Speakers

John Scimone serves as Sr. Vice President, Chief Security Officer for Dell, where he leads the company’s global corporate security program.  John’s responsibilities span the full spectrum of strategy, planning, and operations, aiding Dell’s businesses in the management of security risk across the physical and cyber domains.  He is also charged with the advocacy of business resilience, including crisis management, business continuity and disaster recovery. Before joining Dell, John served as the Global Chief Information Security Officer for the Sony Group family of companies, where he was responsible for building Sony’s first global information security and privacy organization and leading strategy, policy, and operations.  Prior to joining Sony, he also held a number of leadership positions at the U.S. Department of Defense, including as Director of Security Operations for the Secretary of Defense’s communications office, where he led the facility, personnel, and cyber security programs.  John formerly served as a member of a predecessor organization of U.S. Cyber Command, where he led the development of enterprise information security programs that protected information belonging to the DoD’s more than two million employees. John holds a Bachelor of Science degree in Computer Science, with a specialization in Information Assurance, from the Georgia Institute of Technology.  He also earned a Master of Arts degree in Strategic Intelligence, with a specialization in Counterintelligence, from the Institute of World Politics in Washington D.C.

Sounil is a Christian, husband and father with over 30 years of hands-on experience creating, breaking and fixing computer and network systems. As the Executive Director for Security Innovation at a major financial institution, he leads teams to execute innovation initiatives and crazy experiments that reduce risk and tackle hard challenges in infosec. Previously, he helped improve infosec at several institutions spanning from Fortune 100 companies with three letters on the stock exchange to secretive three-letter agencies that are not. Although on occasion he is forced to write about himself in the third person, he would rather meet people in person to share experiences rather than writing it up in a short bio. He lives in Virginia with his wife and their four homeschooled children.

With a background in sociology, psychology and civic design, Dr Jessica Barker specialises in the human side of cyber security. As an independent consultant, Jessica is engaged by FTSE100 companies, central government and SMEs across the defence, health, financial and retail sectors to advise organisations how they can keep their information safe while getting the most out of it. Jessica’s consultancy work involves leading and delivering information security audits, from which she develops roadmaps which take organisations on a journey of improved cyber security maturity.  Jessica also specialises in learning and development packages which raise cyber security awareness and improve behaviours.

Is the digital fraud, forensic, cyber and threat intelligence manager at Banco Sabadell and Founder member of THIBER the cybersecurity think tank, Internet Security Forum (ISF), ISACA, ISC2, ISMS Forum Spain, Data Protection Institute (DPI), Cyberscurity Center (CSC), Cloud Security Alliance (CSA) and AENOR-ISO CTN7/SC7/GT-25. Adolfo holds a computer science degree. With over 10 years of professional experience in the management of technological risks and cybersecurity in diverse sectors, he is also a regular speaker at various master degree programs in business schools and universities, and at industry events, like TEDx. Follow Adolfo on Twitterhttp://twitter.com/Adolfo_hdez

Alex has over 5 years’ experience in Privileged Account Security. He is one of the leading experts in understanding the requirements and drivers for managing privileged access security within an organisation. Alex has led some of the largest design and implementation programs of privileged account security with companies across all sectors, many of which are in the Fortune 100. Leveraging this experience, Alex now focuses on privileged account security best practice with organizations embracing Cloud and DevOps.

Alexios lead and conducted several technical security assessments and was involved as trusted advisor in various major Cyber Security Programmes. Before joining Airbus CyberSecurity he has been working for PwC and n.runs. Alexios is member of the Body of Experts on Cyber Forensics lead by German Federal Office for Information Security (BSI) as well board and program committee member of OWASP Germany.

Ali Zeb, CISO, MS Amlin specialises in security transformation of businesses, delivering global information security at strategic, tactical and operational level. He has over 16 years’ experience in IT and Information Security within the Finance sector. Alongside heading global security Ali has been appointed as GRC and Data Protection Officer for many organisations. Ali is currently Group Chief Information Security Officer at MS Amlin. Member of FCA Insurance Sector Cyber Coordination Group (ISCCG) and Lloyds Cross Market Cyber Risk Forum.

Anthony Young, Partner, Bridewell Consulting – commenced his Information Security career in 2003. He worked as a security consultant primarily within central government and the gaming industry where he reduced threat profiles by establishing security frameworks and management systems.  In 2008 Anthony established Barclay Simpson’s Information Security contract division.  He gained a well-earned reputation for his passion for Information Security and for his ability to source highly skilled information security consultants in short timescales.  As data breaches became commonplace, Information Security moved up the corporate agenda and the demand for trusted and skilled security professionals increased.   In response to this increased demand, Anthony set up Bridewell Consulting in 2013 in partnership with Barclay Simpson.  Four years on Bridewell has established a reputation for delivering excellent services across Governance, Risk and Compliance as well as Penetration Testing services.  Bridewell’s philosophy is to work in partnership with our clients and provide them the security personnel and services they require.  Retained by clients across Financial Services, Oil & Gas, Media and Government, Bridewell allows them the assurance of having expert security advice on call, without the substantial costs and commitments of employing a permanent in-house security division. Anthony is the Partner in charge or sales and operations at Bridewell Consulting ensuring that all clients receive an excellent service from the delivery team.  His ambition is that companies of all sizes are able to build security into their everyday practices, without being burdened by the cost or size of the task.  Anthony is also keen to promote the information security profession locally working with organisations across the Thames Valley running a number of briefings and security events.

Charles V. Pask, Managing Director, ITSEC Associates Ltd – is responsible for delivering global IT Audit and IT Security consultancy services. He was a founding member of the Institute of Information Security Professionals (IISP) and recognised globally as a thought leader in Information Security and IT Controls. Mr. Pask has over 30 years’ experience in IT, IT audit, and IT security, and has previously held Senior IT Auditor positions at Forward Trust Group (subsidiary of HSBC) and Alliance & Leicester Bank plc, and also Group Head of Information Security for Alliance & Leicester (10 years). Mr. Pask was the Global Head of Strategy, Development and Globalisation for the BT Business Continuity, Security and Governance Practice. He was previously a Director with MIS Training, and Director of Information Security Institute (ISI) European and Middle East e-Security Services (2000-2). Mr. Pask has been a member of the ITSEC Common Criteria team working with the UK Government, and a committee member of the APACS Security Advisory Group and the LINK Security Group. Mr. Pask has personally helped over 400 students globally achieve the CISSP training exam.

Charlotte Stephen, Account Executive, Darktrace – has been an Account Manager at Darktrace for 12 months, working on accounts across the EMEA region. During this time, she has given a number of presentations and technology demonstrations, and used her languages to work with both national and international clients from the public and private sectors. Prior to Darktrace, Charlotte worked in the underwriting department of a global insurance company in Buenos Aires. She holds a BA in French and Spanish from the University of Bristol and a MSc Management from Cass Business School in London.

Charlie Bennett, Global Account Director, Trend Micro — is an expert business sales professional with 10 years’ experience in IT Security, Networking and Application delivery solutions. I am conscientious, enthusiastic, and self-motivated individual with exposure to a wide range of areas. Specialties: IT Security, Networking, Application Delivery. The ability to sell complex Managed Service and Professional service projects, with a good understanding of the technology market.

Daniel Brunner, Head of Security and Architecture, RUAG AG Switzerland is a Senior Information Security expert & Project Manager with an MBA and 15 years of experience. Recognized ability to manage Complex IT Environments inside multiple business organizations. Specific expertise in Project Management, Risk Management within the IT Domain. ISMS (Information Security Management System) installed and developed during several years. Proven ability to design security solutions with in-depth operational supervision of incidents and emergency disaster recovery. IT Governance and audit conformity experience coupled with investigation coordination with legal departments and Human Resources to produce proof or policies to defend and protect the company from threat – yet still enabling business to continue in a secure manner. He was previously CISO of Leumi Private Bank and has held senior positions at UBS. He is the VP at DEFCON Switzerland.

Before joining Qualys as CTSO, Darron spent the last 25+ years working for a variety of payment services, media and telco organisations providing Cyber, IT and Information security thought leadership and subject matter expertise. His early career was spent working in the vendor marketplace for startups and major security vendors in both a pre and post sales capacity.

Dimitri is former Senior Manager Information Security & BCM at Edmond de Rothschild in Geneva. Prior to this position, he worked 6 years for ING as Head of Non-Financial Risk Management in Geneva as well, and spent 5 years in Ukraine involved in various international industrial and banking projects. He is currently pursuing an Executive MBA at the INSEAD.

Dr. Eduardo Solana is Senior Lecturer of Cryptography and Security in the University of Geneva and in the University of Applied Sciences also in Geneva, Switzerland. Amongst others, he has worked for IBM and PricewaterhouseCoopers where he was Global Subject Matter Expert for authentication solutions. He has more than twenty years of experience in the fields of cryptography and information security both in the private sector and the academia.

Eduardo Di Monte, Security and Business Continuity Director, Agbar – is the cibersecurity Coordinator of the Center for Industrial Cyber Security in Chile, representative for the Central & South America Region for the Business Continuity Institute, and Director of Security and Business Continuity at Agbar Group, for Spain and Chile. Telecommunications Engineer and MBA Consortium EuroMBA, specializes in the management of information security, business continuity and security in industrial control systems. With over 12 years of experience in consulting, as well as management, implementation and security strategies and continuity in multiple sectors (energy, tourism, banking, infrastructure and telecommunications). It has multiple certifications: CISSP, LA / LI ISO 22301, MBCI by the Business Continuity Institute, CSSA (SCADA Security Certified Architect) and Advanced Control System Cyber Security Training (US Department of Homeland Security). Regular contributor to events as a keynote speaker (Spain and South America) and professor (UPM and private institutions).

Fabian Libeau, EMEA Technical Director, RiskIQ – currently serves as EMEA Technical Director for RiskIQ. He and his team work closely with customers to maximise the value they receive from the RiskIQ solution set. Before joining RiskIQ Fabian was with ArcSight and after the acquisition by HP, with HP Enterprise Security Products for 9 years in different technical roles where he worked closely with enterprise customers to implement Log Management solutions and next generation SOCs. Fabian is a frequent speaker at conferences and is CISSP certified. He holds a masters degree in Physics.

Gadi is the Founder and CEO of Cymmetria, a cyber security startup that is pioneering the space of cyber deception. He is also Founder and Chairman of the Board of the Israeli CERT, Founding Chairman of the Cyber Threat Intelligence Alliance (CTIA), and Founder of the Israeli Government CERT. Gadi is widely recognized for his work in Internet security operation and global incident response, and is considered the first botnet expert. Prior to founding Cymmetria, Gadi was VP of Cybersecurity Strategy for Kaspersky Lab, led PwC’s Cyber Security Center of Excellence (located in Israel), and was CISO of the Israeli government’s Internet operations. He has authored two books on the topic of information security, organizes global professional working groups, chairs worldwide conferences, and is a frequent lecturer.

Hugh has an illustrious 30-year career in the enterprise software industry. Hugh co-  founded ArcSight in May 2000 and served as CTO as well as Executive Vice President of Research and Development. He led product development, information technology deployment, and product research at ArcSight, and expanded these responsibilities to lead all engineering and R&D efforts for HP’s Enterprise Security Products group, the organization that ArcSight became part of post-acquisition. Hugh was recently an advisor and entrepreneur at investment firm, Kleiner Perkins Caufield & Byers (KPCB). Prior to joining ArcSight, Hugh worked as the CTO at Verity, where he led product development, and before that he was at Apple in software engineering, where he was one of the key architects behind the Data Access Language (DAL). Hugh is a CISSP and holds a B.S. in computer science from Purdue University. He was also honored with the Northern California Ernst & Young LLP Entrepreneur of The Year award in 2010.

Irene is the Head of the IT Security Section and acting CISO at the Western Region Municipality, Abu Dhabi.  She is responsible for the execution of the ADSIC Information Security Programme, Security Governance, Risk & compliance to IT Security Policy. She offers 27 years of combined and diverse experience in IT (Security, Operations and Strategy), Quality & Excellence. She has worked in various industries and region and led strategic initiatives in Asia, Middle East, Europe and America. An emerging seasoned speaker on Information & Cyber Security Conferences, Irene has spoken in a number of conferences in Asia, Middle East and Europe.  Irene acquired her Masters of Science in IT from University of Wales, and holds the following certifications: ITIL V3, PMP, ISO (QMS and 27k) Lead Auditor and EFQM Assessor.

James is Director of the Advanced Cyber Defence del Banco Sabadell. En este rol, es el responsable de los equipos de Gestión de Incidentes y Ciberinteligencia. Tiene más de quince años de experiencia en seguridad, en diversidad de posiciones, en su mayoría en una de las entidades financieras más importantes del mundo, ocupando puestos de responsabilidad a nivel regional y global. Tiene un posgrado en Auditoría Técnica y Análisis forense, además de diversas certificaciones de Seguridad.

 Dr. John Meakin, Group Chief Risk & Security Officer, Burberry – is a specialist in information security with more than twenty years experience. He has previously been responsible for leading systems security in Standard Chartered Bank, Reuters, the Royal Bank of Scotland and Dresdner Bank. More recently he was Chief Info Security Officer at BP plc for 3 years and led Deutsche Bank’s development of a new security strategy and innovative security solutions to meet the latest threats. John has been Chief Security Officer for the leading international luxury goods company Richemont, supporting the varying needs of such renowned brands as Cartier, Montblanc, Chloe, etc. He also has a particular interest in better modeling and managing the costs and benefits of security to the business, as well as in shifting the emphasis of commercial security efforts into dynamic management and monitoring rather than static prevention. He has developed a number of award-winning Info Security Risk Management methods and tools during his CISO career. He is a member of the Jericho Forum Board of Management, and advisor to a number of security vendors. He sits on the Microsoft Worldwide CSO Council and the SAP AG Security Advisory Board. He has a PhD in Experimental Solid State Physics from Cambridge University.

Jonathan is an experienced lawyer with a concentration on technology and compliance. His practice includes advising multinational companies on matters involving risk, compliance and technology across Europe. He has handled legal matters in more than 60 countries involving emerging technology, corporate governance, ethics code implementation, reputation, internal investigations, marketing, branding and global privacy policies. Jonathan has counselled a range of clients on breach prevention, mitigation and response. He has also been particularly active in advising multi-national corporations on their response to the UK Bribery Act 2010 and its inter-relationship with the U.S. Foreign Corrupt Practices Act (FCPA). Jonathan is one of three co-authors of the LexisNexis definitive work on technology law, “Managing Risk: Technology & Communications”. He is a frequent broadcaster for the BBC and other channels and appeared on BBC News 24 as the studio guest on the Walport Review. In addition to being a lawyer, Jonathan is a Fellow of The Chartered Institute of Marketing. He has spoken at conferences in the U.S., Canada, China, Brazil, Singapore, Vietnam, the Middle East and across Europe. Jonathan qualified as a lawyer in the UK in 1991 and has focused on technology, risk and governance matters for more than 20 years. Jonathan was recently ranked as the 14th most influential figure in data security worldwide by Onalytica in their 2016 Data Security Top 100 Influencers and Brands Survey. Jonathan is a Solicitor of the Senior Courts of England & Wales.  In addition Jonathan is admitted as a Solicitor in Ireland.

Manuel is responsible for the corporate security of Informatica El Corte Ingles on 12 countries. Manuel was a professor at the CEU San Pablo University, lecturing in Information Security for the Criminology Degree. Over the last 20 years he has furthered his career in the field of information security for large companies, carrying out consultancy work for governments, intelligence, banking, insurance and critical infrastructure.

Mark is a recruitment and executive search specialist who heads the Security Practice at Barclay Simpson Corporate Governance Recruitment. He has 16 years’ experience of recruiting information security leadership roles in the UK and Europe.

 Marc is a senior security practitioner with over 20 years of experience crossing multiple industry sectors, from financial services to publishing. For the past 7 years, he has led security improvement programmes for the likes of Pearson, T-Systems and Symantec. He is currently the CISO at Company85, where he runs the security practice with a focus on ensuring information security enables and supports business goals.

Mike was a police officer for 30 years.  The latter 5 years of his career he was a senior officer seconded to a central government agency involved in the security of the Police National Network, a UK wide IP comms and data network. He is now Head of Security at the National Crime Agency. He is a fellow of the Institute of Information Security Professionals (IISP) an elected member of the Information Assurance Advisory Council’s (IAAC) management committee and a Government Liaison Panel representative on the IAAC Board.  His qualifications include an MSc in IT Security; ISO27001 lead auditor and a SANS GIAC holder. He has presented at numerous national and international conferences. Mike is currently working on a PhD (part time), at the Defence Academy, Cranfield University, Shrivenham, where he is researching the Critical Success Factors required to improve security incident reporting.

Nahim is a highly accomplished Cyber Crime consultant with an exceptional track record in developing and delivering highly creative and innovative strategic solutions for Cyber Threat Intelligence & fraud risks emanating from the cyber sphere. Nahim has delivered expansive strategic cyber risk solution blueprints, for not only combating the problems associated with cyber risk but also enhancing business opportunities. Nahim is also a founding director of the European Cyber Security Group. He has penned a number of thought leadership papers on the issue of Cyber security and practical applications of cyber threat intelligence which can be found online. Nahim is a trusted point of contact for Law enforcement agencies in Europe and the USA. He was worked closely with UK fraud Action, ACPO, EUROPOL and key stakeholders within the UK public sector.

Lady Olga Maitland, Founder, Defense and Security Forum and Chairman, Copenhagen Compliance – has wide experience in all major Governance, risk Management and Compliance issues in general and global Fraud and Corruption problems in particular. She is a special adviser to a number of dignitaries and a widely sought after speaker at all Major Conferences on several Corporate Governance issues. Lady Olga is a former British MP for the Conservative party. Prior to her political career she was a reporter for the Fleet Street News Agency, a columnist in the London.–

Paul Effingham, Group CISO, Unipart Group of Companies – is the Group CISO for Unipart Group of Companies. With nine years’ experience in the cyber security world, including consulting to some of the world’s biggest brands, he engages with the business at board level to enable trusted secure commerce. With an ‘ethical hacker’ background, he is able to address complex security challenges but is equally passionate about driving effective change through unambiguous leadership and communication. Paul is a regular speaker at various industry conferences such as the e-Crime Congress, PCI London and the GBI CISO Summit. When he isn’t keeping Unipart safe, you can find him tinkering with code and figuring out how to inspire the next generation of cyber security professionals. Paul is proud to be shortlisted as CISO of the Year 2017. You can reach him on LinkedIn or on Twitter at @pjh_22.

Ramsés CISM, CGEIT, CISSP, SCPM, Six Sigma Black Belt, who in 2012 was named security strategist and evangelist for Quest Software, a Dell company. Ramsés has served on ISACA’s Guidance and Practices Committee, and the CISM and CGEIT Certification Committees. He is an author of ISACA white papers on geolocation, virtualization and sustainability, and is research director for the ISACA Barcelona (Spain) Chapter. He also served on the planning committee of the inaugural ISACA INSIGHTS conference and chaired the planning committee for ISACA’s Information Security and Risk Management Conference in Europe.

Ramon Serres, Head of Information Security, Risk Management and Quality, Almirall – is an Industrial Engineer, Master in E-Business, who has led the Information Security function in Almirall over the last three years. His area of responsibility is Information Security, Quality and Risk Management. He is certified by ISACA in IT Governance (CGEIT), Information Security Management (CISM) – with best grade diploma for both in ISACA Barcelona Chapter -, and Cybersecurity (CSX). Given his extensive Business and IT background in various positions and industries he has a valuable expertise ranging from the Security Strategy definition to Program and Project Management, Risk and Value Management, and People Management.  Prior to Almirall, he worked for Price Waterhouse Coopers and Henkel.

TfL is a dynamic and challenging retail and transportation organisation with annual revenue of £4Bn. During this tenure, Richard’s first step was to risk assess the current state of information security at TfL. From that risk assessment he then developed and led the implementation of an effective strategic and tactical response programme to ensure cyber security resilience. Richard has been with TfL since 2004, during which has had responsibility for providing security assurance against some of the most significant risks TfL faced. He is advocator in the harnessing of social media and big data analytics. He has served as a Director for The Security Institute and featured within the IFSEC Global Top 40 of influencers in security 2014 and 2015.

Rik Ferguson, Vice President Security Research, Trend Micro is one of the leading experts in information security. He is also a Special Advisor to Europol EC3, and a project leader with the International Cyber Security Protection Alliance (ICSPA). In April 2011 Rik was inducted into the Infosecurity Hall of Fame. As a lead spokesperson for Trend Micro, Rik is actively engaged in research into online threats and the underground economy. He also researches the wider implications of new developments in the Information Technology arena and their impact on security both for consumers and in the enterprise. With almost twenty-five years’ experience in information security, Rik has been with Trend Micro since 2007. Prior to assuming his current role he served as Security Infrastructure Specialist at EDS where he led the security design work for government projects related to justice and law enforcement and as Senior Product Engineer at McAfee focused on network security, intrusion prevention, encryption and content filtering.

Professor Robert Coles PhD joined GSK on 1 October 2013 as their first Chief Information Security Officer. Robert owns the information security risk and is responsible for providing global leadership across GSK. He is accountable for establishing information security strategy and direction, building a global information security capability and overseeing all of the information security initiatives across the company. Prior to GSK, Robert was CISO at National Grid (a major US/UK power Utility) where he created and led the CISO function since 2009. He has also held CISO positions at Merrill Lynch and interim Head of Group Information Security at Royal Bank of Scotland, and was the lead partner in KPMG’s Information Security Services for EMEA. Robert has extensive links with several major industry information security networking groups and government security agencies.  He also has links with a number of Universities and participates in leading edge research, particularly with Royal Holloway where he is a visiting Professor. He undertook his PhD in psychology at the University of Leeds in the perceptions of information and IT risk and has published on this topic.

Dr. Sally Leivesley, Director, Newrisk Ltd and Co-Founder, TEG7 Group LLP – advises companies and governments on catastrophic risk where losses to companies and governments may involve critical functions essential for operations and reputation. She runs exercises to stress test critical function failures and resilience capability. Dr. Leivesley is known for her appearances on aviation terror attacks, ISIS, Al Qaeda, Al Shabaab and other international terrorism, cyber breaches, CNI protection and government policy on the BBC World Service, ITV This Morning and other UK based media and European, Middle East and Australian media. She raised the forensic importance of the risk of cyber hijacking of flight MH370 which was the subject of a Discovery Channel documentary and has been a commentator on the risks relevant to Donald Trump economic, terror and nuclear influences during his Presidential campaign and on his election. Dr Leivesley works in conjunction with The Exercise Group7 (TEG7) a London based group of companies that specialise in resilience operations for cyber-attacks, international terrorism and nation state threats and solutions for business and government-critical infrastructure.  The focus is on testing through exercises, assurance and pen tests using an integrated approach to all hazards including social factors.  (www.Teg7.co.uk) In the UK she has been a member of the technical committee for the first IET (formerly IEE) guidance document on Resilience and Cyber Security of Technology in the Built Environment which was supported by the Centre for the Protection of National Infrastructure. She is also a member of the British Register for Security Engineers and Specialists established to advise at a strategic level on terrorist and other extreme threats to critical infrastructure. She interfaces with a USA company to extend exercising for aviation and energy industries.  Dr Leivesley originally trained as a Scientific Advisor with the British Home Office. She is a specialist in CBRN.

Victoria is an experienced cybersecurity professional with a demonstrated history of working in the internet industry and international law enforcement. Published academic author and futurist with a strong research background. Skilled in Crisis Management and Response, Negotiation, Intelligence Analysis, Strategy Delivery, and Coaching

Dr. Viktor Polic, Adjunct Faculty, Webster University Geneva & CISO, International Labour Organization United Nations. The ILO is a specialized agency of the United Nations. Viktor’s 25-year career in the IT spans different roles across financial, humanitarian, standardization and development multilateral public sector organizations (ITU, UNCC, UNHCR). Viktor conducts research in cryptography, data protection regulation, and risk management. Since the Internet bubble, he is teaching computer science and telecommunications courses as adjunct faculty at Webster University in Geneva. Viktor is a member of the Scientific Committee for Advanced Studies in Information Security at University of Geneva. He advocates for advancement in information security as an author in journals and his personal blog (blog.cybersymbiosis.com), and as a speaker at numerous international security conferences.  Viktor holds a Ph.D. in Cryptography and Advanced Protection Systems, MA in Computer Resources and Information Management, and BSc in Computer Science. He is a member of (ISC)², ISACA and IACR.