Dr Keith Nicholson
Chairman, Cyber Security Scotland
Dr Nicholson has worked in the cyber security field since 1992; initially as CEO of a first-mover ecommerce business and later as an Interim Director, a Non-Executive Director and Consultant. He acts as an independent cyber security and technology advisor with a range of clients that have included FTSE 250 companies; SMEs and several public bodies including NHS Scotland and the Scottish Government.
Keith was a contributing author to the Scottish Government Cyber Resilience Strategy and also co-authored a WannaCry impact assessment report for NHS Scotland. He is a member of the public-private sector National Cyber Resilience Leaders Board and Joint Chair of its Public Sector Steering Group. He recently founded Cyber Security Scotland; a non-profit independent advisory body offering specialist security and digital technology guidance.
John Swinney MSP
Deputy First Minister and Cabinet Secretary for Education and Skills, Scottish Government
Born in 1964, John Swinney joined the Scottish National Party in 1979 and went on to graduate from Edinburgh University with an MA (Hons) in Politics. He has worked for the Scottish Coal Project, Development Options and Scottish Amicable.
Prior to his election as Westminster MP for North Tayside in 1997, he held a number of posts in the SNP at local and national level. In 1999, he became the MSP for Tayside North, remaining as the constituency's MP until standing down from Westminster at the 2001 General Election.
Having served as the SNP's Deputy Leader since 1998 and became Leader in 2000. After relinquishing his post in 2004, Mr Swinney became Convener of the Scottish Parliament's European and External Relations Committee.
He was re-elected as an MSP at the 2007 Scottish Parliament election and appointed Cabinet Secretary for Finance and Sustainable Growth. Following the elections to the Scottish Parliament in May 2011, he was appointed Cabinet Secretary for Finance, Employment and Sustainable Growth.
As of November 2014, he became Deputy First Minister and Cabinet Secretary for Finance, Constitution and the Economy.
In May 2016, he was re-appointed Deputy First Minister, and is currently Cabinet Secretary for Education and Skills.
John has three children and is married to Elizabeth Quigley. He lives near Blairgowrie in his constituency and his hobbies include running, cycling and hill walking.
Director of Cyber Security, QA
Richard Beck (CISSP, CISM, CISA) is Director of Cyber Security at QA, responsible for the entire Cyber Security portfolio across the four QA divisions. He works with customers to build effective and successful security training solutions tailored for business needs. Richard has over 15 years' experience in senior Information Security roles. Prior to QA, Richard was Head of Information Security for four years at Arqiva, who underpin 20% of the UK's Critical National Infrastructure. Richard also held Security and Technical Management posts at CPP, GEC, Pearson and the Royal Air Force. Richard sits on a number of security advisory panels including IBM, BCS and EC-Council and previously chaired the Communication Industry Personnel Security Information Exchange (CPNI). Richard is also a STEM Ambassador working to engage and enthuse young people in the area of cyber security. Providing a unique perspective on the world of cyber security to teachers and encourage young people to consider a career in cyber security.
Lecturer, University of Aberdeen
Matthew Collinson is a Lecturer in Computing Science at Aberdeen. He has degrees in Mathematics, Mathematical Logic and Theoretical Computer Science from the Universities of Edinburgh and Manchester, but his current research focus is on investigating the complex interaction between human behaviour and cyber security policy. He is principal investigator for a large project Supporting Security Policy with Effective Digital Intervention (www.sspedi.co.uk) funded by the Engineering and Physical Sciences Research Council. He previously worked at Hewlett-Packard Labs, Bristol on advanced research projects in their Security and Trusted Systems Labs.
Senior Account Manager, Darktrace
Based in Castlefield, Bea Gully joined Darktrace in summer 2015, to develop the Northern sales. Bea’s experience is predominately in Networking and security, previously working alongside Pentesters to discuss how to best secure clients’ networks. Bea specialises in working with organisations across England and Scotland, within banking, telecommunications, Retail and Ecommerce.
Kevin Murphy CISM CRISC CISSP CIPM CEH LLB DipPSLM MA (Hons)
President, ISACA (Scotland)
An internationally award winning Cyber Security Consultant. Current President of ISACA (Scotland) and Vice-President of ISC2 (Scotland).
Previous Cybe rsecurity experience includes 8 years as a Police Officer where he was awarded a Chief Constable’s commendation and 4 years as part of KPMG’s award winning Cyber Security Team.
Kevin has authored two books on training and development and now works for a global bank as a Cybersecurity, risk and privacy specialist.
He is a noted speaker on the international security circuit and a regular contributor to leading cybersecurity, risk, and privacy publications.
Security Engineer, Check Point
Mark Menzies is a Security Engineer responsible for Scotland at Check Point Software Technologies. He is tasked with the technical enablement of Check Point security solutions with customers, including the latest Threat Prevention features and products including Anti-Ransomware and Check Point’s award winning Sandblast technology.
Mark Has several years’ experience at senior levels within Networking and Security vendors and holds a BEng in Software Engineering from Napier University, Edinburgh.
Chief Information Security Officer, Royal Bank of Scotland
Chris has a career that spans over 25 years in technology and has held a number of roles in both the public and private sectors. With experience ranging from micro electronics through to international telecoms systems and large, online transactional systems, his experience has resulted in him advising on how to secure some of the countries most critical assets. For the last 12 years Chris was a Technical Director at CESG (the UK’s national technical authority for information assurance) and in January 2016 moved to RBS as the banks CISO.
Bill Buchanan OBE
Professor of Computing, Edinburgh Napier University
Bill Buchanan is a Professor in the School of Computing at Edinburgh Napier University, and a Fellow of the BCS and the IET. He was appointed an Officer of the Order of the British Empire (OBE) in the 2017 Birthday Honours for services to cyber security. Currently he leads the Centre for Distributed Computing, Networks, and Security and The Cyber Academy (thecyberacademy.org). He has also published over 250 academic papers and 28 academic books. His main research focus is around information sharing, such as using Trust and Governance Policies, threat analysis, cryptography, Blockchain, e-Health, and triage within digital forensics. Bill regularly appears on TV and radio related to computer security, and has given evidence to both the UK and Scottish Parliament. He has been named as one of the Top 100 people for Technology in Scotland for every year since 2012, and was also included in the FutureScot "Top 50 Scottish Tech People Who Are Changing The World". Recently his work on Secret Shares received “Innovation of the Year” at the Scottish Knowledge Exchange Awards, for a research project which involves splitting data into secret shares, and can then be distributed across a public Cloud-based infrastructure. He was included in the JISC Top 50 Higher Education Social Media Influencers and has one of the most extensive Web sites for computer security education (asecuritysite.com).
Senior Sales Engineer, Okta
Anthony has 25 years of experience in the IT industry across a range of aspects of IT, with a good understanding of IT business from vendor and consultancy perspective as well as working in internal IT within organisations. Anthony has formal business education with a finance MBA from Manchester University. Anthony has experience of various aspects of IT including infrastructure systems and networks, and web and mobile based applications. Anthony has worked in a variety of roles including sales engineering, consultancy, support services and development work.
Anthony enjoys spending his free time with his family and occasionally escaping to the mountains to do snowboarding.
Public Sector Action Plan on Cyber Resilience, Scottish Government
Kerry Jardine is an information specialist at the Scottish Government with over 10 years of experience in supporting the development of Scotland’s multi-agency resilience and now in cyber resilience with the public sector.
After spending more than 17 years in a variety of information management, policy, research, communications and training roles, Kerry has extensive experience engaging with people at all levels in the public and private sector to improve the way they use information and in how they manage risk.
Kerry holds a BA in Business Administration and a MSc in Information Management.
National Information Security Consultant, NHS National Services Scotland
Colin is the national information security consultant for NHS Scotland and has over 15 years experience in the security industry both as a consultant and in permanent roles. Colin’s current focus includes cyber security of NHS Scotland national systems, security assurance of the Scottish Wide Area Network (SWAN) and helping NHS Scotland health boards to implement the Scottish Public Sector Action Plan for Cyber Resilience.
Head of European Cybercrime Centre, EUROPOL
Steven originates from Ayrshire in Scotland and was a Police Officer in Scotland from 1985-2015.
He performed a variety of senior Detective roles and worked in covert policing,major investigations, sex offender management,CT investigations, witness protection, cybercrime and cyber enabled crime including online child sexual exploitation.
He commenced as Head of EC3 in January 2016 and is responsible for the central collation of criminal intelligence on cybercrime across the EU,supporting member state investigations into Online Child Sexual Exploitation,Cyber enabled attacks on payment systems and Cyberattacks that impact on critical infrastructure and information systems.
He is also responsible for the Joint Cybercrime Action Taskforce (JCAT) a team of specialist cyber investigators seconded to EC3 from multiple countries,providing digital and document forensic support in complex cases across EU,strategic analysis of threats and trends,and liaison with industry, academia and non- law enforcement partners.
Dr Natalie Coull
Head of Division of Cyber Security, Abertay University
Dr Natalie Coull is the Head of Division of Cyber Security at Abertay University, and was responsible for developing their masters in Ethical Hacking programme and bachelors in Digital Forensics. Natalie has research interests in secure coding, digital watermarks and computer memory-based security concerns. Natalie is actively engaged in outreach, including promoting female participation in cyber security and leading a programme to provide Abertay student mentors for local school pupils as part of their National Progression Award in Cybersecurity.
Natalie graduated with a Doctorate in technology-enhanced education for software development from the University of St Andrews, which was followed by a Post-Doctoral post in the same area. Natalie was appointed as a Lecturer in Ethical Hacking in 2008 at Abertay.
Working with colleagues at Abertay, Natalie has begun to explore the role of computer games in cybersecurity training. In collaboration with Droman Crime Solutions Ltd., a leading strategic consultancy company in security and public safety, and Hyper Luminal, an applied serious games company, the team is developing a new kind of training environment to help the police deal with cybercrime.
Vice Convener of the Law Society of Scotland’s Technology Law and Practice Committee, and Partner for Addleshaw Goddard LLP
Helena is head of the Data Protection team at Addleshaw Goddard and has specialised in data protection, information IT and commercial law for over 15 years. Helena provides support to clients on data across all sectors and is currently leading a number of GDPR compliance projects in the financial services and fintech space, focusing on the unique issues presented by the use of data in financial services and payments.
Helena has extensive experience advising and delivering training to clients in banking and finance, public sector, media, healthcare, sports and charities sector on a full spectrum of data protection matters, including audit and policy implementation, international data transfers, PIAs, security reviews, contractual reviews, consent and database augmentation, subject access and defending Information Commissioner Complaints and investigations.
Helena also specialises in technology procurement and outsourcing, complex commercial contracts and intellectual property protection and exploitation, including database rights in the context of data protection. She is an elected member of the Law Society of Scotland’s technology committee, currently leading their guidance on cyber security. She is also a member of Scottish Financial Enterprise, the Society for Computers and Law and the Scottish Charities Finance Group.
Vice President Security Research, Trend Micro
Rik is one of the leading experts in information security. He is a Special Advisor to Europol EC3, a project leader with the International Cyber Security Prevention Alliance (ICSPA), and Vice Chair of the Centre for Strategic Cyberspace & Security Science.
In April 2011 Rik was inducted into the Infosecurity Hall of Fame.
As a presenter at global industry events such as RSA, Mobile World Congress, Virus Bulletin, RUSI and the e-Crime Congress, Rik addresses the challenges posed by emerging technology and online crime.
He is frequently interviewed by the BBC, CNN, CNBC, Channel 4, Sky News and Al-Jazeera English and is quoted by national newspapers and trade publications throughout the world.
Rik writes the Countermeasures blog and is the lead spokesperson for Trend Micro, he also writes regular columns for CIO, ZDNet, T3 and several other European publications.
In this position, Rik is actively engaged in research into online threats and the underground economy.
He also researches the wider implications of new developments in the Information technology arena and their impact on security both for consumers and in the enterprise.
With over twenty years experience in information security, Rik has been with Trend Micro since 2007.
Prior to assuming his current role he served as Security Infrastructure Specialist at EDS where he led the security design work for government projects related to justice and law enforcement and as Senior Product Engineer at McAfee focused on network security, intrusion prevention, encryption and content filtering.
Rik Ferguson holds a Bachelor of Arts degree from the University of Wales and is a Certified Ethical Hacker and CISSP-ISSAP in good standing.
Senior Sales Engineer, Sophos
John is a Senior Sales Engineer at Sophos and works with customers of all sizes and market verticals to discuss security and productivity projects. He specialises in Endpoint Security and Data Protection and is always happiest discussing a combination of these two methodologies. His 8 year tenure at Sophos has enabled him to understand a wide range of customer environments but loves being faced with a new challenge so please do ask questions!