2012 Speakers include
Christophe Gabioud
Global Head of IS
UBS Investment Bank
Christophe Gabioud is the Global Head of Information Security at UBS Investment Bank. He has over a decade of experience as Chief Information Security Officer in industries that include telecommunications and healthcare. Before these management roles role Christophe ran projects that involved risk analysis related to bank applications, development of an IT risk analysis process, including the creation of an operational risk and offshoring risk framework. Christophe has proven competence in the IT security management field, comprehensive knowledge of Information Risk Analysis and successful project management experience related to large scale IT security projects. He has a degree in Physics and an MBA from the University of Geneva in Economics.
Tony Hird
Chief Technologist
British Airways Plc
Tony Hird is Chief Technologist at British Airways Plc and is responsible for running the Airlines Technical Strategy practice, this group is responsible for ensuring there is robust and actionable technical strategies for Desktops, Datacentres, Collaboration, Security, Mobile, Applications Development, Databases & Business Intelligence.
Tony is a member of the Forrester Infrastructure & Operations leadership council and has been responsible for IT infrastructure in a number of organisations for 25 years, 15 of which have been in senior strategy positions.
Tony is a member of the Forrester Infrastructure & Operations leadership council and has been responsible for IT infrastructure in a number of organisations for 25 years, 15 of which have been in senior strategy positions.
Michael Paisley
Head of IS, DP & Business Resilience
Santander UK Group
As the Head of Information Risk & Business Resilience for Santander, Michael is responsible for Governance, Risk and Compliance activities in respect of Information Security, Data Privacy, E-Crime Prevention, Business Continuity and Crisis and Incident Management across Santander’s UK operations and sites.
A Law graduate and the holder of a Masters Degree in Security & Organisational Risk Management, Michael has had a diverse 30 year career including Military Special Investigations and VIP Protection, covert intelligence gathering and investigation of organised crime as a member of the UK’s leading criminal intelligence agency. A co-opted member of the BSI’s Societal Security Committee, Mick has also held Head of Information Risk roles within a number of Financial Institutions and senior risk and security positions on some of the largest and most sensitive recent public sector programmes.
A Law graduate and the holder of a Masters Degree in Security & Organisational Risk Management, Michael has had a diverse 30 year career including Military Special Investigations and VIP Protection, covert intelligence gathering and investigation of organised crime as a member of the UK’s leading criminal intelligence agency. A co-opted member of the BSI’s Societal Security Committee, Mick has also held Head of Information Risk roles within a number of Financial Institutions and senior risk and security positions on some of the largest and most sensitive recent public sector programmes.
Julia Harris
Head of Information Security
Oxfam
Julia has worked in the IT industry for around 30 years, working for various banks, credit card companies, telecommunications providers, media companies, charities and a big 4 consultancy. Skills started within the mainframe systems programming environment, through networks and client server applications, culminating in a move to systems security, as it was originally known. For well over 25 years she has been working within the Information Security Industry, from the early days of security administration, through the infancy of information security becoming a professional role.
Julia is now helping Oxfam achieve their Information Security aspirations. She is also mentoring and training an internal candidate to take over once she leaves.
Julia was a council member for the UK within the ISF for 3 years. She sat on the committee of the British Computer Society (BCS) Information Security Specialist group for many years. She has also sat on the Data Protection Expert Panel for the BCS.
Julia has presented at a number of conferences on a variety of Information Security subjects, mainly in the policy and compliance areas.
Julia is now helping Oxfam achieve their Information Security aspirations. She is also mentoring and training an internal candidate to take over once she leaves.
Julia was a council member for the UK within the ISF for 3 years. She sat on the committee of the British Computer Society (BCS) Information Security Specialist group for many years. She has also sat on the Data Protection Expert Panel for the BCS.
Julia has presented at a number of conferences on a variety of Information Security subjects, mainly in the policy and compliance areas.
Richard Bell
Security & Audit Manager
Transport for London (TfL)
Richard Bell has worked as the Security & Audit Manager in Transport for London (TfL) for the past 8 years. In this role, Richard is responsible for the management and administrative oversight of auditing all aspects of security risk. In his time at TfL he has helped develop how to measure the performance of security through the introduction of Control Risk Self Assessment (CRSA) for security on the transport system within London. Previously to TfL, Richard worked in the private security arena and retail and is a Member of The Security Institute.
John Ross
Deputy Director, ICT Strategy
BIG Lottery Fund
John joined BIG (the largest distributor of UK National Lottery funds) in early 2009 with a remit to develop & implement a cost effective ICT strategy to underpin the organisation’s business drivers of being customer focussed, efficient & effective. Under his leadership, BIG’s IT team has restructured, upgraded its network, virtualised its server estate, rationalised its contract portfolio & implemented a range of Process driven initiatives in Service Delivery & Security. Currently the organisation is replacing its grant management system with SAP, & is redesigning its web presence to cater for direct customer input.
Prior to joining BIG, John held senior positions in both private & public sector IT organisations with a strong emphasis on Programme/Project Management & process development/implementation. He moved into IT 12 years ago following a period working for a major management consultancy – his early career was spent in Project Management & Research roles in the Nuclear & Pharmaceutical sectors in both the UK & USA.
John has a BSc in Chemical Engineering from Imperial College and an MBA from Manchester Business School.
Prior to joining BIG, John held senior positions in both private & public sector IT organisations with a strong emphasis on Programme/Project Management & process development/implementation. He moved into IT 12 years ago following a period working for a major management consultancy – his early career was spent in Project Management & Research roles in the Nuclear & Pharmaceutical sectors in both the UK & USA.
John has a BSc in Chemical Engineering from Imperial College and an MBA from Manchester Business School.
Andy Lee
Head of Information Security
BIG Lottery Fund
Andrew has been actively involved with IT Systems since the age of 14 and professionally for the last 15 years. He has worked for Siemens in the areas of secure infrastructure and networks for the majority of this time. As a keen follower of IT Technology threats and trends especially in the area of IT Security he feels well placed to provide objective and clear input into the provision of secure services in an increasingly mobile and technically enabled community.
He joined Big Lottery Fund in 2009 with the objective of attaining ISO2700 compliance, which is currently on target to achieve in the near future. He qualified as a CISSP in August 2010, and is an active member of the BCS.
He joined Big Lottery Fund in 2009 with the objective of attaining ISO2700 compliance, which is currently on target to achieve in the near future. He qualified as a CISSP in August 2010, and is an active member of the BCS.
Dr Simon Rice
Principal Policy Adviser
ICO
Simon Rice became the Principal Policy Adviser (Technology) at the Information Commissioner’s Office in February 2011, with responsibility to lead and develop the technical and information security expertise within the office. Simon achieves this by supporting the technical aspects of complaints received and also the data breach investigations undertaken. Simon also monitors the technology environment to identify those on the horizon which may impact on information rights.
Between 2005 and 2011, Simon was a database and software developer at the Health and Safety Laboratory, the principal source of scientific support for the Health and Safety Executive.
Prior to joining the Health and Safety Laboratory, Simon studied for his PhD at the University of Manchester in the field of data mining. His research utilised a range of machine learning techniques to extract information from large collections of numeric and textual data.
Between 2005 and 2011, Simon was a database and software developer at the Health and Safety Laboratory, the principal source of scientific support for the Health and Safety Executive.
Prior to joining the Health and Safety Laboratory, Simon studied for his PhD at the University of Manchester in the field of data mining. His research utilised a range of machine learning techniques to extract information from large collections of numeric and textual data.
Paul Wilson
Information Technology Security Manager
Yorkshire Water
Paul is the IT Security Manager at Yorkshire Water and his scope includes operations in Northern Ireland, Scotland and a large contract for the Ministry of Defence as well as the main water company in Yorkshire. Until recently Paul also looked after IT support across the Group. With over 20 years’ experience in the water industry he is well placed to understand the conflicting challenges of being part of the UK Critical National Infrastructure and delivering an IT service that meets the demands of modern, high tech users in a 24 *7 operation.
Paul Borrowdale
Security Consultant
Canon Europe
With over 15 years experience in the industry, Paul sees Information Security as a key benefit in helping organisations succeed.
He has worked in a variety of industries and both implemented and project managed solutions as well as shaping and developing their security policy and strategies.
As part of the Canon’s EMEA Information Security Department, Paul is integrating closely with business teams and raising awareness internally and externally to the ever-changing issues that face us now and in the future.
He has worked in a variety of industries and both implemented and project managed solutions as well as shaping and developing their security policy and strategies.
As part of the Canon’s EMEA Information Security Department, Paul is integrating closely with business teams and raising awareness internally and externally to the ever-changing issues that face us now and in the future.
2011 Speakers included
David Smith
Deputy Commissioner
Information Commissioner's Office
David Smith is the Deputy Commissioner with responsibility for the Data Protection supervisory functions of the Information Commissioner’s Office (ICO) based in Wilmslow, Cheshire.
As well as providing Data Protection leadership across the Information Commissioner’s Office, David has direct responsibility for oversight of its Strategic Liaison Division which develops and manages the ICO’s relations with its key stakeholders. He is a member of both the Commissioner’s Management Board and Executive Team.
The international aspects of David’s work involve him in representing the UK on the Article 29 Working Party of European Supervisory Authorities set up under the Data Protection Directive. In addition he was the Chairman of the data protection supervisory body for Europol from October 2006 to October 2009.
As well as providing Data Protection leadership across the Information Commissioner’s Office, David has direct responsibility for oversight of its Strategic Liaison Division which develops and manages the ICO’s relations with its key stakeholders. He is a member of both the Commissioner’s Management Board and Executive Team.
The international aspects of David’s work involve him in representing the UK on the Article 29 Working Party of European Supervisory Authorities set up under the Data Protection Directive. In addition he was the Chairman of the data protection supervisory body for Europol from October 2006 to October 2009.
Paul Simmonds
Board Member & Co Founder
Jericho Forum
Paul is a co-founder and board member of the Jericho Forum. Until recently he was the CISO of AstraZeneca and prior to that the CISO of ICI.
He was awarded “Chief Security Officer of the year” at the 2005 SC Magazine European Awards and is listed in both the 2004 & 2005 global top 50 most powerful people in networking, by the US publication Network World.
In addition to the Jericho Forum, Paul sits on the advisory board of a number of leading-edge computing companies, as well as the Executive Advisory Board of ISSA UK. He also is a British Canoe Union Level 3 Kayak Coach.
He was awarded “Chief Security Officer of the year” at the 2005 SC Magazine European Awards and is listed in both the 2004 & 2005 global top 50 most powerful people in networking, by the US publication Network World.
In addition to the Jericho Forum, Paul sits on the advisory board of a number of leading-edge computing companies, as well as the Executive Advisory Board of ISSA UK. He also is a British Canoe Union Level 3 Kayak Coach.
Pauline Jorgensen
CISO & Head of IT Business Control
British Airways
James Gay
CISO
Travelex Ltd
Until 2008 James was Director of Security at Vocalink, the business formed to manage the technical infrastructure behind the UK automated payments and ATM Networks. In that role he was accountable, not only to Vocalink management, but also to the finance industry for the integrity of the majority of UK clearing and ATM central infrastructure. His innovative security leadership brought the Vocalink group of companies through 27001 certification and helped to land and deliver various new business opportunities.
His work with the banks, Serious Organised Crime Agency, CPNI and other government agencies, on fraud and e-crime have brought him immense respect in his field.
Prior to his successful tenure at Vocalink, James lived and worked throughout the Middle and Far East in various Director and Senior Consulting roles. He has over 30 years experience in the IT environment, with the last 20 or so concentrating on the security challenges associated with the use and misuse of information systems. He holds various professional and educational qualifications including an MSc in Security Management, and is currently partway through his part time PhD in Computer Forensics (Ethics and CoC).
His work with the banks, Serious Organised Crime Agency, CPNI and other government agencies, on fraud and e-crime have brought him immense respect in his field.
Prior to his successful tenure at Vocalink, James lived and worked throughout the Middle and Far East in various Director and Senior Consulting roles. He has over 30 years experience in the IT environment, with the last 20 or so concentrating on the security challenges associated with the use and misuse of information systems. He holds various professional and educational qualifications including an MSc in Security Management, and is currently partway through his part time PhD in Computer Forensics (Ethics and CoC).
Charlie McMurdie
Head of Economic & Cyber Crime
Police ecrime Unit, New Scotland Yard
Charlie McMurdie has 29yrs service in law enforcement. She has worked throughout London as a detective including various roles within the MPS Murder, Armed Robbery, and Specialist Crime Commands including Head of Central Authorities Bureau and the Covert Operations Centre. In 1988 she joined the National Crime Squad and was subsequently seconded to the Royal Ulster Constabulary for three years on covert operations. Charlie has been the Senior Investigation Officer on several high profile investigations including serial murder enquiries and international internet and money laundering investigations.
Within the Metropolitan Police’s Economic Crime portfolio Charlie is responsible for the Dedicated Cheque and Plastic Card Unit, and the Police Central e-crime Unit (PCeU); a national unit established “to improve the police service response to victims of e-crime”. The PCeU remit is to develop the mainstream capability of the Police Service across England, Wales and Northern Ireland, co-ordinating the law enforcement approach to all types of cyber-crime, and providing a national investigative capability for the most serious cyber-crime incidents which have the potential to cause national harm.
Part of Charlie’s role within the PCeU is that of MPS representative engaging with Counter Terrorism, working with the Office of Cyber Security in a multi agency working group, including the Security Services and Ministry of Defence, to create the Cyber Security Operations Centre for the United Kingdom.
Within the Metropolitan Police’s Economic Crime portfolio Charlie is responsible for the Dedicated Cheque and Plastic Card Unit, and the Police Central e-crime Unit (PCeU); a national unit established “to improve the police service response to victims of e-crime”. The PCeU remit is to develop the mainstream capability of the Police Service across England, Wales and Northern Ireland, co-ordinating the law enforcement approach to all types of cyber-crime, and providing a national investigative capability for the most serious cyber-crime incidents which have the potential to cause national harm.
Part of Charlie’s role within the PCeU is that of MPS representative engaging with Counter Terrorism, working with the Office of Cyber Security in a multi agency working group, including the Security Services and Ministry of Defence, to create the Cyber Security Operations Centre for the United Kingdom.
Mark Logsdon
Director
Barclays Information Risk Management
Mark has worked in the security industry for 30 years, gaining holistic security experience - physical, personnel and electronic. Having held a number of posts within the UK Government, Mark joined Barclays Bank in 2007 to become Director, Information Risk Management. Mark’s responsibilities and achievements to date at Barclays include successfully building an extensive information sharing network across the bank, delivering the bank’s award winning IRM awareness raising programme, providing IRM advice to 3rd parties, the subject matter expert for the banks’ Logical Access Management programme and more recently he’s become responsible for Principle Risk Reporting and Overview.
Mark takes an active role in a number of professional bodies in particular the Institute of Information Security Professionals, the ISF and sits on the White Hat Ball organising committee, which last year raised over ÂŁ120,000 for the charity NSPCC/Child Line. He is also involved in raising money for a smaller charity that looks after people with complex needs.
Mark takes an active role in a number of professional bodies in particular the Institute of Information Security Professionals, the ISF and sits on the White Hat Ball organising committee, which last year raised over ÂŁ120,000 for the charity NSPCC/Child Line. He is also involved in raising money for a smaller charity that looks after people with complex needs.
Phil Genge
Head of Information Security
Nationwide Building Society
Phil Genge is the Head of Information Security (IS) at Nationwide; responsible for the oversight of information risk which includes risk reporting, risk assessment, policy setting, third party assurance, incident management, project consultancy, employee awareness, data privacy and logical access.
Phil joined the team in 2007, having previously worked for a decade as a qualified management consultant focusing on process transformation and strategic design. Since 2007 Nationwide has achieved the widest level of certification against ISO27001 in the industry.
Phil joined the team in 2007, having previously worked for a decade as a qualified management consultant focusing on process transformation and strategic design. Since 2007 Nationwide has achieved the widest level of certification against ISO27001 in the industry.
Chris Mortlock
Head of Live Services Security & Risk
HM Revenue and Customs
As Deputy Director of Security & Risk at HM Revenue and Customs (HMRC), Chris is accountable for the IT security of processes and systems. In addition, he is the Data Guardian and Information Champion for HMRC’s IT Department, and holds responsibility for operational risks management and response for live services aswell as the security management of its outsource provider, Aspire.
Chris joined the Civil Service in 2008 from the Utility industry where he held a senior security position. He previously held a number of Senior Security and Technical Design / Architecture roles in the Business Process Outsource sector specialising in providing secure offshore facilities for leading US and UK Banking and Credit card organisations.
A security professional and ISO27001 lead auditor, Chris has recently been involved in promoting the Institute of Information Security Professionals (IISP) and sponsoring the inauguration of the IISP Midlands Chapter.
Chris joined the Civil Service in 2008 from the Utility industry where he held a senior security position. He previously held a number of Senior Security and Technical Design / Architecture roles in the Business Process Outsource sector specialising in providing secure offshore facilities for leading US and UK Banking and Credit card organisations.
A security professional and ISO27001 lead auditor, Chris has recently been involved in promoting the Institute of Information Security Professionals (IISP) and sponsoring the inauguration of the IISP Midlands Chapter.
Ian Collard
Security and Identity Management Practice Manager
Siemens IT Solutions and Services
Ian Collard is the Security and Identity Management Practice Manager at Siemens IT Solutions and Services Ltd, holding cross sector business development and portfolio responsibility for all of the company's products and services in the UK. Ian brings more than 10 years experience as a consultant and solution architect to the role, specialising particularly in Enterprise Security Solutions - including identity and access management, data leakage prevention and perimeter security technologies. He also has extensive knowledge of the UK and international business continuity, data and voice security services and hardware markets. Ian is also the Siemens IT Solutions and Services lead for SCADA and SMART Grid cyber security issues.
Ian holds a degree in Telecommunications and is an active member of the Intellect Association for Biometrics.
Ian holds a degree in Telecommunications and is an active member of the Intellect Association for Biometrics.
