Executive Leadership

Executive Leadership

David Adamson

Managing Director

Professional Experience

David is a cyber security, IT risk management and governance specialist. He has over 20 years of consulting experience assisting clients in Asia-Pacific, Europe and USA. David works closely with leading organisations in the Financial Services, Energy and Resources, Telecommunications, Media and Government sectors to help them to manage cyber security risks and to leverage technology to add value and gain business advantage. He often plays a key role working together with the business, IT, risk management, audit communities and regulators to address cyber security matters.

David remains a cyber security practitioner, engaging with senior business leaders and executive stakeholders through to subject matter experts to deliver enterprise wide security capability enhancement programs and security assessments. David has a strong technical background coupled with specialist legal expertise gained from his professional training as a barrister. This knowledge has proven invaluable when assisting clients to achieve and sustain compliance within a growing legislative and regulatory framework to implement effective governance and good practice frameworks.

Example Recent Projects

  • Leading Property Group: Performed a cyber security assessment using ISO 27001 and NIST CSF to identify control gaps and remediation recommendations formulated as ‘quick wins’ together with the design of a multi-year cyber security uplift program.
  • Major Australian Retailer: Review of the appropriateness of the group’s Cyber Security Strategy. This included assessing the approach to manage risk to within risk appetite and to raise the security capability to support the technology and business strategy.
  • Leading Energy and Utilities Company: Development of security strategy and implementation of a transformational, enterprise wide Security Management Programme for a major utilities company; including deployment of an enterprise Security Operations Centre and multiple process and technology centric enterprise solutions.
  • Leading Global Resources Company: Technical lead for the IT audit of enterprise systems and multiple mining assets. This included a detailed assessment of Operational Technology systems and supporting management processes used to operate production systems and plant machinery.
  • Multiple Government and Corporate Clients: Technical security assessments of web and mobile application and infrastructure technology, including penetration testing, manual and automated review of system configuration against vendor and industry good practice.
  • Regulator: Assessment of the effectiveness of the organisation’s cyber resilience processes and preparedness to respond to and recover from a cyber security incident. This included an assessment of security practices against the NIST CSF and benchmarking practices to other government and financial services organisations.

Areas of Expertise

  • Cyber Security
  • Information Security
  • IT Governance and Risk Management
  • IT Assurance
  • Data Privacy

Education

  • MA Hons Engineering, University of Cambridge
  • Post Graduate Law, City University London
  • Bar Vocational Course, Inns of Court School London
  • Barrister (non-practicing), Member of the Bar (Call 1998)

Professional Memberships & Certifications

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Information Systems Audit and Control Association (ISACA)
  • International Information Systems Security (ISC2)
  • British Computer Society (BCS)

 

Download Resume

 

Ready to work with us?