Enterprise Security & Risk Management

25 April 2017

Victoria Park Plaza



‘Vault 7’ material defines the largest intelligence leak in CIA history

15th March 2017

WikiLeaks enlightened the World on Monday 6th March 2017 with its publication of a substantial collection of confidential CIA documents which detail many of the […]

Detecting Cyber Crime With Artificial Intelligence

30th January 2017

Author: Cyberseer.Net Security professionals face a difficult task in keeping enterprise networks safe. Cyber-attacks continue to grow as criminals find new ways to infiltrate and […]



Samuel Korpi

Information Security Specialist, Neste

Samuel has ten years of experience in the field of information security, most of it in the audit & consultancy business at KPMG Finland. Last year he moved to corporate security side, joining the information and cyber security team at the Finnish oil & energy company Neste.

At Neste one of Samuel’s responsibilities is to develop information security risk management practices and act as a liaison towards the corporate ERM function. His audit & consultancy background provides a wide perspective on many industries and organizational practices.

Samuel has a technical background so he is keen to follow up on new technologies and their security aspects. Wireless technologies are one of his passions.


Joan Ogbebor

Improvement Programme Manager, Her Majesty's Inspectorate of Constabulary

Joan Ogbebor is an Improvement Programme Manager with Her Majesty’s Inspectorate of Constabulary (HMIC) with over 20 years’ experience in the public and private sectors. Joan has been in HMIC since 2010 where she has utilised her policy delivery, programme, project and business and programme planning expertise including her detailed knowledge of the complex, dynamic and challenging policing landscape to help drive the strategic and operational performance of police forces across England and Wales.

Joan has degrees in law (LL.B), Management Studies (PGDip) and Education (B.Ed) with several leadership and professional training and certification. 

Joan has a passionate interest in ICT, data science and digital innovation. 

Dan Raywood

Contributing Editor, Infosecurity Magazine

Dan Raywood is a journalist with more than 16 years’ experience, having primarily covered the B2B sector.

He was the launch editor of Addison Lee’s trade magazine Echo99, surfed the credit crunch as a reporter on Mortgage Introducer and spent five years as editor of garment decoration bible Printwear and Promotion.

Since summer 2008, Dan has been at the forefront of the information security industry. As news editor of SC Magazine he covered breaking stories such as Stuxnet, Flame and Conficker and the online hacktivist campaigns of Anonymous and LulzSec, and broke the news on the EU’s mandatory data breach disclosure law and a vulnerability which affected more than 200 shopping sites.

In 2013 he relaunched the news hub and webcast channel of IT Security Guru, where he spent his time talking to the security industry’s best minds and convincing them to do interviews on camera. He later spent time as an analyst covering SIEM and threat intelligence providers for 451 Research, and now as Contributing Editor of Infosecurity Magazine he moderates webcasts and Virtual Conferences, writes editorial content for the magazine and website, and attends industry events across the world.

He has spoken at events including 44CON, Infosecurity Europe, Software Industry Research Board conference and SC Congress

Sue Milton

Nominations Committee Chair and Past President, ISACA London Chapter

Sue Milton specialises in governance, risk management and assurance.  She provides practical solutions to ensure Risk Management enhances Good Governance and Assurance demonstrates achievement against the organisation’s Governance, Strategic and Business Aims.

Sue is a professional IT auditor and governance specialist who, in her capacity as a former President of the ISACA London Chapter, works to promote trust in and value from information systems.

Sue has a profound understanding of the intangible aspects of governance, such as organisational behaviour, stakeholder relationships and the interaction between people and IT, which influence the effectiveness of working relationships within and between organisations. 

Most recently, Sue has worked with the South African Development Community on managing the intangible risks to governance for central banks, and with the Asian Development Bank to assist the Central Bank of Myanmar transition to a market economy. 

Sue lectures and writes articles on governance and IT-related subjects for a range of organisations.  She regularly provides business comment to the Institute of Directors’ Policy Unit and provides comment on cyber-safety issues to the Media. 

Dylan DeAanda

Senior Director of Technical Account Management, Tanium

As Senior Director at Tanium, Dylan has been leading both the Global Financial Services and EMEA technical teams. Originally from Arizona, USA, he is now based in Amsterdam.

For the past 3 years he has been helping Tanium’s customers achieve visibility, compliance and control; with his largest customer at 1.4 million endpoints globally. His customers have ranged from US Government, the US DoD, European Government, Energy, Retail, and Financial Services.

Dylan proudly served in the US Army, as a Korean Linguist, focused on Satellite Telecommunications and Electronic Warfare.

Jay Kaplan

Co-Founder & CEO Synack

Jay co-founded Synack after serving in several security-related capacities at the Department of Defense, including the DoD’s Incident Response and Red Team. Prior to founding Synack, Jay was a Senior Cyber Analyst at the National Security Agency (NSA), where his focus was supporting counterterrorism-related intelligence operations. Jay received a BS in Computer Science with a focus in Information Assurance and a MS in Engineering Management from George Washington University studying under a DoD/NSA-sponsored fellowship. Jay holds a number of security certifications from ISC(2) and GIAC.

Keith Ellis

Information Security Consultant

Keith has been in the IT industry for over quarter of a century and has seen many evolutions in technology and security methodologies. Today he operates as an Information Security Consultant primarily focused on Financial Services and Banking sectors.

He is passionate about Information and Cyber Security; with the ever-increasing adoption of internet based platforms comes with it the parallel increase of adversaries determined to destroy, weaken defences and steal critical company data and IP. This presents multiple opportunities to use his experience and skillset to assist those in need.

Chris Rivinus

Head of IT Finance, Tullow Oil

Chris has over 20 years of experience in Information Technology, Innovation Management and Project Management working across the civil engineering and energy sectors. He holds degrees in Cultural Anthropology, Business Administration and International Business Transactions as well as certifications in Industrial Control System Security Management. His articles on information management and business strategy have been published in research forums, textbooks and mainstream business publications including CIO Magazine, Business Information Review and Knowledge Management Review.

Previous Speakers

Sarb Sembhi

Past President, ISACA London Chapter

Sarb Sembhi is a CTO & CISO of a media company. He has been the Chair of the ISACA GRA Committee and a member of ISACA Relations Board. Sarb began his career in the public sector as a Project Manager, and has more than 30 years of project management and consultancy experience.

He has gained this experience providing services to companies including BBC, Travis Perkins, BP, Network Rail. Sarb is a regular speaker at Information Security Conferences around the world, including the CxO Dialogue, Gartner Summits, InfoSec Europe, RSA Europe, HITB, BCS, ISACA, IPSec, IFSEC, Security Directors Forum.

He is also member of the Defence and Security Committee at the London Chamber of Commerce & Industry, and a member of the Cyber Security Working Group at the London Chamber of Commerce and Industry, Infosecurity Magazine Editorial Board, The Institute of Engineering and Technology, The Institute of Risk Management, The Chartered Insurance Institute, and was individual member of the Parliamentary IT Committee.

Giacomo Collini

Director of Information Security,

Giacomo Collini is the Director of Information Security at, the makers of the global gaming phenomenon, Candy Crush where he has been since January 2014. He holds deep knowledge and experience in IT and business processes and his experience in information security spans back 15 years including software engineering, penetration testing, consultancy and has held various senior security roles. He holds the Certified Information Systems Security Professional (CISSP) as well as the Certified Information Systems Auditor (CISA) and ISO 27000 LA and SABSA.

Sameer Pise

Principal Auditor, UNESCO

As a Principal Auditor for the past ten years, Sameer Pise has successfully led a wide range of audit and advisory engagements comprising compliance, performance and strategic engagements across UNESCO’s Headquarters, Field Offices and Category I institutes and in Information Technology. These engagements have strengthened risk management, internal control and governance. He has extensive experience in managing contracted IT audits covering areas such as IT security, project implementation, governance, data stewardship and classification and operations.

Stuart Frost

Head of Enterprise Security and Risk Management, Department for Work and Pensions

Stuart has over 30 years’ experience in the Civil Service and currently heads up the DWP Enterprise Security and Risk Management team – a unique role that leads both Security Architects and Risk Managers to protect DWP assets.

Theo Gough

Principal Architect, FINkit at Monitise

With an engineering family background,  Theo started out in IBM’s labs at 17, graduated from University of Warwick in the early 90’s mainly in maths but also in other interesting stuff, before going on to delivering and consulting for many UK & European retail banks, with occasional forays into processors, retail, travel and media organisations.

Theo brings his breadth of experience in Software Engineering & Enterprise Architecture over 20 years to the management team of FINkit, the new strategic innovation platform from Monitise.

Chris Ullah

Retired Police Superintendent

Chris is a recently retired (March 2016) Police Superintendent from Greater Manchester Police, with a wealth of knowledge at a strategic and tactical level of policing and planning, leading some of the largest security operations in the history of the Force as well as dealing with countless major incidents and emergencies. 

 He has a strong leadership and collaborative style making him a great team player and motivator.  

 In addition to his daily operational duties, he was a qualified National Security Co-ordinator providing security advice to target harden some of the major iconic sites in Greater Manchester. 

 He has also worked at an international level with the FBI which involved visiting the USA for a significant security operation. 

Given his background he has led some of GMP’s most high profile, high-value business change programmes such as the Force’s £64 million headquarters, the introduction of Agile working.  His most recent work was to lead and deliver a genuine cutting edge and truly successful mobile policing solution. 

David Renwick

Director Product Advocacy, Wandera

Specialist in Enterprise mobility, EMM, MDM, BYoD enablement and technology innovation, David started his career in technology over 25 years ago at the outset of the PC revolution. He has worked at some of the world’s most reputable technology companies, including Apple and AirWatch where he held various positions across multiple continents, including iOS Technical Specialist for EMEA and Innovation Director. 

With his experience and pragmatic approach to mobile device security and management, David heads up Customer Success at Wandera, working with the company’s largest customers to implement and develop leading edge solutions.

Andrew Brown

UK Head of Business Development, Sims Recycling Solutions

Andrew Noel Brown is the UK Head of Business Development (ITAD) at Sims Recycling Solutions. Using a consultative, innovative and solutions-orientated approach, he oversees a team of Business Development Mangers who work with local, national and global customers in government and business sectors to provide secure disposition services for all types of retired electronic equipment. Previously he was the Business Development Manager, Financial & Professional Services Sector, at Iron Mountain, and held senior account management positions at Secure Data Management Limited and Online Security Solutions. A native of Christchurch, New Zealand, he holds a degree in Fine Art (BFA) from the University of Canterbury in New Zealand.

Martin Fletcher

Assurance and Information Management Consultant, National Archives

As part of the Information Management Department at The National Archives; Martin Fletcher has provided Cyber Security training to 2,700 staff from over 150 organisations across the public sector. In this role, he has also developed an Information Security ‘train the trainer’ course which is now used by organisations including The Scottish Government, HMRC and Ministry of Justice. He is also responsible for the Archives’ well established programme of Management Board briefings. Martin believes that the core to ensuring a secure culture is to engage the senior management and encourage them to see cyber security as being more than just an “IT problem.”

Professor Bill Buchanan

Professor of Computing, Edinburgh Napier University

Bill Buchanan is a Professor in the School of Computing at Edinburgh Napier University, and a Fellow of the BCS and the IET. He currently leads The Cyber Academy ( and the Centre for Distributed Computing, Networks, and Security, and works in the areas of security, data analysis, Cloud Security, Web-based infrastructures, e-Crime, cryptograph, triage, intrusion detection systems, digital forensics, mobile computing, agent-based systems, and security risk.

Bill has one of the most extensive academic sites in the World (, and is involved in many areas of novel research and teaching in computing. He has published over 27 academic books, and 250 academic research papers. Bill has many awards for excellence in knowledge transfer, innovation, and teaching, such as winning at the Edinburgh Napier University Student Excellence awards in 2011, 2014 and 2015. He also has an extensive track record for public engagement and social media and was included in the JISC Top 50 Higher Education Social Media Influencers in 2015.

Bill also regularly appears on TV and radio, and was named as one of the Top 100 people for Technology in Scotland for the last two years, and as one of the 50 people from Scotland’s digital technologies industry changing the world (Times Scotland). In 2016, in Scotland, his work resulted in the Innovation of the Year related to advanced cryptography, and his research has led to three successful spin-out companies, including Zonefox (an innovative company focused on data loss detection), along with being awarded a number of patents.

Peter Agathangelou

Head of Group Risk and IS, Hamilton Fraser

Peter has extensive experience of managing technical projects covering all aspects of IT through the complete planning lifecycle, has specialised in delivery of infrastructure and network projects and has considerable experience of managing application roll out and development projects with much of this gained within the banking and finance industry.

Jason Blake

Senior Certification Manager – Cyber Products, BSI Group

Jason Blake is Senior Certification Manager – Cyber Products with BSI Group. He spent 15 years as a Quality and IT Manager prior to joining BSI in 2003. He has worked in the areas of Cyber Security, Information Security, Cloud Security, World Lottery Security, Legal Admissibility of Electronic Records, Collaborative Business Relationships and Quality Management. He has also been the Global Technical Manager for ISO 9001:2008/2015, and developer of the CSA STAR scheme with the Cloud Security Alliance.

Sam Lee

Head of Operational Risk, EMEA at Sumitomo Mitsui Banking Corporation

Sam Lee is Head of Operational Risk, EMEA for SMBC. He has previously been head of operational risk at RBS, Barclays Wealth and Credit Suisse Private Banking and has ridden a number of the industry’s challenges. Sam started his career training as a chartered accountant and left the profession immediately after qualifying and entered the world of investment banking as an internal auditor before moving to operational risk and initially setting up the operational risk framework and department for CSPB – He has stayed with Operational Risk ever since and has been focused on the embedding and transformational aspects of Operational Risk.

Andy Boura

Senior Information Security Architect, Thomson Reuters

Andy Boura has a passion for technology, science, and business. He brings technical depth of knowledge together with broad development process, business, and management experience. This allows him to take a holistic strategic view of technology, information security, and risk management. He advises on enterprise and technical security architecture of internally developed and third-party applications; and contributes to technical strategy, policies, and standards.

Thomson Reuters has over 50,000 employees in over 100 countries and is trusted by many of the biggest organisations in the world to provide business critical services and deliver accurate and timely information to professionals. As such, information security is critical in almost everything Thomson Reuters does.

Randi Roisli

IT Technical Security Lead, Shell International

An information risk management professional with 20 years’ of experience from the oil and gas industry, Randi was born in The Netherlands, gained engineering degrees in the UK and USA before embarking on an IT security career. Over the years, her roles and responsibilities have spanned technical security to governance and assurance, and she is currently working in the Joint Venture IT area.

David Wood

Information Security Manager, Kennedys

David Wood has over 14 years’ experience in information security, from access control with Halifax Card Services, to non-compliance management with Lloyds Banking Group. He has worked for Kennedys for over 3 years, overseeing the ISO 27001 certification programme, and general Information Security management.

David Robinson MBE

Head of Global IT Security, Herbert Smith Freehills LLP

David Robinson MBE is the Head of Global IT Security for Herbert Smith Freehills, one of the world’s leading law firms, who advise many of the biggest and most ambitious organisations across all major regions of the globe. David leads the delivery and strategy for IT security services across the firm in a flexible and responsive approach to the business. He has a wealth of experience gained from 22 years as a communications and electronics engineer with the RAF where he worked in numerous sectors including aircraft simulation, Radar, data handling & processing networks, training, procurement and information security; his military career was followed by a little over 13 years in senior security roles in the private sector with both C&W and Fujitsu where latterly he held various posts including company CSO.

Jonathan Gill

Chief Information Officer, Watchfinder & Co.

Jonathan Gill has spent the last twenty years working in the IT sector, specialising in complex IT systems for the education, health, engineering, accountancy and retail industries. His experience with web front-end systems dates back to 1999, but his core focus is on developing bespoke information management systems. His most recent work has been for Watchfinder & Co., a Sunday Times Virgin Fast Track Hot 100 ‘Ones to Watch’ company, building the company’s entire IT infrastructure to support rapid growth and maintain a stock roster of well over 4,000 high-value luxury items across multiple locations whilst catering to 1 million website visitors each month.

Algy Booker

Group Head of Information Security, RSA Insurance Group

Algy has worked for RSA for over 30 years in a variety of technology-oriented roles. He has been working in Information Security for over 10 years, developing capability from an initial basic IT Security focus into a wider Information Security framework aligned with Enterprise Risk Management practises.