On October 16, 2025, Interpred – STC Sofia hosted the second edition of the Bulgarian Identity Conference (BGIDC 2025) – Bulgaria’s leading event dedicated to digital identity management, cybersecurity, and regulatory compliance. The forum was organized for the second consecutive year by the consulting company IDVKM and the distributor of information and cybersecurity solutions Escom Bulgaria.
Following its successful debut in 2024, when the conference brought together over 100 participants from Bulgaria and Europe and featured more than 15 Bulgarian and international speakers, this year’s event was enriched with numerous demonstrations, exhibitions by key companies in the industry, and strategic analyses.
The event was once again divided into two parallel streams – business and technical – and emphasizes the strategic importance of digital identity in modern cybersecurity.
Among the main topics were new threats in the field of cybersecurity: from increasing attacks targeting digital identity and access management, through vulnerabilities in critical infrastructure and the financial sector, to challenges related to the implementation of cloud technologies, artificial intelligence, and large-scale digital transformations.
BUSINESS PANEL
“THE VOICE OF THE CUSTOMER”
The first session of the business panel presented real-life examples of a9> how large organizations manage identity in complex environments a13> manage identity in complex corporate ecosystems. Vasil Mihaylov (BG) shared how a a27> comprehensive solution for managing identity is divided into products and services in Schwarz IT, optimizing operations and improving efficiency. Maciej Machacz (PL) demonstrates how the solutions of One Identity respond to the changing needs a64> needs of large multinational companies. Nikola Madzic (AT) shared how Raiffeisenbank International with 43 thousand employees combines global and local strategies for identity, to ensure secure and scalable access. Sven Hübner (DE) by KOGIT presented the way, by which the decisions for managing the identity and access (IAM), from the next generation, meet all pillars of IT resilience.
Alexander Zhekov (BG), Escom Bulgaria , presented secure technologies for document scanning, identity protection, and processing of information from them in a digital environment. This logically led to the question – how close is the EU to the adoption of digital documents within the framework of a15> common European framework eIDAS 2.0 ? In response, Peter Chardakov (BG) presented already the implemented solution of Ubiqu , offering a look at this, which is possible today and what lies ahead for a27> digital identity in Europe.
“CYBERSECURITY”
In this panel, the speakers explored the relationship between identity and security. Ivan Pepelov (BG) from IDVKM showed how different pillars of identity management can improve cybersecurity in an organization. Robert Gray (UK), Heimdal and Rolf Schmid (DE), Digital Solutions & Consulting AG shared practical examples of successful cyber attacks and how they could have been prevented. Ivan Denchev (BG) from Versasec showed practical example of why how an organization creates a20> its own personalized architect for personalized identification data.
“COMPLIANCE”
The business panel continued with a discussion of the regulatory framework and the dynamic changes within it. The new Cybersecurity Act will introduce obligations under Directive NIS2 (Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union), and the DORA Regulation(European Regulation on Digital Operational Resilience), which has been in force since January 17, 2025, imposes requirements on the financial sector and its ICT providers.
Ivan Pepelov (BG), IDVKM examined in detail what NIS2 represents and which a16> key areas and companies in Bulgaria will be affected. Mr. Pepelov, showed how managing identity can help with help in building compliance with the legal framework. Irina Yaneva (BG), Ernst & Young provided detailed information about how NIS2 and DORA a32> NIS2 and DORA will affect business in Bulgaria and what a38> steps are necessary to achieve compliance from from the perspective of a lawyer and an auditor. Stefan Baissmann (DE) from Horvath & Partners drew attention that legal requirements not only as an obligation can serve a71> serve and as a driving force for improvement and optimization of a78> organizational.
The panel concluded with an interactive demonstration by Boris Goncharov (BG) by AMATAS , illustrating the real risks of violations of a23> sensitive data and the importance of proactive protection. He emphasized why we should not blindly a7> blindly trust code generated by artificial intelligence.
In the modern digital environment, managing identity is a strategic necessity, and not an option. Through the Bulgarian Identity Conference, we want to build a community in which experts and leaders combine knowledge and efforts to create a22>a more secure and sustainable digital ecosystem.
“STRATEGY”
In the last panel of the business track, experts discussed the future of management of identity and access (IAM). During the first session, Hristian Daskalov from European Digital Innovation Hub “Trakia”, presented the various opportunities for European funding and the pan-European innovation ecosystem – platform for cooperation for sharing of best practices across a16> borders. The session continued with a presentation of Roland Franze (DE) from Nexis, which examined the emerging risks, generated by the complexity and the enormous number of identities, not belonging to a specific person, in the ecosystem for managing identities, and showed some strategies for their management
Later in the panel Ivan Pepelov (BG), IDVKM, showed some strategies for replacing outdated identity management systems or building them from scratch. In addition, in a joint presentation with Galyn Ganchev (BG) ot Noventiq The two experts examined strategies for utilizing existing partners and their IDM licenses and whether there is a need to expand these capabilities with additional tools. The panel concluded with a presentation by Michael Kunz (DE), from Nexis, which demonstrates flexible role management and process automation tools optimized for secure and scalable identity management.
TECHNICAL PANEL
The session “Identity Governance and Administration” presented at live technical demonstrations, which address key challenges in managing the identity – ensuring the right access, at the right time and in an appropriate manner. The experts from IDVKM – Desislava Branimirova, Deyan Denev, Vasil Bukhov and Georgi Byutyunev – showed realistic scenarios for use of IGA tools, including automated provision of access upon joining to the organization according to the principle of minimum rights, detection of unauthorized access to the IGA environment, simplification of role models through dynamic roles for a44> timely access, as well as applying the principle of a51> separation of duties with the aim of avoiding any a57> conflict of interests and concentration of power.
The panel “Unified Identity Security Platform” began with a demonstration of Michael Kunz (DE), from Nexis how artificial intelligence can help with defining the the organization and life cycle of roles in one enterprise. Bozhidar Navchev (BG), IDVKM demonstrates authentication without a password as an alternative to standard methods, and his colleague Valentin Hristov (BG), IDVKM showed in real time how it works monitoring of access through management of privileged access (PAM). In its session Robertino Matausch from Heimdal presented proactive measures for cybersecurity, aimed at a9> preventing the leakage of passwords and identification data – main reason reason for over 80% of incidents in cybersecurity. The finale of this session was the demonstration of Alexander Zhekov (BG), Escom Bulgaria, who illustrated how certainly can be scanned documents and automated it extraction of data for secure digitization.
For the second consecutive year, interesting discussions and topics brought together business and IT managers, information security directors, risk and compliance experts, and many others. The event highlighted the need for such a forum in the region. Cybersecurity and digital identity management are topics of growing importance, and events like this lay the foundations for constructive dialogue in this area.
SPONSORS AND PARTNERS
