Live roundtable + Q&A (45-60 minutes)
In 2026, the pressure is coming from multiple angles: CSRB, NIS2, DORA, and insurers who now want to see evidence, not assurances.
Covenco is joined by Paul Szelesi, Senior Director of Solutions Architecture EMEA, to unpack the uncomfortable truth: many organisations still cannot prove recoverability end to end, especially under a ransomware or insider scenario.
What this session will help you do
- Understand what scrutiny will focus on in 2026
Where CSRB, NIS2 and DORA are pushing organisations, and the areas auditors tend to test first. - Know what evidence stands up
What auditors and insurers actually ask for when they are assessing recoverability, and how to avoid gaps in the evidence trail. - Strengthen recovery with immutability
What ‘immutable’ needs to mean when ransomware targets backup infrastructure and admin credentials, not just production systems. - Prove recoverability with verified recovery workflows
How to move from occasional restore tests to repeatable verification and reporting you can use in audits, insurer conversations, and board updates.
Who should attend
This webinar is designed for UK-based mid-market and enterprise organisations, especially those preparing for more rigorous scrutiny from regulators, customers, and insurers.
If you are one of the following, you’ll get practical value from this:
- CIOs and Heads of IT who own resilience strategy and board reporting.
- CISOs and security leaders who need evidence-backed assurance.
- IT Managers and infrastructure leads responsible for backup and recovery outcomes.
- Compliance and risk leaders aligning operational recovery with regulatory obligations.
Win a LEGO Technic Emirates Team New Zealand AC75 Yacht (42174)
Indulge your love of sailing yachts with a build that takes you to the heart of the historic America’s Cup. Step into the crew’s shoes as you assemble the intricate details of the LEGO Technic Emirates Team New Zealand AC75 Yacht.
Build the yacht and attach the two skin sails to form an authentic 3D sail shape. Use the pneumatic function to pump up the hydrofoil cant arms, just like the real boat. Explore the foil wings that deliver stability, lift and speed, then try the mainsheet and jib sheet controls. Finish with the rotating mast, supported by rigging.
One attendee will win this set. Join the live webinar to be in the draw.
Live roundtable discussion outline
| Topic | What we’ll cover |
|---|---|
| 1. The new regulatory reality (the why)
|
We’ll set the context in plain English: what’s changed, who is now in scope, and why enforcement is creating new expectations.
We’ll cover how CSRB expands the scope of the original NIS regulations, including increased attention on Managed Service Providers and critical supply chains. We’ll also discuss DORA’s maturity phase, where the expectation shifts from implementation plans to proving digital operational resilience. We’ll also talk about insurance, because it’s often the fastest signal. Premiums and renewals are increasingly influenced by proof of recoverability rather than proof of backup. |
| 2. Technical resilience with immutable backups (the how)
|
Then we’ll get practical.
We’ll define what true immutability means in the context of modern ransomware and insider threats, including why compromised admin credentials are a major focus for 2026 audits. We’ll look at how to move beyond basic object lock configurations and toward layered resilience approaches that include separation of duties, hardening, and isolation. We’ll also cover integration expectations and configuration considerations for common backup platforms such as Veeam and IBM, particularly where NIS2 and DORA integrity standards are relevant. |
| 3. Proving resilience through the recovery audit (the proof)
|
Finally, we’ll focus on the part most organisations underestimate: evidence.
We’ll explore how the NCSC’s Cyber Assessment Framework, including the direction of travel toward CAF 4.0, is influencing audit expectations and what that means for operational testing and reporting. We’ll discuss why manual restore tests are no longer sufficient on their own, how automated verification supports consistent evidence generation, and what auditors typically want to see in compliance-ready reports. Then we’ll open it up for Q&A. |
Meet the speakers
Gurdip Sohal, Sales Director, Data Management at Covenco
Gurdip is an expert in the fields of data protection, disaster recovery, business continuity, and cybersecurity. He has over 26 years of experience in the IT industry, with a deep understanding of the evolving challenges businesses face in safeguarding their critical data assets.
Paul Szelesi, Senior Director of Solutions Architecture EMEA
Paul is an expert in IT infrastructure, data protection and resilience, with over two decades of industry experience. From PC configuration engineer to Senior Director for Solutions Architecture at Veeam, he brings practical insight into designing solutions that protect critical data and support continuity.
Ben Westlake, Head of Managed Services at Covenco
Ben Westlake is an experienced Cloud Solutions & Application Delivery specialist with a demonstrated history of working with multiple Cloud Architectures, Topologies and Data Resilience Solutions. As the Head of Managed Services at Covenco, he leverages his expertise to empower organisations with cutting-edge IT infrastructure solutions.
Register for the live roundtable + Q&A
Secure your place for this 45-60 minute lunch and learn with Covenco and Veeam. Watch live from your desk, take part in the Q&A, and get practical guidance on proving recoverability for 2026 CSRB, NIS2 and DORA scrutiny.
Related Resources
Find related and useful topics for this webinar from Covenco
