Ian Dalby, Global Information Security & Governance Manager, Dentons
Ian Dalby is the Global Information Security & Governance Manager for Dentons, prior to this Ian worked for number of public and private organisations in governance, risk, compliance and security roles. This included roles in Ford of Europe’s general counsel department, handling technical risk and compliance in M&A programs, more recently Ian worked in the... Ministry of Justice operational IT risk team and also as a consultant for Microsoft advising their larger customers on strategic security matters.
Steve Davies, Senior Manager - Cyber Security, DLA Piper
Transformational Cyber Security leader with a bias for action and ownership | Demonstrable track record in delivering game changing improvements which allow organisations to move fast safely | CISSP, CCSP, CISM, CISSP-ISAAP, GDPR, ISO27001
Erez Liebermann, Data Solutions, Cyber and Privacy Co-Chair and Partner, Linklaters
As a federal prosecutor, Erez spent 10 years investigating and prosecuting global cyber and white collar crimes. He served as Chief of the Computer Hacking and IP Section and Deputy Chief of the Criminal Division of United States Attorney’s Office for the District of New Jersey, where he oversaw over 40 prosecutors. As Chief Counsel, Cyber and Privacy for Prudential... Financial, Erez led a global team of lawyers on cyber and privacy matters, and built the High Tech Investigations Unit. He frequently worked with regulators and law enforcement on financial market resilience. Experience highlights: As Chief of the Computer Hacking and Intellectual Property Section, and National Security Cyber Specialist, Erez led ground breaking cyber prosecutions, including: > The largest credit card hacking case charged to date, US v. Vladimir Drinkman et al., relating to hacks into companies including 7-Eleven, JC Penney, Heartland Payment Systems, Hannaford Brothers, Jet Blue, and others. > The first hack and theft of internet telephony (VOIP), US v. Edwin Pena, and the use of hacking to facilitate securities fraud, US v. Christopher Rad. In 2020, he was appointed to the New York State Cyber Security Advisory Board by Governor Andrew Cuomo.
Sue Diver, Head of Information Governance, Simmons & Simmons
Sue has spent most of her working career in the financial and legal services sectors working at all levels across information governance, data privacy, information security, and financial crime disciplines. She is currently responsible for all aspects of information governance at Simmons & Simmons including (inter alia) maintaining compliance with international... data privacy legislation whilst developing the firm’s data strategy. Sue’s speciality and passion is in creating holistic and cross-functional teams that balance privacy & regulatory requirements, client confidentiality, and information security disciplines with the ambition to exploit data to create knowledge, products and services for the benefit of the Firm and its clients.
Mark Jones, CISO, Allen & Overy
Mark is an award winning CISO and risk management and security professional operating at executive level for the last 15 years with experience of leading large teams on both a global and national basis. His work has often focused on strategically defining and delivering Cyber and Information Security change. Somewhat unusually for a CISO his career experience... encompasses running both profit and cost centres as well as creating and deploying fundamentally new digital technologies (in the supply side of the technology industry with Fujitsu and ICL). These days his primary interests are enabling innovation, growing talented people and walking with Labradors.
Allan Campbell, CISO, Withersworldwide
A Certified Chief Information Security officer, Allan brings to the firm a wealth of data protection and information security experience from a number of industries. Allan’s sector experience has covered finance, manufacturing, media, retail and critical infrastructure. Representation on the Bank Of England cyber resilience working party was testament to his breadth... of security knowledge. Allan’s focus is to continue to strengthen the firm's resilience to ongoing cyber threats and to assist in protecting the confidentiality, integrity and availability of client and business data.
Andy Ng, EMEIA Data Protection & Privacy Consulting Leader, EY
As EY EMEIA Data Protection & Privacy Consulting Leader, Andy is responsible for an area of cybersecurity that helps clients make more informed decisions about their information assets, including strategic areas of data loss prevention (DLP), Cloud Access Security Broker (CASB), Information Centric Security and Alliances. With more than 15 years of experience... in the cybersecurity space, he previously led information protection and alliances capabilities across EMEA for a professional services organization, building a market-leading business in both areas. Prior to that role, he was responsible for identity and information protection solutions for financial services at a software company. Andy is a recognized thought leader in DLP and developed methodologies and leading practices that have been adopted by the market globally. He received an MSc in Music Technology from the University of York, UK and a BMus with Hons in Music & Chinese from Lancaster University, UK.
Nathan Hayes, IT Director, Osborne Clarke
Nathan is a senior executive with over fifteen years of experience in the strategic delivery of IT into numerous law firms including Osborne Clarke, CMS Cameron McKenna and Bevan Brittan amongst others. He is an active member of the Legal IT community and makes regular contributions at conferences and to a range of legal publications. Prior to moving into the legal... sector, he enjoyed extensive experience in a similar capacity within the global distribution sector. When away from the office, he can usually be found surfing whilst attached to a kite, and occasionally being dragged out to sea in a tangle of lines.
Dean Armstrong QC, Head of Chambers, The 36 Group
Dean is a leading authority in the UK on cyber law, with a growing reputation in all areas of the subject. He has advised international banks, large financial institutions, blue chip companies, and major institutions in the not-for-profit sector. He is co-author of Cyber Security Law and Practice (Lexis Nexis: 2017), an authoritative and thorough textbook. He is also... co-author of the first legal textbook written by counsel on distributed ledgers and cryptocurrencies: Blockchain and Cryptocurrency: International Legal and Regulatory Challenges (Bloomsbury Professional: 2019) which has been well received globally. Dean has recently co-authored two books on cyber litigation and cyber risks and insurance: Cyber Litigation: The Legal Principles (Bloomsbury Professional: 2020) and Cyber Risks and Insurance: The Legal Principles (Bloomsbury Professional: 2021). He is an expert on blockchain, smart contracts, ICO, data breach, sensitive personal data, GDPR, international data protection legislation and facial recognition. Dean is consulted by clients on the impact of Brexit on data regulation and how international firms should manage data across the world – including the increasingly complex area of international data transfer rules.
Jonathan Freedman, Head of Technology & Security, Howard Kennedy
Jonathan Freedman is the Head of Technology & Security of London law firm Howard Kennedy, with a background in Enterprise Architecture and systems engineering within the UK professional services sector spanning more than 18 years, now focusing on information and cybersecurity.
Working closely with teams from across the firm, his role includes both the selection,... development and implementation of new technology within the firm and leading the firm’s internal cybersecurity/cyber awareness programs. He holds multiple industry certifications including, CISSP, CGEIT, CCNA, CCNA Security, Certified Ethical Hacker, TOGAF, and ISO27001 with special interests in cybersecurity, ethical hacking & penetration testing, data protection, cryptography, secure systems design, mobile device security and technology innovation.
Dougie Grant, Senior Incident Coordinator, National Cyber Security Centre
Dougie Grant is a Senior Incident Coordinator at the National Cyber Security Centre (NCSC) in GCHQ. He has responsibility for coordinating the cross-agency and cross-government response in mitigating the impact of significant national Cyber incidents attributed to terrorism, hostile nation state, hacktivism and serious criminal activity. He has led the development... of several national projects to provide governance, coordination and containment in the response to the most serious cyber incidents and has led the specialist response to some of the most significant incidents in the UK over the last number of years. Douglas is a graduate of University College Dublin with a Masters (1st Class) in Cyber Crime and Forensic Computing and has a range of specialised professional qualifications. He is an associate University lecturer and a trainer for European and Global government agencies.
Ben Sigler, Partner, Stephenson Harwood LLP
Ben is a partner in Stephenson Harwood's commercial litigation team and heads its contentious data protection practice. He has extensive experience in all aspects of dispute resolution including arbitration, litigation, and regulatory investigations, and has a particular focus on the financial and technology sectors. Ben's data protection practice is wide ranging,... encompassing, amongst other things, advising clients in responding to major data security incidents and regulatory investigations, pursuing and defending civil proceedings in the data protection context, and advisory work on cyber-security related issues. This aspect of Ben's practice is complemented by his wealth of experience in advising both on reputation management and information law issues more generally and disputes in the technology sector, including in emergent technologies such as cryptoassets. Ben is recognised as a recommended lawyer in the Legal 500 for data protection. Ben's recent experience includes: - Advising a financial institution in relation to a data breach which resulted in hackers gaining unauthorised access to extremely sensitive personal data, including details of very significant transactions involving clients of the company, which resulted in a third party being exposed to a significant financial loss. This included advising on all aspects of incident response including making relevant notifications to affected data subjects, the ICO, insurers, and the police, and potential disputes with third parties. - Advising a listed financial services provider in relation to a data breach which had resulted in hackers gaining unauthorised access to the personal data of customers of over 5,000 merchants who used a payment platform operated by the client. This included advising on all aspects of incident response and potential disputes with third parties. - Advising a leading fitness company in relation to an investigation by the ICO into its direct marketing practices. - Advising a private equity fund in relation to a data breach which had been suffered by an investee company which had resulted in hackers gaining unauthorised access to personal data, including addresses and bank details, of various parties, including investors in the company. This included advising on all aspects of incident response including making relevant notifications to affected data subjects and the ICO.
Graham Cluley, Security Analyst, grahamcluley.com
Graham Cluley is an award-winning independent security blogger, researcher, podcaster, and public speaker. He has been a well-known figure in the computer security industry since the early 1990s when he worked as a programmer, writing the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows. Since then he has been... employed in senior roles by companies such as Sophos and McAfee. Graham Cluley was inducted into the InfoSecurity Europe Hall of Fame in 2011, and his claim to fame is that he is the originator of the saying that “the cloud is just someone else’s computer” (but he hasn't managed to make any money out of it) Graham can be heard each week on the award-winning "Smashing Security" podcast. Follow him on Twitter at @gcluley.