Facing the multiplicity of identity providers

17th August 2017

Writing modern, secure, identity enabled apps is a non-trivial undertaking. Customers demand or assume modern mobile or web apps allow them to logon using their […]

Password management—a crucial step in cloud identity management

21st June 2017

Identity management once meant provisioning users and managing their passwords in Active Directory. But as  organisations  add more cloud applications to their IT environment, the process of managing users’ identities is getting more complex. One of the major components of identity management is passwords—often the first line of defence when it comes to securing user accounts.  



Previous Speakers

Sarb Sembhi

Past President, ISACA London Chapter

Sarb Sembhi is a Chief Technology Officer & Chief Information Security Officer of a media company. He has been the Chair of the ISACA GRA Committee and a member of ISACA Relations Board. Sarb began his career in the public sector as a Project Manager, and has more than 30 years of project management and consultancy experience.

He has gained this experience providing services to companies including BBC, Travis Perkins, BP, Network Rail. Sarb is a regular speaker at Information Security Conferences around the world, including the CxO Dialogue, Gartner Summits, InfoSec Europe, RSA Europe, HITB, BCS, ISACA, IPSec, IFSEC, Security Directors Forum.

He is also member of the Defence and Security Committee at the London Chamber of Commerce & Industry, and a member of the Cyber Security Working Group at the London Chamber of Commerce and Industry, Infosecurity Magazine Editorial Board, The Institute of Engineering and Technology, The Institute of Risk Management, The Chartered Insurance Institute, and was individual member of the Parliamentary IT Committee.

Alice Vasilescu

IT Project Officer - Connecting Europe Facility (CEF) eID at European Commission

Alice Vasilescu is acting as Policy Officer at the Directorate-General for Informatics of the European Commission. She is coordinating the technical work carried out under CEF eID and supports the Member State community that is setting up the eIDAS eID Infrastructure. Alice is an experienced IT professional, specializing in Enterprise Architecture, IT security and system interoperability for large-scale European projects.

Michael Whittlestone

Security Architect, TDC

Michael Whittlestone works for TDC as Domain Architect. After finishing his university training in London he met and married a Danish girl and has been living in Denmark since 1992. The last 10 years he has been focusing on improving TDC’s Identity Management and has recently been one of a team to choose Ping Identity as the platform of choice for TDC’s modern IDM. He has worked with several different IAM technologies and understands what the key requirements are for business to enable digital transformation whilst addressing compliance challenges. Michael has been busy preparing TDC for GDPR for the last two years, and is also working on adding non-password based secure easy authentication to TDCs login flow.

Tim Barber

VP, ForgeRock

Tim Barber is Vice President for the Communications & Media Industry at Forge Rock, where he is responsible for defining and driving forward the company’s go-to-market strategy for the C&M sector on a global basis. Tim has 25 years of experience spanning communications, technology and data industries in a variety of large, medium and small enterprises, across a variety of business disciplines including; general management, sales, marketing and customer operations management.

Prior to joining Forge Rock, Tim spent 3 years as Vice President, EMEA for the Digital Commerce division at Pitney Bowes, and prior to that 5 years as sales director for Experian’s Decision Analytics line of business in the EMEA region. Tim also led Experian’s telecoms division globally, coordinating the telecoms vertical market strategy and bringing together propositions from across the organisation’s broad portfolio of products and services.


Cyril Gollain

Chief Executive Officer, Brainwave GRC

Cyril Gollain is the Chief Executive Officer and Co-founder of Brainwave. Under Cyril’s leadership, Brainwave has grown from a collection of unique and innovative ideas into a market recognized leader in the identity analytics & intelligence software market.

Prior to Brainwave, Cyril held various management and consulting positions at Oracle, BT Global Services and Cap Gemini.

Joanna Zdulska

Information Security Access Programs and Governance Manager

Joanna has specialized in the domain of Identity and Access Management for the last 11+ years. Joanna has over 21 years of operations, technology and management experience with specific emphasis on compliance, risk management, solutions development and program management. Since joining Citi in 1996 Joanna has served in multiple technology managerial roles, being responsible for software development, project management and operational activities. Joanna managed risk management area as a formal Business Information Security Officer and Compliance Officer in Regional Data Center. Between 2005-2007 Joanna managed two Regional projects related to access management standardization and improvement for Distributed system like Unix, Wintel, SQL and Oracle databases. In 2007 Joanna joined Global ID management team and took on a global function responsible for Provisioning Automation and tools development. Since 2010 Joanna was managing Global Programs related to ID Management for EMEA region – including the centralization of access and compliance checks. Since 2016 Joanna has been managing Global Programs related to ID Management for all 3 regions: EMEA, APAC and NA/LATAM.

Joanna graduated from the IT program at the Department of Technical Physics and Applied Mathematics at Warsaw University of Technology (Master of Science degree).

She holds a CISSP (Certified Information Systems Security Professional) certificate.

Kannan Rasappan

IAM Architect and Developer, HSBC

Kannan is a Technical Architect actively involved in PSD2 Compliant IAM implementation in Tier-1 Banks like RBS & HSBC. He is a strong advocate on adopting industry standard products/protocols and advising organisations on Best practices for an end to end IAM solution. Kannan is an Applied Mathematics post-graduate who started his career as backend developer in 2000 and has worked on diverse domains in varying capacities leading up to an Architect role in IAM. He is an entrepreneur at heart and co-founded a big data company. He has been an active member in IAM meetups in London and also regularly participates in Hackathons. He has been advising various startups as mentor and also provides consulting service to a few companies.

Rik Van Bruggen

Sales Vice President EMEA, Neo Technology

Rik Van Bruggen has been working for Graph Database leader Neo4j for the past 5 years. He has published frequently on the topic of Graph Databases, and is now leveraging his prior and current experience in IAM and Graph Databases to make the two fields meet and thrive. Twitter : @rvanbruggen

Dr Hasan Al-Madfai

Application Fraud Consultant, Direct Line Group

Hasan Al-Madfai (BSc, MSc, PhD) is an established statistician and data scientist with recognised experience in various areas including customer insight, LTV modelling, street price optimization, fraud prevention and forecasting. His passion lies in using science and R&D to develop business operations and processes and optimise outcomes. Following a successful academic career, Al-Madfai has served in key leadership roles heading multiple teams and functions at market leading companies such as BGL and Direct Line Group.

Niels von der Hude

Director Product Strategy, Beta Systems IAM Software AG

Niels is Director Market Development IAM at Beta Systems Software. He is a globally recognized IAM thought leader in the market and a very experienced Manager with balanced business and technical acumen. He received his diploma in electronic engineering at Technische Unversität Berlin and passed the ‘General Management Programme’ at INSEAD. After ten years of work in telecommuncation business, where he acted as a management consultant and as a corporate investment manager, Niels von der Hude entered Beta Systems. His long-term product vision and his customer-centric approach enables Beta Systems to create high quality products under aggressive schedules.

Dr. Louise Bennett

Chair of the Security Community of Expertise, British Computing Society

Dr Louise Bennett Chairs the BCS Security Community of Expertise and Identity Assurance Working Group. She started her career as a scientist modelling weather patterns and locust plagues in Africa. She then moved into operations research and real time computing for aircraft systems in Defence.

Over the last 30 years she has been an IT & R&D director (Thorn EMI, Logica, AEA Technology, Vivas). She has also worked as a Government advisor in several capacities. Currently she is a member of: the Defence Science Expert Committee, the Cabinet Office Privacy and Consumer Advisory Group and the Technical Panel for the Information Commissioner. She consults on: strategic and corporate governance, the exploitation of new technology and risk management. Her current work focusses on: how to ensure trust online, particularly the governance of online identities for both individuals and organisations; payments over the Internet; developing resilient organisations, from environmental, security and privacy perspectives (including information assurance and fraud prevention).

Marek Zakrzewski

IAM Consultant, Public Sector (Healthcare)

Marek Zakrzewski is an Information Security Consultant with over 20 years NHS experience in various aspects of information technology from hands-on IT ‘engineering’ to managing IT departments. 

After one of too many restructurings and reorganisations he decided to take more direct approach to  information security and set up IGS (Information Governance Services) to promote sensible and yet standard compliant approach to this fast changing field.

Yousef Syed

Security Consultant and IAM Specialist

Yousef began his career as a OO Designer and Java Developer back in 1998 shifting to a security focus in 2000 with the new JAAS API and Java 2 Security API. From 2004 he was working on various compliance projects for AML and KYC and then in 2005 became a pre-sales consultant with Thor Technologies Xellerate IAM product (later purchased by Oracle to become OIM). Since then, he’s worked in multiple projects with a security focus of Application Security, IAM, Enterprise Security, Cryptography and Compliance, as an Architect or Consultant. He’s Certified Information Security Professional (2007), Certified Cloud Security Professional, Certified Ethical Hacker and TOGAF certified Enterprise Architect.

Travis Spencer

CEO, Twobo Technologies

Travis has worked extensively with organizations in various industries in both the US, Europe, and elsewhere who are adopting cloud and mobile computing. His broad market exposure coupled with a background in application development allows him to help organizations with low-level technical issues as well high-level questions. His deep knowledge of established standards like SAML, WS-* and XACML coupled with emerging ones like REST, SCIM, OpenID and OAuth provides him with a unique and cutting edge perspective on digital identity and access management.

Don Thibeau

Chairman and President, The Open Identity Exchange (OIX)

Don is President and Chairman of the Open Identity Exchange (OIX) a non-profit, technology agnostic, global organization of public and private sector leaders. OIX tests new operational and governance models for business, technical and legal interoperability. Don is the Chairman of OIX UK, a public-private partnership for pilot testing permissible use policies in the UK identity ecosystem.
Don co-chairs the OASIS Electronic Identity Credential Trust Elevation Methods Technical Committee as Executive Director of the OpenID Foundation, a standards development organization. At OpenID Foundation, Don leads the development and global adoption of open identity standards such as OpenID Connect. Don Tweets @4Thibeau and blogs at

Colin Wallis

Executive Director, Kantara Initiative

Colin is the Executive Director of the Kantara Initiative Inc, the globally acknowledged thought leader and emerging practice resource center for federated digital identity, access and consent-based information sharing. Colin’s combined public and private sector background in online identity and privacy builds on 15 years of contribution to international standards and consortia. Alongside his contracts with Kantara and his previous employer, Colin maintains leadership positions in the US Identity Ecosystem Steering Group (IDESG), OECD Internet Technical Advisory Committee (ITAC) and ISO SC27 Security Techniques on topics around Information Security, Privacy and Trusted Identity.

Gabe Chomic

President, Information Systems Security Association – UK Chapter (ISSA-UK)

Gabe Chomic is a technologist at heart who has been tinkering with things from an early age. He currently leads the information security and architecture efforts at a large national charity and also serves as President of the ISSA-UK Chapter. In various past lives, he has performed in-depth security engineering in heavy industry & SCADA environments, analysed international business and security processes in fourteen countries, and dabbled in government IT. His current passions involve the economic drivers behind insecurity, the cascading effects of small business failure, and the changing perception of information security in the public eye.

Karthik Selvaraj

Consultant Platform Architect, British Gas

Karthik Selvaraj is a seasoned technologist has spent last 15 years in creating new business values through technology adoption.

In his current role, leads a technical team responsible for delivering next generation platforms at British Gas related to Identity and API Management, Security Integration and mobility solutions.

Karthik is passionate about building world class, secure and scalable solutions in Cloud.

Tom Eggleston

Managing Director, ProofID

A seasoned identity management veteran, Tom has been involved in all aspects of delivering identity management solutions for over ten years. As Chief Technology Officer at Salford Software Ltd, a specialist provider of identity management solutions to universities, Tom gained a deep understanding of what makes the Higher Education sector tick. Now, as Managing Director of ProofID, Tom is focused on helping ProofID’s customers unlock the benefits of next-generation identity management.

Don Thibeau

Chairman and President, The Open Identity Exchange (OIX)

Don is President and Chairman of the Open Identity Exchange (OIX) a non-profit organization of leaders from competing sectors, including enterprise, data services, telecommunications, consulting services, SaaS, banking, retail and government. OIX has become a global center of excellence for the identity trust layer of online transactions serving as a test bed for business, legal and governance policies in the emerging identity ecosystem.

Don is also the Executive Director of the OpenID Foundation, where he directs a standards development process for Internet identity. The foundation’s membership is comprised of leaders from key industry organizations that collaborate on the development, adoption and deployment of open identity standards. He blogs at

Cyril Gollain

Chief Executive Officer, Brainwave

Cyril is the Chief Executive Officer and Co-founder of Brainwave. Under Cyril’s leadership, Brainwave has grown from a collection of unique and innovative ideas into a market recognized leader in the identity analytics & intelligence software market.

Cyril drives the overall vision and strategy for Brainwave, which is re-enforced by his passion for building performing teams, creating an innovative work environment, and focusing continuously on the customer’s pains and needs.

Before Brainwave, Cyril held management and consulting positions at Oracle, BT Global Services and Cap Gemini. Cyril is a popular speaker at IT Security events and contributor to IAM groups and blogs. He holds degrees from Chimie Paris Tech and Imperial College of London.

Travis Greene

Identity and Access Solutions Strategist, Micro Focus | NetIQ

After a 10-year career as a US Naval Officer, Travis started in IT as a Data Center Manager for a hosting company. In early 2002, Travis joined a Managed Service Provider as the leader of the service level and continuous improvement team, converting customer feedback into service improvements. Today, Travis conducts research with NetIQ customers, industry analysts, and partners to understand current Identity and Access Management challenges, with a focus on provisioning, governance and user activity monitoring solutions.

Travis is a regular columnist for Security Week Magazine and has been a speaker at Interop, RSA, itSMF and Gartner events among dozens of others. Travis is Expert Certified in ITIL and holds a BS in Computer Science from the US Naval Academy.