Presenters and Panellists
Acquisition is ongoing and further announcements will be made, make sure to check back regularly or follow us on our social media pages
To submit interest in presenting contact
Darren Hepburn, CISO, Network Rail Telecoms
Darren Hepburn is an Information and Cyber Security Professional with over 25 years’ experience in the public and private sectors. Over the last seven and a half years Darren has been employed with Network Rail as the Chief Information Security Officer (CISO). Working in the Telecoms side of the business he is responsible for defining and delivering the security strategy to protect the critical national infrastructure aligned to Telecoms and operational railway business areas (CCS and SCADA). He is also an active member in some of the European research areas looking at application of security for future rail systems.
Marc Silverwood, Digital Trains Programme Lead, Northern Trains Ltd.
Marc Silverwood is the Digital Trains Programme Lead at Northern Trains Limited with over 21 years of experience in the railway industry and across multiple disciplines. Marc currently manages the design and fitment of complex digital systems to Northern’s Rolling Stock and is an advocate for accelerating innovation and digital transformation in the railway. An experienced transport professional with an extensive track record of delivering results across the industry, Marc has a strong background in project management and has won multiple awards for delivering innovative solutions in railway operations. Marc holds a Diploma of Higher Education in Railway Operations from Glasgow Caledonian University and a NEBOSH General Certificate.
Joe Ferguson, SC-cleared Cyber Security Consultant, IL7 Consultancy
I am an SC-cleared Cyber Security Consultant with many years experience of MOD, HMG, NCSC security and policy development , particularly with Cloud first migrations. I am IT and OT cyber literate having risk assessed, risk assured Government on-prem and cloud applications as well as major infrastucture projects, including trains, planes and ship and submarines. I am currently working on contracts with the Home Office (DBS) and Govia Thameslink Railway. As a Senior Risk Analyst (Cyber, Software and Architecture) and with 20+ years’ security experience, primarily in UK central Government and critical IndustryLeader of cloud security (IaaS,PaaS, SaaS) projects/solutions across HMG with blue chip experience in private sector. I communicate on all levels with senior business board-level stakeholders as well as implementors and technical architects. Cloud First, Bespoke Last is the mantra but Cloud Security is critical and Governance, Compliance, Risk Management and Assurance are part of my DNA. I am a fully committed individual keeping up with technology, industry trends and business opportunities. As a Senior Member of the Chartered Institute of Information Security (CIISec), I own my own consultancy, IL7 – company has completed ‘Cyber Essentials” (4 years) and has worked to the NCSC CAF and/ Cabinet Office SPF. I have completed the Internal Auditor course for ISO/IEC 27001 and EU GDPR DPO training. Previous 17 years as PRINCE-certified Project Manager but now fully Agile.
George Copeland, Security and Information Risk Advisor and Programme Manager, Marlborough Consulting.
George Copeland MSc MBCS CITP, Marlborough Consulting
George is an accomplished advisor and practitioner, with significant experience leading change and a highly successful track record of mitigating cyber risk and delivering outstanding business results. His experience and expertise spans over 20 years and a wide range of business critical development and support environments, including operational and corporate technologies, across sectors and internationally for leading brands. Most recently, George has focused on cyber-physical system implementations for rolling stock and associated customer data and asset cybersecurity. His pragmatic approach to the introduction and achievement of best practice cybersecurity controls and management capabilities has been well received by clients in the railway industry. He holds a Masters Degree in Cybersecurity from Northumbria University London, UK and is an NCSC Certified Cybersecurity Practitioner.
Jan Hohenauer, Deputy Chief Information Security Officer SBB AG, BSc and EMBA, University Fribourg, 2006
CISM certified. He has 20 years’ experience in Information Security: in consulting business he was engaged with Identity & Access Management, PKI, Security Operations and Web-Security. In 2003 he joined SBB leading Network Security meanwhile he founded the company-wide Center of Competence for Security. Later roles include strategic work for Telecom and Signaling departments. 2010 he joined the Information Security Team to lead the ICT-Risk Management and to enforce the integration of Operational Technology into the existing Information Security landscape e.g. in Gotthard Base-Tunnel. From 2014 on-going he is the Deputy CISO and right now he acts as a Service Leader in cyber@SBB – a program to strengthen the Cyber Defence Capabilities
George Bearfield, Health & Safety Director, Rock Rail
George joined Rock in January 2019 as Health & Safety Director covering Rock Rail’s asset management activities and other business operations. George has responsibility for all aspects of Rock Rail’s Safety Management Systems including safety assurance responsibilities for all fleets under its management. He has 25 years of experience in the health and safety arena.
George was previously the Director of System Safety and Health at the Rail Safety and Standards Board (RSSB) where he was responsible for RSSB’s work to support the rail industry in all aspects of its health and safety management and assurance processes and capabilities. George also played a key role in the setting of the national rail health and safety strategy and in delivering associated programmes, including sponsoring the successful relaunch of the national supplier qualification scheme, RISQS.
Prior to his work at RSSB he worked as a consultant on safety assurance of complex safety critical systems, following previous roles in the railway supply sector designing rail systems.
George has a PhD in Computer Science, specialising in railway risk modelling and is a Chartered Engineer, and a Fellow of the Safety and Reliability Society. He is the Visiting Professor of Railway System Safety at the Institute of Rail Research, Huddersfield and is an i100 partner with the National Cyber Security Centre.
Didier Van Oosthuyse, Enterprise Security Architect, Business & ICT Consulting, Belgian Public Transport Company
Didier Van Oosthuyse is a Security Consultant with over 25 years’ experience in various sectors like Finance, Transport, Education and Health Care. Didier is currently working for a Belgian Public Transport Company (aka “STIB - Société des Transports Intercommunaux de Bruxelles”) as Enterprise Security Architect and is also Security Lead for the STIB’s Unattended Train Operation Programme which aims to secure, among others, the Rolling Stock Assets, the Rail Signalling Systems and the Critical Network Infrastructure. Didier is a security enthusiast, member of the Belgian Cyber Security Coalition and holds several security certifications (CISSP, CCSP, CISM).
Léa Paties is Programme Manager at the Shift2Rail Joint Undertaking
In 2010, she became Project Manager at UNIFE, the Association representing the interests of the European Rail Manufacturing Industry. After following the Association's research and innovation activities, including as Co-Secretary of the European Rail Research Advisory Council (ERRAC), she became the Project Manager of UNISIG, the consortium gathering the European ETCS suppliers. She was as well in charge of the political activities related to the promotion of ERTMS in Europe and Worldwide. Prior to that, she was a business analyst for an international consulting company, advising clients on funding opportunities.
Léa joined the Shift2Rail JU in March 2017 and is since then, in charge the Innovation Programme dedicated to "Advanced Traffic Management and Control Systems" which includes, amongst others, research activities related to automatic train operation, next generation communication system and cybersecurity.
Léa graduated in European Affairs and EU Project Management from the University of Strasbourg, France.
Giorgio Pizzi, Special Office for Guided Transport Systems, USTIF – Ministry of infrastructure and transport, Italy
Giorgio Pizzi has a degree in Electronic Engineering and a former 10 years long experience in management and security of IT systems. Since 2013 he is responsible of the “Special Office for Guided Transport Systems” (USTIF – Ministry of infrastructure and transport), competent on safety supervision and authorization of metros, tramways, local railways, cableways, elevators, escalators. He also serves as an executive for the Directorate General for Local Public Transport of the same Ministry. During this activity he has developed the interest for cybersecurity in transport systems, especially about co-engineering of safety and cybersecurity and integrated risk analysis. He is also a scholar in the field of digital transformation of transport and mobility, and in particular of new business models based on platforms.
Alfredo Giangregorio, Head of IT, GB Railfreight
An IT Professional being able to work with a wide spectrum of applications, infrastructure and operational technologies and has over 30 years’ experience in IT Management and engineering across various industries. From Hotel, Casino, automatic data capture, and process automation operations, and has spent the last 8 years as Head of IT for GB Railfreight where he has been instrumental in its digital transformation.
Responsible for implementing, maintaining and securing GB Railfreight’s IT, across five facilities providing cloud/on premise technologies, he is also responsible for GBRf’s OT solutions across its fleet of locomotives (including forward facing cctv and remote condition monitoring) whilst always ensuring the delicate balance between business efficiencies and security. GB Railfreight was the first UK freight operator to deploy mobile technologies to its over 700 geographically dispersed workforce which improved the data availability and integrity to train drivers and ground staff. The various applications now provide GBRf’s mobile workforce access to relevant safety documents, real time train performance, and the digitisation of the freight consisting operations to name a few.
Israel Baron - VP Customer Success, Cervello
Bringing over 16 years of expertise in the IT and OT Cyber Security domain with
excellent interpersonal, presentation & management skills.
With vast experience in the Israeli Ministry of Defense (IMOD) as a Senior
Information Security & Technology Officer at the D.S.D.E (Directorate of
Security of the Defense Establishment), as the Regulator of the Israeli Defense
Industries, and later as the CISO (Chief Information Security Officer) of Israel
As the Israel Railways CISO, I established and led the Cyber department -
defining with the company top management, the strategy and tools to defend its
critical assets and systems, including the design of the company's Integrated
IT/OT Cyber Security Operation Center (SIEM/SOC).
Professor Stefan Katzenbeisser, Chair of Computer Engineering, Universität Passau
Stefan Katzenbeisser holds the Chair of Computer Engineering at University
of Passau and is scientific advisor and co-founder of INCYDE GmbH. His research interests include applied cryptography, hardware security and critical infrastructure protection. Since 10 years he works on cybersecurity for railway applications. Among others, he participated in the creation of German security standards for railway signalling and he founded the CYSIS working group, where railway operators, industry and academia meet to discuss cybersecurity issues in the railway domain.
Sash Rigby, Technical Director, Modux
Sash is an experienced technical security specialist working across application security & critical infrastructure. He has devoted much of his career to utilising offensive techniques to compromise organisations through red teaming & real-world cyber-attack scenarios across sectors including CNI, telecoms & finance. As Technical Director of Modux, Sash leads the organisation to deliver best-in-class security consultancy into UK industry & Government organisations.
Markus Wischy Hernandez, Head of R&D IT-Security Dept, Siemens Mobility
Markus Wischy Hernandez is heading the R&D IT-Security department of Siemens Mobility, and is as a Product and Solution Security Officer responsible for adding security to the product portfolio of the signaling business. He is also active in standardization and European research activities in the field of rail automation security.
Ron Brash, Director of Cybersecurity Insights, Verve industrial Protection
Ron is an experienced technology consultant and seasoned cybersecurity specialist with deep expertise in critical systems, network security, deep packet inspection, data analytics and secure embedded software development. He leads Verve’s research on vulnerabilities, cyber risk, and reverse engineering network protocols & firmware in OT/critical infrastructure. Ron’s insights and analysis help inform the company’s technology direction and provides valuable guidance in client engagements. He created the watershed S4 ICS detection challenge datasets, advised several industrial domains, and is globally recognized as a leading speaker for technical topics.
Antanas Kedys, Head of Cyber Security Group, ISO – AB, JSC, Lithuanian Railways
Antanas is experienced professional who before worked in different IT positions and as a cyber security expert, now is leading team of cyber security experts whose daily tasks include but are not limited to protecting company‘s assets and critical infrastructure from cyber threats, building security policies, monitoring of overall campny‘s security health, threat hunting, cyber risks measurement, incident investigations, and more. Antanas is also company‘s Information security officer (ISO) and is a go-to person when there are any questions regarding info or cyber security.
Geir Engh-Hellesvik, Chief Information Security Officer, Vy Group
Vy Group is a Norwegian mobility group providing rail and passenger service on rail and road in the Nordic region. Vy is the largest provider of rail and bus passenger transport in Norway and with significant operations in Sweden. Vy’s vision is to provide the best and smartest door-to-door journey for our customers.Geir has a varied background as a consultant, senior manager and business developer in professional services firms and broad experience from working with cyber and information security at clients in logistics, financial services, telecoms, energy and public sector. Geir holds an engineering degree in computer science and an Master of Business Administration in Strategic Management.
Antonio Lopez, Team Leader to the CSIRT work stream in 4SECURail, General Manager at Hit Rail
Antonio Lopez is Hit Rail’s General Manager, with responsibility for the management and control of the Company’s operations and to give strategic guidance and direction to the Supervisory Board to ensure that the Company achieves its mission and objectives.
After graduating in Computer Sciences from Madrid Technical University in 1980, he spent seven years with Iberia Airlines as a System Programmer before joining Amadeus Global Distribution Systems as Team Leader for the development of the Amadeus System in Miami, USA and in Nice, France.
In 1990 he joined Spanish Railway Operator RENFE as Project Manager for the interconnection of RENFE’s applications to the pan-European Hermes railway data network, before moving to Hit Rail B.V. where he worked for nine years as Director for Network Services with responsibility for the implementation of the new secure Hermes IP VPN. During this time, he also obtained a Diploma in Business Administration at the London Business School.
Returning to RENFE/Adif in 2002, Antonio was responsible for all marketing, sales and strategy activities within the Telecommunications Business Unit of the Spanish railway operator/ Infrastructure Manager. He rejoined Hit Rail as General Manager in 2015.
Marcos Sacristán Cepeda, Contributor to the Rail CSIRT work stream in 4SECURail. R&D Manager at Tree Technology.
MSc in Telecommunication Engineering from the University of Oviedo (Spain) in 2007, his professional career is built around Research and Development (R&D), especially focusing on Information and Communication Technologies (ICT).
He worked as an R&D Engineer since 2007 to 2010 where he was a product innovation developer in mobile applications and geo-location technologies. In 2010 he specialised as an R&D Project Manager, where he was in charge of international (EU) R&D projects for the European Commission’s R&D programmes (H2020/FP7). In the latest years, as the R&D Manager he is in charge of the R&D department leading the R&D strategy and supervising research programs and project portfolio.
In these years I have gained expertise and passion for different research technology, especially on Big Data and Artificial Intelligence. Themes and sectors of application include safety and security, healthcare, transport, industry 4.0 and digital transformation, among others.
Andreas Klien, Head of Business Area Power Utility Communication, OMICRON electronics
Andreas Klien studied computer science at the Vienna University of Technology, where he also received his master’s degree in computer engineering. Andreas joined OMICRON in Klaus (Austria) in 2005, first as a developer and project manager, later as team lead for IEC 61850 product development. Since 2018, Andreas has been responsible for the Power Utility Communication (PUC) business at OMICRON. His fields of experience are in substation communication (15+ years), SCADA, and power systems cyber security (10+ years).
As a member of the WG10 in TC57 of the IEC he is participating in the development of the IEC 61850 standard series.
Pank Guleria, Deputy Engineering Director, Direct Rail Services
Pank Guleria is a Chartered Engineer and an effective senior railway professional and continuous improvement specialist with MBA and has over 18 years of experience within Railway and Ministry of Defence across multiple disciplines. Pank is currently employed as Deputy Engineering Director with Direct Rail Services and is responsible for production delivery, fleet management and stores. Pank has initiated engineering transformation with DRS by utilisation Lean Six Sigma tools, techniques, and behaviours. The change is welcomed by the engineering function as well as others functions within the business. The methodological approach has helped DRS to identify the problem areas, analyse them and created bespoke solution to streamline the process and procedures. This approach has also helped with the transition of Maximo Asset Management Systems from projects into BAU.
Miki Shifman, Co-Founder and CTO at Cylus
Miki Shifman is the CTO and co-founder of Cylus, which provides cybersecurity solutions for the rail industry. Miki is a veteran leader in the development of complex cybersecurity projects, with over ten years of experience in software engineering, research, and management. Prior to co-founding Cylus, Miki served as a cyber researcher and an R&D leader in the Cyber R&D Division of the Israel Defense Force’s Elite Technological Unit. He led teams awarded the Israel Defense Prize for exceptional technological breakthroughs and received high military honors for extraordinary achievement and exceptional contributions to national security. Miki has been recognized as an expert for Smart Mobility and Cyber Security by the World Economic Forum and he was featured on the Forbes “30 Under 30” list of 2020.