Bios and Abstracts

Keynote Speakers

Sessions


Keynote Speakers 

Ivo Opstelten

Minister of Security and Justice, Netherlands

After graduating, Ivo Opstelten worked for the municipality of Vlaardingen (1970-1972). He was then Mayor of, successively, Dalen (1972-1977), Doorn (1977-1980), and Delfzijl (1980-1987). In 1987, Mr Opstelten was appointed Director-General for Public Order and Safety at the Ministry of the Interior. He was Mayor of Utrecht (1992-1997) and Mayor of Rotterdam (1999-2008). He was acting Mayor of Tilburg from 2009 to 2010. In 2010, from 4 August to 4 September and then again from 13 September to 7 October, Mr Opstelten was the mediator in the negotiations that resulted in the formation of the Rutte-Verhagen government. From 14 October 2010 to 5 November 2012, he was Minister of Security and Justice in this government. On 5 November 2012, Ivo Opstelten was appointed Minister of Security and Justice in the Rutte-Asscher government.

Rob Wainright

Director, Europol

Rob Wainwright was born in 1967 in Carmarthen, Wales, UK.

Having graduated in 1989 from the London School of Economics, University of London with a BSc, he worked in the following ten years as an intelligence analyst in the UK in the fields of counter-terrorism and organised crime.

Between 2000 and 2003, Mr. Wainwright was the Head of the UK Liaison Bureau at Europol, and also responsible for the Europol National Unit in London. The Liaison Bureaux are a key link in Europol’s cooperation with the EU member states.

In 2003, he was promoted to the position of Director International of the National Criminal Intelligence Service (NCIS), where he was responsible for its international operations and for developing and implementing the UK strategy against facilitated illegal immigration.

Between 2006 and 2009, he was Chief of the International Department of the UK Serious Organised Crime Agency (SOCA). In this leading role, he was overseeing 20,000 law enforcement cases each year as well as establishing the international strategy and operational capabilities of the newly formed agency. His mandate extended from SOCA’s international operations and global partnerships to the worldwide network of SOCA liaison officers.

Mr Wainwright was appointed Director of Europol in April 2009. He is also currently an active member of the World Economic Forum, primarily on cyber issues.

Rob Wainwright is married with three children. He speaks English, Welsh and Spanish and his interests include history and literature.

Ray Mabus

Secretary of the Navy, USA

Ray Mabus is the 75th United States Secretary of the Navy and leads America's Navy and Marine Corps.

As Secretary of the Navy, Mabus is responsible for conducting the affairs of the Department of the Navy, including recruiting, organizing, equipping, training and mobilizing. Additionally, he oversees the construction and repair of naval ships, aircraft, and facilities, and formulates and implements policies and programs consistent with the national security policies established by the President and the Secretary of Defense. Secretary Mabus is responsible for an annual budget in excess of $170 billion and leadership of almost 900,000 people.

Upon assumption of office and throughout his tenure, Mabus has prioritized improving the quality of life of Sailors, Marines and their families, decreasing the Department’s dependence on fossil fuels, strengthening partnerships and revitalizing the Navy’s shipbuilding program.

Leading the world's only global Navy, Mabus has traveled nearly 715 thousand miles to over 95 countries to maintain and develop relationships with national and international officials and visit with Sailors and Marines forward deployed or stationed around the world. He has traveled to Afghanistan on 11 separate occasions, in recognition of the sacrifice and service of Sailors and Marines deployed in combat zones.

To prepare service members and their families for the high tempo operations of today’s Navy and Marine Corps, Mabus announced in 2012 the “21st Century Sailor and Marine” initiative, designed to build and maintain the most resilient and ready force possible.

Mabus also directed the Navy and Marine Corps to change the way they use, produce and acquire energy, and set an aggressive goal that no later than 2020, the Navy and Marine Corps obtain at least 50% of their energy from alternative sources. In pursuit of that goal the Department has achieved several milestones. In 2012, President Obama announced in his State of the Union address that the Department will purchase or facilitate the production of 1GW of renewable energy for use on Navy and Marine Corps installations. The Navy also demonstrated the Great Green Fleet in 2012, a carrier strike group in which every participating U.S. Navy ship and type of aircraft operated on alternative energy sources including nuclear energy and biofuels.

Secretary Mabus has made increasing the size of the naval fleet and protecting the industrial base a top budget priority of the Department. During his tenure, the Navy went from building fewer than five ships a year to having more than 40 ships under contract, most of them in fixed-price, multi-year deals that assure value for taxpayers, certainty for industry partners and strength for our nation.

In June 2010, as an additional duty, President Obama appointed Mabus to prepare the long-term recovery plan for the Gulf of Mexico in the wake of the Deepwater Horizon oil spill. Mabus’ report was released in September 2010 and met with broad bi-partisan support with most recommendations passed into law by Congress as the Restore Act. Included in the legislation was a fund to aid in the Gulf Coast’s recovery by distributing 80 percent of any civil penalties awarded as a result of the damage caused by the disaster. To date, civil penalties total more than one billion dollars.

Before his appointment, Mabus held a variety of leadership positions. From 1988 to 1992, Mabus served as Governor of Mississippi, the youngest elected to that office in more than 150 years. Mabus was Ambassador to the Kingdom of Saudi Arabia from 1994-1996 and later was Chairman and CEO of a manufacturing company.

Mabus has been recognized for his leadership of the Navy and Marine Corps on multiple occasions. In 2013, he was named one of the top 50 highest rated CEOs by Glassdoor, an online jobs and career community. Mabus was the only leader of a federal agency to receive this award.

Secretary Mabus is a native of Ackerman, Mississippi, and received a Bachelor's Degree, summa cum laude, from the University of Mississippi, a Master's Degree from Johns Hopkins University, and a Law Degree, magna cum laude, from Harvard Law School. After Johns Hopkins, Mabus served in the Navy as an officer aboard the cruiser USS Little Rock.

Sessions

Session 1

Panel Discussion: The future of Security Technology

Speakers:

Ray Mauritsson, CEO, Axis Communications, Sweden
Roland Y. Billeter, President Continental Europe, Tyco Integrated Fire & Security Germany
Ruben Wegman, CEO, Nedap Security Management, Netherlands

Moderated by Briam Sims, Media Solutions Manager (Security and Fire Portfolio), UBM Live, UK

 

Abstract
An overview of the security solutions market in 2014, including present developments/trends and those likely to occur in the near future. Subjects covered will include Physical Security Information Management, integrated platforms, networked solutions and bridging the gap between the worlds of IT and physical security.

Biography - Ray Mauritsson
Ray Mauritsson was appointed CEO of Axis AB in 2003, but has been with the company since 1995. Over the years Mr. Mauritsson has held a number of executive positions within the company. The first assignment at Axis was to lead the development of a new product category from Axis, Storage servers. Later as head of the Storage product division, Mr. Mauritsson was responsible for establishing the division and had overall responsibility for development, sales and marketing. Furthermore, Mr. Mauritsson has been overall responsible for Axis OEM business, managing a business development team and an engineering team working with global customers such as Canon, Toshiba and HP.

Prior to joining Axis, Mr. Mauritsson held a number of management positions at the Swedish company TAC (today part of the Schneider group), a company focusing on building management systems within HVAC and access control.

Mr. Mauritsson has an MSc in Engineering Physics from Lund Institute of Technology, and an Executive MBA from EFL, Lund, Sweden.

Mr. Mauritsson is a member of the Board in the Swedish company HMS Industrial Networks AB.

Biography - Roland Y. Billeter
President of Tyco’s TIF&S business in Continental Europe. Full P&L responsibility ($ 1 bn) 5000 employees. Includes MD positions in Germany and board functions in multiple countries.

Education & degrees: University of Zurich ; Switzerland; business economy; enterprise management, strategy, marketing & IT - University of Zurich; Switzerland; molecular biology

Last positions: Tyco International: GM ADT Continental Europe, TFS Germany, General Manager & Managing Director; Proficiency Group, General Manager EMEA & MD; MatrixOne, Sales Director EMEA; Siemens Information & Communications, Member of SLT for BD/Strategy; Siemens Business Services, Member SLT, Marketing / BD / Strategy.

Biography - Ruben Wegman
Ruben Wegman (1966) is CEO of Nedap N.V., a diversified Dutch high-tech company listed on the Euronext Stock Exchange, a position he holds since 2009. Mr. Wegman joined Nedap N.V. in 1997 when he became managing director of Nedap CTP, a 100% Nedap subsidiary focused on the automation of petrol stations. In 1999 Mr. Wegman became responsible for Nedap’s Security Management activities. In 2002 he has been appointed to the board of directors of Nedap N.V.

Prior to joining Nedap Mr. Wegman held various commercial and management positions at Shell. Mr. Wegman holds an MSc in Computer Science from Nijmegen University in the Netherlands.

Session 2

Intelligence Applications & Intelligence Led Decision-Making for Security Professionals

Speakers:

Erik de Vries, CPP, Director, DutchRisk, The Netherlands
Dick Oey, CPP, Board Member, European Security Intelligence Foundation, The Netherlands

Abstract
While complexity of companies increases, management decisions cannot be based on a singular operational conclusion. Networked systems, Cybercrime and Social Media make it difficult to decide what’s important and challenging to develop an effective security strategy. Intelligence Led Security Decision-making provides a framework reducing uncertainty, answering these questions: 1. Do you know all you need to know before making a strategic decision? 2. … What you don’t know? 3. … Where to find what you need to know? 4. … What to do with the information once you find it? The presentation focuses on embedding intelligence in corporate security functions.

Biography - Erik de Vries
Erik de Vries, CPP is owner/director of DutchRisk bv, partner in European Security Academy and chairman of the ASIS Benelux chapter. He advises, trains and coaches clients (varying from multinationals to SME’s) to balance their risks with their security ambition. An important part of his work is coaching security departments to develop a 21st century security strategy. Following a fifteen-year career as an officer in the Royal Dutch Army and a three-year intermezzo selling timesharing and living in Indonesia, Erik has more than fifteen years of experience in the security profession. His experience includes several operational roles in G4S, including prisons and consultancy as well as conducting CPP certification courses. He also trains and advises Management Teams and security managers on Crisis Management.

Biography - Dick Oey
Major (ret.) Dick Oey, M.Sc., CPP, CCIA is an experienced criminal investigator and retired senior Intelligence Officer who has fulfilled high profile investigative and management roles in Law Enforcement, Intelligence and Special Forces operations. He is a board member of the European Security Intelligence Foundation and has privately consulted for the US Marine Corps, various Law Enforcement Agencies and Industry. He specializes in Advanced Intelligence Methodologies and provides out of the box solutions for complex security and intelligence challenges.

Session 3

Virtual Currencies: Safe for Business and Consumers or just for Criminals?

Speaker:

Erik R. Barnett, Attaché to the EU, Ice Homeland Security Investigations, Belgium

Abstract
There is a significant risk of large-scale criminal use of crypto-currency because of a lack of critical industry-based checks against money laundering, absence of universal regulation, business models that feature decentralized administrations, and the lauded anonymity of internal crypto-currency transactions.

The use of crypto-currency in the sale of illegal narcotics as well as other illicit goods and to hide transactions that support criminal activity and possibly terrorist financing is challenging the ability of criminal investigators and financial regulators to combat transnational serious organized crime and international terrorism.

This presentation identifies four solutions that will aid in preventing virtual currencies from exploitation by transnational criminal or terrorist organizations. Concomitantly, these solutions would help enhance the trust and reliability of crypto-currencies as conduits of online commerce.

Biography
Erik Barnett is the Attaché to the European Union for ICE Homeland Security Investigations (HSI), the second largest federal law enforcement agency in the United States. Mr. Barnett’s responsibilities include policy and operational guidance on child exploitation, counter-proliferation, intellectual property theft enforcement, human rights violations and war crimes, narcotics trafficking, money laundering, and transnational criminal enterprises.

Mr. Barnett previously served as an Assistant Deputy Director of ICE, with specific responsibility for the Customs portfolio.

Prior to joining ICE, Mr. Barnett was a federal prosecutor for eight years with the U.S. Department of Justice, where he handled cases involving transnational crime, public corruption, and violent offenses among others. Mr. Barnett received a Director’s Award for Superior Performance as an Assistant U.S. Attorney.

In 2007, Mr. Barnett was appointed by the Deputy Attorney General of the United States to serve as a legislative fellow for the Judiciary Committee of the United States Senate. Mr. Barnett was subsequently appointed by the Assistant Attorney General as a Deputy Chief in the Department of Justice’s Criminal Division, working on international criminal matters.

From 1995 – 2002, Mr. Barnett was a state prosecutor and before his career as a prosecutor, he worked for two members of the United States House of Representatives.

From 2003 – 2008, Mr. Barnett was an adjunct professor at The George Washington University Law School and at Georgetown University’s law school from 2008 until 2011. Mr. Barnett graduated from California Western School of Law in 1993. He has taught college level courses on criminal justice matters since 2004.

His offices are a part of the U.S. Mission to the European Union.

Session 4

The True Cost Of Information Security Breaches - A Balanced View

Speaker:

Michael Krausz, Owner, i.s.c., Austria

Abstract
The security industry tends to overstate breach or incidents costs while business functions usually underestimate direct and indirect cost. The talk addresses this discrepancy and helps CISOs and CSO to educate business functions and helps CFOs, COOs and CEOs with their understanding of unwanted or hidden consequences of a breach. The talk will also present a calculation model to estimate breach costs for use during incidents. All examples presented will be from real-life cases.

Biography
Mr. Michael Krausz studied Physics, Computer Science, and Law, is an ISO 27001 Lead Auditor and certified professional investigator. He advises global corporations on information security and compliance issues and has served customers in 16 countries so far. Mr. Krausz is a member of ISO's ISO 27001 working group, and has published four books related to information security topics.

Session 5

What Keeps CEOs Up At Night?

Speaker:

Nadia van der Merwe, Associate Director, Control Risks Benelux B.V., The Netherlands
Caroline ten Thije-Gerding, Senior Legal Counsel and Compliance Officer, APM Terminals, The Netherlands

Abstract
Increasingly, concerns about corporate corruption deprive CEOs of their much needed sleep. Within the context of the emerging international legislative framework prosecutors are collaborating to pursue major cases across borders. The penalties include prison and fines. Additionally, investigating bribery can be expensive, and prosecution almost inevitably results in damage to the corporate brand. The presentation will discuss the ramifications of the emerging international framework, recent changes and precedent. It will present case studies showing Dos and Don’ts and how multinationals are effectively tackling corruption with practical up to date solutions.

Biography - Nadia van der Merve
Nadia van der Merwe is Associate Director for business intelligence in Control Risks Benelux’s Corporate Investigations division. Nadia has more than 10 years’ risk advisory experience, with a focus on advising companies active in challenging markets. Nadia also has significant expertise in advising on and implementing programmes to manage the challenges posed by international legislation such as FCPA and the UK Bribery Act. Nadia’s areas of expertise include employment screening and due diligence. She has responsibility for advising clients on a range of business intelligence, investigative due diligence and litigation support assignments, with a focus on the Benelux. Nadia earned a bachelor’s degree in Social Science from the University of Pretoria, an honours degree in Psychology from the University of South Africa, an honours degree in Criminology from the University of Pretoria and completed her MSc degree in Forensic Psychology and Criminology (Open UK).

Biography - Caroline ten Thije-Gerding
To come.

Session 6

Identifying and Mitigating Bribery and Corruption Risks in Overseas Markets

Speaker:

Dr. Christoph Rojahn, Director (Forensics), Deloitte AG, Germany

Abstract:
The risk landscape for international business is changing. Whereas in the past, employee fraud was frequently very much the focus when it came to crime prevention and detection, complex regulatory regimes and increasing enforcement activities by state authorities mean that bribery and corruption expose companies to significant risks as evident from the very substantial fines imposed upon a number of multinationals. This presentation will look at ways in which corporate security can be utilized to prevent, identify and investigate bribery and corruption and contribute to overall risk mitigation.

Biography
Dr. Christoph Rojahn is a Director with the Forensics department of Deloitte & Touche in Germany, specializing in complex and multi-jurisdictional investigations. He is a graduate of the universities of Oxford, Birmingham and Munich as well as the ASIS/Wharton Program for Security Executives. He was previously responsible for internal investigations and security threat monitoring of one of the world's largest financial services providers. Dr. Rojahn has worked for several specialized consultancy firms as well as a German intelligence service. He is a former ASIS RVP - Region 28 and currently serves as European Intelligence Liaison Representative on the European Advisory Council of ASIS. Dr. Rojahn has lectured and published extensively on issues like investigations, intelligence and terrorism.

Session 7

Going For Gold: Security Convergence - a Proof of Concept

Speakers:

Volker Wagner, Senior Vice President Group Business Security, Deutsche Telekom AG, Germany
James Willison, Founder, Unified Security Ltd, UK

Abstract
Security as a design principle that is part of daily business while being accepted as a shared responsibility - this is security convergence. Yet it remains a challenge to prove that it works. Therefore we would like to demonstrate two examples from the real world showing how convergence can be practiced. We also developed a tool demonstrating that convergence reduces risks for the benefit of all. The ASIS European Convergence/ ESRM Subcommittee was nominated for the Security Excellence Awards 2013 in the category ESRM Project of the Year. How did we do it? Come and find out, join our session.

Biography - Volker Wagner
Since 2008 Volker Wagner has been in charge of the realignment of Group Business Security at Deutsche Telekom AG. As Senior VP he deals internationally with the group’s security and Business Continuity Management and is therefore responsible for business security in over 50 countries. He as well held leadership functions in the areas of finance, sales and audit. Volker Wagner is the chairman of the German Association for Security in Industry and Commerce (ASW) and a board member of German Association for Security in the Economy North Rhine-Westphalia (VSW-NW) and the Committee on Security Issues (AfS) of the Federation of German Industry (BDI). Internationally he is engaged in the ASIS International organisation where he is a member of the German Chapter, the international CSO Roundtable and the European Convergence Subcommittee. In 2010 Volker Wagner attended the Federal College for Security Studies in Berlin and holds a Business Management degree.

Biography - James Willison
James Willison is vice chair of the ASIS European Convergence/ESRM subcommittee and has been a member of ASIS since April 2003. He worked in the Physical Security Industry for 15 years and as Founder of Unified Security Ltd now specialises in the Converged security area. Since 2002 he has worked closely with global security leaders from the traditional and digital arena and has a Master’s degree from Loughborough University for his research on, “The case for the Integration of Corporate Physical and IT security.” He is also Convergence Project Lead for the Information Security Awareness Forum, a member of the Security Institute and ISC(2) London and an Imbert Prize winner.

Session 8

Managing your Marketability and Brand in an ever increasing competitive jobs market.

Speakers:

Mike Hurst, Director, HJA Fire & Security, UK
Graham Bassett, Director, gbruk limited, UK

Abstract
In this session Mike and Graham will highlight ways to enhance your visibility and career prospects ...how to gain a competitive edge when going for a new, job, when networking, in your CV and at interview, by developing Brand You.

Biography - Mike Hurst
Mike Hurst has over 20 years experience of recruiting in the security industry and is a director of HJA Fire and Security a specialist recruitment consultancy and Hurst Talent Acquisition. He has written numerous articles for security publications and edits the UK Chapter Newsletter. He is Vice Chairman - Strategy of the ASIS UK chapter.

Biography - Graham Bassett
Graham Bassett has spent some 25+ years in the security recruitment sector and is Managing Director of GBRUK Ltd, who are a niche recruitment provider. Graham is also Vice Chairman – Operations of ASIS UK, Chairman of London Project Griffin Executive Board and is involved in many other industry initiatives - he has written various press articles/features.

Session 9

The Dark Web - the saviour of free expression or a criminal playground?

Speaker:

Peter Davies, Outgoing Chief Executive Officer, UK Child Exploitation and Online Protection Command, National Crime Agency, UK

Abstract
Invented as a means of protecting freedom, the “Dark Web” - a managed network of private computers configured to minimise the risk of surveillance and capture - is now used heavily by the most technically proficient, serious organised criminals. It’s a preferred choice for transactions in paedophile material, guns, drugs and stolen information. It’s also, therefore, a major strategic threat to the protection of assets as well as society. Against the backdrop of Snowden, debates about access to communications data across the world, and new risks such as BYOD, the chances of tackling Dark Web activity seem slender and inversely proportionate to the threat.

As a challenge in identifying, understanding and managing risk, the Dark Web could be about as tough as it gets. How seriously should the security community take this, and what if any mitigations can be found? The answers may lie in our discussion.

Biography:
For the last three years Peter Davies was Chief Executive Officer of CEOP, the UK’s Child Exploitation and Online Protection Centre, and a Director of the UK’s National Crime Agency and its predecessor the Serious Organised Crime Agency. Prior to that, he gained wide experience as a chief police officer dealing with protective services in two police forces, and also had operational responsibility for tackling regional serious organised crime threats. He has led a wide variety of major, serious and organised crime enquiries at strategic level, and commanded critical incidents ranging from terrorist arrests to coastal flooding.

Peter has been National Policing Lead on Security Industry Liaison for ten years and has also led innovations in extending the police family (introducing Police Community Support Officers and Community Safety Accreditation Schemes), in addition to his recent national role in child protection and abuse investigation.

Session 10

The Reality of Convergence: How to Prepare for a Multifaceted Attack

Speaker:

Dan Solomon, Director, Cyber Security Division, Optimal Risk Management, UK

Abstract
By reviewing a real example of a persistent attack the audience will become more familiar with the reality of convergence and the imperatives for preparation and security. Presenting a blueprint of a complex multi-phase attack, will introduce the reality of converged attacks to the audience in a unique way that demonstrates how inter-dependencies represent vulnerabilities to a sophisticated attacker. Thereafter, reviewing the step-by-step response to such an attack and highlighting lessons that should be learned about first response, situational analysis, managing complexity, and managing post-attack consequences. Concluding with principles of good preparation, security organization, and a proactive approach.

Biography
Dan Solomon heads the Cyber Risk and Security Services division at Optimal Risk. He is a leading proponent of a converged approach to security risk and brings an experienced team of security professionals, experienced globally in testing and building cyber and physical security on converged principles. He is an industrial espionage specialist and a practitioner of FAIR, and is a prominent advocate of red teaming. He joined Optimal Risk in 2013, after 3 years as a Senior Partner at Hawk ISM, during that time he also served as Director of the Homeland Security Program at The Atlantic Council UK. He has published & spoken around the world on the Intelligence Analysis & National Security, Future of Terrorism, Proliferation, Conflict in the Middle East, Critical National Infrastructure Protection, and Enterprise Security Risk Management.

Session 11

Curbing Small Weapons

Speaker:

Prof. Joris Voorhoeve, Professor of International Organisations, The Hague University of Applied Sciences and Leiden University, The Netherlands

Abstract
Small and light weapons are, as a category, a weapon of mass destruction in slow but constant motion, with which every year on average 300,000 people are killed in war and civil war and 200,000 by crime and accidents. The new UN Weapons Treaty of 2013 is utterly deficient by not regulating these weapons and their munitions effectively. In this presentation I will present various requirements to make the treaty less ineffective.

Biography
Former Minister of Defence of The Netherlands. Formerly Economist, Policy Planning Division, World Bank. Chair, Advisory Council on Peace and Security, The Netherlands. Chair of Oxfam International. Born 1945.

Session 12

Shrinking World; Expanding Risks – The Development of High Risk Travel Training

Speakers:

Paul Eddings, CPP, Head of Security Operations, Abu Dhabi National Energy Company (TAQA), UAE
Angela Osborne, Security Intelligence Analyst, Abu Dhabi National Energy Company, UAE

Abstract
Most travel trainings offered in the market fall into two categories: low risk travel and very high risk travel, often called Hostile Environment Awareness Training (HEAT). The problem is that neither fits for preparing a wide number of employees for potentially high risk travel. TAQA leveraged in-house capabilities to create a tailor-made program relevant to our risk exposure. From 2012 to 2013, the training became a recognisable safety measure for employees around the globe. The program provides security guidance, access to medical resources, and situational awareness techniques. It also offers a blueprint for security departments seeking to increase traveller safety.

Biography - Paul Eddings
Paul Eddings, CPP is the Head of Security Operations for the Abu Dhabi National Energy Company. A former Royal Marine, he worked as a Military Training Advisor in the Gulf region. He joined TAQA in 2009. He leads initial security assessment and on-going security support for a range of facilities across the energy sector in Europe, the Middle East, and North America. Paul has been an integral part of TAQA’s Travel Risk Management (TRM) program implementation.

Biography - Angela Osborne
Angela Osborne has worked as TAQA’s (Abu Dhabi National Energy Company) Security Intelligence Analyst since 2009. She holds an MA in Security Studies with a concentration in Intelligence from Georgetown University’s School of Foreign Service. In 2011, she published her thesis Spies Who Stay Out in the Cold: Looking to Soviet Illegal Operations for the Future of Non-official Cover. She currently serves at the Treasurer of the newly founded Abu Dhabi ASIS Chapter.

Session 13

The Insider Threat: Protecting Information Assets in a Global Environment

Speaker:

Brendan Healy, Vice President, Business Unit Information Security Officer, Morgan Stanley, USA

Abstract
In a global environment, protecting our information assets from threat actors is a significant challenge. We will focus on identifying the threats from internal sources and motivations associated with exploitation of corporate data. Using sound methodologies from traditional security risk programs along with the implementation of technology and policy, we will discuss ways to identify potential information breaches, and harden your environment to prevent data leakage incidents. Additional focus will touch upon the regulatory challenges faced across jurisdictions when building out an information protection program.

Biography
Brendan Healy is a Vice President, and Global Business Unit Information Security Officer at Morgan Stanley. He manages an Information Security and Data Leakage Program for the Corporate and Post-Trade Technology division which spans across 15 countries. In industry, Brendan serves on the FBI’s InfraGard National Board of Directors, and recently completed the inaugural session of the FBI’s National Cyber Executive Institute in Quantico, Virginia, USA. He holds a BBA in Information Systems from Hofstra University, an Advanced Graduate Certificate in Enterprise Risk Management from New York University, and an MS in Protection Management from John Jay College of Criminal Justice. He maintains his Certified Information System Security Professional (CISSP) certification from ISC(2), and is Certified in Risk and Information System Control (CRISC) from ISACA.

Session 14

Cybercrime Is Huge and Getting Bigger - But Then Why Wouldn't It?

Speaker:

Martin Smith MBE, Chairman & Founder, The Security Company, UK

Abstract
The market is moving online and the thieves are, of course, following. But the security industry remains rooted in the past, hanging on to traditional methods for protecting assets and sticking with known techniques for investigating loss. It must embrace the new technology, not shy away from it, and follow the criminal into his new patch - the cyberworld. The greatest danger we now face is our fear of change.

Biography
Martin Smith gained his degree in behavioural psychology before spending 15 years as a commissioned officer in the Royal Air Force, mainly assigned to counter-espionage and counter-terrorism duties. After being awarded membership of the Most Excellent Order of the British Empire for this work. He joined Touche Ross Management Consultants before becoming the Senior Director of Corporate Security for Kroll Associates. He then joined Standard Chartered Bank as Head of Information Security before forming The Security Company Limited. He is a Fellow of The Security Institute, Freeman of the Worshipful Company of Information Technologists and Chairman and Founder of the Security Awareness Special Interest Group. He is an active member of ASIS International Europe, the Information Assurance Advisory Council, and EURIM–The Information Society Alliance.

Session 15

Securing Security Adverse Organisations

Speaker:

Nicolas Le Saux, CPP, CEO, ATAO CONSULTING, France

Abstract
How to overcome the cultural resistance of security-shy organisations and succeed in implementing cost effective security programs that actually work? Safety of their personnel and assets is important to NGOs, trade-unions or religious organisations alike; however, their ethos and culture make it too often hard for them to actually implement efficient security programs. This fast-paced presentation will take you from a shared, bought-in “as-is” diagnostic to the implementation journey to a “to-be” security target. Three case studies (a health-care NGO, a trade union and a church) will highlight this transformational journeys leveraging POA best practices mixed with change management techniques. Biogaphy: Nicolas Le Saux is a recognized expert in the security and safety field. His past experience includes a partnership at Accenture and several senior risk management positions. He is a board member of USP the French private security professional organization and serves as RVP for ASIS International Region 9A (UK, France, Benelux and Ireland). He has also been appointed by the Interior Ministry as a member of the licensing and control commission of the Private Security Regulatory Body (CNAPS). He holds a reserve commission as a senior officer in the French Army, specializing in high level security and policing issues and also served as a professional soldier. He is CPP certified. He runs a security group listed among the top 30 French security companies with subsidiaries in guarding, security consulting and training.

Session 16

Applying Different Definitions of Deviant Behaviour in Your Concept of Operations

Speaker:

Jeroen van Rest Sr., Senior Consultant, TNO, Netherlands

Abstract:
Deviant behaviour is used to get specific early warning signs on security incidents in open compartments. There are multiple different definitions of deviant behaviour, which have different applications and consequences when used in the security domain. Several aspects will be covered, e.g. ethical, psychological (both behavioural and social) and statistical. This original research has been validated in the ERNCIP Surveillance working group, the EU KP7 TACTICS project, and in the Dutch national research program on Object Security. The purpose of this presentation is to educate the audience about using deviant behaviour in their concept of operations.

Biography
Jeroen van Rest MSc. is based at TNO The Hague, The Netherlands. He has a background in Computer Science and presently holds a position as senior consultant in the field of security, sensors and privacy. He is a member of the Surveillance working group of the ERNCIP network. In the past ten years Jeroen has worked in the areas of fighting child pornography, security of soccer stadiums, high-risk objects, terrorist threats on urban environments, harbour security and airport security. He contributes from a knowledge in the fields of artificial intelligence, ICT, system engineering, signal theory, decision theory, behavioural psychology and privacy. He is the lead consultant or project leader in several recent projects about deviant behaviour, privacy-by-design, surveillance metadata and the security roadmap of the Dutch top sector High-tech Systems & Materials.

Session 17

Post Olympic Review of Public/Private Partnership Communication Initiatives (CSSC)

Speaker:

Don Randall, Chief Information Security Officer, Bank of England, UK

Abstract:
Following the local, national and international success of both the Sister Banks and Project Griffin initiatives, these were developed as baseline idea for Olympic and legacy public/private sector communication. CSSC was utilised prior to the games, during the torch relay, the games themselves and subsequently as a legacy initiative. CSSC provides law enforcement two-way communication with the private sector for emergency purposes. It has created 30 industry sector leads whom upon receipt of the message share with their industry colleagues. It is estimated circa. 7.5 million people/business in London receive this awareness/preventative message within 30 minutes of its initiation.

Biography
Don Randall served with the City of London Police 1969-1995, with specific emphasis on fraud and counter terrorism. Don was Managing Director at JPMorgan Chase from 1995. In 2008 Don became Head of Security at the Bank of England. Don is chairman of the ‘Sister Banks’, City of London Crime Prevention Association, ‘Project Griffin’ and London Resilience Business Sector Panel. He is a member of the City of London Crime Disorder Reduction Panel, London First Security Advisory Board and London Resilience Board. Co-founder and Vice Chairman of the Cross Sector Safety & Security Communications initiative. Don is an external lay member of the City of London Police Committee. A committee member of the Security Industry Authority Transition Steering Group and one of two private sector representatives on the Home Office Steering Group for the same. Don was elected Chairman of the Global Banks Heads of Security Group in 2013.

Session 18

Cyber Security - It's About the Human

Speaker:

Jonathan Nicholas, Information Security Officer, General Dynamics European Land Systems, Switzerland

Abstract
Cyber Security is usually part of IT. Technicians manage sophisticated systems to stop intrusions and ensure that information and services are reliable and available to the right people. However, hackers are now using social engineering to infiltrate systems so cyber security needs to change. Modern Cyber Security professionals should be more like Security Officers. They need to check the perimiter (penetration tests) patrol the site (scan for vulnerabilities), enforce access control and monitor the assets. Most importantly, be visible and communicate with the users. This paper explains how focussing on the human can make you more secure.

Biography
Jonathan Nicholas worked many years ago in physical security operations, access control and fire protection for the UK company Thorn EMI in London and Hong Kong. He then moved to IT and in the late 1990s was one of the founders of an Internet Service Provider in Geneva, Switzerland. He became more involved in IT Security and worked for the consultants Cap Gemini on a banking project in Zürich. He became CISSP certified and is now the CISO for General Dynamics European Land Systems based in Kreuzlingen. But he has nor forgotten his roots in security operations.

Session 19

Internal Investigations in an International Environment

Speaker:

Oliver C. Fein, Executive, Major German Technology Company / Chapter 251 Germany

Abstract
The presentation is based on a close examination of running internal investigation cases internationally. The traditional internal investigation is focused rather on local petty crime instead of fraud and corruption in an international arena. This presentation is aiming on the international aspects of internal investigations, and points out how to master the discipline of interviewing/interrogation. This is the best example for revealing the necessary soft skills and emphasizing challenges in investigative tasks. Since most pitfalls and complications are avoidable with an improved awareness for cultures, legal systems and compliance policies, it is worthwhile to have a look from that angle.

Biography
Intelligence Officer of the German Armed Forces (12 yrs) MBA (Managing across cultures, 2yrs) Executive Corporate Security (international affairs, 3 yrs) Head of Corporate Security Bosch ST (2 yrs) Executive Internal Investigations Robert Bosch GmbH (2 yrs).

Session 20

The Sinking of an Oil Platform - A Crisis Management Event

Speaker:

Shawn Winter, Health, Safety, Security & Environmental Consultant – Independent

Abstract:
Events followed in rapid succession, escalating and complicating the problems as situation became increasingly perilous. In the few minutes all of us began to comprehend the full scope of the crisis. Once we understood it, we realized that the event become one of survival. The fog of communications & responsibilities occurs in any crisis, what happens when key personnel are injured for Command & Control? Testimony from a survivor onboard when the oil platform sunk and how these lessons learn will apply to any corporations.

Biography
35 years of progressive Operational and Directorship in formatting policies within the Private Sector (CEO), Federal Government and Military at Echelon1 Staff Level primarily in multi-functional logistician-transportation (aviation & maritime), environmental, health safety, security and business development. In the private sector since 2005, worked for Major Corporations throughout EAME and been involved in two hostage negations in Somalia. Prior, he was the Anti-Terrorism & Force Protection Director for Europe & Africa at Military Sealift Command for 5 years. Upon accepting this position, he retired from the US Navy after 30 years with his last assignment was with the NATO Strike Force - Special Operations Command, Allied Forces Southern European Command in Naples, Italy. Additionally he has been assigned to nine different Olympics Games since 1980 and since the 2006 he has assisted NBC-News during their coverage. He holds two Bachelors and one Masters Degree.

Session 21

Case Study: Nuclear Security Summit 2014 The Hague

Speaker:

Arjan Jonge Vos, Programme Manager Security NSS2014, Ministry of Foreign Affairs, The Netherlands

Abstract:
Just a few days prior to the ASIS-conference the Nuclear Security Summit 2014 (NSS2014) was held in the same venue. NSS2014 is an initiative of President Obama aimed at preventing nuclear terrorism around the globe. 58 Countries and organisations were represented at the highest governmental level including Presidents Obama, Putin and Xi. Organising safety and security (hotels, transport, venue, food etc) for the Summit was a great challenge. In this case study, the process of threat analyses and security analyses will be addressed but the main focus will be on the challenge to deal with other interests like protocol, organisational, public transportation, aviation etc. The number of authorities was extremely large, the decision making model complex and many operational agencies had different views. How do you bring this all together? The case study will be critical on different aspects and will conclude with an advice to government and public parties.

Biography
Arjan Jonge Vos is Program Manager Security for the Nuclear Security Summit 2014 in The Hague. Previously, he was Coordinator Protection and Surveillance with the National Coordinator on Counterterrorism and Security. In this position, he was responsible for strategic decisions and policy on securing international organisations, embassies, politicians etc. His focus was on bringing policy, science, innovation and operational matters in the security-field together. Arjan has a broad and multi-disciplinary security background based on a career in the Dutch Police, where he held several positions dealing with various aspects of crime investigation and public order. During his career he has been the head of a division for organised crime, head of a municipal police force, commanding officer of large scale events etc. Arjan is examiner and member of the advisory board for the Master program in Security Science and Management at the University of Delft.

Session 22

Travel Security Risk Management

Speakers:

Jan Visser, Globlal S&E and SP Specialist Assurance & Travel, Shell International, The Netherlands
Erik van Vliet, Consultant, Tropical Diseases & Travel Clinic, The Netherlands

Abstract
Travel Security Risk Management forms an integrated part of Travel Risk Management. In the current era of globalization, with multinationals expanding towards higher risk environments, Business Travel has become increasingly important. In this presentation views will be shared on how to exercise Duty of Care by implementing a structured approach to Travel Security Risk Management and integration with Health and Safety.

Biography
- Jan Visser
After serving various management positions in the Military and the Justice Department, with a strong focus on various aspects of risk management, Jan joined Shell as a Senior Security Advisor in 2007. His activities covered physical security management and global security contract performance management in support of Shell Real Estate’s global security management program. In 2012 Jan was appointed in his current role of S&E and SP Specialist Assurance & Travel, overseeing global HSSE assurance for Shell Real Estate as well as Business Travel HSSE risk management.

Biography
- Erik van Vliet
After graduation at Leiden University, the Netherlands as Medical Doctor and Military Services Erik worked for the Dutch Tourist Organisation as Medevac organiser. Joined mid eighties Royal Dutch Shell as Occupational Health Physician with various positions in and outside Europe. During those jobs regular contact & joint operations with Group Security (e.g. kidnap Delta region, Nigeria). Joined Heineken as senior health advisor in 2000, with global responsibility on Health & Safety. Joined operations with Heineken Group Security on Greenfield operations but also on events (Olympic games, Final Champions league). Since 1 year consultant Hospital for Tropical Diseases Rotterdam and owner of DOC (Duty of Care) Supply. Erik likes travelling and cricket and is a keen Chelsea supporter.

Session 23

An Approach to Global Supply Chain Security in The Pharmaceutical Industry

Speaker:

Tom Cochrane, Head of Security Operations and Business Process Development, Mundipharma International Services Ltd, UK

Abstract
The theme of the presentation is how a pharmaceutical company employs several strategies to protect their product from source to customer. We protect our products from diversion, adulteration, counterfeit,physical damage and extreme environmental temperatures in accordance with the recent European Good Distribution Guidelines . The presentation demonstrates through examples the Security Management System in place and the strategies we have in place covering manufacturing, storage and distribution worldwide. The strategies cover the incident reporting and investigation, intelligence networks ,risk analysis and auditing functions we have in place to strengthen our security function.

Biography
I have worked in the pharmaceutical industry for over 30 years holding the position of QualityControl Manager, Quality Assurance Manager and Business Process Development Manager. In the last 10 years as I have been involved in setting up security systems within the manufacturing storage and distribution of our products worldwide. This has included setting up a specialised security operations group to manage and maintain the systems in place.

Session 24

Input Cyber Security: how can physical security helps in ensuring your information security?

Speaker:

Johan de Wit MSSM, Solution Manager Enterprise security, Siemens Infrastructure & Cities, The Netherlands
Prof. Dr. Ben van Lier CMC, Director Strategy & Innovation, Centric, The Netherlands

Abstract
Cyber and physical security are still different and separated disciplines. This despite the increasing connections between humans and objects in networks such as the Internet of Things. Within these networks, boundaries between physical or virtual entities will vanish more and more. New insights for the protection of information and information systems are becoming crucial. What is the role of physical security in treating cyber threats? What risks are not treated due to the separation of disciplines? The answers to these questions come from recent scientific research. Join this presentation and hear the latest views on the convergence of physical and information security.

Biography - Johan de Wit
Johan de Wit is working for Siemens Building Technologies as Solution manager Security Solutions. He is involved with global Siemens portfolio development and follows national and international trends and developments on the field of Safety and Security. He is a member of various committees, workgroups and communities from norm institutions, government and business associations in the Netherlands. He is a regular speaker at conferences and universities. The content of this presentation is based on research committed in order to obtain the title Master in Security Science & Management from Technical University Delft (graduated June 2013).

Biography - Ben van Lier
Ben van Lier is working for Centric a Dutch ICT company with offices in Belgium, Norway, Sweden, Germany and Romania. As part of his role he focusses on research and analysis of developments in the interface between organization and technology. Alongside his work at Centric he obtained his PhD in 2009 at the Rotterdam School of Management. In 2013 he was appointed Professor (part-time) at the Steinbeis University Berlin. His research activities in Berlin will focus on Systems theory, Interoperability of Information and Network Centric Operations within areas as the Internet of Things or Disaster & Crisis management.

Session 25

Cybercrime Explained

Speaker:

Mark Johnson, Chairman, The Risk Management Group, UK

Abstract
A non-technical overview of how cyber criminals attack organizations and individuals.

  • Cyber criminals
  • Penetration attacks
  • Denial of Service
  • Malware
  • Botnets and Malnets
  • Advanced Persistent Threats
  • Social Media Risks

Biography
Mark Johnson has 35 years' experience in drug enforcement, mobile communications fraud detection and Web 2.0 crime and crime management. He is the author of two texts books on communications and cyber crime, as well as two Second World War histories (www.markjohnsonbooks.com).

Session 26

The Rise of Sectarianism Throughout the Middle East

Speaker:

Tim Williams, Managing Director, Stirling Assynt, UK

Abstract:
The availability of funds and recruits to jihadist groups has increased as a result of the West’s decision not to intervene in the conflict in Syria in response to the widely reported usage of chemical weapons in eastern Damascus in August. The civil war was already becoming ever more sectarian, aggravating the impact on neighbouring countries. The intensification of the conflict since August will increasingly affect Sunni-Shia relations throughout the region and cause greater tensions between the Gulf States and Iran.

Biography
After joining Stirling Assynt in 2009, Tim became Director, Political & Security Risk in March 2011. While responsible for the Assynt Report and bespoke political and security risk projects, he presided over a significant growth in the business. On acquisition by Falanx Group PLC in May 2013, Tim was appointed Managing Director of Stirling Assynt and is responsible for profit and loss across all the company’s business lines. Tim previously worked as a Policy Advisor at the Society of British Aerospace Companies, Head of European Security at the Royal United Services Institute (RUSI) and in a defence policy role for the Conservative Party. He remains an Associate Fellow of RUSI. Tim has lectured widely on defense and security issues, including at the NATO School and Wilton Park.

Session 27

Counter Surveillance and Red Teaming as a Protective Intelligence Tool

Speaker:

Berndt Rif, CPP, Senior Policy Advisor Security Operations, De Nederlandsche bank NV, The Netherlands

Abstract
The use of counter surveillance teams and red teams, as part of a pro-active security cycle, is a threat-based security approach. The goal of a red team is a to find methods of attack used by adversaries. The red team also needs to test the effectiveness of taken security measures against adversaries’ methods of attack (AMO) that have been identified. The attack of the red team can take place on the physical gate, the personnel gate (insider threat) and the logical gate. The goal of counter surveillance is to discover criminal activities in an early stage of the attack cycle.

Biography
Berndt Rif, CPP, worked as high risk flight agent and profile agent at Amsterdam Airport Schiphol. He was also head of the security department at the Academic Medical Center in Amsterdam. After leaving the university hospital he worked as security coordinator and information security officer for the ING Group. Before he joined the Dutch Central Bank, in June 2007, he worked for the Ministry of Interior and Kingdom Relations. Berndt Rif holds a Bachelor Degree in Policy and Culture, a Master of Science Degree in Policing and Public Order Studies and a Master of Business Administration degree in Security Management. He participated in Israel in a counter terrorism course, a predictive profiling train-the-trainer course and an insider threat security profiling course (pre-employment and in-employment screening). Berndt Rif is also a (guest) lecturer at the Leiden University (Practitioner Course Terrorism, Security & Law) and the University of Amsterdam (Minor Intelligence Studies). He spoke before at ASIS Security Conferences in Barcelona, Vienna, Gothenburg, Dallas, Philadelphia and Dubai.

Session 28

The “Secure Societies” Challenge in Horizon 2020.

Speaker:

Dr. Paolo Salieri, Principal Scientific/Policy Officer, European Commission, Belgium

Abstract:
Horizon 2020, the financial instrument for the European Union to implement its Research and Innovation (R&I) policies, identifies “Secure societies – Protecting freedom and security of Europe and its citizens” as a specific challenge, with the aim to: • enhance the resilience of society against natural and man-made disasters; • fight crime and terrorism; • improve border security; • support the Union's external security policies; • provide enhanced cyber-security. Projects should bring together all security stakeholders: industry - including SMEs, research organisations, universities, public authorities, non-governmental organisations and private organisations in the security domain. The first call for proposals will be published on 25 March 2014.

Biography
PAOLO SALIERI is a Principal Scientific and Policy Officer in the Directorate General for Enterprise and Industry of the European Commission (Brussels). As part of the Security Research unit he is in particular responsible of the activities in the area of Border Security. Paolo Salieri has been working with the European Commission for more than 20 years. Previously he was with the Directorate General of Research associated to Space Policy, and before to R&D related to Industrial Technologies, in particular Standards, Measurements and Testing. Before joining the European Commission, Paolo Salieri was a scientist in Quantum Optics at the Italian National Institute of Optics (Florence). In 1985-1986 he was research associate at the Department of Electrical Engineering of the University of Southern California. He holds a PhD (Laurea) degree from the University of Pavia (Italy) and a Master degree from MIT (in Electrical Engineering and Computer Science).

Session 29

New Directions In Urban Security

Speaker:

Thomas Vonier, CPP, Architect and Planner, Thomas Vonier Architect LLC, France

Abstract
Security-conscious design increases the effectiveness of policing and surveillance. Visible security signals changing threats and focuses vigilance. Protective infrastructure is essential. Many threats to urban security are difficult to predict (extreme weather and industrial accidents), or may arise spontaneously (riots and civil disorder). Some never cross borders (indigenous extremists). Such threats cannot be detected or thwarted easily using police and intelligence methods. Security at the urban level is an essential and sometimes last line of defense. Effective urban security is multifunctional, nimble, and ever-present. Some cities have used natural checkpoints and created special control zones.

Biography
Working from Paris and Washington DC, architect Thomas Vonier FAIA RIBA CPP supports organizations with global operations. He is a board-certified security professional. His practice concentrates on security planning for projects in high-threat regions of Africa, the former Soviet Union, and the Middle East. Stressing cost-effective solutions grounded in fact-based risk assessments, he carries out facility security surveys, urban sector assessments, condition evaluations and post-incident investigations. Tom headed a special research commission on security for US embassies and foreign mission buildings. His work on urban security control zones was featured by the National Capital Planning Commission in Washington DC. He is an advisor to International Centre for Urban Security.

Session 30

Europol’s Fight against Intellectual Property Crime

Speaker:

Chris van Steenkiste, Project Manager IPR Crime Unit, Europol, Netherlands

Abstract
Since January 2014, commodity counterfeiting impacting health and safety became a European priority for law enforcement agencies. The fake trade is no longer limited to the traditional luxury products but all economic branches are concerned: food and beverages, tools, spare parts of cars and aircrafts, cosmetics products, … Europol ‘s IP Crime Unit is since quite some years now very active in providing support to law enforcement agencies to fight against the organised crime groups responsible for the production, distribution and selling of those goods, which very often impact consumers health and safety.

Biography
Chris Vansteenkiste , Project Manager of Europol’s Intellectual Property Unit (Focal Point COPY). Chris was born in Belgium and worked for the Belgian Federal Police since 1982. During his career at the Belgian Federal Police (In former days the Gendarmerie) he worked at the national police school and the national intelligence centre. He started the National IP Crime Unit in Belgium in October 2002. During eight years he built out Belgium’s IP Crime Unit and provided expertise in EU and international IP projects in Poland, Romania, Croatia, China, Turkey, Algeria and Moldova. Chris started working as Project Manager of Focal Point COPY, Europol’s IP Crime Unit, in December 2010.

Session 31

Taking Security Management into the 21st Century

Speaker:

Werner Cooreman CPP, PSP, Vice President Security Europe, DHL Express, Germany

Abstract
Businesses are going through a significant shift from pure management to head-heart-guts leadership. Constant change has become the standard. In the 21st century, the classic business practices and structures are shifting as well, and there is a need for leadership rather than management as a result. As such, the challenges security management are tremendous. Organisations need security leaders now, rather than the traditional subject-matter experts. This presentation focusses on what is required for the security leaders to be successful; what insights do they need to have, and what skills should they develop to keep them ahead of the game.

Biography
Werner Cooreman CPP, PSP has been Head of Security for DHL Express in Europe for the past 5 years, providing functional leadership for the European DHL airlines, Hubs and Gateway facilities, and Ground Operations across 47 countries. Previously Werner occupied international security roles in Supply Chain and Logistics, Utility and Retail. Prior to his career in the private industry, he was a career officer in the Belgian Military for 20 years, including assignments with the United Nations and NATO during the Balkan Wars in the nineties. Werner’s expertise covers a broad range of security areas, but he is mainly focussed on establishing and developing the security function in complex international environments, and is considered as a thought leader on security management. He is a member of ASIS Benelux, and Chairs the European Express Association Security Committee, next to being a Supervisory Board Member for the DHL Leipzig Hub GmbH.

Session 32

Stadium Security: A Challenge

Speaker:

Bill Enright, Head of Operations and Facilities, Aviva Stadium, Ireland

Abstract
The theme of my presentation will be to give an overview of how a stadium prepares and manages a large scale sporting event from a risk management perspective. It will cover the planning, organisation and liaison that is involved in such an operation. The event day itself will be examined taking particular account of the various security, safety, medical situations that can arise. I will emphasise the emerging threats that face security practitioners in this field. The purpose of my presentation is to demonstrate to my fellow security practitioners the complex, multi disciplined roles involved in managing and running a safe, secure and sustainable stadium.

Biography
I was an officer in the Irish Defence forces from 1975 to 1994. I then took up the role of Group Risk Manager with an Irish based International hotel group. In 2008 I moved to my present role of Head of Stadium Operations at the Aviva Stadium Dublin. The Aviva Stadium is the national stadium for football and rugby in Ireland and has a capacity of 51,000. I am a past secretary and Chairman of the Irish Chapter of ASIS. I am currently studying for the PCI. I have a Masters Degree in Risk, Crisis and Disaster Management from the University of Leicester in the UK. I have been a speaker at a previous European ASIS conference.

Session 33

Dealing thru the Deviant Mind At the Workplace

Speakers:

Totti Karpela, Director, Peace of Mind Ldt, Hong Kong
Bram Van Der Meer, Director/ Investigative Psychologist, Van der Meer Investigative Psychologist Ltd, The Netherlands

Abstract
Personal problems and mental disorders are not limited to a person's private world, but are taken to the workplace. Without being recognized as such, disorders or psychiatric problems have a huge effect on the workplace and, secondly, cost the company significantly. Productivity decreases, and days of sick leave increase dramatically. It also has the potential to lead to serious concerns about safety and security. Threats, false allegations, obsessive stalking, and suicidal gestures are only a few examples of such concerning behaviours. The speakers will discuss these issues how to identify and manage the situations by using real life case examples.

Biography - Mr Karpela
Totti Karpela has 24 years of active law enforcement work including work as the supervisor of a police threat management service. In his current role in the private sector Totti has worked with presidential candidates, media companies, celebrities, educational facilities as well as multi-national corporations specializing in threat assessment and case management. He provides behavioural and security consultation in numerous global corporations on a weekly basis. Totti has also worked as a subject matter expert for the European Council and OSCE in violent crime prevention projects. Totti is currently the CEO of two threat management companies, one in Europe and the other in Asia and is also one of the executive board members of the Association of European Threat Assessment Professionals.

Biography - Mr Bram Van der Meer
Bram Van der Meer is an investigative psychologist who spent the first five years of his career as a clinical psychologist in a High-Risk Forensic Psychiatric Hospital. He then served eleven years with the Netherlands National Police Service in the Offender Profiling and Threat Management Unit. The majority of this work focused on serious violent offences, providing offender profiles, interview and interrogation expertise, threat assessment and case management strategies. His experience includes consultations for the Netherlands Royal Family and involvement in establishing the Royal Family Threat Management Center.

In 2011 he entered the private sector, providing training and consultation for police organizations, corporations and private clients.

For the police, he continues to provide expertise in national and international violent criminal investigations, offender profiling, threat assessment and behavioural interviewing. He teaches threat assessment and psychological interviewing at the Netherlands Police Academy.

For the corporate world, Bram specializes in assessments and training relating to problematic or criminal behaviour in the workplace including threatening, intimate partner violence and criminal harassment. He enhances existing employment screening by providing psychological risk assessments for staff in high-risk positions. Bram teaches behavioural-investigative interviewing at the Frankfurt School of Finance and Management.

He is a researcher and published author whose recent contributions include a chapter in the International Handbook of Threat Assessment (Oxford University Press, November 2013). Bram was elected as President of the Association of European Threat Assessment Professionals in 2010 and continues to serve in that role.

Session 34

The Changing Role of Security and the Implications for Practice: the Findings from a Study of the Security Sector

Speaker:

Professor Martin Gill, Managing Director, Perpetuity Research, UK

Abstract
The way security is provided is changing. In this talk Martin traces these developments and the impact on both corporate security staff and security suppliers. Based on original research with the security sector he assesses the consequences of providing security as a 'single service' or as part of a 'bundle'. He also looks on the impact on the professionalisation of security, and the role played by both clients and suppliers working separately and together. Martin notes security is in a time of change and only some people and organisations are currently prepared.

Biography
Professor Martin Gill is a criminologist and Director of Perpetuity Research and Consultancy International which started life as a spin out company from the University of Leicester. Martin has been actively involved in a range of studies relating to different aspects of business crime including, the causes of false burglar alarms, why fraudsters steal, the effectiveness of CCTV, the victims of identity fraud, how companies protect their brand image, the generators of illicit markets and stolen goods, to name but a few. Martin has been extensively involved with evaluation research and with the offender’s perspective looking at how they target certain people and premises and aim to circumvent security measures. He has published widely (13 books and over 100 articles including ‘Managing Security’ and ‘CCTV’ published in 2003, and the 'Handbook' of Security' published in 2006). Martin is a Fellow of The Security Institute, a member of the Company of Security Professionals (and a Freeman of the City of London). Martin is a member and a Trustee of the ASIS Foundation Board, he was also formerly Chair of the ASIS Research Council and remains a member, as well as an overseas representative on the ASIS International Academic and Training Programs Committee. In 2010 he was recognised by the BSIA with a special award for ‘outstanding service to the security sector’. In 2013 IFSEC placed him in the top 40 most influential fire and security experts in the world.

Session 35

Fraud Management Advanced Techniques in Internal Controls and Governance

Speaker:

Daniele Gulinatti, VP Fraud Management & Revenue Assurance, Telecom Italia, Italy

Abstract
In this session you’ll learn some practical business cases based on field experience that led to important savings. One focus area will be all the travel expenses and reimbursements controls that are usually the source of high costs due to manual activities performed by dedicated personnel. The automation of these controls and the high efficiency of the workflow process can save money and spare a lot of time that could be dedicated to other activities. In addition will be highlighted some typical fraud cases in the telecommunications environment where your company could be easily a victim – being a user of most tlc equipment – and suffer damages.

Biography
Daniele Gulinatti Since August 2010 he has been the head of the Fraud Management & Revenue Assurance department of Telecom Italia, being in charge of ensuring the end to end operations of fraud management and revenue assurance processes for the Domestic market. He’s CIA – Certified Internal Auditor, CFE – Certified Fraud Examiner and CCSA – Certified in Control Self-Assessment. He has graduated in Business Administration at Bocconi University and then joined Pirelli in the newly-created Corporate Security department in 1997. In December 2000 he was moved to Brazil, as Head of Security for Latin America, for all divisions (Tires and Cables) and countries of the Group (Brazil, Venezuela, Argentina, Mexico, Chile and Colombia). In May 2002 he was nominated Pirelli’s Internal Audit Manager for Latin America. In January 2005 he joined Telecom Italia Mobile in Rio de Janeiro, as Brazil Security Director.

Session 36

Diplomatic Security

Speaker:

Mike Croll, Head of Field Security, European External Action Service (EEAS), Belgium

Abstract
Threats to diplomats in many parts of the world are increasing. The challenge is to balance the political imperative to maintain a diplomatic presence, against the need to keep staff secure, whilst working within tight budgetary constraints. This presentation outlines the threats and describes how they are managed by the European External Action Service (EEAS), the European Union's Diplomatic Service. With Delegations in 136 countries protecting staff and assets is a daily challenge from operating in hostile environments to facing angry demonstrations, from residential burglary to managing the effects of natural disasters.

Biography
Mike Croll is Head of Field Security at the European External Action Service. He was previously responsible for Overseas Security at the Foreign and Commonwealth Office. He is a former British Army Bomb Disposal Officer.

Session 37

Perspectives on the Terrorist Threat in The Netherlands 2014-2015

Speaker:

Glenn Schoen, Director, G4S Risk Advisory, The Netherlands

Abstract
This presentation focuses on the current and future terrorist threat in The Netherlands. Its point of departure is the March 2014 Nuclear Security Summit in The Hague immediately preceding the ASIS International conference. Projecting forward to late 2015, the threat will be examined along a number of axis including potential actors, tactics, themes and the impact of foreign developments on the security environment in the Netherlands. The presenter will draw on nearly three decades of international experience in counter-terrorism study and risk management work, including many extensive engagements for industry, government and international institutions in the Netherlands.

Biography
Glenn C. Schoen (1963) is Director of G4S Risk Advisory in Amsterdam. An American born and raised in the Netherlands, he has had a varied career to date that began with law enforcement and progressed to security analysis, consulting and management. Prior to joining G4S in 2010 Mr. Schoen worked for, International Security Management, TranSecur and Ernst & Young. He is a long-time specialist in terrorism and security management. Secondary activities include having served as a volunteer at the White House, a lecturer at Georgetown University’s SSCE program, and membership in various national and international security advisory panels, including OSAC and the United Nations’ ICRI.

Session 38

The Profile of the Security Liaison Officer: Discerning the Skills, Roles and Responsibilities for an Emerging Position within Critical Infrastructure Protection

Speakers:

Professor Roberto Setola, Professor, Complex System & Security lab University UCBM,Italy
Alessandro Lega, CPP, ASIS International Chapter Italy

Abstract:
EU policies regarding the protection of ECI’s is based on strong cooperation between the Public and Private sectors. From the Private side, the SLO must operate as a single and effective interface with the Public Authorities. Currently, there is a lack of attention and regulation regarding the SLO position which has created a void in the EU’s understanding of their impact. Through Questionnaires and Café Workshops, the EU co-funded project “SLO” aims to close the gap to better define such professional figures so the ECI community can ‘connect-the-dots’ and come to a suitable solution to reduce the disparity between expectation and action of the SLO on the personal, private and public levels.

Biography - Mr Setola
Roberto Setola is a professor of Automatic Control at University CAMPUS BioMedico (UCBM) where he is the Head of the COSERITY Lab (Complex Systems & Security Lab) and Director of the Master’s program for ‘Homeland Security'. Formerly a member of the Italian Prime Minister Office (1999-2004), Mr. Setola was the coordinator of the working-group on Critical Information Infrastructure Protection established by the Italian Prime Minister (2003-2004), a member of the G8 Senior Expert CIIP Group, and an affiliate of the G8 working-group on High-Tech Crime. Since 1992, he has worked on modelling, simulation and control of complex networks and systems and the protection of critical infrastructures. He has also been the coordinator of 3 EU projects on security: SecuFood, FACIES and SLO and involved in more than twelve national and international projects related to critical infrastructure protection and homeland security. He has co-authored 3 books, edited 3 books, and co-authored roughly 130 scientific publications.

Biography - Mr Lega
Alessandro Lega, is a senior Security Management Advisor acting in the corporate security consulting business - Industrial security and ICT security expert - Member of ASIS International since 1997, certified CPP since 2002 - Assistant Regional Vice President for Region 9C of ASIS International - Member of the ASIS Commission on Info Security Management - Former Chairman of the Security Convergence/Enterprise Security Risk Management Subcommittee on Convergence Security - ASIS International, European Committee (till April 2013); - Former Country Security Manager at IBM Italy, coordinating the national response team and the ICT security team.

Session 39

The Ultimate Challenge: Decision-Making in Crisis Scenarios

Speaker:

David Rubens, Managing Director, InfraSafe Security International (ISI), UK

Abstract
It is often said that you can’t prepare for a disaster. Although that is true, the reasons for the failure to respond effectively to disasters are depressingly predictable, and are seen to repeat themselves time after time. This presentation examines some of the issue around decision-making in crisis scenarios, and offers a out a template that will allow decision-makers to audit their own organisation’s crisis management capabilities, as well as enabling them to identify their own vulnerabilities. The crisis itself may be beyond your control – the way you respond is not. Biography: David Rubens MSc, CSyP, FSyI is well known to ASIS members, following his well-received presentations at previous ASIS Conferences in Gothenburg and London. He holds an MSc in Security and Risk Management from Leicester University, where he was also a Visiting Lecturer and Dissertation Supervisor on their Security, Terrorism and Policing programme. He was a Visiting Lecturer (2009-‘10), on the Strategic Leadership Programme at the Security and Resilience Department, Cranfield University, UK Defence Academy, focusing on terrorism and public policy, and the management of large-scale, complex multi-agency programmes, and has recently been appointed as Associate Lecturer at University of Portsmouth, where he is also on the Professional Doctorate programme, researching models of strategic management at the extremes of organisational complexity. His speciality covers decision-making, command & control structures and multi-agency interoperability in highly-unstable situations such as natural disasters, corporate failures and government-level crisis management scenarios. He has recently been appointed as MD of InfraSafe Security International (www.infrasafe.com), the international division of the InfraSafe security technology group.

Session 40

Getting Women on the Radar: Strategically Creating and Taking Advantage of Leadership Opportunities

Speaker:

Tanya Spencer, Director, TrainingSolutions, Denmark

Abstract
Does your ASIS chapter want to be at the forefront of creating leadership opportunities for women security professionals? Are you a woman security professional who is seeking ways to further your career? This interactive session will rely on the participants to share your insights and ideas in order to pool our combined resources: Do not expect to “sit back and listen” but to join a “step up and go forward” networking and cross-learning event. The aim of this session is for everyone to gain realistic action points and practical tools.

Biography
Tanya Spencer owns TrainingSolutions, a provider of travel security and crisis management courses, consultations, and coaching for global organizations. She is published internationally including Personal Security: A Guide For International Travellers (CRC Press); has been a prolific contributor to EuroDynamics; presented at several conferences; and, trained 1000s of people. On the ASIS European Advisory Council, she is the strategic lead for WiS. Tanya was ‘Member of the Year, 2009’ for the ASIS Denmark chapter and served four years on its Board. She has Executive Certificates from Wharton and Copenhagen Business Schools; MSc from London School of Economics; and, BA from UC Berkeley.

Session 41

The Contribution of Security to Building and Managing Resilience.

Speaker:

Jason Brown, National Security Director, Thales, Australia

Abstract
The presentation outlines the global process being rolled out to provide an integrated international approach to crisis management, business continuity and security for Thales, an international aerospace, defence and manufacturing company. The model is applicable to any enterprise and will be shared with participants and advice in implementation can be provided in a post conference outreach strategy

Biography
Jason Brown is the National Security Director for Thales ANZ. He is responsible for security liaison with government, law enforcement and intelligence communities to develop cooperative arrangements to minimise risk to Thales Australia. He is a member of ASIS International, British Security Institute, National Gallery of Australia Foundation, Risk Management Institution of Australasia and University House. He holds Security Professional Chartered Status the in the UK and Registered Professional status with SPR-A. He was awarded the Australian Security Medal for Conspicuous Service in February 2011. In 2013 IFSEC International recognised him in the top 40 influential persons in Security and Fire Management.

Session 42

Dealing With Cross Cultural Challenges of International Contracts

Speakers:

Henk Kamman, CPP, Security Risk Manager, KaHaDe BV, The Netherlands
Nita Korsten, Senior Consultant/Director, Crust Young Consultants, USA

Abstract
Both clients and contractors seek uniformity in their global contracts. However, global contracts and local realities aren’t always as aligned as parties might wish. Not only can the local rules and regulations for security vary across countries and regions, but different local cultures can add even more challenges! In this lively workshop we will share the experiences of an international contract manager of security/guarding services and provide a framework for understanding practical contracting challenges from a cross cultural perspective. We will discuss international security assignments and the impact of cultural differences on communication, risk management and rules and regulation.

Biography - Mr Kamman
Henk has over 19 years of experience in security- and safety management. As a senior-consultant and (interim) manager, he has advised for-profit and non-profit organisations on 21st century security concerns. He is an experienced investigator, inspiring educator and author of several security related courses, and has a special interest in security related legal matters. Before he started his career as a security professional he was a police officer in Rotterdam for over 16 years and ended his tenure as detective-sergeant of the vice-squad. He led the special runaway-squad for three years, a special group of detectives, who investigated the disappearances of minors. Next to that he was managing director of a wholesale company in electrical equipment and high school teacher.

Biography - Ms Korsten
Nita has over 20 years of experience in international business, organizational development and management consulting. She is a consultant in the field of cross-cultural management. Prior to Crust Young Consultants, Nita served in senior leadership positions at the international real estate consultancy, facility management and project management company AOS Studley. She was General Director of the Dutch office after serving as the International HR Manager for the Paris headquarters. At FMH Group, she was a management consultant and MD of Training and Education. Nita received a MA of Culture, Organization and Management from VU University in Amsterdam and a BA in Facility Management from Diedenoort University. She has lived and worked in The Netherlands, USA, Germany and France, travelled extensively throughout the world and enjoys all opportunities to connect across cultures.

Session 43

Counter-Espionage: The Importance of Engaging the C-Suite

Speaker:

Emma Shaw, Managing Director, Esoteric, UK

Abstract
Organisations are failing to grasp the enormity of corporate espionage and decisions on how to respond to attacks are often made retrospectively. Whilst it can be difficult to quantify the impact, when organisations lose control of their information, implications can be serious. Consideration of espionage should be an integral part of risk management and business strategy and can only be achieved with C-Suite engagement. A strategic approach will consider the wider implications of attacks and how they affect the whole business resulting in solutions which deliver an integrated way of thinking that combines all aspects of security with financial pragmatism.

Biography
Emma Shaw is the Managing Director of Esoteric Ltd, a well-established electronic sweeping, counter-espionage and intelligence gathering company based in Woking, Surrey. An MBA graduate, and a Chartered Security Professional (CSyP) Emma’s early career was spent with the Royal Military Police, followed by a career in the Ministry of Defence. Emma founded Esoteric Ltd in 1998. Emma is the Chairman of the Security Institute and a Fellow of the Chartered Management Institute, Southern Chairmen of the Defence Industry Security Association (DISA); and a member of the Advisory Council for CSARN and on the committee for the City of London Crime Prevention Association. Emma was a finalist for the 2012 Lord Imbert Prize and won Security Consultant of Year at the Security Excellence Awards 2012.

Session 44

Private Security Service Provider Standards – They’re Here!

Speakers:

Dr. Marc Siegel, Commissioner Global Standards Initiative, ASIS International, Belgium
Lisa DuBrock, Radian Compliance, LLC, USA

Abstract
The ANSI/ASIS Private Security Service Providers PSC-series has been published. Governments are now requiring them for contracting. An ISO committee has begun work on developing the ISO International version of the standard. What do you need to know about implementation, internal auditing and certification? How do you get started evaluating where you are and where you want to be relative to conformance with the requirements of the standard? How do you use the standards to improve your business management? How can you differentiate your business and open the doors to opportunities worldwide.

Biography - Dr. Marc Siegel
Dr. Marc Siegel is the Commissioner heading the ASIS International Global Standards Initiative developing international and national risk management, resilience, security, and supply chain standards as well as provides training on their implementation. He is an Exemplar Global (formerly RABQSA International) certified Business Improvement Lead Auditor, as well as a certified Trainer and Skills Assessor for both security and resilience management As an Adjunct Professor in the College of Business Administration and the Master’s Program in Homeland Security at San Diego State University, Dr. Siegel pioneered the concept of applying a systems approach to security and resilience management for organizations and their supply chains. His work includes providing training and guidance on implementation of risk, resilience and security management systems, as well as risk management in regions of conflict and weakened governance for the protection of assets and human rights. Dr. Siegel chaired the technical committees and working groups for the series of ANSI standards developed to provide accountability to legal requirements and the International Code of Conduct (ICoC) for private security service providers. Dr. Siegel serves as Chairman of ISO/PC284 developing standards for private security service providers. Co-Author : Organizational Resilience: Managing Risks of Disruptive Events – A Practitioner’s Guide, by James Leflar and Marc Siegel, CRC Press, 2013.

Biography - Lisa DuBrock, CPA, CBCP, MBCI, MBA
Lisa is a Managing Partner for Radian Compliance, LLC where she specializes in design and implementation of Management System Standards surrounding: Security – Information and Physical as well as Business Continuity frameworks for her clients. She also provides her clients with internal audit in the areas of ISO 9001 Quality Management and ISO 20000 Service Management.

Lisa sits on the ASIS – Standards and Guidelines Commission developing American National Standards. She has been instrumental in developing standards supporting Organizational Resilience as well as Private Security Companies. She additionally sat on the ANAB Committee of Experts to draft the Accreditation rule supporting PSC.1 – Private Security Companies Management System Standard, as well as being a member of the US-Tag committee developing an ISO standard supporting Private Security Companies.