Full biography to follow
Professor John Walker CFIP
Advisory Board, Research Centre in Cyber Security, University of Kent; Visiting Professor, School of Science and Technology, University of Nottingham
A specialist providing consultancy to Middle East based organisations, government, and military clients. 22 years in Royal Air Force Security/Investigations and Counter Intelligence operations within a SCIF/Comint/Sigint environments, working alongside GCHQ, CESG, UK and US Agencies, ITSO and Systems Security Manager for CIA Accredited Systems, Visiting Professor School of Science/Technology – Nottingham Trent University [NTU], Advisory Board, Research Centre in Cyber Security (KirCCS) – University of Kent, Mentor to Tallinn University (Estonia) Masters Students Cyber Research, Practicing and Registered Expert Witness, Certified Forensics Investigator Practitioner [CFIP], Editorial Member at MedCrave Research for Forensics & Criminology, ENISA CEI Listed Expert, Editorial Member of the Cyber Security Research Institute [CRSI], Digital Forensics/Cyber Security Listed Trainer in Dubai for Certified courses, Fellow of Royal Society for the Arts [FRSA], and a Belkasoft (Digital Forensics) Partner.
Deputy Director of Technology Security, Department for Work and Pensions
Lorraine Dryland is a highly capable Cyber security professional with deep knowledge and skills in Cyber Intelligence and Investigations. Prior to the Department of Work & Pensions, Lorraine’s experience spans such organisations as: Vodafone, Bank of England and the National Crime Agency (NCA). Lorraine has a master’s degree in Forensic Computing and Cyber Crime Investigation.
Dr Mils Hills
Associate Professor in Risk, Resilience and Corporate Security, University of Northampton Business School; Senior Subject Matter Expert, NATO
Mils was the first Anthropologist to work for the UK government. He draws on a unique background of defence research, consultancy and academic leadership – including his current position as Associate Professor in the Faculty of Business and Law at the University of Northampton. His areas of expertise are in developing the immunity of decisionmakers at all levels to exploitation in the context of cyber and blended attacks.
David Higgins CISO
High Risk Programme Reviewer, Infrastructure & Projects Authority
David has a background in the development and operation of highly secure government systems and operations, he has also acted as interim CISO for finance and high-value retail clients. David led the UK Smart Meters SMETS 2 CNI implementation and is an accredited High-Risk Programme Reviewer for the Infrastructure Projects Authority.
Head of Information Security Assurance, Cabinet Office
I lead, data management, data protection and data security within the largest shared service contract in Europe. This incredibly diverse and complex landscape gives me unprecedented exposure to data governance at its vanguard.
I deliver strategic and tactical services for specific contract development/management and specialist projects, across this diverse portfolio of businesses. Providing up to date and best practice information assurance of the end to end lifecycle of data. This holistic approach includes data management, protection, and security including logical/physical security. I manage projects from conception to completion and onwards to business as usual.
I work closely with multiple government departments and private sector commercial clients in the UK, evaluating organisational security frameworks, compliance management and security processes. I use my deep knowledge of risk assessment and management intelligence to develop strategic risk registers for critical infrastructure.
I ensure all security provision follows operational protocol across all aspects including information security, counter terrorism strategy, management of radiological sources, cybersecurity and protection advice. Working at board level, I provide strategic advice to senior leaders, collaborating on creation of successful marketing strategies and identifying opportunities for organisational growth and development.
Identity Lead, National Cyber Security Centre
Full biography to follow
Head of Information Governance, South London and Maudsley NHS Foundation Trust
Dr Murat Soncul completed clinical training in dentistry and worked as an oral surgeon before completing his PhD in 2002 at University College London researching the reliability of healthcare technology to support oral and maxillofacial surgical planning. He joined South London and Maudsley NHS Foundation Trust in 2003 to co-ordinate the e-Health Programme. He currently works as the Head of Information Governance in the same Trust and is a member and alternate vice Chair of the Confidentiality Advisory Group at the Health Research Authority. In the past, he served as the Company Secretary and the Chair of the Board of Trustees at the Metro Centre, which is a London-based charity that promotes the health and well-being of all people experiencing issues related to sexuality, identity or gender. Murat’s professional interests include innovative uses of information technology to improve healthcare service delivery and patient experience, fair and lawful use of patient information, privacy and confidentiality, capacity and consent, cyber security and risk management.
Head of IT Security, IT Audit and Compliance, London School of Hygiene and Tropical Medicine
Marion Rosenberg is the Head of IT Security, IT Audit and Compliance at the London School of Hygiene and Tropical Medicine.
As part of her responsibilities, she has been involved in the successful process to achieve IG Toolkit approval from NHS Digital for the School. She is responsible for information security policies and incident response and everything in between.
Marion started work as a systems programmer involved in low-level network development, moved into systems management before moving back into networks, albeit in an operational role. With an interest in security throughout her career, Marion made the formal move into information security almost 18 years ago when it became recognised in universities as an area in its own right.
Since then, she has achieved an M.Sc. in Information Security, a Graduate Diploma in Law and an LLM in Computer and Communications Law. Her dissertation on electronic identities was published in the Computer and Telecommunications Law Review. She has worked in several HE institutions finding them both challenging and rewarding.
Head of CivTech ® at the Scottish Government
Alexander has worked in the Digital Directorate of the Scottish Government for the past three years. His current role is as architect and Head of CivTech® – a ground-breaking programme whose mission is to drive daring, ingenuity and innovation within the public sector, delivering better public services, and providing economic development opportunities. Previous roles included running number of government tech procurements. Before moving back up to Edinburgh he spent eight years in London, six of which were spent growing his own digital creative agency delivering ‘super shiny’ web apps for Google, PayPal, Sony Ericsson, McDonald’s, Adobe and other leading brands. He is massively passionate about the benefits of digital transformation in the public sector which leads to better value services that make our lives better.
Head of IS Assurance, HM Land Registry
As Land Registry’s Head of IS Assurance Neil is responsible for maintaining its status as a member of the Critical National Infrastructure – underpinning property ownership worth over £4 trillion across England and Wales including over £1 trillion of mortgages. Trained originally at BT as a Communications Engineer he has a unique 30 year background in a diverse range of technology fields. During an overseas role in the Caribbean, he helped the Cayman Islands Monetary Authority through the Y2K period co-ordinating the health of over 8000 financial institutions from 26 countries while introducing the concept of electronic filings using the internet into the newly formed agency. For the past 12 years he has helped HM Land Registry more recently embrace government’s refreshed ICT strategy, delivering on the Digital Agenda. Taking the role of security from the stereotyped blocker to the true position of enabler of change.
Cyber Industry Deputy Head, Ministry of Defence
Daniel initially trained as a Librarian and worked in university and media libraries before joining the Ministry of Defence (MOD); roles managing MOD web services followed before moving in 2008 into the field of Information Assurance, jointly leading the MOD’s response to the Burton Report and Data Handling Review and developing a focus on incident management, industry engagement and information security policy. Two years spent working as the Chief of Staff to the MOD Chief Information Officer followed before he moved to his current role leading the MOD input to the Defence Cyber Protection Partnership – a Government / Industry initiative to improve the protection of the defence sector from the cyber threat.
Dr. Claudia Natanson
Chief Security Officer, Department for Work and Pensions
Dr Claudia Natanson is currently the CSO for the Department for Works and Pensions (DWP) responsible for its people, and information. In her role she sets the policies, standards and procedures required to support the new technological roadmap, and business stakeholders who service the Departments over 22 million customers. Prior to joining DWP Claudia has held posts with British Telecommunications as Head of Secure Business Services, and Chief Information Security Officer for Diageo. She holds a M.Sc. in Computer Science and Ph.D. in Computers and Education from the University of Birmingham. Claudia is a senior cyber and information security expert evaluator for the European Commission, a certified CISSP (Certified Information Security Professional), ISO/IEC 27001 Lead Auditor and Fellow of the British Computing Society.
Network Analyst, Cabinet Office
Mohamed is a Network Analyst at the Government Digital Service (GDS) and is part of the internal Network team. He is the lead engineer responsible for maintaining and managing security appliances and the GDS wireless Network. Mohamed has been instrumental in delivering a robust, fast and secure wireless network, meeting the growing demands of an organisation where the majority of users are tech savvy and Internet hungry. Mohamed has contributed to the implementation of security principles such as the wall gardened approach when building the GDS network, this has helped GDS achieve PSN accreditation whilst maintaining a mobile wireless workforce.
Most recently Mohamed continues to work alongside Common Technology Services (CTS) where he has been key in providing guidance on the cross government Wi-Fi blueprint with the goal of achieving a seamless multi building Wi-Fi network. Prior to joining GDS Mohamed worked in the private sector delivering bespoke network solutions to various clients.
Information Security Manager, London Borough of Camden
Michael has been working for Camden Council for over 10 years and in IT for 14 years in various different roles.
The main focus of Michael’s work in Camden is to ensure the council complies with external bodies Code of Connections.
Michael advises the council on Data Protection, Cyber Security and best practice around Data Governance.
Over the course of the past 14 years, Michael has provided consultancy in both the public and private sector and currently acts as an Independent Advisor for Hertsmere Borough Council in the same capacity as he does for Camden.
Director for Enterprise Infrastructure and Production Operations, Department for Work & Pensions
Juan Villamil is Director of Enterprise Infrastructure and Production Operations at the Department of Work and Pensions. He joined the department in May 2015.
His goal is to deliver new, effective and stable technology that meets the needs of the 22 million UK citizens who use DWP services while ensuring that current systems continue to co-exist securely and intelligently, without loss of business continuity.
Juan has a hands-on background in application development, infrastructure design and delivery. Prior to joining DWP he worked at BT where his last role was as CTO for BT Sport with responsibility for the architecture, design and delivery of the channels technology.
Chief Information Security Officer, DVLA
Dave is the Chief Information Security Officer (CISO) for DVLA. Dave was previously their Corporate Risk Manager and has worked in many Government organisations. He is a lecturer in Enterprise Risk Management, and was awarded UK Risk Manager of the Year in 2004.
He is a Member of the Institute of Risk Managers and Member of the Chartered Institute of Internal Auditors. He also runs a sheep farm in Carmarthenshire West Wales.
The Earl of Erroll
Independent Crossbench Peer, House of Lords
Lord Erroll (Merlin) plays an active role in thought leadership in the ICT arena, especially around the Internet of Things, Cybersecurity, Intellectual Property, Broadband and the Internet. He worked for many years in software development, as well as serving in the Territorial Army. He chaired the Eyehub IoT Technology Strategy Board funded consortium and is currently helping with the HyperCat IoT interoperability initiative.
He is active in several Parliamentary groups, especially looking at the impact of regulation on business and the internet, and takes a particular interest in Cyber, Countryside & the Environment, the Constitution and Scottish matters. He chairs both the Digital Policy Alliance (was EURIM) and the All-Party Group on Entrepreneurship, and is a member of PICTFOR (Parliamentary ICT Forum).
He chairs the Flexeye Advisory Board and sits on several others. He was inducted into the Infosecurity Europe Hall of Fame in 2010.
Head of Policy, Change and Risk (Cyber Security and Information Risks), HM Revenue & Customs
Lucy is the Head of Policy, Change and Risk within HMRC Cyber Security and Information Risk Team. Her role includes managing and mitigating risks to ensure customer data is kept safe and HMRC’s services continue to run smoothly. She is also responsible for security policy, incident management and managing a budget and resource to deliver transformational security change.
Lucy joined the security community in 2017 having worked in the Inland Revenue and latterly HMRC as a tax professional for 15 years. During this time Lucy managed the tax affairs of specialist customer groups and large businesses, as well as dipping into management of the tax credit peak in 2015. The change of profession was prompted by the opportunity to use her operational background and tax risk management experience in the security arena. Lucy relishes identifying where operational insight can strengthen security response.
Group Manager, Central Government Team, Information Commissioner’s Office
Judith Jones is Group Manager of the Central Government team at the Information Commissioner’s Office. Her team is responsible for engaging with key stakeholders in government departments and their arm’s length bodies on the implementation of the new data protection reforms. The main focus of her current work is engaging with government and parliament on the Data Protection Bill.
Her role involves promoting a sensible and secure approach to data processing, including justified data sharing, in order to maintain people’s trust and confidence in the government’s use of personal data. A further priority is ensuring information rights and privacy safeguards are fully considered in the delivery of better use of government data as allowed by the Digital Economy Act 2017. She represents the ICO as an observer on the Cabinet Office’s Privacy and Consumer Advisory Group and on the Welfare Sector Transparency Board. Prior to joining the ICO in 2007, Judith was a senior policy adviser at the Department of Trade and Industry and previously at the Cabinet Office and Department for Education and Employment.
Chief Digital Officer, UKCloud
Iain joined UKCloud in 2017, with over 20 years CIO experience, having previously led many key IT transformation projects for organisations such as GDS, DVLA and Post Office.
Prior to joining UKCloud Iain was Director of Common Technology Services at Government Digital Service (GDS) where he was responsible for working with government departments to provide the right technology to help the public sector deliver great services. Iain was seconded to DVLA in 2013, where he was Chief Technology Officer, leading their digital transformation. This included making the Tax Disc Digital and successfully exiting a 12-year outsourced IT contract bringing both the responsibility and capability for managing the IT back in house.
Iain joined UKCloud as Chief Digital Officer, with a focus upon reviewing UKCloud’s technical platform and operations, its product propositions and external messaging.
Detective Superintendent Andrew Gould
National Cybercrime Programme Lead, National Police Chiefs’ Council
Detective Superintendent Andrew Gould is the National Cybercrime Programme Lead for the National Police Chiefs’ Council responsible for developing the police response to cybercrime at the national, regional and local level. As a Detective Chief Inspector, Andrew Gould was Deputy Head of FALCON, (Fraud & Linked Crime ONline), the Metropolitan Police’s response to cyber crime and fraud from 2014-2017. He is an experienced Senior Investigating Officer leading investigations into cyber Organised Criminal Groups. He also ran a Cyber PROTECT and PREPARE team delivering cyber crime prevention advice to businesses and supporting companies to develop effective cyber incident response plans and exercising. Andrew is a Certified Information Systems Security Practitioner (CISSP) and accredited in Certified Information Security Management Principles (CISMP).
Prior to working in cybercrime Andrew was part of the Counter Terrorism Command. As a Senior Investigating Officer he led the investigative response to terrorist incidents and managed a number of major covert counter terrorism investigations in the UK and abroad. In response to the terrorist murder of Lee Rigby DCI Gould led the manhunt to disrupt the murderers’ extremist associates and prevent any further attacks.
Andrew also led the UK end of the police response to the Algerian BP Gas Plant attack. This included the fast time identification and location of all 30 UK nationals caught up in the attack, hostage negotiation and subsequent terrorist investigation. He managed the then largest victim identification and family liaison response since 7/7 and largest body repatriation operation since the Tsunami in 2002. Andrew also advised BP and the F&CO on crisis management, coronial investigations, victim identification, body repatriation and family liaison. He joined the Metropolitan Police Service in 1998.
Dr Victoria Baines
Visiting Associate at Oxford Internet Institute
Dr Victoria Baines is a leading author and speaker in the field of cybersecurity. She has appeared on the BBC, CNN and other major broadcast media outlets as an authority on the misuse of emerging technologies. For several years, Victoria was Facebook’s Trust & Safety Manager for Europe, Middle East and Africa. Prior to this, Victoria led the Strategy & Prevention team at Europol’s European Cybercrime Centre (EC3), where she was responsible for the European Union’s cyber threat analysis. Victoria is a Visiting Associate of the Oxford Internet Institute (Oxford University), and a Visiting Fellow at the Bournemouth University School of Computing.
Compliance and Information Governance Manager, Imperial College London
Tim Rodgers has been working in ICT and information management for the last 20 years, 18 of which were spent in local government in London. He has been a Data Protection Officer at two Councils and led on FOI, Records Management, Information Security Policy and Risk. He moved to Higher Education last year and leads for the ICT department at Imperial College London on GDPR, implementing the information asset register and ensuring applications are ‘match fit’ for life after May. He also chairs IG4HE, a networking group for IG professionals in London-based Higher Education institutions, and co-chairs the meetings of the JISC HE/FE Information Compliance group.
Chief Security Officer, Office for National Statistics
Andy Wall is a Cyber, Information Security and Assurance Leader with over 25 years’ experience within global and national commercial organisations and UK Government providing business focused security advice and management. In his current role as the Chief Security Officer at the Office for National Statistics he is developing new approaches to secure the operations of leading edge big data analytics that support the organisational mission of statistics production on a range of key economic, social and demographic topics that are for the benefit of society and the economy generally.
His previous roles have been as Head of Cyber Security at Atkins supporting Government clients within the intelligence and military sectors and critical national infrastructure organisations including nuclear, water and transportation; and with Capgemini as Security Accreditation Manager, leading outsourced security risk services for a major Government department. For ten years before that he was an independent security consultant undertaking security roles for a wide range of national organisations.
Andy has been around the security block a few times. He has a host of security qualifications in risk, architecture and audit, as well as being a Chartered Fellow of the British Computer Society, a Fellow of the Institute of Scientific and Technical Communicators and a Member of the Institute of Information Security Professionals. He is a commentator on cyber security issues, authoring articles and papers and presenting at conferences.
Head of Secure Design, Department for Work and Pensions
Mahbubul has been involved in Information Security for 10 years, which covered Physical, Technical and Policy domains, in that period he has led numerous agile and non-agile teams on Security engagements for HMG.
His passion and focus has been on building security teams that are able adapt to the dynamic changes within InfoSec, whilst delivering on Governance Risk and Compliance outcomes.
Mahbubul is a member of the Security Institute, SABSA Institute and IISP. He supports the mentoring of people on their security journey. He is also a contributor in numerous forums and groups for Security.
Head of Computer Emergency Response, University of Cambridge
Kieren Lovell is the Head of Computer Emergency Response Team at the University of Cambridge. As well as leading one of the world’s leading universities in incident response, he is also an instructor of Information Security and Information Handling at the University.
Prior to this role, Kieren has spent the last fourteen years at the forefront of Information Security within the Navy; working on Submarines, Mine warfare and Patrol vessels for the Royal Navy (UK), and was a Communication and Information Security instructor for the Royal Norwegian Navy. During his tenure at the Royal Norwegian Navy, he was awarded the rank of Kapteinloytant (LT CDR) and was the Chief Communications Officer (CISO) for NATO Standing NATO Maritime Group One (COMSNMG1) and was a Battlewatch captain during operations in the Gulf of Aden, to mitigate the Pirate Threat, for a nine month deployment.
Kieren has worked in fifty countries, with just over seven years on live operations.