Government IT Security Conference

9 May 2019

Victoria Park Plaza, London





Chief Digital and Information Officer, Leicestershire County Council

Jayne joined Leicestershire County Council at the beginning of 2018, bringing significant private sector experience. Her fresh perspectives come from heavy-weight roles in high pace environments such as WPP and Capgemini.
Jayne was appointed as the council’s first CDIO, with a strong mandate to innovate, increase the pace of change and create a more agile function. She has made an immediate impact, launching a programme of innovation to the council’s elected members. Her approach is loosely based on skunkworks and she’s driving short, sharp pilots with ideas welcomed from all areas of the business and the outside world.

Ben Bulpett

EMEA Identity Platform Director, SailPoint

Ben is the SailPoint EMEA Identity Platform Director, working across the region he supports the local SailPoint teams, partners and customers in helping define their strategy and adoption of an integrated Identity Governance platform.
With over 25 years’ experience in the software industry; where he has led teams, in the development and implementation of complex IT Security solutions in areas such as; Access Management, Identity Management, Data Governance and Database etc across multiple verticals.
Ben has travelled extensively throughout Europe, Middle East, Africa & America through his work responsibilities. He has spoken at numerous events on matters such as Security, Identity Governance and various related privacy issues.

Professor John Walker CFIP

Advisory Board, Research Centre in Cyber Security, University of Kent; Visiting Professor, School of Science and Technology, University of Nottingham

A specialist providing consultancy to Middle East based organisations, government, and military clients. 22 years in Royal Air Force Security/Investigations and Counter Intelligence operations within a SCIF/Comint/Sigint environments, working alongside GCHQ, CESG, UK and US Agencies, ITSO and Systems Security Manager for CIA Accredited Systems, Visiting Professor School of Science/Technology – Nottingham Trent University [NTU], Advisory Board, Research Centre in Cyber Security (KirCCS) – University of Kent, Mentor to Tallinn University (Estonia) Masters Students Cyber Research, Practicing and Registered Expert Witness, Certified Forensics Investigator Practitioner [CFIP], Editorial Member at MedCrave Research for Forensics & Criminology, ENISA CEI Listed Expert, Editorial Member of the Cyber Security Research Institute [CRSI], Digital Forensics/Cyber Security Listed Trainer  in Dubai for Certified courses, Fellow of Royal Society for the Arts [FRSA], and a Belkasoft (Digital Forensics) Partner.

Rob Otto

EMEA Field Chief Technology Officer, Ping Identity

Rob is a Senior Technical Architect for Ping Identity in the UK and also the EMEA representative to the Ping Identity CTO Office. Rob holds a BSc (Computer Science) degree from Pretoria University and has nearly 20 years experience in identity and access management. He has worked on complex implementation projects in the UK, USA, Europe and South Africa. His current area of focus is on applying industry standards like OpenID Connect and OAuth 2.0 to enable businesses to interoperate and securely expose data and API’s.

Yochana Henderson MBE

Head of Digital Identity Management, UK Parliamentary Digital Service

Yochana Henderson is a leading Identity and Security expert working in the Parliamentary Digital Service.

Yochana started her career in the Army and after 5 years and a tour of Afghanistan joined the Parliamentary Digital Service.

Yochana was a key member of the Digital Service response team during the cyber-attack against Parliament in 2017.

Most recently Yochana received an MBE for her parliamentary and voluntary services.

Cherry O’Donnell

Product Service Owner – Identity and Access Management, UK Parliamentary Digital Service

Cherry has been with the Parliamentary Digital Service for coming up to 2 years after joining in June 2017. She started as an Active Directory Specialist until being awarded the Role of Product Service Owner in June 2018. Cherry manages the engineers in the team and reports into the Head of Identity and Access Management. As a team, she manages all aspects of ‘Identity’ within Parliament. Maintaining the onsite Directory and PKI infrastructure, in addition to their Azure presence.

She recently oversaw the domain upgrade to Server 2016, upgrading all domain controllers, Schema and DFL with no downtime for users.
Before her current role, she spent almost 15 years contracting throughout the UK and Europe, enjoying roles with the COOP, Mediacom (part of WPP), Getronics, IBM, Barclays Bank and Unisys. Cherry has been in the Identity / AD fields most of her career.

David Higgins

High Risk Programme Reviewer, Infrastructure & Projects Authority

David has a background in the development and operation of highly secure government systems and operations, he has also acted as interim CISO for finance and high-value retail clients. David led the UK Smart Meters SMETS 2 CNI implementation and is an accredited High-Risk Programme Reviewer for the Infrastructure Projects Authority.

Tony Walsh

Strategic Account Director, UK Public Sector, Zerto

Tony has over 40 years of experience in the IT industry covering roles from Field Engineer, Technical Support, Trainer, Presales Technical Account Manager and Business Development. He has worked across many verticals including Financial Services, Energy, Telco and latterly Public Sector for companies providing Hardware, Software, Services and combined solutions. Every Public Sector client that he is engaging with right now is on some form of digital transformation journey. They all share a desire to remove barriers, improve productivity and efficiency, and enhance their end user (both internal and external) experiences and he is passionate about how Zerto technology can help to provide the underlying IT Resilience to support this.

Martin Sivorn

Head of Security, Government Digital Service

An experienced Head of Cyber Security with a proven track record in building teams, driving outcomes and delivering digital transformation in a hands-on and strategic capacity.

Martin is responsible for ensuring that the Government’s digital services such as GOV.UK and Verify are safe and secure for all UK citizens, alongside working with other government agencies as part of a coordinated approach to protect the UK from cyber-attack and deliver the national Cyber Security Strategy.

Andrew Gogarty

Head of Customer Success, Secon Cyber

Andrew Gogarty joined Secon Cyber in 2002 following his graduation from Kingston University with a BA in Business Studies. With a deep understanding of the security industry and an in depth knowledge of security technology and services, Andrew has helped hundreds of organisations with addressing their cyber security challenges.

As Head of Customer Success he is responsible for key accounts, customer relations, thought leadership and technology partners.

Rik Ferguson

Vice President Security Research, Trend Micro

As VP Security Research at Trend Micro, Rik Ferguson is one of the leading experts in information security. Ferguson is a Special Advisor to Europol, a project leader with the International Cyber Security Prevention Alliance (ICSPA) and Vice Chair of the Centre for Strategic Cyberspace & Security Science. He is actively engaged in research into online threats and the underground economy. With over nineteen years of experience in information security, he has been with Trend Micro since 2007. He previously served as Security Infrastructure Specialist at EDS where he led the security design work for government projects related to justice and law enforcement and as Senior Product Engineer at McAfee focused on network security, intrusion prevention, encryption and content filtering.

Helen Hosein

Customer Engineer, Google Chrome Browser

Helen Hosein is a Customer Engineer for Chrome Browser, and has worked with several large customers to help them uphold best practice and compliance by making use of Chrome’s management capabilities. Helen is considered an expert on Chrome Browser security both within Google and externally.

Lorraine Dryland

Deputy Director of Technology Security, Department for Work and Pensions

Lorraine Dryland is a highly capable Cyber security professional with deep knowledge and skills in Cyber Intelligence and Investigations. Prior to the Department of Work & Pensions, Lorraine’s experience spans such organisations as: Vodafone, Bank of England and the National Crime Agency (NCA). Lorraine has a master’s degree in Forensic Computing and Cyber Crime Investigation.

Alan Back

Sales Director, UKCloud

Alan Back is the Central Government Sales Director at UKCloud. He is passionate about helping the Government to modernise and improve their services for the benefit of the citizen.


Will Davies

Head of Information Security Assurance, Cabinet Office

I lead, data management, data protection and data security within the largest shared service contract in Europe. This incredibly diverse and complex landscape gives me unprecedented exposure to data governance at its vanguard.

I deliver strategic and tactical services for specific contract development/management and specialist projects, across this diverse portfolio of businesses. Providing up to date and best practice information assurance of the end to end lifecycle of data. This holistic approach includes data management, protection, and security including logical/physical security. I manage projects from conception to completion and onwards to business as usual.

I work closely with multiple government departments and private sector commercial clients in the UK, evaluating organisational security frameworks, compliance management and security processes. I use my deep knowledge of risk assessment and management intelligence to develop strategic risk registers for critical infrastructure.

I ensure all security provision follows operational protocol across all aspects including information security, counter terrorism strategy, management of radiological sources, cybersecurity and protection advice. Working at board level, I provide strategic advice to senior leaders, collaborating on creation of successful marketing strategies and identifying opportunities for organisational growth and development.

Trevor Camp

UK Account Director, Venafi

Trevor is a Strategic Account Director at Venafi covering key sectors in the UK. With over 20 years in the IT industry, he joined Venafi in 2016 after recognising that the majority of the world’s largest and most persistent hacks utilise the privilege escalation that keys and certificates afford sophisticated attackers. Trevor works with encryption and PKI specialists in various organisations, and helps them to escalate the understanding and prioritisation of certificate management to the C-suite within those organisations.

Previous Speakers

Murat Soncul

Head of Information Governance, South London and Maudsley NHS Foundation Trust

Dr Murat Soncul completed clinical training in dentistry and worked as an oral surgeon before completing his PhD in 2002 at University College London researching the reliability of healthcare technology to support oral and maxillofacial surgical planning.  He joined South London and Maudsley NHS Foundation Trust in 2003 to co-ordinate the e-Health Programme. He currently works as the Head of Information Governance in the same Trust and is a member and alternate vice Chair of the Confidentiality Advisory Group at the Health Research Authority. In the past, he served as the Company Secretary and the Chair of the Board of Trustees at the Metro Centre, which is a London-based charity that promotes the health and well-being of all people experiencing issues related to sexuality, identity or gender. Murat’s professional interests include innovative uses of information technology to improve healthcare service delivery and patient experience, fair and lawful use of patient information, privacy and confidentiality, capacity and consent, cyber security and risk management.

Marion Rosenberg

Head of IT Security, IT Audit and Compliance, London School of Hygiene and Tropical Medicine

Marion Rosenberg is the Head of IT Security, IT Audit and Compliance at the London School of Hygiene and Tropical Medicine.

As part of her responsibilities, she has been involved in the successful process to achieve IG Toolkit approval from NHS Digital for the School. She is responsible for information security policies and incident response and everything in between.

Marion started work as a systems programmer involved in low-level network development, moved into systems management before moving back into networks, albeit in an operational role. With an interest in security throughout her career, Marion made the formal move into information security almost 18 years ago when it became recognised in universities as an area in its own right.

Since then, she has achieved an M.Sc. in Information Security, a Graduate Diploma in Law and an LLM in Computer and Communications Law. Her dissertation on electronic identities was published in the Computer and Telecommunications Law Review. She has worked in several HE institutions finding them both challenging and rewarding.

Alexander Holt

Head of CivTech ® at the Scottish Government

Alexander has worked in the Digital Directorate of the Scottish Government for the past three years. His current role is as architect and Head of CivTech® – a ground-breaking programme whose mission is to drive daring, ingenuity and innovation within the public sector, delivering better public services, and providing economic development opportunities. Previous roles included running number of government tech procurements. Before moving back up to Edinburgh he spent eight years in London, six of which were spent growing his own digital creative agency delivering ‘super shiny’ web apps for Google, PayPal, Sony Ericsson, McDonald’s, Adobe and other leading brands. He is massively passionate about the benefits of digital transformation in the public sector which leads to better value services that make our lives better.

Neil Glasson

Head of IS Assurance, HM Land Registry

As Land Registry’s Head of IS Assurance Neil is responsible for maintaining its status as a member of the Critical National Infrastructure – underpinning property ownership worth over £4 trillion across England and Wales including over £1 trillion of mortgages. Trained originally at BT as a Communications Engineer he has a unique 30 year background in a diverse range of technology fields. During an overseas role in the Caribbean, he helped the Cayman Islands Monetary Authority through the Y2K period co-ordinating the health of over 8000 financial institutions from 26 countries while introducing the concept of electronic filings using the internet into the newly formed agency. For the past 12 years he has helped HM Land Registry more recently embrace government’s refreshed ICT strategy, delivering on the Digital Agenda. Taking the role of security from the stereotyped blocker to the true position of enabler of change.

Daniel Selman

Cyber Industry Deputy Head, Ministry of Defence

Daniel initially trained as a Librarian and worked in university and media libraries before joining the Ministry of Defence (MOD); roles managing MOD web services followed before moving in 2008 into the field of Information Assurance, jointly leading the MOD’s response to the Burton Report and Data Handling Review and developing a focus on incident management, industry engagement and information security policy. Two years spent working as the Chief of Staff to the MOD Chief Information Officer followed before he moved to his current role leading the MOD input to the Defence Cyber Protection Partnership – a Government / Industry initiative to improve the protection of the defence sector from the cyber threat.

Dr. Claudia Natanson

Chief Security Officer, Department for Work and Pensions

Dr Claudia Natanson is currently the CSO for the Department for Works and Pensions (DWP) responsible for its people, and information. In her role she sets the policies, standards and procedures required to support the new technological roadmap, and business stakeholders who service the Departments over 22 million customers.  Prior to joining DWP Claudia has held posts with British Telecommunications as Head of Secure Business Services, and Chief Information Security Officer for Diageo. She holds a M.Sc. in Computer Science and Ph.D. in Computers and Education from the University of Birmingham.  Claudia is a senior cyber and information security expert evaluator for the European Commission, a certified CISSP (Certified Information Security Professional), ISO/IEC 27001 Lead Auditor and Fellow of the British Computing Society.

Mohamed Hamid

Network Analyst, Cabinet Office

Mohamed is a Network Analyst at the Government Digital Service (GDS) and is part of the internal Network team. He is the lead engineer responsible for maintaining and managing security appliances and the GDS wireless Network. Mohamed has been instrumental in delivering a robust, fast and secure wireless network, meeting the growing demands of an organisation where the majority of users are tech savvy and Internet hungry. Mohamed has contributed to the implementation of security principles such as the wall gardened approach when building the GDS network, this has helped GDS achieve PSN accreditation whilst maintaining a mobile wireless workforce.

Most recently Mohamed continues to work alongside Common Technology Services (CTS) where he has been key in providing guidance on the cross government Wi-Fi blueprint with the goal of achieving a seamless multi building Wi-Fi network. Prior to joining GDS Mohamed worked in the private sector delivering bespoke network solutions to various clients.

Michael Eva

Information Security Manager, London Borough of Camden

Michael has been working for Camden Council for over 10 years and in IT for 14 years in various different roles.

The main focus of Michael’s work in Camden is to ensure the council complies with external bodies Code of Connections.

Michael advises the council on Data Protection, Cyber Security and best practice around Data Governance.

Over the course of the past 14 years, Michael has provided consultancy in both the public and private sector and currently acts as an Independent Advisor for Hertsmere Borough Council in the same capacity as he does for Camden.

Juan Villamil

Director for Enterprise Infrastructure and Production Operations, Department for Work & Pensions

Juan Villamil is Director of Enterprise Infrastructure and Production Operations at the Department of Work and Pensions. He joined the department in May 2015.

His goal is to deliver new, effective and stable technology that meets the needs of the 22 million UK citizens who use DWP services while ensuring that current systems continue to co-exist securely and intelligently, without loss of business continuity.

Juan has a hands-on background in application development, infrastructure design and delivery. Prior to joining DWP he worked at BT where his last role was as CTO for BT Sport with responsibility for the architecture, design and delivery of the channels technology.

Dave Pope

Chief Information Security Officer, DVLA

Dave is the Chief Information Security Officer (CISO) for DVLA. Dave was previously their Corporate Risk Manager and has worked in many Government organisations. He is a lecturer in Enterprise Risk Management, and was awarded UK Risk Manager of the Year in 2004.

He is a Member of the Institute of Risk Managers and Member of the Chartered Institute of Internal Auditors. He also runs a sheep farm in Carmarthenshire West Wales.

The Earl of Erroll

Independent Crossbench Peer, House of Lords

Lord Erroll (Merlin) plays an active role in thought leadership in the ICT arena, especially around the Internet of Things, Cybersecurity, Intellectual Property, Broadband and the Internet.  He worked for many years in software development, as well as serving in the Territorial Army. He chaired the Eyehub IoT Technology Strategy Board funded consortium and is currently helping with the HyperCat IoT interoperability initiative.

He is active in several Parliamentary groups, especially looking at the impact of regulation on business and the internet, and takes a particular interest in Cyber, Countryside & the Environment, the Constitution and Scottish matters. He chairs both the Digital Policy Alliance (was EURIM) and the All-Party Group on Entrepreneurship, and is a member of PICTFOR (Parliamentary ICT Forum).

He chairs the Flexeye Advisory Board and sits on several others.  He was inducted into the Infosecurity Europe Hall of Fame in 2010.

Lucy Pike

Head of Policy, Change and Risk (Cyber Security and Information Risks), HM Revenue & Customs

Lucy is the Head of Policy, Change and Risk within HMRC Cyber Security and Information Risk Team. Her role includes managing and mitigating risks to ensure customer data is kept safe and HMRC’s services continue to run smoothly. She is also responsible for security policy, incident management and managing a budget and resource to deliver transformational security change.

Lucy joined the security community in 2017 having worked in the Inland Revenue and latterly HMRC as a tax professional for 15 years. During this time Lucy managed the tax affairs of specialist customer groups and large businesses, as well as dipping into management of the tax credit peak in 2015. The change of profession was prompted by the opportunity to use her operational background and tax risk management experience in the security arena. Lucy relishes identifying where operational insight can strengthen security response.

Judith Jones

Group Manager, Central Government Team, Information Commissioner’s Office

Judith Jones is Group Manager of the Central Government team at the Information Commissioner’s Office. Her team is responsible for engaging with key stakeholders in government departments and their arm’s length bodies on the implementation of the new data protection reforms. The main focus of her current work is engaging with government and parliament on the Data Protection Bill.

Her role involves promoting a sensible and secure approach to data processing, including justified data sharing, in order to maintain people’s trust and confidence in the government’s use of personal data. A further priority is ensuring information rights and privacy safeguards are fully considered in the delivery of better use of government data as allowed by the Digital Economy Act 2017. She represents the ICO as an observer on the Cabinet Office’s Privacy and Consumer Advisory Group and on the Welfare Sector Transparency Board. Prior to joining the ICO in 2007, Judith was a senior policy adviser at the Department of Trade and Industry and previously at the Cabinet Office and Department for Education and Employment.

Iain Patterson

Chief Digital Officer, UKCloud

Iain joined UKCloud in 2017, with over 20 years CIO experience, having previously led many key IT transformation projects for organisations such as GDS, DVLA and Post Office.

Prior to joining UKCloud Iain was Director of Common Technology Services at Government Digital Service (GDS) where he was responsible for working with government departments to provide the right technology to help the public sector deliver great services. Iain was seconded to DVLA in 2013, where he was Chief Technology Officer, leading their digital transformation. This included making the Tax Disc Digital and successfully exiting a 12-year outsourced IT contract bringing both the responsibility and capability for managing the IT back in house.

Iain joined UKCloud as Chief Digital Officer, with a focus upon reviewing UKCloud’s technical platform and operations, its product propositions and external messaging.

Detective Superintendent Andrew Gould

National Cybercrime Programme Lead, National Police Chiefs’ Council

Detective Superintendent Andrew Gould is the National Cybercrime Programme Lead for the National Police Chiefs’ Council responsible for developing the police response to cybercrime at the national, regional and local level. As a Detective Chief Inspector, Andrew Gould was Deputy Head of FALCON, (Fraud & Linked Crime ONline), the Metropolitan Police’s response to cyber crime and fraud from 2014-2017. He is an experienced Senior Investigating Officer leading investigations into cyber Organised Criminal Groups. He also ran a Cyber PROTECT and PREPARE team delivering cyber crime prevention advice to businesses and supporting companies to develop effective cyber incident response plans and exercising. Andrew is a Certified Information Systems Security Practitioner (CISSP) and accredited in Certified Information Security Management Principles (CISMP).

Prior to working in cybercrime Andrew was part of the Counter Terrorism Command. As a Senior Investigating Officer he led the investigative response to terrorist incidents and managed a number of major covert counter terrorism investigations in the UK and abroad. In response to the terrorist murder of Lee Rigby DCI Gould led the manhunt to disrupt the murderers’ extremist associates and prevent any further attacks.

Andrew also led the UK end of the police response to the Algerian BP Gas Plant attack. This included the fast time identification and location of all 30 UK nationals caught up in the attack, hostage negotiation and subsequent terrorist investigation. He managed the then largest victim identification and family liaison response since 7/7 and largest body repatriation operation since the Tsunami in 2002. Andrew also advised BP and the F&CO on crisis management, coronial investigations, victim identification, body repatriation and family liaison. He joined the Metropolitan Police Service in 1998.

Dr Victoria Baines

Visiting Associate at ‎Oxford Internet Institute

Dr Victoria Baines is a leading author and speaker in the field of cybersecurity. She has appeared on the BBC, CNN and other major broadcast media outlets as an authority on the misuse of emerging technologies. For several years, Victoria was Facebook’s Trust & Safety Manager for Europe, Middle East and Africa. Prior to this, Victoria led the Strategy & Prevention team at Europol’s European Cybercrime Centre (EC3), where she was responsible for the European Union’s cyber threat analysis. Victoria is a Visiting Associate of the Oxford Internet Institute (Oxford University), and a Visiting Fellow at the Bournemouth University School of Computing.

Tim Rodgers

Compliance and Information Governance Manager, Imperial College London

Tim Rodgers has been working in ICT and information management for the last 20 years, 18 of which were spent in local government in London. He has been a Data Protection Officer at two Councils and led on FOI, Records Management, Information Security Policy and Risk. He moved to Higher Education last year and leads for the ICT department at Imperial College London on GDPR, implementing the information asset register and ensuring applications are ‘match fit’ for life after May. He also chairs IG4HE, a networking group for IG professionals in London-based Higher Education institutions, and co-chairs the meetings of the JISC HE/FE Information Compliance group.

Andy Wall

Chief Security Officer, Office for National Statistics

Andy Wall is a Cyber, Information Security and Assurance Leader with over 25 years’ experience within global and national commercial organisations and UK Government providing business focused security advice and management. In his current role as the Chief Security Officer at the Office for National Statistics he is developing new approaches to secure the operations of leading edge big data analytics that support the organisational mission of statistics production on a range of key economic, social and demographic topics that are for the benefit of society and the economy generally.

His previous roles have been as Head of Cyber Security at Atkins supporting Government clients within the intelligence and military sectors and critical national infrastructure organisations including nuclear, water and transportation; and with Capgemini as Security Accreditation Manager, leading outsourced security risk services for a major Government department. For ten years before that he was an independent security consultant undertaking security roles for a wide range of national organisations.

Andy has been around the security block a few times. He has a host of security qualifications in risk, architecture and audit, as well as being a Chartered Fellow of the British Computer Society, a Fellow of the Institute of Scientific and Technical Communicators and a Member of the Institute of Information Security Professionals. He is a commentator on cyber security issues, authoring articles and papers and presenting at conferences.

Mahbubul Islam

Head of Secure Design, Department for Work and Pensions

Mahbubul has been involved in Information Security for 10 years, which covered Physical, Technical and Policy domains, in that period he has led numerous agile and non-agile teams on Security engagements for HMG.

His passion and focus has been on building security teams that are able adapt to the dynamic changes within InfoSec, whilst delivering on Governance Risk and Compliance outcomes.

Mahbubul is a member of the Security Institute, SABSA Institute and IISP. He supports the mentoring of people on their security journey. He is also a contributor in numerous forums and groups for Security.

Kieren Lovell

Head of Computer Emergency Response, University of Cambridge

Kieren Lovell is the Head of Computer Emergency Response Team at the University of Cambridge. As well as leading one of the world’s leading universities in incident response, he is also an instructor of Information Security and Information Handling at the University.

Prior to this role, Kieren has spent the last fourteen years at the forefront of Information Security within the Navy; working on Submarines, Mine warfare and Patrol vessels for the Royal Navy (UK), and was a Communication and Information Security instructor for the Royal Norwegian Navy. During his tenure at the Royal Norwegian Navy, he was awarded the rank of Kapteinloytant (LT CDR) and was the Chief Communications Officer (CISO) for NATO Standing NATO Maritime Group One (COMSNMG1) and was a Battlewatch captain during operations in the Gulf of Aden, to mitigate the Pirate Threat, for a nine month deployment.

Kieren has worked in fifty countries, with just over seven years on live operations.