Richard has over twenty years of experience as an information security professional, serving in executive and senior management positions, in the US and UK. His responsibilities have included the development and implementation of global information systems security management programs aligned with NIST CSF, ISO 27001:2013, elements of the NIST 800 series and HIPAA/HITECH. He has also created new corporate risk programs including the formation of a Board level Risk Committee; implemented new vendor management programs to track the compliance state of key vendors and data holders; completed the requirements, testing and installation of a state of the art security information and event management (SIEM) platform with IBM’s QRadar, QVM and Nessus; developed an information security awareness program, which included annual staff training; and developed two greenfield information systems security management programs.
Richard has served as Chairperson of the Communications and Public Relations Project Group of Interpol’s European Working Party on Information Technology Crime, as well as advising their Wireless Applications Security Project Group. He formed, the President of the United Kingdom and Bluegrass chapters of the Information Systems Security Association (ISSA) and was a member of the editorial advisory board for the ISSA Journal and SC Magazine UK.
He has received the Information Systems Security Association – International Fellow, 2015 and the International Information Systems Security Certification Consortium, Inc. (ISC)² President’s Award for service to the information security community in 2002 and 2004, 2009. He has been a Secure Computing (SC) Magazine Awards Judge for 2015 and 2016; a finalist for the Secure Computing (SC) Magazine UK’s, Best Information Security Manager and a finalist in 2005 whilst Director of Incident Response at Cable and Wireless. As Director of Incident Response at Cable and Wireless his team was also a finalist for the Secure Computing (SC) Magazine UK’s, Best Managed Security Service 2003.
He holds a Master of Science in Information Security from Royal Holloway, University of London and has been a senior instructor for the (ISC)² CISSP CBK seminar.