Speakers – 3rd CISO 360 Congress 2019
If there is someone you would like to see speak or if you are interested in speaking please let us know email@example.com.
Born at a very early age and growing up in a culture where cyber was a prefix for anything automated, menacing and malevolent (how history has a tendency of repeating itself), Marcus entered the world of Data Processing as it was known back then after graduating from university. Lured by the flashing console lights (it was also the disco era), the whirl of the magnetic tape and the click clack of the keypunch machine (TSO was still a dream), Marcus became a COBOL programmer, becoming prolific in Michael Jackson’s structured programming methodology (who would have known what future lay ahead for Michael). Having moved into analysis and then data architecture Marcus became the first devolved Information Risk and Security Manager for Barclaycard. After seven years in that role he moved banks and became Head of Information Security for Abbey National plc, now Santander UK. After six years at Abbey and a move into consulting for a large UK utilities company Marcus joined KPMG as a Principal Advisor. Eighteen months later he joined Lloyd’s of London as its CISO and subsequently became its Head of Digital Risk Management and Compliance, also embracing responsibility for data protection and privacy, during his 10 years tenure there. Having worked in IT for over 40 years, specialising in information risk, protection, security and compliance for the latter 27 years or so, Marcus decided to leave full-time corporate life and move to the South Coast of England in mid-2017, ever the seafaring Fisherman’s Friend. As well as being a proud member of the Pulse Conferences family, Marcus now undertakes advisory engagements, provides pro bono consulting and volunteering services and sits on the Cymmetria Advisory Board as Chief Risk Officer.
Professor Dr. Robert Coles is a Visiting Professor at Royal Holloway, University of London, where he is conducting his research into security culture change. He also runs his own consulting business. Prior to this, Robert was the first Chief Information Security Officer at GSK from 2013 to 2018. Robert held several CISO roles prior to joining GSK. He was the first CISO at National Grid and Merrill Lynch before that. In all these roles, he owned the information security risk and was responsible for providing global leadership. He was accountable to the Executive and PLC Boards for establishing information security strategy and direction. Building global information security capabilities and overseeing all of the information security initiatives across the organisations has been his primary career focus. Robert has been working in the field of Information Security for over 30 years, including “head of” roles at Royal Bank of Scotland, and the lead partner in KPMG’s Information Security Services for EMEA. Robert has extensive links with major industry information security networking groups and government security agencies. He also has links with a number of universities and participates in leading edge research, particularly with Royal Holloway where he is an Executive Sponsor for the Institute of Information Security Innovation, and Cranfield University where he is a External Advisory Board member. He was awarded a PhD in psychology at the University of Leeds in the perceptions of information and IT risk and has published and presented on this and other topics.
Caspar started his working life at the age of 16 as an actor in the first two series of BBC drama Byker Grove with “Ant and Dec”. They went on to become two of the most famous people in the UK and Caspar went on to study economics at Cambridge where he had early commercial success directing award-winning short films and TV commercials from the age of 18. He went on to write two feature films which were produced by Film Four and Columbia Tri Star before he had graduated. He did not get a very good degree. He went on to write and direct in the film and television industry for much of the next four years before deciding that he was heading towards the age of 30 without having lived much of life outside of that crazy and unreal world. So aged 26, he decided to take a risk and move to Las Vegas with his life savings in his pocket. Playing poker was disciplining, testing and demanding but also incredibly emotionally rewarding as he conquered the challenges it posed and made a living as a professional poker player at the tables of Las Vegas. After three years, however, he decided that his future lay away from the poker table and he returned to the UK and set up Twenty First Century Media which he built to a team of 40 before selling to Bob Geldof’s Ten Alps plc. At around this time, in 2005, the poker boom happened, and Caspar had already started speaking professionally so he moved to London to create a portfolio career as a trainer for the Mind Gym by day (delivering over 400 sessions to 100 companies) and a TV poker commentator by night (doing over 2000 hours of live broadcasting on poker channels and Sky Sports).In 2006 he was asked to be one of the two poker advisors on the James Bond movie “Casino Royale”, tasked with training the actors up to look like professional poker players for the key scenes. In the last 14 years Caspar has delivered over 2,000 speeches and training sessions in more than 30 countries for nearly 500 organisations including the biggest companies in the world. He now mentors young speakers and brings together all the otherwise disparate skills he’s learnt over his career – writing, directing, training, economics – to help young speakers craft messages culled from their own life that are focused on helping people and businesses make profound changes in all manner of ways.
Ken is a security entrepreneur and industry maverick that has worked in infosec for over 15 years. After studying Applied Physics he tried his hand in the hospitality industry but soon discovered a talent for hacking, persuading a till to print out mortgage amortisations. He went on to cut his teeth in the anti-virus industry before founding SecureTest, a penetration testing business that quickly established a reputation for delivering high spec services using a boutique business model. NCC Group recognised the value of the proposition and acquired SecureTest in 2007. But Ken had found his calling and his penchant for pen testing saw him set up Pen Test Partners in 2010 which now boasts some of the best ethical hackers in the business, each of whom has a stake in the firm. Ken’s zeal for pen testing is matched only by his disdain for those vendors who resort to scaremongering to peddle point solutions. He is a fierce advocate of responsible disclosure and regularly researches and reveals security vulnerabilities in an effort to promote better security design and practice. He takes a key role in conducting investigations as well as encouraging team members to pursue their own research and the results are published on the company blog on a weekly basis as well as being publicised by the wider media.
Ken is a respected speaker and pulls no punches during his annual Tech Talk presentations at Infosecurity Europe, where he can also be found performing practical hack attacks on the company stand. He is a regular speaker at events held by industry bodies and associations and has spoken at the ISSA Dragon’s Den, (ISC)2 Chapter events and CREST (Council of Registered Ethical Security Testers) events, where he sits on the board, helping to establish standards in both member organisations and among individual penetration testers. He’s also an Executive Member of the “Internet of Things Security Forum”, a body that aims to promote best security practice and the application of controls in smart device manufacturing, and spoke out on IoT security design flaws at the forum’s inaugural event. He’s also not averse to getting deeply techie, regularly participating in hacking challenges and demos at 44CON, DefCon and Bsides. Ken has a wealth of experience in penetration testing but it’s the systems and objects we come into contact with on an everyday basis that really pique his interest. This has seen him hack everything from hotel keycards, to keyless cars and a range of Internet of Things (IoT) devices, from wearable tech to children’s toys and smart home control systems. This has gained him some notoriety among the national press, leading to regular appearances on BBC TV and BBC News online as well as the broadsheet press, and he’s also a regular contributor to industry magazines, penning articles for the legal, security, insurance, oil and gas, and manufacturing press.
Amy Lemberger is the Cybersecurity Director at the GSM Association and is responsible for supporting the improvement of the security posture of the telecommunications industry . Since joining the GSMA she has enhanced cybersecurity engagement within the ecosystem and published the mobile telecommunications Threat Landscape report. Prior to the GSMA, Amy was at BT developing their incident response strategy and lead their Computer Emergency Response Team (CERT). Amy has also held various technical investigator roles in adjacent industries. Amy graduated with a First Class (hons) degree in Digital Forensics and holds various industry certifications including CISSP, CISM and GNFA.
Prof. CLAUDIO CILLI, Ph.D., CISA, CGEIT, CISM, CRISC
Prof. Claudio Cilli is a recognised world leading authority in the areas of National Security and Intelligence, company protection, information systems security and compliance, with over 25 years of experience. He currently advises governments and int’l companies in the cyber-security and critical infrastructures protection areas.
University professor and researcher. Lesson arguments include: computer science, software compilers, lexical and semantic analysers, information systems analysis and development. Member of the scientific and advisory boards. Teacher in the post-graduate masters in Computer Security and IT Governance.
Consultant to the U.S. Government and companies who supply the Department of Defence. Consultant at the United Nations. With many big firms, he is responsible of IS Audit and security projects, which include civil and military sectors, software quality and code security, security of the information systems and installations. Designed and implemented systems based on mainframes and distributed architecture, including Disaster Recovery and both data and physical security, information and site protection.
Main areas of interest:
– Information & Communication Security in complex organisations
– Cyber Intelligence and counterintelligence
– Homeland security and protection of critical infrastructures
– Cryptography, Privacy & Data protection
– Cybercrime and Digital forensics
– Cyber-security / Cyber-Intelligence / Cyber-Warfare / Cyber-Terrorism
– Socio-cultural issues and risks in the digital society.
Authored and published in several specialised books and magazines. He is frequently invited as speaker in many international conferences and seminars.
President of The ISACA Rome (Italy) Chapter. Served the Standard Board at ISACA/F where he was Chair for three years and in the CISM Board.
Edward Ayman Ganom is a senior cybersecurity expert with over 20 years of international experience in information security architecture and technology risk management. He currently holds the position of CISO at The Commercial Bank in Qatar. Previously, Edward held several key technology and risk management positions in the financial and public sectors in the USA and the Middle East. He participated in drafting national cyber security policies and strategies and cybercrime legislation. Edward holds two bachelor degrees, one in Electronics Engineering and one in Political Science from two American universities. He is a Certified Information Systems Security Professional (CISSP) and is a recognized speaker at technology, security and risk conferences.
Fabian Libeau currently serves as VP EMEA for RiskIQ and is responsible for RiskIQ’s sales and support operations in EMEA. Prior to this role he was EMEA Technical Director for RiskIQ, working closely with customers to maximise the value they receive from the RiskIQ solution set. Before joining RiskIQ Fabian was with ArcSight and after the acquisition by HP, with HP Enterprise Security Products for 9 years in different technical roles where he worked closely with enterprise customers to implement Log Management solutions and next generation SOCs. Fabian is a frequent speaker at conferences and is CISSP certified. He holds a masters degree in Physics.
Graeme is the Global Head of Security Operations at E-Commerce Giant; The Hut Group (THG), tasked with protecting, detecting and defending a vast technology estate.. A Former Special Forces Officer, he has since worked at Mason Advisory where he provided services to ASTO; a Santander powered FinTech start-up in the capacity of Head of IT Security. He holds a GCHQ accredited Masters’ degree in Cyber Defence and Information Assurance.
James Linton, Threat Researcher —also known as the Email Prankster—is known for tricking several current and former White House officials by using fake emails pretending to be their colleagues. Featured in publications such as WIRED and Buzzfeed, James is now a public figure who uses his @SINON_REBORN Twitter account to spread tips and tricks for avoiding email scams.
Joel has been with GlobalData for eighteen years and has 21 years of experience in the high-tech industry. As a Research Director within the IT and Network Enterprise Services analyst team, Joel’s coverage area includes global and European providers of enterprise voice and data network services, as well as the international wholesale carrier-to-carrier services market. Additionally, Joel covers connectivity including global SD-WAN and wholesale IPX and anti-fraud. Joel is a well-known and highly regarded speaker at major conferences, and is read and regularly quoted by telecom industry media. Joel regularly briefs C-level executives on corporate strategy in the areas of IT and network services, including SD-WAN road-map, managed security services, data centre and cloud services, and wholesale carrier to carrier business models.
Matt Middleton-Leal is General Manager EMEA and Board member at Netwrix Corporation. With 19 years spent working in the security industry, Matt brings significant experience to his role at Netwrix. He has worked for many organisations, specialising in areas such as risk management, identity and access management, application, network and database security. Matt most recently held the position of V.P. Northern Europe at CyberArk Software, where is oversaw five consecutive years of 45%+ per annum revenue growth. Prior to CyberArk he held the position of Business unit executive at IBM Security Systems. Matt joined IBM from CA where he had spent six years, working on their largest information security projects. Matt is a CISSP® – Certified Information Systems Security Professional.
Michael has been the head of security for AXA in the UK for more than five years. Prior to that he was a director of Downtown Associates, an information security and privacy consultancy, where he assisted firms in the Lloyd’s Insurance market. Previously to that he was the Global Head of Information Security as well as the Global Head of Privacy and Data Protection for the investment bank Dresdner Kleinwort, Michael has a strong side-interest in computer forensics and in the management of digital evidence. He graduated from the Massachusetts Institute of Technology in 1987 where he studied Mathematics and Computer Science. He has since lived in three continents and has lectured globally on security technology issues. Since 1996 has been working in Security and Technology in Financial Services in London.
20+ years of Experience in Sales & Business Development, Product Management, Platform Consolidation Programs, International Project Management, Marketing, and Customer Service. Currently helping customers in Portugal, Spain and Italy to leverage Bitsight Ratings.
An experienced Senior Leader & Corporate Executive, Security & Risk Professional, Ray is a globally acknowledged and well-known thought leader; recognised and highly respected as someone who delivers. Ray has sat on global programmes for the World Economic Forum on Cyber Resilience and the Advisory Board for the Information Security Forum. Ray has held Group CiSO/CSO & EVP roles for BT, National Grid, Interoute, Redwood Technologies and Airbus UK. He has been fortunate enough to have held global accountability, ranging from consultancy, through to design, build and run of managed services; including full profit and loss ownership for multiple business lines, while combining this experience with protection of Critical National Infrastructure in the Energy and Communications industries.
Rob is a highly motivated and driven Security and Network Professional holding positions in Sales, Service Management and Consulting up to Services Director and Managing Director Level. A strong communicator with the ability to engage from C-level downwards. Currently in the role of Director of Security and Network Services responsible for a team comprising multi skilled engineers, consultants and managers. Proven ability to apply consulting and service skills across a variety of industry verticals in the roles of: Business Consulting, Service Design, Service Transition, Solution Development, Vendor Management, Supplier Selection (including RFP Generation) and bridging the gap between business requirements and technology deployments.
Simon describes himself as a “Changer, Shaker, Motivator and Leader of Amazing People”. The self proclaimed “Anti-CISO” he describes his approach as a business brain on technology shoulders. Simon has a broad and diverse range of experience most recently fulfilling the role of JLT Group CISO Office comprised of an operational Cyber Unit and an Information Security oversight functions including Business / Regional Information Security Officers and Information Security Risk Managers. As part of the role Simon took JLT’s seat at industry and regulatory committees focused on Cyber Security. Prior to JLT, Simon was at PRA Health Sciences and Bank of America Merrill Lynch. At PRA Health Sciences Simon was responsible for building and maturing PRA’s Technology function as a whole, this included the deployment of public cloud services and the establishment of the CISO and Technology Risk function during a period of five years while PRA more than trebled in size, successfully went Public and fully rebranded. At Bank of America Simon held various positions over a period of 17 years, this included the establishment of the payment technology operations domain and also becoming CISO responsible for all regions and businesses operating outside of the US (LATAM, APAC and EMEA).
Dr. Sally Leivesley, Director, Newrisk Ltd and Co-Founder, TEG7 Group LLP – advises companies and governments on catastrophic risk where losses to companies and governments may involve critical functions essential for operations and reputation. She runs exercises to stress test critical function failures and resilience capability. Dr. Leivesley is known for her appearances on aviation terror attacks, ISIS, Al Qaeda, Al Shabaab and other international terrorism, cyber breaches, CNI protection and government policy on the BBC World Service, ITV This Morning and other UK based media and European, Middle East and Australian media. She raised the forensic importance of the risk of cyber hijacking of flight MH370 which was the subject of a Discovery Channel documentary and has been a commentator on the risks relevant to Donald Trump economic, terror and nuclear influences during his Presidential campaign and on his election. Dr Leivesley works in conjunction with The Exercise Group7 (TEG7) a London based group of companies that specialise in resilience operations for cyber-attacks, international terrorism and nation state threats and solutions for business and government-critical infrastructure. The focus is on testing through exercises, assurance and pen tests using an integrated approach to all hazards including social factors. (www.Teg7.co.uk) In the UK she has been a member of the technical committee for the first IET (formerly IEE) guidance document on Resilience and Cyber Security of Technology in the Built Environment which was supported by the Centre for the Protection of National Infrastructure. She is also a member of the British Register for Security Engineers and Specialists established to advise at a strategic level on terrorist and other extreme threats to critical infrastructure. She interfaces with a USA company to extend exercising for aviation and energy industries. Dr Leivesley originally trained as a Scientific Advisor with the British Home Office. She is a specialist in CBRN.
Vipul Asher serves as Privacy Consulting Manager of the United Kingdom at OneTrust – the largest and most widely used dedicated privacy management technology platform for compliance with global privacy laws. In his role, Asher leads OneTrust’s team of consultants across the UK, working with emerging and enterprise companies on data protection regulation solution implementations, focused on building and scaling global privacy programs. Asher has publicly spoken on a variety of privacy and security topics, providing deep insight into regulatory issues and practical approaches to compliance. Additionally, he helps facilitate OneTrust’s PrivacyConnect workshops across the EMEA region. Prior to OneTrust, Asher spent several years at a leading SaaS security company where he gained valuable experience implementing end-point security and advanced multi-factor authentication products into organisations to protect them from data breaches, credential theft and account takeover. Asher is a Certified Information Privacy Professional (CIPP/E) and holds a M.Sc in Computer Science from Fergusson College.
Victoria Baines is a leading author and speaker in the field of cybersecurity. Her areas of research include electronic surveillance and evidence gathering, the changing face of online identity, and the politics of cybersecurity. She has appeared on the BBC, CNN and other major broadcast media outlets as an authority on the misuse of emerging technologies, including Virtual Reality. She serves on the Advisory Board of the International Association of Internet Hotlines (INHOPE).
For several years, Victoria was Facebook’s Trust & Safety Manager for Europe, Middle East and Africa. Her work focused on operational support to law enforcement, and strategic engagement with policy makers on criminal activity online. Before joining Facebook, Victoria led the Strategy & Prevention team at Europol’s European Cybercrime Centre (EC3), where she was responsible for the European Union’s cyber threat analysis. She designed and developed the iOCTA, Europe’s flagship product on cybercrime, and authored 2020, scenarios for the future of cybercrime that were the basis for Trend Micro’s successful short film series of the same name.
Earlier in her career Victoria was Principal Analyst for online child protection at the UK Serious Organised Crime Agency (SOCA), and was responsible for the UK’s threat assessment of online child safety issues. She began her career in law enforcement in 2005 as a Higher Intelligence Analyst for Surrey Police. In 2008, the International Association for Law Enforcement Intelligence Analysts recognised Victoria’s work for the public sector with an award for outstanding achievement.
Victoria is a graduate of Trinity College, Oxford and holds a doctorate in classical literature. She is a Visiting Associate of the Oxford Internet Institute (Oxford University), and a Visiting Fellow at Bournemouth University School of Computing.
Dr Vasileios Karagiannopoulos holds an LLB from Athens Law School and an LLM in Information Technology and Telecommunications Law and a PhD in Law from the University of Strathclyde, School of Law. He has taught Information Technology Law, Intellectual Property Law, E-commerce Law and Human Rights Law for Strathclyde and Edinburgh Law Schools and is now a Senior Lecturer in Law and Cybercrime working for the Institute of Criminal Justice Studies (ICJS), University of Portsmouth. Vasileios has designed and is the course leader for the new ICJS BSc in Criminology and Cybercrime starting this September. He is also the Director of the Portsmouth Cybercrime Awareness Clinic, a project funded by Hampshire Constabulary, aiming to increase awareness and build resilience to cybercrime in the local community through research and public engagement activities with SMEs and vulnerable populations. Vasileios is the Chair of the ICJS Research Ethics Committee and Vice-Chair of the Faculty Research Ethics Committee and is also an IISP Certified Forensic Investigations Practitioner. He has published in UK and US peer reviewed journals on the topics of computer misuse law and insider unauthorised access, the impact of social media during the Arab Spring and also Internet regulation in the People’s Republic of China. His new monograph by Palgrave Macmillan, Living with Hacktivism: From Conflict to Symbiosis, focuses on hacktivism and discusses the challenges faced by the US and UK criminal justice systems when dealing with such phenomena. In this book, Vasileios puts forward an alternative rationale and practical responses to hacktivism with the aim of ameliorating the inefficiencies and injustices identified in current approaches.
We are always looking for:
We welcome your input into shaping the agenda and speaker panels.
Our programmes are highly researched with practitioners who do the job day in and day out. They are organic to ensure that we remain agile to meet the most current requirements.
For further information, please contact Sara Hook
+44 (0)20 7936 8989 or firstname.lastname@example.org