Event Type : ScotlandISCyber

Attackers move fast and their techniques are more sophisticated than ever, especially with AI in their toolkit. But when the alerts hit, how does your team actually perform under real pressure?

HTB Threat Range was built to measure and strengthen that readiness.

It’s a team-based blue team simulation environment that exposes SOC and DFIR teams to realistic attack scenarios, so leaders can see how their teams perform when it matters most.

Hack The Box invites you and your team to a game night for blue teamers. A simulated cyberattack will unfold inside HTB Threat Range, where teams must detect, investigate, and respond in real time, while you observe investigation speed, team collaboration, decision-making, escalation paths, and operational resilience in action.

How the game works?

Our experts set the stage in HTB Threat Range, launching a realistic attack scenario and playing alongside you as it unfolds.

They guide the action, escalate events, and throw curveballs—inviting you to jump in, take on roles, make decisions, and play your part in containing the breach.

What you’ll walk away with?

• Develop detection and investigation skills through realistic attack scenarios, complete with alerts, logs, network traffic, and forensic artifacts.
• Benchmark team skills using key metrics such as MTTD, MTTI, and MTTR.
• Strengthen collaboration across SOC, Digital Forensics, and Incident Response through team-based roleplay.
• Identify gaps in detection, response, and coordination and turn those insights into a proactive response strategy.

Who should attend?

• CISOs and Deputy CISOs
• Heads of SOC and SOC Managers
• Blue Team Leaders
• Incident Response and DFIR Leaders

We strongly encourage you to bring your team.

The evening schedule:

• 17:30-18:00: Registration & welcome drinks
• 18:00-18:30: Mission briefing: Inside HTB Threat Range
• 18:30-19:30: Live operation: HTB Threat Range simulation
• 19:30-21:30: Networking with peers over drinks

Who should attend?

Anyone working and/or volunteering for a third sector organisation in Scotland at the beginning of their cyber resilience journey, and maybe not sure where to start, who provides leadership and/or is responsible for aspects of operations/IT.

Don’t miss this opportunity to take the first steps towards a safer, more secure organisation. Together, we can build a resilient third sector, equipped to thrive in the face of digital challenges.

Every day, access rights in SharePoint, OneDrive, and Teams grow more complex and more dangerous.

As Microsoft Copilot rolls out, unmanaged permissions don’t just grant user access anymore, they become AI access.

In this session, Andy Syrewicze will uncover:

• The hidden risks beneath the surface of Microsoft 365 permissions
• Explore the compliance and security impact
• Show how MSPs and IT leaders can regain control with clear visibility and consistent governance

Join Net-Defence and BTO Solicitors for an in-person event in Glasgow bringing together technical and legal specialists to explore how organisations can better prepare for, respond to and recover from cyber incidents.

Cyber threats continue to rise across all sectors, and for most organisations it is no longer a question of if, but when. This event is designed to provide practical, real-world insight into today’s cyber risk landscape and what effective resilience really looks like.

Venue: AC Marriott, Glasgow
Date: 2nd April, 2026
Time:
15:30 – 16:00 | Registration

16:00 – 17:15 | Presentations, panel discussion and Q&A

17:15 onwards | Drinks, buffet and networking

What to expect

• What modern cyber incidents look like and why they are increasing
• Practical steps to build meaningful cyber resilience and reduce risk
• How to respond in the critical first hours of an incident
• Legal, regulatory and reputational considerations during and after an attack
• Emerging regulatory risks organisations should be preparing for now

The session will feature short presentations followed by an interactive panel discussion, with panellists sharing real-life experience rather than scripted talks.

Networking
After the panel, stay for a complimentary drink, food and informal networking with peers and industry specialists.

We look forward to welcoming you in Glasgow!

Most security risks in Microsoft 365 aren’t visible at first glance. For MSPs managing multiple tenants, unmanaged permissions in SharePoint can quietly grow into serious threats such as data exposure, compliance failures. Putting the clients trust at risk.

Join Hornetsecurity for an exclusive in-person event designed for Managed Service Providers, where we uncover the risks hidden below the surface and show how you can turn visibility into control, security, and new revenue opportunities.

What you see in Microsoft 365 is only the tip of the iceberg.

Why Attend?

Whether you’re already working with Hornetsecurity or exploring new security solutions for your customers, this event will help you:

• Understand the real risk of hidden permissions in Microsoft 365
• Learn how to identify, manage, and standardise permissions across clients
• Gain practical sales and technical training you can immediately apply
• Take the first step toward becoming a Hornetsecurity Partner
• Network with fellow MSPs facing the same challenges

Dive into the threats hiding in today’s digital supply chains and see why traditional security perimeters no longer cut it.

Arctic Wolf’s Connor Milligan and Brian Stewart kick off with a quick inside look at how Arctic Wolf is helping organisations stay ahead of modern attacks.

Concierge Security Engineer Megan Henchin then lifts the lid on real supply chain compromises, shares what organisations can control and how, and highlights the emerging threats she’s seeing across the cyber landscape.

A sharp, insight‑packed session designed to leave you more informed and better protected.

Join our series of events, ScotlandIS Tech Tidbits, on the first Tuesday of every month!

These 30 minute webinars will be short, informative sessions on a variety of topics, from exporting to cybersecurity, cloud computing to procurement, and many more.

Each event will feature a ScotlandIS member offering their expert insights and advice on the topic in hand, however you do not need to be a member to attend these talks.

For May, we’ll be joined by ScotlandIS member Phoenix and their partner, N-able.

In this session, N‑able will walk you through a real attack scenario drawn directly from recent frontline experiences. We’ll then tie the scenario to today’s threat landscape—where phishing, credential theft, and AI‑generated social engineering continue to target individuals directly. Finally, we explore how AI is transforming the SOC, helping IT teams better protect users, detect malicious behaviour sooner and accelerate a response through best practices and tools.

Here’s what we’ll cover in this session:

1. Attacks Start with a User: Most breaches begin with a human moment and why recognising early warning signs is crucial

2. Today’s Threats Are Faster and Smarter: Phishing, identity attacks, and AI‑driven impersonation have grown by 50% in 2025 according to the NCSC

3. AI Strengthens Defences: AI‑powered detection, analysis, and response help security teams act faster, cut through noise and offer organisations a strong return on investment in their security operations