Speakers – 3rd CISO 360 Congress 2019
If there is someone you would like to see speak or if you are interested in speaking please let us know firstname.lastname@example.org.
Born at a very early age and growing up in a culture where cyber was a prefix for anything automated, menacing and malevolent (how history has a tendency of repeating itself), Marcus entered the world of Data Processing as it was known back then after graduating from university. Lured by the flashing console lights (it was also the disco era), the whirl of the magnetic tape and the click clack of the keypunch machine (TSO was still a dream), Marcus became a COBOL programmer, becoming prolific in Michael Jackson’s structured programming methodology (who would have known what future lay ahead for Michael). Having moved into analysis and then data architecture Marcus became the first devolved Information Risk and Security Manager for Barclaycard. After seven years in that role he moved banks and became Head of Information Security for Abbey National plc, now Santander UK. After six years at Abbey and a move into consulting for a large UK utilities company Marcus joined KPMG as a Principal Advisor. Eighteen months later he joined Lloyd’s of London as its CISO and subsequently became its Head of Digital Risk Management and Compliance, also embracing responsibility for data protection and privacy, during his 10 years tenure there. Having worked in IT for over 40 years, specialising in information risk, protection, security and compliance for the latter 27 years or so, Marcus decided to leave full-time corporate life and move to the South Coast of England in mid-2017, ever the seafaring Fisherman’s Friend. As well as being a proud member of the Pulse Conferences family, Marcus now undertakes advisory engagements, provides pro bono consulting and volunteering services and sits on the Cymmetria Advisory Board as Chief Risk Officer.
Professor Dr. Robert Coles is a Visiting Professor at Royal Holloway, University of London, where he is conducting his research into security culture change. He also runs his own consulting business. Prior to this, Robert was the first Chief Information Security Officer at GSK from 2013 to 2018. Robert held several CISO roles prior to joining GSK. He was the first CISO at National Grid and Merrill Lynch before that. In all these roles, he owned the information security risk and was responsible for providing global leadership. He was accountable to the Executive and PLC Boards for establishing information security strategy and direction. Building global information security capabilities and overseeing all of the information security initiatives across the organisations has been his primary career focus. Robert has been working in the field of Information Security for over 30 years, including “head of” roles at Royal Bank of Scotland, and the lead partner in KPMG’s Information Security Services for EMEA. Robert has extensive links with major industry information security networking groups and government security agencies. He also has links with a number of universities and participates in leading edge research, particularly with Royal Holloway where he is an Executive Sponsor for the Institute of Information Security Innovation, and Cranfield University where he is a External Advisory Board member. He was awarded a PhD in psychology at the University of Leeds in the perceptions of information and IT risk and has published and presented on this and other topics.
Caspar started his working life at the age of 16 as an actor in the first two series of BBC drama Byker Grove with “Ant and Dec”. They went on to become two of the most famous people in the UK and Caspar went on to study economics at Cambridge where he had early commercial success directing award-winning short films and TV commercials from the age of 18. He went on to write two feature films which were produced by Film Four and Columbia Tri Star before he had graduated. He did not get a very good degree. He went on to write and direct in the film and television industry for much of the next four years before deciding that he was heading towards the age of 30 without having lived much of life outside of that crazy and unreal world. So aged 26, he decided to take a risk and move to Las Vegas with his life savings in his pocket. Playing poker was disciplining, testing and demanding but also incredibly emotionally rewarding as he conquered the challenges it posed and made a living as a professional poker player at the tables of Las Vegas. After three years, however, he decided that his future lay away from the poker table and he returned to the UK and set up Twenty First Century Media which he built to a team of 40 before selling to Bob Geldof’s Ten Alps plc. At around this time, in 2005, the poker boom happened, and Caspar had already started speaking professionally so he moved to London to create a portfolio career as a trainer for the Mind Gym by day (delivering over 400 sessions to 100 companies) and a TV poker commentator by night (doing over 2000 hours of live broadcasting on poker channels and Sky Sports).In 2006 he was asked to be one of the two poker advisors on the James Bond movie “Casino Royale”, tasked with training the actors up to look like professional poker players for the key scenes. In the last 14 years Caspar has delivered over 2,000 speeches and training sessions in more than 30 countries for nearly 500 organisations including the biggest companies in the world. He now mentors young speakers and brings together all the otherwise disparate skills he’s learnt over his career – writing, directing, training, economics – to help young speakers craft messages culled from their own life that are focused on helping people and businesses make profound changes in all manner of ways.
Ken is a security entrepreneur and industry maverick that has worked in infosec for over 15 years. After studying Applied Physics he tried his hand in the hospitality industry but soon discovered a talent for hacking, persuading a till to print out mortgage amortisations. He went on to cut his teeth in the anti-virus industry before founding SecureTest, a penetration testing business that quickly established a reputation for delivering high spec services using a boutique business model. NCC Group recognised the value of the proposition and acquired SecureTest in 2007. But Ken had found his calling and his penchant for pen testing saw him set up Pen Test Partners in 2010 which now boasts some of the best ethical hackers in the business, each of whom has a stake in the firm. Ken’s zeal for pen testing is matched only by his disdain for those vendors who resort to scaremongering to peddle point solutions. He is a fierce advocate of responsible disclosure and regularly researches and reveals security vulnerabilities in an effort to promote better security design and practice. He takes a key role in conducting investigations as well as encouraging team members to pursue their own research and the results are published on the company blog on a weekly basis as well as being publicised by the wider media.
Ken is a respected speaker and pulls no punches during his annual Tech Talk presentations at Infosecurity Europe, where he can also be found performing practical hack attacks on the company stand. He is a regular speaker at events held by industry bodies and associations and has spoken at the ISSA Dragon’s Den, (ISC)2 Chapter events and CREST (Council of Registered Ethical Security Testers) events, where he sits on the board, helping to establish standards in both member organisations and among individual penetration testers. He’s also an Executive Member of the “Internet of Things Security Forum”, a body that aims to promote best security practice and the application of controls in smart device manufacturing, and spoke out on IoT security design flaws at the forum’s inaugural event. He’s also not averse to getting deeply techie, regularly participating in hacking challenges and demos at 44CON, DefCon and Bsides. Ken has a wealth of experience in penetration testing but it’s the systems and objects we come into contact with on an everyday basis that really pique his interest. This has seen him hack everything from hotel keycards, to keyless cars and a range of Internet of Things (IoT) devices, from wearable tech to children’s toys and smart home control systems. This has gained him some notoriety among the national press, leading to regular appearances on BBC TV and BBC News online as well as the broadsheet press, and he’s also a regular contributor to industry magazines, penning articles for the legal, security, insurance, oil and gas, and manufacturing press.
James Hinton is the founder of Own Innovation and a proud supporter of Canadian technology companies. In addition to being an IP lawyer, he is both a patent and trademark agent before the Canadian IP Office, and works directly for Canadian companies with the US Patent and Trademark Office.
He is also a fellow at the Centre for International Governance Innovation, where he studies IP and innovation policy. Jim also has a background in mechanical engineering, and worked in heavy truck manufacturing and fiberglass project management, before law school. Additionally, he has a Bachelor of Engineering from McMaster University (Go Marauders!) and a Juris Doctor from the University of Toronto. Jim loves to talk about IP – he is an assistant professor at Western University where he teaches engineers all about IP. He’s also a huge advocate of pro bono (free!) legal services and work with entrepreneurs locally and nationally at incubators and accelerators on IP and IP strategy. Finally, he works closely with the Council of Canadian Innovators on Canada’s Innovation initiatives and Canada’s national IP strategy.
Dvir has a military background in the” Israeli Air Force”. He worked as a Security Manager for “ARKIA AIRLINES” & “EL-AL AIRLINES” in Israel and around the world. He was the Security Director of EILAT & OVDA airports in Israel till 2007 and was appointed to his current position at 2008. He is responsible for all operational issues regarding aviation security operation centre and responsible for all security clearance for flights that seeking to enter the Israeli FIR. He is in charge for all the security clearances and approvals on each airline/flight that seek to enter to Israel in advance and in real time. In addition, I perform security consultation visits and audits in airports & airlines around the world that operates flights to Israel. In parallel, I run the aviation security operation centre (ASOC) that responsible for all the Security Aviation industry in Israel.
Amy Lemberger is the Cybersecurity Director at the GSM Association and is responsible for supporting the improvement of the security posture of the telecommunications industry . Since joining the GSMA she has enhanced cybersecurity engagement within the ecosystem and published the mobile telecommunications Threat Landscape report. Prior to the GSMA, Amy was at BT developing their incident response strategy and lead their Computer Emergency Response Team (CERT). Amy has also held various technical investigator roles in adjacent industries. Amy graduated with a First Class (hons) degree in Digital Forensics and holds various industry certifications including CISSP, CISM and GNFA.
Ethical hacker, Fidus Information Security
Andrew Mabbitt is a cybersecurity expert at Fidus Information Security. As an ethical hacker, his job is to detect and rectify security vulnerabilities before malicious hackers do.
Aftab is cyber security leader with over 20 years’ experience. He has held leadership positions with the industry’s leading technology vendors for Cloud, Network, Endpoint and Application Security. Aftab has assisted many enterprise companies and organizations in taking a holistic approach to security and in defining best practices. Aftab studies management at Oxford college before moving Brunel University and is currently completing an Executive MBA. In his spare time, Aftab is keen cyclist and can regularly be found attacking hills around Oxford shire.
Adam has 25 years international experience in managing IT and Information Security mainly in Oil & Gas, Pharmaceutical, Consumer Goods, Telecommunication and Financial Services industries. Founding member of ClubCISO, Consumer Goods Security Forum in the UK and Information Security Forum in Malaysia – peer groups of CISOs and Heads of Information Security formed to exchange good practices and experience within specific focus groups. Adam has significant experience consulting and advising boards of directors of FTSE100/Fortune500 companies on Information Security, Privacy, Risk Management and Resilience. The current role is Chief Information Security Officer at Opel Vauxhall Finance.
Ben is the SailPoint EMEA Identity Platform Director, working across the region he supports the local SailPoint teams, partners and customers in helping define their strategy and adoption of an integrated Identity Governance platform. With over 25 years’ experience in the software industry; where he has led teams, in the development and implementation of complex IT Security solutions in areas such as; Access Management, Identity Management, Data Governance and Database etc across multiple verticals. Ben has travelled extensively throughout Europe, Middle East, Africa & America through his work responsibilities. He has spoken at numerous events on matters such as Security, Identity Governance and various related privacy issues.
Ben serves as an Account Director of Cyber Security division at Nominet. In this role, he leads the efforts of helping enterprise customers manage their cyber risk and compliance requirements. Prior to joining Nominet, Ben held sales positions at Cognosec, NTT Europe and others, where he was responsible for taking cyber risk solutions to market. Ben holds a BA degree from the Bournemouth University.
Prof. CLAUDIO CILLI, Ph.D., CISA, CGEIT, CISM, CRISC
Prof. Claudio Cilli is a recognised world leading authority in the areas of National Security and Intelligence, company protection, information systems security and compliance, with over 25 years of experience. He currently advises governments and int’l companies in the cyber-security and critical infrastructures protection areas.
University professor and researcher. Lesson arguments include: computer science, software compilers, lexical and semantic analysers, information systems analysis and development. Member of the scientific and advisory boards. Teacher in the post-graduate masters in Computer Security and IT Governance.
Consultant to the U.S. Government and companies who supply the Department of Defence. Consultant at the United Nations. With many big firms, he is responsible of IS Audit and security projects, which include civil and military sectors, software quality and code security, security of the information systems and installations. Designed and implemented systems based on mainframes and distributed architecture, including Disaster Recovery and both data and physical security, information and site protection.
Main areas of interest:
– Information & Communication Security in complex organisations
– Cyber Intelligence and counterintelligence
– Homeland security and protection of critical infrastructures
– Cryptography, Privacy & Data protection
– Cybercrime and Digital forensics
– Cyber-security / Cyber-Intelligence / Cyber-Warfare / Cyber-Terrorism
– Socio-cultural issues and risks in the digital society.
Authored and published in several specialised books and magazines. He is frequently invited as speaker in many international conferences and seminars.
President of The ISACA Rome (Italy) Chapter. Served the Standard Board at ISACA/F where he was Chair for three years and in the CISM Board.
Colette has a proven track record of interpreting security and privacy regulatory and industry requirements for the corporate environment. She has held leadership roles in Microsoft, global banking and the gaming industry focussing on designing, implementing and maintaining security and privacy programmes. She has led international Tier 1 organisations to successful PCI DSS certification and managed global ISO/IEC 27001:2005 certification programmes. As Global Head of Privacy for Nokia Group, she is responsible for overhauling privacy across the business and ensuring it becomes embedded in Nokia’s diverse range of activities, operations, products and services. Her motivation and objective is comprehensive reduction of privacy risk for the business and for the individual, as well as confidence that data-driven innovation is ethical. Colette gained a Distinction, MSc. Information Security at Royal Holloway, University of London. She is CISSP, CISM, CIPP, CIPM and holder of BCS Certificate in IT Law.
David is a Chief Information Security Officer with over 30 years’ experience in the finance, legal and telecommunications sectors, specialising in information risk, compliance, information security, data protection and IT security operations.
Des McGuckian is an IT professional, recently retired from the British Army and now working for TfL. He is experienced in delivering communication and information systems in hostile and permissive environments, where the threat actors cross all domains. As the Army’s Information Exploitation Branch lead for Intelligence, Surveillance and Reconnaissance Systems, he was focussed on the delivery of Intelligence Systems and driving international interoperability in an arena where ‘need to know’ is everyone’s strap line.
His successes include the design, transition and operation of the IT systems for Camp Bastion in Helmand Province, Afghanistan and the military support to the G8 Summit; working with international partners to deliver intelligence information architectures to enable a ‘fight tonight’ warfighting capability; and acting as the Principal Communications Officer for the Strategic Weapons Nuclear Emergency Organisation, delivering CIS strategy and coordination for Other Government Departments.
What gets him out of bed in the morning – understanding the operational (business) need and how communications technology can make that happen in new and innovative ways, oh and coffee.
Dr. Eduardo Solana is Senior Lecturer of Cryptography and Security in the University of Geneva and in the University of Applied Sciences also in Geneva, Switzerland. Amongst others, he has worked for IBM and PricewaterhouseCoopers where he was Global Subject Matter Expert for authentication solutions. He has more than twenty years of experience in the fields of cryptography and information security both in the private sector and the academia.
Edward Ayman Ganom is a senior cybersecurity expert with over 20 years of international experience in information security architecture and technology risk management. He currently holds the position of CISO at The Commercial Bank in Qatar. Previously, Edward held several key technology and risk management positions in the financial and public sectors in the USA and the Middle East. He participated in drafting national cyber security policies and strategies and cybercrime legislation. Edward holds two bachelor degrees, one in Electronics Engineering and one in Political Science from two American universities. He is a Certified Information Systems Security Professional (CISSP) and is a recognized speaker at technology, security and risk conferences.
Edvinas Pranculis is a business management professional, who has helped a number of local and international companies develop new lines of business, penetrate new markets and ensure strong business growth. With 15+ years of experience in IT service and information security management he has repeatedly demonstrated his qualities of a pragmatic problem solver and a critical thinker. Edvinas earned his Master of Management (MM) degree in BI Norwegian School of Management and ISM University of Management and Economics and also holds recognized CISA, CISM, CRISC and ITIL certifications.
Fabian Libeau currently serves as VP EMEA for RiskIQ and is responsible for RiskIQ’s sales and support operations in EMEA. Prior to this role he was EMEA Technical Director for RiskIQ, working closely with customers to maximise the value they receive from the RiskIQ solution set. Before joining RiskIQ Fabian was with ArcSight and after the acquisition by HP, with HP Enterprise Security Products for 9 years in different technical roles where he worked closely with enterprise customers to implement Log Management solutions and next generation SOCs. Fabian is a frequent speaker at conferences and is CISSP certified. He holds a masters degree in Physics.
Friedelien has been in her current position since 2017, based in Johannesburg, South Africa, Prior positions include: Head of Information Security with Silica; Head: Information Security & Governance at Sasfin Bank Ltd; Information Security Consultant at Performanta; Information Security Programme Manager at Standard Bank Group; Partner at Outpost24; Head of Business Unit | eSecurity at Kenya Data Networks and CISO at Safaricom in Kenya.
Gadi is the Founder and CEO of Cymmetria, a cyber security startup that is pioneering the space of cyber deception. He is also Founder and Chairman of the Board of the Israeli CERT, Founding Chairman of the Cyber Threat Intelligence Alliance (CTIA), and Founder of the Israeli Government CERT. Gadi is widely recognized for his work in Internet security operation and global incident response, and is considered the first botnet expert. Prior to founding Cymmetria, Gadi was VP of Cybersecurity Strategy for Kaspersky Lab, led PwC’s Cyber Security Center of Excellence (located in Israel), and was CISO of the Israeli government’s Internet operations. He has authored two books on the topic of information security, organizes global professional working groups, chairs worldwide conferences, and is a frequent lecturer.
Prior to his current role with Petrofac, George was responsible for defining Cyber Security strategy for Enterprise IT & OT for the region and provide strategic leadership to IT Security related projects & initiatives for all GE businesses in the region. George was also responsible for protecting GE critical assets in a growing region which spans 18 countries and 7000 work force George joined GE in 2006 with GE Healthcare in India and has since held roles of increasing responsibilities and progressed to his most recent role as Chief Information Security Officer for MENAT. During his tenure with GE, George worked in multiple domains (Product Life cycle management, ERP, Infrastructure, Supply Chain & Commercial IT) and multiple businesses (GE Healthcare, GE Appliances, GE Capital, GE O&G, GE Aviation and GE Corporate) George is a graduate of GE IT leadership program (ITLP), GE Six Sigma Black Belt program and graduate of GE Executive leadership program (CAS).
Graeme is the Global Head of Security Operations at E-Commerce Giant; The Hut Group (THG), tasked with protecting, detecting and defending a vast technology estate.. A Former Special Forces Officer, he has since worked at Mason Advisory where he provided services to ASTO; a Santander powered FinTech start-up in the capacity of Head of IT Security. He holds a GCHQ accredited Masters’ degree in Cyber Defence and Information Assurance.
Irene is responsible for the execution of the ADSIC Information Security Programme, Security Governance, Risk and compliance to IT Security Policy. She offers 27 years of combined and diverse experience in IT (Security, Operations and Strategy), Quality & Excellence. She has worked in various industries and region and led strategic initiatives in Asia, Middle East, Europe and America. An emerging seasoned speaker on Information and Cyber Security Conferences, Irene has spoken in a number of conferences in Asia, Middle East and Europe. Irene acquired her Masters of Science in IT from University of Wales, and holds the following certifications: ITIL V3, PMP, ISO (QMS and 27k) Lead Auditor and EFQM Assessor.
James Linton, Threat Researcher —also known as the Email Prankster—is known for tricking several current and former White House officials by using fake emails pretending to be their colleagues. Featured in publications such as WIRED and Buzzfeed, James is now a public figure who uses his @SINON_REBORN Twitter account to spread tips and tricks for avoiding email scams.
Technology Services Head of Cyber Security. Developing & delivering live security services for DWP Digital; incubating future technologies that meet Digital 2020 user stories whilst ensuring great outcomes for the customer.
Justin Shaw-Gray is the Sales Director for the UKI region for Synack, Inc. In 2018, shortly after joining Synack, Justin was awarded SC Media’s Runner Up for Best Cybersecurity Sales Leader. Prior to Synack Justin held senior roles at Netscope, Zscaler, and Riverbed. Justin is originally from Zimbabwe where he was Founder and Human Rights Activist for the Restoration of Human Rights Zimbabwe. Justin is an avid runner and lives in London with his wife and three young children.
Joel has been with GlobalData for eighteen years and has 21 years of experience in the high-tech industry. As a Research Director within the IT and Network Enterprise Services analyst team, Joel’s coverage area includes global and European providers of enterprise voice and data network services, as well as the international wholesale carrier-to-carrier services market. Additionally, Joel covers connectivity including global SD-WAN and wholesale IPX and anti-fraud. Joel is a well-known and highly regarded speaker at major conferences, and is read and regularly quoted by telecom industry media. Joel regularly briefs C-level executives on corporate strategy in the areas of IT and network services, including SD-WAN, digital transformation, cybersecurity, and cloud.
Lee Barney is a passionate believer in using Security as a business enabler; he does this through challenging the preconceptions of the industry and by changing the mind set of those who work in Security to be more pragmatic. Having worked in Defence, Consulting, Finance and now Retail, Lee has a breadth of knowledge about what works well and what doesn’t work at all. Lee advocates a healthy relationship with the Chiefs of an organisation pointing out that our industry is built on Executive buy in not scare mongering. Lee was recently Director of Information Security at YOOX NET-A-PORTER and before that he was the Head of Information Security for Marks and Spencer.
Lee is currently the Group CISO and also the DPO here at Stagecoach. He has been here about 7/8 months. Previously he was the Head of Information Security and Data Protection at Yodel for around 2.5 years. Both of the organisations required a change in their culture with regards Information Security and the awareness around Data Protection/GDPR. Previous to Yodel, he spent just shy of 15 years in the military as part of HM Royal Air Force where he started as first-line IT support, moved to 2nd & 3rd line, before being assigned to a Unit where we would build IT Systems from scratch in austere (often sandy) conditions. From building systems to then testing who could access the data on those systems, after promotion I then began teaching cryptography & secure systems to recruits and staff alike before a regional Head of InfoSec & GRC role.
Matt Middleton-Leal is General Manager EMEA and Board member at Netwrix Corporation. With 19 years spent working in the security industry, Matt brings significant experience to his role at Netwrix. He has worked for many organisations, specialising in areas such as risk management, identity and access management, application, network and database security. Matt most recently held the position of V.P. Northern Europe at CyberArk Software, where is oversaw five consecutive years of 45%+ per annum revenue growth. Prior to CyberArk he held the position of Business unit executive at IBM Security Systems. Matt joined IBM from CA where he had spent six years, working on their largest information security projects. Matt is a CISSP® – Certified Information Systems Security Professional.
Michael has been the head of security for AXA in the UK for more than five years. Prior to that he was a director of Downtown Associates, an information security and privacy consultancy, where he assisted firms in the Lloyd’s Insurance market. Previously to that he was the Global Head of Information Security as well as the Global Head of Privacy and Data Protection for the investment bank Dresdner Kleinwort, Michael has a strong side-interest in computer forensics and in the management of digital evidence. He graduated from the Massachusetts Institute of Technology in 1987 where he studied Mathematics and Computer Science. He has since lived in three continents and has lectured globally on security technology issues. Since 1996 has been working in Security and Technology in Financial Services in London.
Marc is a senior security practitioner with over 20 years of experience crossing multiple industry sectors, from financial services to publishing. For the past 7 years, he has led security improvement programmes for the likes of Pearson, T-Systems and Symantec. He is currently the CISO at Zscaler.
Necati is the founder of BlueCyte & CyberCyte, new startups in cyber security. Previously he was the founder of MAY Cyber. He was responsible for the R&D Division and product strategy. MAY Cyber became the biggest cyber security vendor in Turkey and Necati made an exit from the company in 2018. Necati has more than 15 years of experience in cyber security and worked in different technical and managerial roles. Necati started his IT career in Finansbank and then worked in TUBITAK as a project manager. After realizing the opportunities in Security Management he decided to develop new products helping organizations to overcome the challenges to start MAY Cyber in 2005. Necati holds BSc. Degree in Electrical-Electronic Engineering from Middle East Technical University and a MBA from Marmara University. He is also certified as CISSP, PMP and ISO 27001 Lead Auditor. Necati is a skier and a diver. He also enjoys cycling in London.
Eng. Majed is Certified EC-Council Chief Information Security Officer & Licensed MCI IT Consultant No.13525 has over 18 years of Information Technology professional experience at both the senior management and technical hands-on in contracting, banking, retail, Oil & Gas, facility management, engineering, refinery, real estate, hospitality, construction, automotive, and investment industries. In addition to the business digital transformation along with rich knowledge and expertise in establishing and operating the Information Security businesses. His main aim to provide enterprises with the information technology and insight, enabling businesses, integrate functions, guidance and leadership that will foster a successful digitalized business decision-making platform using the right set of IT secure and credible portfolios starting by the Information Technology/Information Security strategy development all the way down to the technical implementation stage with high-satisfied businesses.
Bilingual technology leader with 20+ years’ experience in Cybersecurity and ICT, with sound technical background and a broad technology vision. Worked in multinational environments leading people and initiatives across multiple countries, towards the adoption increase of Cybersecurity solutions or New Technologies introduction/acceleration in the market, working both directly with customers, partners, ecosystem partners.
President of (ISC)² Italy Chapter, Board Member at CLUSIT.
I am interested in building security fundamentals into the software development lifecycle. I believe that giving developers the power to build secure software is the most effective way to protect against cyber attacks. No technology can be as creative and effective as a curious person with solid understanding of security issues. As the CEO of Avatao, I am responsible to build a hands-on, online exercise platform where developers and security professionals can try new security techniques, learn how to use developer tools securely and get to know the basic concepts in software security. In a former life, I was a security researcher at UC Berkeley, USA where our team used large-scale data analysis to understand and disrupt the underground economy of spammers.
Mark is a recruitment and executive search specialist who heads the Security Practice at Barclay Simpson Corporate Governance Recruitment. He has 16 years’ experience of recruiting information security leadership roles in the UK and Europe.
Mariana is a Director of Darktrace, the world’s leading machine intelligence company for cyber security. Prior to Darktrace, Mariana held executive marketing roles in companies spanning multiple industries, including enterprise software company Autonomy and global FMCG leader Heinz.
Mark has more than 20 years of experience in the information security and information risk management, from technical roles to his recent role as a CISO for Signify (formerly Philips Lighting). He holds a Master of Information Management degree, believe in a business-driven approach to managing information risk, and is always willing to experiment with new ideas to improve our profession.
Martyn is an experienced information security leader, working at board level to define information security strategy and then manage teams to implement that strategy. Martyn works with clients in a flexible and proactive way to meet stringent security requirements and adaptive needs, enabling businesses to work in a flexible way by reactively designing security processes and technical controls that support the business rather than inhibit it. Specialties: Risk, Compliance, Governance, Awareness, Security Architecture, application archietcture, CLAS, .NET, Java, Online Piracy, Digital Economy Act, Firewalls, Security, Networks, Windows, ISO 27001, PCI DSS, policy
Lady Olga Maitland, Founder, Defense and Security Forum and Chairman, Copenhagen Compliance – has wide experience in all major Governance, risk Management and Compliance issues in general and global Fraud and Corruption problems in particular. She is a special adviser to a number of dignitaries and a widely sought after speaker at all Major Conferences on several Corporate Governance issues. Lady Olga is a former British MP for the Conservative party. Prior to her political career she was a reporter for the Fleet Street News Agency, a columnist in the London.
Olivier has more than 10 years’ experience in the security industry and more than 20 in network and internet technologies. Prior to joining IDQ he led the business development activities for Swiss IoT companies in the critical infrastructure, logistics and defense industries as well as media protection companies. Earlier, Olivier also co-founded a number of companies active in Internet-centric media technologies in the USA and in Europe. Olivier graduated from New York University (BA and APC in Business management).
Garrison was founded in 2014 to solve one of cyber security’s most intractable problems: how to enable users to use the Internet without exposing themselves to its risks. Garrison has developed patented web isolation technology to provide hardware-enforced secure remote browsing for enterprise customers. I joined Garrison in 2017 to develop and manage its business across Europe’s commercial sectors. My previous experience includes: telecoms and security consulting; account management and mineral exploration – prospecting mainly for gold. I also like to blog on topics that interest me such as the psychology of risk decision-making, cyber security, forecasting and the utility of allegedly world-saving new technologies. I try to give readers a wryly original point of view that in some way makes their lives better.
20+ years of Experience in Sales & Business Development, Product Management, Platform Consolidation Programs, International Project Management, Marketing, and Customer Service. Currently helping customers in Portugal, Spain and Italy to leverage Bitsight Ratings.
Paul leads a talented team of security architects and consultants designing and securing Vodafone’s systems, products and services. Embedding security across Cloud, IoT, Mobile, Office and Fixed networks, with a diverse range of people, technologies and business applications every day brings new insight and a different perspective. Prior to this Paul was Technical Director for CGI’s UK Cyber Security Practice, and a Principal Security Architect, working on a number of security transformation programmes. Paul has lead a team providing managed security services and incident response, worked as a penetration tester, been a software developer and leader, and started as security researcher in 1992.
Paul has over 10 years experience in Information Security. Coming from an ‘ethical hacker’ background, he is currently CISO at Revolut, a UK based financial technology company that offers banking services to over 6 million customers worldwide. There he leads the DevSecOps and Information Security teams globally to build trust for stakeholders. Paul is a regular international speaker at various industry conferences such as the e-Crime Congress, CSO Amsterdam and CISO360 Portugal. He also sits as an advisory board member of ClubCISO, a private members forum for European information security leaders, working in public and private sector organisations worldwide.
An experienced Senior Leader & Corporate Executive, Security & Risk Professional, Ray is a globally acknowledged and well-known thought leader; recognised and highly respected as someone who delivers. Ray has sat on global programmes for the World Economic Forum on Cyber Resilience and the Advisory Board for the Information Security Forum. Ray has held Group CiSO/CSO & EVP roles for BT, National Grid, Interoute, Redwood Technologies and Airbus UK. He has been fortunate enough to have held global accountability, ranging from consultancy, through to design, build and run of managed services; including full profit and loss ownership for multiple business lines, while combining this experience with protection of Critical National Infrastructure in the Energy and Communications industries.
Rob is a highly motivated and driven Security and Network Professional holding positions in Sales, Service Management and Consulting up to Services Director and Managing Director Level. A strong communicator with the ability to engage from C-level downwards. Currently in the role of Director of Security and Network Services responsible for a team comprising multi skilled engineers, consultants and managers. Proven ability to apply consulting and service skills across a variety of industry verticals in the roles of: Business Consulting, Service Design, Service Transition, Solution Development, Vendor Management, Supplier Selection (including RFP Generation) and bridging the gap between business requirements and technology deployments.
Robert is a security, intelligence and EOD executive with a UK Military background. He has broad strategic and operational experience and has advised senior staff, diplomats and government officials on aspects of security, intelligence, threat analysis, crises management, and resilience strategies. He has been the UN Security and EOD Advisor; Liaison officer for the UNMAS and UNOPS and has experience with NATO, the GCC, African Union, OSCE, EUPOL, FCO and others. Robert is a respected expert, has specialist research background on suicide bombing and has provided thematic briefs on worldwide security issues relevant to UNMAS/UNOPS missions.
More than 15 years of experience in the Enterprise software industry primarily in the areas of Business Development, Product Marketing, Alliance Management and in leading cross-functional teams across a distributed environment. In addition a a frequent public speaker from key industry events in EMEA and APJ
Richard is a seasoned Cybersecurity professional with over 20 years’ experience and passionate about helping organisations protect their people. Richard has been at Proofpoint for the last 10 years and has held various roles including Principal Architect, EMEA Product Manager and is currently part of the Global Cybersecurity Strategy team. As part of this team Richard regularly meets Proofpoint Customers to advise on their cyber security strategy.
Rich Turner is Senior Vice President of Sales for EMEA. He’s responsible for executing strategic sales and channel initiatives to drive growth and expand market opportunities for CyberArk in the region. Turner previously served as president of EMEA at FireEye. Prior, as chief executive at Clearswift Systems, one of the largest security software firms in the UK, Turner drove consecutive years of subscription revenue growth and improved operating margins; led the sale of the company to Lyceum Capital; and earned leadership recognition from SC Magazine. Additionally, he’s held board-level roles at technology and investment businesses, and also spent more than 11 years at RSA, the Security Division of EMC, where he held several senior management positions including vice president EMEA, vice president EMEA and Asia Pacific, and vice president worldwide channels.
Simon describes himself as a “Changer, Shaker, Motivator and Leader of Amazing People”. The self proclaimed “Anti-CISO” he describes his approach as a business brain on technology shoulders. Simon has a broad and diverse range of experience most recently fulfilling the role of JLT Group CISO Office comprised of an operational Cyber Unit and an Information Security oversight functions including Business / Regional Information Security Officers and Information Security Risk Managers. As part of the role Simon took JLT’s seat at industry and regulatory committees focused on Cyber Security. Prior to JLT, Simon was at PRA Health Sciences and Bank of America Merrill Lynch. At PRA Health Sciences Simon was responsible for building and maturing PRA’s Technology function as a whole, this included the deployment of public cloud services and the establishment of the CISO and Technology Risk function during a period of five years while PRA more than trebled in size, successfully went Public and fully rebranded. At Bank of America Simon held various positions over a period of 17 years, this included the establishment of the payment technology operations domain and also becoming CISO responsible for all regions and businesses operating outside of the US (LATAM, APAC and EMEA).
Dr SALLY LEIVESLEY PhD Lond.,MSPD, BA(Hons) Qld., FICPEM, FRSA, MACE, MIABTI, RSES
Dr Leivesley leads Newrisk Limited, which specialises in catastrophic risk identification, mitigation, exercise testing and response across industries, supply chains, governments and populations with a current focus on emerging risks to smart cities. She is chair of an international scientific permanent monitoring panel on catastrophic risk and megaterrorism which meets annually in Erice, Sicily. Dr Leivesley collaborates with a number of specialists groups on aviation threats and distributed energy systems sustainability with publications on strategic analysis in the operating environment (ICNS2015), Safety vs Security (NATO SAS-106 2014), and Resilient Core Networks for energy substation distribution for advanced energy grids (IEE PES General Meeting, 2014).
Dr Leivesley is a founding partner of The Exercise Group 7, TEG7 LLP (www.teg7.co.uk) which provides training courses for skills development and education on the rapidly changing demands from technology and risk to business systems and security.
Dr Leivesley researches human factor failures, terrorist and hostile nation state threats across physical and cyber security. Dr Leivesley was the first to publicly identify cyber-hijack as one of the possible forensic causes of MH370 flight loss and she participated in documentaries such as the Discovery Channel ‘Flight 370: The Missing Links’ and in a five year anniversary documentary in March 2019. http://www.newrisk.com/recentmediacommentary.html . Since 9/11 Dr Leivesley has provided regular television, radio and print media commentary and live broadcast assistance during high threat events within the UK and for international broadcasting to Europe, USA, ME and Australia. Events include the London 7/7 and 21/7 bombings, Westminster and London Bridge/ Borough Market attacks, North Korean nuclear threats, Iranian threats, the Oslo bombing, Wikileaks and Snowden’s data leaks, ISIS and Al Qaeda inspired attacks, militia style attacks on cities and hostage events including Beslan.
Dr Leivesley undertook her Doctorate at the University of London, focusing on catastrophic loss events and trained as a Scientific Advisor with the British Home Office on nuclear, chemical and biological threats. In the UK Dr Leivesley has presented on solar storm effects on system critical control devices and was a member of the technical committee for the first UK guidance document on Resilience and Cyber Security of Technology in the Built Environment published by the IET under sponsorship of the Centre for the Protection of National Infrastructure (CPNI)
Dr Leivesley is a Member of the Register of Security Engineers and Specialists (Institution of Civil Engineers); a member of the International Association of Bomb Technicians and Investigators (IABTI), the Royal United Services Institute (RUSI); the Information Assurance Advisory Council Community of Interest (IAAC); and the Australian College of Education. She holds Fellowships with the Institute of Civil Protection and Emergency Management and the Royal Society of Arts, Manufacturing and Commerce. Dr Leivesley has undertaken research into a new generation of communications in response to catastrophic risks in cyber security and development operations for innovation in financial services.
Tim Varkalis has over 10 years experience in cyber security. He cut his teeth as a penetration tester for Portcullis CSL, progressed to security consultant at PWC, then security architect at AXA and currently leads the global threat intelligence services for AXA. Academic background in theoretical physics, mathematics, AI, coding, etc. Enjoys helping the business to understand and defend against the threat landscape, sailing, and playing the cello.
Thom established himself as CISO at large global organisations, having founded their security teams and services from the ground up. He is an information security professional, award winning blogger, industry commentator and international speaker. Available as a speaking head and presenter on topics relating to information security, risk management and compliance. Thom lives in the beautiful countryside in the UK. As Chief Information Security Officer of Publicis Groupe, Thom was responsible for all aspects of information security risk and compliance as well as managing the Groupe Information Security Programme. Additionally the role was responsible for business continuity capabilities across the Groupe’s global operations. Having successfully built security and IT programmes from the ground up Thom brings an often opinionated and forward thinking view of security risk, both in assessments and management, but is able to do so with humour and pragmatism (mostly). An international public speaker and award winning security blogger, Thom contributes to a number of industry blogs and publications. Thom is also the sole founder of Host Unknown, a loose collective of three infosec luminaries combined to make security education and infotainment films. Thom can be found online at both thomlangford.com and @thomlangford on Twitter.
Tamer is currently the Group Chief Information Security Officer and Global Head of Business Resilience for one of the largest Middle East based privately owned groups with diversified business activities in 30 countries, with a focus on the Middle East, North Africa and Turkey region. Tamer holds a Bachelor of Engineering and MSc in Advanced Manufacturing Systems, in addition to successfully completing several MIT related courses in the field of Artificial Intelligence and Block chain technologies. Tamer has been an (ISC)² EMEA Advisory Council member since 2014. Tamer has held a number of roles for leading Banks in Dubai and Kuwait including Mashreq Bank, Kuwait Finance House and the National Bank of Kuwait as a CISO and Head of Operational Risk. Tamer was the head of security and continuity services for KPMG, he joined the Middle East practice from London to help define and establish one of the first security practices in the Middle East, previously Tamer previously worked for Intel and Computacenter in the UK, he also sits on the advisory board of several technology based companies.
Vipul Asher serves as Privacy Consulting Manager of the United Kingdom at OneTrust – the largest and most widely used dedicated privacy management technology platform for compliance with global privacy laws. In his role, Asher leads OneTrust’s team of consultants across the UK, working with emerging and enterprise companies on data protection regulation solution implementations, focused on building and scaling global privacy programs. Asher has publicly spoken on a variety of privacy and security topics, providing deep insight into regulatory issues and practical approaches to compliance. Additionally, he helps facilitate OneTrust’s PrivacyConnect workshops across the EMEA region. Prior to OneTrust, Asher spent several years at a leading SaaS security company where he gained valuable experience implementing end-point security and advanced multi-factor authentication products into organisations to protect them from data breaches, credential theft and account takeover. Asher is a Certified Information Privacy Professional (CIPP/E) and holds a M.Sc in Computer Science from Fergusson College.
Victoria Baines is a leading author and speaker in the field of cybersecurity. Her areas of research include electronic surveillance and evidence gathering, the changing face of online identity, and the politics of cybersecurity. She has appeared on the BBC, CNN and other major broadcast media outlets as an authority on the misuse of emerging technologies, including Virtual Reality. She serves on the Advisory Board of the International Association of Internet Hotlines (INHOPE).
For several years, Victoria was Facebook’s Trust & Safety Manager for Europe, Middle East and Africa. Her work focused on operational support to law enforcement, and strategic engagement with policy makers on criminal activity online. Before joining Facebook, Victoria led the Strategy & Prevention team at Europol’s European Cybercrime Centre (EC3), where she was responsible for the European Union’s cyber threat analysis. She designed and developed the iOCTA, Europe’s flagship product on cybercrime, and authored 2020, scenarios for the future of cybercrime that were the basis for Trend Micro’s successful short film series of the same name.
Earlier in her career Victoria was Principal Analyst for online child protection at the UK Serious Organised Crime Agency (SOCA), and was responsible for the UK’s threat assessment of online child safety issues. She began her career in law enforcement in 2005 as a Higher Intelligence Analyst for Surrey Police. In 2008, the International Association for Law Enforcement Intelligence Analysts recognised Victoria’s work for the public sector with an award for outstanding achievement.
Victoria is a graduate of Trinity College, Oxford and holds a doctorate in classical literature. She is a Visiting Associate of the Oxford Internet Institute (Oxford University), and a Visiting Fellow at Bournemouth University School of Computing.
Dr Vasileios Karagiannopoulos holds an LLB from Athens Law School and an LLM in Information Technology and Telecommunications Law and a PhD in Law from the University of Strathclyde, School of Law. He has taught Information Technology Law, Intellectual Property Law, E-commerce Law and Human Rights Law for Strathclyde and Edinburgh Law Schools and is now a Senior Lecturer in Law and Cybercrime working for the Institute of Criminal Justice Studies (ICJS), University of Portsmouth. Vasileios has designed and is the course leader for the new ICJS BSc in Criminology and Cybercrime. He is also the Director of the Portsmouth Cybercrime Awareness Clinic, a project working with SMEs and vulnerable populations to increase cyberawareness and build resilience to cybercrime through research and public engagement activities. Vasileios is also an IISP Certified Forensic Investigations Practitioner and a member of the Institute for Ethical AI and Machine Learning. He has published in UK and US peer-reviewed journals on the topics of computer misuse law and insider unauthorised access, social media and the Arab Spring and also Internet regulation in China. His monograph by Palgrave Macmillan, Living with Hacktivism: From Conflict to Symbiosis, focuses on hacktivism and discusses the challenges faced by the US and UK criminal justice systems when dealing with such phenomena.
We are always looking for:
We welcome your input into shaping the agenda and speaker panels.
Our programmes are highly researched with practitioners who do the job day in and day out. They are organic to ensure that we remain agile to meet the most current requirements.
For further information, please contact Sara Hook
+44 (0)20 7936 8989 or email@example.com