head of Corporate Governance Division
TUV Austria Hellas

speaker img

Jose Fran. Ruiz

Senior Cybersecurity Consultant and Technical Project Manager

Bilge Yigit Ozkan

Utrecht University

speaker img

Christos Tselios

Senior Researcher

Dov Murik

Research Staff Member

Dr. Abbas AHMAD

Research Staff Member
Easy Global Market (EGM)

Dr. Vassilis Prevelakis

Director of Research
AEGIS IT Research Ltd

Schedule Detail

  • 9.00

    Welcome address

    By: Sotiris Ioannidis
  • 9.15

    Assessing and Improving Cybersecurity Maturity for SMEs

    By: Bilge Yigit Ozkan
  • 9.45

    Blockchains for businesses:
    We are not there yet.

    By: Dr Kostas Lampropoulos
  • 10.10

    Digital Forensics Investigations for SMEs

    By: Dr Vassilis Prevelakis
  • 10.40

    Coffee Break

  • 11.10

    Compiler-based moving target protection for Return Oriented Programing attacks on an industrial IoT device

    By: Dov Murik
  • event speaker


    A comprehensive technical survey of contemporary cybersecurity products and solutions

    By: Christos Tselios
  • 12.10

    Model Based Security Testing (MBST) & Test as a Service (TaaS)

    By: Dr. Abbas AHMAD
  • 12.40

    End of technical session

  • 14.00

    Welcome address

    By: Kostas Lampropoulos
  • 14.15

    Role and responsibilites of the DPO in SMEs

    By: Argyro Chatzopoulou
    Head of Corporate Governance Division
    TUV Austria Hellas
  • 15.40

    DEFeND: A data governance framework for supporting GDPR

    By Beatriz Gallego
    Cybersecurity Researcher, Atos Spain
  • Jose Fran. Ruiz


    Cybersecurity for small and medium-sized enterprises

    A lightweight Cybersecurity framework for thorough protection

    By Jose Fran. Ruiz
  • 16.20

    End of workshop

Since the number of participants is subject to availability, you are advised to contact us prior to attending


1st SMESEC Workshop workshop is supported by SMESEC project

Participants are not required to pay a registration fee, however they must complete the following form

Registration Form

Contact Us

Organizing Committee: Manos Athanatos athanat [at] ics.forth.gr
Organizing Committee: Christos Papachristos cpapachr [at] ics.forth.gr