The St. Regis, Abu Dhabi

2nd CISO 360 Middle East Congress – 2019

Chaired by:
Marcus Alldrick
Digital Risk Management, Security and Compliance Advisor

Born at a very early age and growing up in a culture where cyber was a prefix for anything automated, menacing and malevolent (how history has a tendency of repeating itself), Marcus entered the world of Data Processing as it was known back then after graduating from university. Lured by the flashing console lights (it was also the disco era), the whirl of the magnetic tape and the click clack of the keypunch machine (TSO was still a dream), Marcus became a COBOL programmer, becoming prolific in Michael Jackson’s structured programming methodology (who would have known what future lay ahead for Michael).
Having moved into analysis and then data architecture Marcus became the first devolved Information Risk and Security Manager for Barclaycard. After seven years in that role he moved banks and became Head of Information Security for Abbey National plc, now Santander UK. After six years at Abbey and a move into consulting for a large UK utilities company Marcus joined KPMG as a Principal Advisor. Eighteen months later he joined Lloyd’s of London as its CISO and subsequently became its Head of Digital Risk Management and Compliance, also embracing responsibility for data protection and privacy, during his 10 years tenure there.
Having worked in IT for over 40 years, specialising in information risk, protection, security and compliance for the latter 27 years or so, Marcus decided to leave full-time corporate life and move to the South Coast of England in mid-2017, ever the seafaring Fisherman’s Friend. As well as being a proud member of the Pulse Conferences family, Marcus now undertakes advisory engagements, provides pro bono consulting and volunteering services and sits on the Cymmetria Advisory Board as Chief Risk Officer.

International speaker panel

Graduated with BSc. in Accounting, and a second BSc. in Finance from George Mason University, USA. Worked as an Auditor at KPMG & as a Financial Analyst at Riyad Bank Asset Management Dept., and then as a Credit Officer at the bank’s Analytical Unit in the Corporate Banking Division.

Moved to the UK where I converted my academic field and obtained an MSc. in Informatics at the School of Computer Science in the University of Manchester (the home of the world’s first computer memory program), then a PhD in Computer Science in 2015 with specialization in Risk Estimation & Fraud Detection & Authentication for Mobile Financial Systems also at the University of Manchester. I did a Graduate Internship at Riyad Bank – London Branch as a Consultant in two projects one in Liquidity Risk & then in an Anti-Money Laundering & a Fraud Detection project. Now at Alhamrani University Company, I work as a Sr. Manager of R & D & New Businesses with expertise in various sectors including Fuelling Systems. The United States Patent & Trademark Office (USPTO) granted & published a patent for Dr. Alnajem on 19 February, 2019 and was recently referenced by important &/or giant firms. I have two kids, a boy and a girl. I like travelling and meeting people from all different cultures.

More than 25 years of professional experience in audit, assurance, risk management, consulting and business advisory with large and international organizations in the Middle East. Prior to his current role he worked as Group VP – Internal Audit at Al Ghurair Investment Group further he worked for many years in Assurance and Business Advisory Services at PwC , KPMG in UAE and Egypt.

Nominated as Global CISO Finalist @ Global CISO Forum 2014, Atlanta.
Jury @ GISEC Awards – 2014 & 2015 (Biggest Security Event in MENA region)
Prominent GRC & cybersecurity expert in MEA region with overall Experience of over 20 years in Strategy, Transformation, Information Security & Risk Management and Advisory Services.
Delivered various large scale transformation, security and service management projects in large organizations providing specialized leadership insight and best practices in technology strategy, enterprise architecture and implementation of Risk Management, Information Security, Business continuity management and Compliance frameworks
Expertise in Information Security, GRC. IT Risk management, BCM/DR, ISO 27001, ISO 20000, PCI-DSS, SOX, ISO 22301 (BS25999) and ISO 9000.
Experience includes managing technology and information security teams in IT Managed Services provider and Government Entity.

– Chief Architect for CGMS (Corporate Governance Management System) and ITGMS (IT Governance Management System) covering Risk Management, IT Governance, Information Security and Business Continuity.
– Successfully implemented SIEM, GRC and Vulnerability Management solutions
– ISO 27001 & ISO 20000 Certification for major government and public enterprises
– Successfully managed and delivered more than 20 large scale consulting assignments with relevant reviews and certifications.
– Contributed in establishing a governance framework to execute and monitor IT projects worth up to US$ 50 Million for the financial year.
– Implemented ISO 27001, ISO 20000 and ISO 9001 for a leading service provider.
– Successful BS-25999 Implementation for business continuity management.
– Key contributor in new data-center design and virtualization technologies and cloud computing.

Specialties: Security Strategy, Infosec Programs, GRC & Secure Software Lifecycle and Business Conitnuity, IT Risk Management

Well-qualified and talented professional with almost 20 years (around 10 Years in Oil and Gas Field) of experience in various Information Systems fields encompassing, Business Continuity Management, Information Security Management, IT Operations Management, Systems administration, programming, System Analysis, Project management, training users-team members and developing solutions for clients. Expert in Management Systems and has supervised and directed more than 300+ projects including government, semi-governments, multinationals and local organizations in UAE and across the Middle East. These projects focuses on QMS, EHSMS, OHSMS, ISMS, ITSM, BCMS, Project Management and various other Management Systems. Possesses excellent analytical, communication and interpersonal skills.

First Female President of ISACAUAE. Trained more than 300 Senior Management Engineers/Officers at various levels and functions in the domain of Occupational Health, Safety, Environment, Quality Assurance, Quality Control and conducted numbers of Skill Development workshops. Managed, Conducted, and supervised numbers of certifications and surveillance for IMS Audits by different Certification bodies at different corporate establishments in GCC and non-GCC countries.

An experienced information security leader with over 19 years of professional experience in information and cyber security, IT, risk management, privacy and data compliance. Derek has recently joined TalkTalk as their Chief Security Officer, where he is building and leading the cyber security strategy and team to protect TalkTalk’s critical infrastructure, assets, and customer data. Previously, he was the Global Head of Security and Risk Management (CISO) at Electronic Arts (EA) where he led a large, global team to protect EA’s intellectual property and sensitive data. Prior to EA, Derek spent over 6 years at Deloitte & Touche where he managed and performed a multitude of information security and risk management engagements for several global Fortune 500 companies across various industries including financial services, technology, consumer business, manufacturing, and public sector. His primary areas of expertise include developing and leading tactical and strategic security strategies, building and maturing security teams, and ensuring executive governance around security to manage risks appropriately. Derek has also published information security articles and white papers and has been a presenter/panellist at CISO conferences. Derek holds a Bachelor Degree in Computer Science from the California Polytechnic State University, San Luis Obispo CA.

Edvinas Pranculis is a business management professional, who has helped a number of local and international companies develop new lines of business, penetrate new markets and ensure strong business growth. With 15+ years of experience in IT service and information security management he has repeatedly demonstrated his qualities of a pragmatic problem solver and a critical thinker. Edvinas earned his Master of Management (MM) degree in BI Norwegian School of Management and ISM University of Management and Economics and also holds recognized CISA, CISM, CRISC and ITIL certifications.

My team and I manage the wireless telecommunication for AD Police,  Starting from the designing of our based location to the activation of the network itself. I had two degrees from HCT (Higher college of Technology) which are HD higher diploma in science of Network and Bachelor in Network computer, Also I’m pleased with my TNM ( Telecommunication and Network Management) master degree from SYRACUSE University, NY United State of America.  My managerial experience has provided me with most valuable first hand experience of organizational and corporate change and inspired my passionate interest in organization management and administration. In my first management position, with Abu Dhabi police as a Network Section Manager, from 2005-2009 and 2012 to 2016. However, I spent four months working in one of the Information Technology company in Boston ,MA united state of America, I had the valuable of experience of successfully record of customer satisfaction as well as figured out the differences between the business overseas and my own country.  I’m CCNA (Cisco Certified Network Associate), CCNP (Cisco Certified Networking Professional ) and ITIL certified(Information Technology Infrastructure Library). Moreover, had a successful course training in leadership preparation in Abu Dhabi Police  training department.

Dr. Hatim Zaghloul, an Egyptian Canadian, is recognized as a visionary leader in the hi-tech community. In 1992, Dr. Zaghloul co-founded Wi-LAN Inc., and under his direction, the two technologies he co-invented with Dr. Michel Fattouche became the heart of many wireless communications standards: WiFi (IEEE802.11a/g/n), 3G (H and H+), LTE and 4G (WiMAX).  Dr. Zaghloul holds a B.Sc. in Electrical Engineering from Cairo University as well as a M.Sc. and a Ph.D. in Physics from the University of Calgary.

Irene is responsible for the execution of the ADSIC Information Security Programme, Security Governance, Risk and compliance to IT Security Policy. She offers 27 years of combined and diverse experience in IT (Security, Operations and Strategy), Quality & Excellence. She has worked in various industries and region and led strategic initiatives in Asia, Middle East, Europe and America. An emerging seasoned speaker on Information and Cyber Security Conferences, Irene has spoken in a number of conferences in Asia, Middle East and Europe.  Irene acquired her Masters of Science in IT from University of Wales, and holds the following certifications: ITIL V3, PMP, ISO (QMS and 27k) Lead Auditor and EFQM Assessor.

Kunal has over 16 years of experience in financial services and IT industries in the Middle East and India. Prior to joining AFS, Kunal worked for various consulting firms such as Accenture, E4E Services and MIEL eSecurities where he led multiple client engagements across financial and telecom industries, helped manage regulatory compliance and the establishment of international frameworks such as PCI DSS, PCI PIN, ISO 27001, 22301, 9001, BASEL II, SOX standards, etc. Kunal has held various roles at AFS including Head of Compliance, Head of Service Quality and is now serving as Group Head of Operational Risk & Information Security. His expertise includes Cyber Security in FinTech and Digital Payment Space, Operational Risk Management, Ecosystem Development for Digital Payments (including infrastructure setup over cloud, merchant acquisitions and promotional marketing). Kunal holds a Master’s Degree in Computer Science, specialized in Cyber Security from Symbiosis International University. He also holds an International Diploma in Compliance, ICA from The University of Manchester and a Bachelor’s Degree in Information Technology from Manipal Academy of Higher Education. Kunal’s professional certifications include: PCI ISA, CISM, ISO 27001 Lead Implementer, CCSA (Checkpoint), CSSA (Sonicwall) and CCNA (CISCO).

Amongst Mahmoud’s professional networking groups are the (ISC)² UAE Chapter – he held the seat of the UAE Chapter President, elected and hired by (ISC)² board members (2013 -2016).  Mahmoud initiated the chapter in the UAE membership of the ISACA COBIT 5 review member group and he has had articles published with InfoSec Island; a reputable group for the information security community. Mahmoud has also had many articles published in ISACA like mobile Security, BYOD hacking 9 magazine. He has contributed to several Information Security related events in the UAE and he is member of various security groups such as the UAE AAA, ISACA, (ISC)² and the Identity Management Institute, just to name a few. Mahmoud has 16 years of experience in the Infrastructure Field, having worked over 10 years as Infrastructure Security Architect for multinational organizations such as Microsoft and Fujitsu.  Mahmoud has a BSE from the University of Cairo and a Masters’ degree in Information Security from the University of Fairfax. During his extensive career Mahmoud has obtained professional certificates such as CISSP, CISA, CRISC, ,C|CISO, CISSPISSA , PMP, COBIT, ITIL, MCSE, ISO27001 2013.

* First Saudi Awarded as the best CISO in the world of the year 2018 Finalist.
* First Saudi Certified CISO instructor in Saudi Arabia.

Eng. Majed is Certified EC-Council Chief Information Security Officer & Licensed MCI IT Consultant has over 19 years in the Information Technology, Digital Transformation, and Information Security Executive line and professional experience at both the senior management and technical hands-on in contracting, banking, retail, Oil & Gas, facility management, engineering, refinery, real estate, hospitality, construction, automotive, insurance, and investment industries. In addition to the business digital transformation along with rich knowledge and expertise in establishing and operating the Information Security businesses. His main aim to provide enterprises with the information technology and insight, enabling businesses, integrate functions, guidance and leadership that will foster a successful digitalized business decision-making platform using the right set of IT secure and credible portfolios starting by the Information Technology/Information Security strategy development all the way down to the technical implementation stage with high-satisfied businesses. More information on LinkedIn:

A seasoned IT leader with 15+ years track record of transformation Technology, Informa- tion, Security, Projects, building ground up IT departments in start up organizations and delivering complex and challenging IT Solutions and projects. Served multiple very large government organizations with technology oriented and aligned with business need to accelerate the future and shaping the future government. Highly motivated with a proven ability to lead, manage and develop IT teams. Adept in aligning IT Department with organization’s Business goals and creating value for stakeholders. Expertise in defining IT strategy, tactical direction and governance framework for making IT as business enabler to deliver targeted results

An experienced Senior Leader & Corporate Executive, Security & Risk Professional, Ray is a globally acknowledged and well-known thought leader; recognised and highly respected as someone who delivers. Ray has sat on global programmes for the World Economic Forum on Cyber Resilience and the Advisory Board for the Information Security Forum. Ray has held Group CiSO/CSO & EVP roles for BT, National Grid, Interoute, Redwood Technologies and Airbus UK.  He has been fortunate enough to have held global accountability, ranging from consultancy, through to design, build and run of managed services; including full profit and loss ownership for multiple business lines, while combining this experience with protection of Critical National Infrastructure in the Energy and Communications industries.

Dr. Sally Leivesley, Director, Newrisk Ltd and Co-Founder, TEG7 Group LLPadvises companies and governments on catastrophic risk where losses to companies and governments may involve critical functions essential for operations and reputation. She runs exercises to stress test critical function failures and resilience capability. Dr. Leivesley is known for her appearances on aviation terror attacks, ISIS, Al Qaeda, Al Shabaab and other international terrorism, cyber breaches, CNI protection and government policy on the BBC World Service, ITV This Morning and other UK based media and European, Middle East and Australian media. She raised the forensic importance of the risk of cyber hijacking of flight MH370 which was the subject of a Discovery Channel documentary and has been a commentator on the risks relevant to Donald Trump economic, terror and nuclear influences during his Presidential campaign and on his election. Dr Leivesley works in conjunction with The Exercise Group7 (TEG7) a London based group of companies that specialise in resilience operations for cyber-attacks, international terrorism and nation state threats and solutions for business and government-critical infrastructure.  The focus is on testing through exercises, assurance and pen tests using an integrated approach to all hazards including social factors.  ( In the UK she has been a member of the technical committee for the first IET (formerly IEE) guidance document on Resilience and Cyber Security of Technology in the Built Environment which was supported by the Centre for the Protection of National Infrastructure. She is also a member of the British Register for Security Engineers and Specialists established to advise at a strategic level on terrorist and other extreme threats to critical infrastructure. She interfaces with a USA company to extend exercising for aviation and energy industries.  Dr Leivesley originally trained as a Scientific Advisor with the British Home Office. She is a specialist in CBRN.

Shafiullah Ismail is the Information Security professional (cloud security Expert) working with Mubadala Business Management Services in Abu Dhabi. BMS is a shared services company offering IaaS and SaaS to government and Mubadala group companies. During his 13 years in the cyber security industry, Mr. Shafiullah has worked with many technologies in different positions from technical to management. He is an experienced information security strategist and has managed a portfolio of mission critical projects and initiatives. He poses strong skillset in both strategic security functions and cloud architecture. Shafiullah holds a Computer Science degree and CISSP, CISA, CISM, TOGAF9, Azure Associate, COBIT5, CEH.

Sultan leads and oversees all activities aimed at developing Cybersecurity measures in CMA, providing business stakeholders with information assurance services, including defining business and security requirements, integrating cybersecurity solutions, crafting security plans and strategies, and implementing effective risk management. Sultan has an extensive IT and Information Security professional experience locally and internationally. Sultan has worked in the past for Saudi Airlines, Saudi Arabian Monetary Agency (SAMA), Saudi Telecom Company (STC), Florida Tech (USA), Boeing (USA), and Innovative Solutions (IS). Sultan has earned his B.Sc. and M.Sc. in Information Systems from King Saud University, and his second M.Sc. in Engineering Management, and Ph.D. in Computer Science from Florida Institute of Technology. He holds more than 25 specialized training certificates in Information Security and IT.

ABOUT CMA – The Capital Market Authority (CMA) in Saudi Arabia is responsible for regulating and developing the Saudi Arabian Capital Market by issuing required rules and regulations for implementing the provisions of Capital Market Law. The basic objectives are to create an appropriate investment environment, boost confidence, and reinforce transparency and disclosure standards in all listed companies, and moreover to protect the investors and dealers from illegal acts in the market.

Tim joined Barclay Simpson, a governance recruitment company,  in 1991 and has gained immense experience in governance recruitment across all sectors. Tim is responsible for Barclay Simpson’s Middle East Division which recruits across all areas of governance including security and resilience, internal audit, compliance and risk.  Tim has an in-depth understanding of the market for governance professionals in international markets and is able to draw on both an extensive network of contacts built up over twenty five years and the experience to advise on the most effective approach to any recruitment challenge. He undertakes both local and global searches and has placed a diverse range of corporate governance executives into the middle East region.

Tamer is currently the Group Chief Information Security Officer and Global Head of Business Resilience for one of the largest Middle East based privately owned groups with diversified business activities in 30 countries, with a focus on the Middle East, North Africa and Turkey region. Tamer holds a Bachelor of Engineering and MSc in Advanced Manufacturing Systems, in addition to successfully completing several MIT related courses in the field of Artificial Intelligence and Block chain technologies. Tamer has been an (ISC)² EMEA Advisory Council member since 2014. Tamer has held a number of roles for leading Banks in Dubai and Kuwait including Mashreq Bank, Kuwait Finance House and the National Bank of Kuwait as a CISO and Head of Operational Risk. Tamer was the head of security and continuity services for KPMG, he joined the Middle East practice from London to help define and establish one of the first security practices in the Middle East, previously Tamer previously worked for Intel and Computacenter in the UK, he also sits on the advisory board of several technology based companies.

The ILO is a specialized agency of the United Nations. Viktor’s 25-year career in the IT spans different roles across financial, humanitarian, standardization and development multilateral public sector organizations (ITU, UNCC, UNHCR). Viktor conducts research in cryptography, data protection regulation, and risk management. Since the Internet bubble, he is teaching computer science and telecommunications courses as adjunct faculty at Webster University in Geneva. Viktor is a member of the Scientific Committee for Advanced Studies in Information Security at University of Geneva. He advocates for advancement in information security as an author in journals and his personal blog (, and as a speaker at numerous international security conferences.  Viktor holds a Ph.D. in Cryptography and Advanced Protection Systems, MA in Computer Resources and Information Management, and BSc in Computer Science. He is a member of (ISC)2, ISACA and IACR.


Enquire about becoming a speaker

When it comes to telling a story, people want to hear about the challenges and failures as well as the successes.

Experience + value = story.

  • do you have a compelling business security story that simply must be told?
  • have you recently worked on an innovative security project?
  • are you willing to openly share inspiring insights, expertise and ideas to advance the security community?

 We are always looking for:

  • keynote insights, cutting-edge ‘live’ demos, deep dive workshop ideas
  • new best practice case studies, fresh ideas, forward thinking topics on security and governance matters
  • sessions with actionable takeaways and positive contributions to the output reports
  • the world’s smartest thinkers and doers in security, cyber, privacy, resilience, risk, governance, compliance

We welcome your input into shaping the agenda and speaker panels.

Our programmes are highly researched with practitioners who do the job day in and day out. They are organic to ensure that we remain agile to meet the most current requirements.

For further information, please

phone: +44 (0)20 7936 8989

Back to Pulse Conferences

You currently have JavaScript disabled!

This site requires JavaScript to be enabled. Some functions of the site may not be usable or the site may not look correct until you enable JavaScript. You can enable JavaScript by following this tutorial. Once JavaScript is enabled, this message will be removed.