LOUD AND

      FAT

<--------------On the job!!!!!!!

Designed and programmed a security sub-system that allowed the popular ADABAS database (used by the stock exchange and many banks) to be secured by the leading security products Acf2 or Top-Secret. It was distributed with the products.

Accepted a position at KP/\/\G's London security team to take on the role of chief techie. I am definitely back

Played a part in two landmark legal cases

• Was our (i.e.Peats) security advisor on the Barings windup
• Expert witness on computer security in the cash-for-rides action (an extension of the Dirty Tricks campaign) between two major airlines. Misuse of the computer-held passenger lists was proved and an out-of-court settlement was reached in the UK

Worked as security advisor on the UK's first three Internet bank- Many more followed. Subsequently, each presentations starts with the strap that I had broken into more banks than Jessie James.

Author a number of papers and articles in the national press - some were read by some very important people. click here

Made my first £million - More correctly the security consultancy team that I now manage makes its first £million. Do I see any of it?

Highlighted and publicised the security flaws in WAP. Most notable was the WAP-gap. With various papers and presentations appearing on most manufacturers websites and university portals - oh how soon they forget.

Booked as a key note or guest speaker at InfoSec, CompSec, E-Security conference, BCS, White hats and RSA conference. Appeared on BBC news several times and a number of radio programmes. Articles appear in computer press and broad sheets including the Wall-Street Journal.click here

Arranged with a major manufacturer to do a series of security surveys on mobile commerce. They took forty pieces and did a really poor job consisting of a minor war-driving exercise with a unknown boutique supplier.

I ran the first UK Honeypot survey recording actual Wireless intrusive activity at multiple locations, correlated against accepted standards of intrusive behaviour This attracted attention world wide - and was source material for many government sponsored activity. click here

Designed the popular WIDZ IDS which seemed to be widely referenced by the likes of SecurityFocus, IEEE and honeypot.net plus many others.

Researched and released a number of zero day vulnerabilities including FATAJACK. This seemed to spawn a number of defense techniques and products in its own right

Studying these is now mandatory material for the CEH qualification.

Became the CISO of Interoute - Europes largest 4th generation network - probably one of the best jobs on the planet. Here I not only own the Information Security for the organisation and its immense network - I also own a multi-million $ MSS business (Managed Security Service ) with hundreds and hundreds of IDS, DDOS firewalls etc etc

Published my book How to Cheat at Managing Information Security - a well recieved practical guide for the newcomer to security.

And still manage to get my name in print in the London Times click here

To summarise - I have worked as a security manager, security consultant or security tester at or on behalf of:
Pru/Egg, Commercial union, TSB, Lloyds TSB, Co-operative bank/Smile, Halifax, Barclays, Bank of Scotland, RBS, CSFB, Barclaycard, Yorkshire Bank, Astra Zeneca, Czech National Bank, National bank of Greece, Meryll lynch, Sakura, Mercedes-Benz, BMW, NatWest, Fuji bank, Hiscox insurance, Nestle, HSBC National Audit Office, DKB bank, Cheshire building society, Alliance and Leicester, Deutsche Bank, British telecom, Cable & Wireless, TeleWest, EuroBel, AxA Insurance, Churchill Insurance, Esure, Std chartered bank, Hill-Samuael, NaB, EBRD, BIS. Hayes, DX, Various government Depts, Lombard Tricity Finance, MBNA, Newcastle Building Society, Woolwich building society, Cedel, Singer&Friedlander, BskyB, RailTrack And Interoute - my current home

[Back 2 LFB]