TBC - 7th October 2023

Great Malvern, UK

12th Edition



Themed Symposium

Thursday 10th October 2019 (all day)

Malvern Theatres, Great Malvern, WR14 3HB

Cut-down versions of enterprise security solutions are a poor fit for most small and micro organisations. However, the high volume, low margin business of securing small and medium sized enterprises (SMEs) is a relatively new one and needs innovative products and services. Not only are the majority of business in the UK SMEs, but they also have a direct impact on the supply chain security of large organisations.

The exhibition and symposium were free for all to attend.


European Cyber Security Month

ECSM is the EU’s annual advocacy campaign that takes place in October and aims to raise awareness of cyber security threats, promote cyber security among citizens and provide up to date security information, through education and sharing of good practices.

@CyberSecMonth, #CyberSecMonth




Registration & Exhibition Opens

Tour the exhibition ahead of the symposium. Download the programme pdf.

@festivalofinnov #InnovateMalvern #cybersecurity #SME



Presentations begin in the auditorium

Dr Adrian Burden, Festival Founder & Managing Director of Innovate Malvern CIC @apburden

Dr Emma Philpott MBE, Managing Director of UK Cyber Security Forum CIC @emphilpott




Innovation at a small scale

The Global Cyber Alliance focuses on solutions that make a difference in eradicating cyber risk and making the internet safer for everyone. They make these solutions available for free to any person, any organization, anywhere. Their projects focus on the most prevalent cyber risks individuals and businesses face, and to this end develop and deploy practical, real-world solutions that measurably improve the security of the cyber ecosystem. Looking to the future, GCA are investing resources to securing Internet of Things (IoT) devices and technologies.

Andy Bates, Executive Director UK & EMEA, Global Cyber Alliance

Andy joined the Global Cyber Alliance (GCA) in September 2017 bringing more than 25 years of experience having served as a Chief Engineer, Business Development Consultant, Product Development Director, and IT Director in Racal, Cable & Wireless and Level3. Most recently he served as the CTO at Verizon EMEA. While working across a range of technologies such as network, cloud, mobile, VOIP & identity, Andy has tended to specialise in large secure solutions for governments and challenging the status quo and conventional wisdom of security. He was deeply involved with systems such as Government Secure Intranet, PSN, Police National Network, as well as working with all the major UK government departments and international government customers and agencies. Andy is a Chartered Engineer and Fellow of the Chartered Management Institute.




Cyber – What are the numbers?

This presentation will take a look at cyber security related statistics, predominantly as they pertain to breaches, vulnerabilities, peoples/businesses attitude towards cyber exposure and security, and the cost.

Gary Green, UK Regional Sales & Business Development at AXA XL

Gary is the regional sales and business development representative for Axa XL specialising in the online SME division Angel Risk Management. He began his career in insurance in 1982 and since then has held roles as a broker as well as more predominantly in underwriting. Gary currently specialises in professional liability classes for small to medium sized enterprises in the UK where his role has evolved in to a more client facing business development and customer liaison position promoting Angel’s range of online products including Cyber. 




Defending the nation: the future of SME cyber security

In this utopian talk, we’ll find out how the backbone of our economy will learn to defend itself. With growing attacks, increasing legislation and pressure on supply chains, SMEs have never been more challenged by cyber security. Through the support of Government, industry and using technology, they will come out ahead of the hackers.

Jamie Akhtar, co-founder and CEO at CyberSmart

Jamie’s obsession with technology started at a young age, he has been building and breaking things since he could turn on a computer. He’s built over 100 web applications, served as the CTO of several organisations and wears a white hat as an ethical hacker. He is now founding CEO of CyberSmart, a venture-capital backed cyber security startup that provides automated compliance for SME’s.




Business Resilience in a Data Centric World

This presentation will walk through the numerous challenges that face businesses today and how cyber security is emerging as a hot topic. This trend requires new thinking and new behaviours that many are not comfortable with.

Ian Butcher, Rack Scale Design Program Manager at Intel Corporation

Ian is a 16-year veteran of Intel Corporation working in various roles supporting multiple business units across IT, sales & marketing and business operations and brings a wealth of internal and process and operational experience. He has trained as a business analyst, project manager and programme manager working with global organisations to deliver projects across the world. Ian is also an associate director at Resilience First who provide strategic thinking and advocacy to improve business resilience. Ian provides his experience and links with the technology sector to connect businesses to leading edge technology solutions.




Cybersecurity is getting personal

Cybersecurity isn’t just a big business problem, most cybersecurity awareness vendors don’t reflect how our work and home lives are now blended. With increased interconnectivity and advancing technology, our compassion and kindness is our fundamental flaw. In this presentation, we’ll address how SME and more importantly the individuals that are critical to business success and continuity, can adopt small changes that can make a big difference through creating an awareness culture that empowers individuals and prevents them being exploited.

Melanie Oldham, CEO & Founder Bob’s Business

Melanie is the driving force behind Bob’s Business, an award-winning cyber security awareness training and phishing simulations provider. She has racked up over 15 years’ experience in the cyber security sector and has become a reputable and well-respected force within the industry. Bob’s Business has delivered awareness campaigns to organisations of all shapes and sizes, from 10 users through to 70,000 users. Melanie is also the founder of the Yorkshire Cyber Security Cluster, a collaborative group that works together to reduce cyber security within the region. The cluster brings together local businesses, academics, the police and experts to discuss, collaborate and educate on the key issues facing the region.



Networking Lunch

Opportunity to tour the exhibition




Data Breaches and how to manage them?

Has your company taken the right measures to avoid data breaches and mitigate the risk? Is your thrid-party supply chain network prepared? If you suffer a breach, do you have the right processes in place to manage it and ensure you take the right remedial action?  Under the new data protection regulations being introduced globally, there are regulations that protect and regulate the use of an individual’s personal data.  This hands-on session will look at how to avoid breaches of data privacy and how to minimise the effects and risks.

David Clarke FBCS, Chief Technology Officer at The Trust Bridge

David is a highly experienced Chief Information Security Officer / Cyber Security and GDPR Manager. He has a deep knowledge of global project delivery and operational leadership, operating across FTSE 100 companies, SMEs and start-ups within Financial Services, FinTech, Telecoms, Technology and Utilities sectors developing strong coherent cyber security, GDPR data protection and privacy strategies. David was the founder of the GDPR Technology Forum with over 18,000 members. He has also been recognised as one of the top 10 influencers by Thompson Reuter top 30 most influential thought-leaders and thinkers on social media in risk management, compliance and regtech in the UK and features in top 50 list of Global Experts list by Kingston Technology. David is co-author of the popular online training courses accredited by Bureau Veritas and AMPG: “Data Breaches and How to Manage them”, ”Marketing in the Data Privacy Era” and “Certificate of GDPR Understanding."

@1DavidClarke, @TheTrustBridge1




Raising the Cyber Security Bar

Representative from the National Cyber Security Centre (NCSC).




Eliminating Commodity Cyber Threats in SMEs

Continuous monitoring can not only accelerate the adoption of Cyber Essentials and Cyber Essentials Plus through rapid and accurate IT asset discovery, but the same policy combined with regular risk scoring can gamify cyber security for SMEs helping them increase their security posture. By adopting this approach, most SMEs can implement effective cyber protection in seven days eliminating most commodity cyber threats.

Tim Moran, Founder & CEO, LuJam Cyber

Tim is an ex Cold War Submariner who has 30 years of experience in IT Networking, Cyber Security and Cyber Intelligence. He previously held senior sales management roles within the finance sector at Cisco, Juniper and VeriSign before entering the world of start-ups in 2009. Gaining valuable experience in three early stage cyber businesses, Tim decided to go it alone founding LuJam Cyber in 2014. Using cloud based data science, LuJam provides jargon free, active cyber protection, risk and compliance solutions for Managed Service Providers targeted at their customers.





Securing the changing workforce

This presentation will explore how economic and social changes in the workplace have created a need to rethink security.

Tim Wilkinson, UK Sales Leader, Avast Business

Tim manages a team of experienced account managers and business development professionals to oversee all aspects of the relationships with Avast Business channel partners. He brings more than two decades of experience leading IT channel sales and business development teams for vendors, distributors and managed service providers with a focus on support and services targeted to small and medium-sized enterprises. Tim has a passion for building long-term relationships with clients based on trust and excellence of service backed by a well-trained and motivated team. Prior to Avast, Tim held management roles at businesses that include Doherty Associates, Acer, Northamber, Lenovo and Ideal Hardware (Bell Microproducts). Highlights include leading Acer’s newly established specialist end-user sales team and running the entire channel business at Lenovo.

@AvastBusiness, @avast_antivirus




Low cost effective monitoring solutions for small companies and individuals

The Community SOC Team have been together for a year now and they have been very busy and productive. 24 very talented Neurodiverse people have now been trained and employed as a result of the UK Cyber Security Forum's training initiative, including those now empowered to deliver products and services on behalf of the IASME Consortium Ltd.  Two members of the SOC team will provide an insight to the latest monitoring solutions aimed at small businesses in partnership with LuJam. Hear how the IASME team has also developed enterprise-style solutions with Avast that fit the needs and budgets of those with more limited resources like small charities and vulnerable individuals.

Jonathan Ellwood, Community SOC Manager at The IASME Consortium

Jonathan has more than twenty years of experience as a Project Manager and as a Production Director in design and sub-contract precision engineering across a range of different sectors, specialising in complex safety-critical applications for Aerospace and Oilfield guidance systems.  He has certain specialist areas including the development of new processes, services, business analysis and approved techniques. Jonathan was diagnosed with Asperger’s in 2016 and joined UK Cyber Security Forum's training for Neurodiverse individuals following a referral by the NHS. He also received a distinction in a post graduate programme for business leadership in 2018 during this time. Jonathan brings his extensive engineering experience and transferable skill sets to the role of Community SOC Manager and has developed an empowered, diverse team to deliver a range of cyber security services.

@iasme1, @J_Ellwood1

Jessica Burden, Cyber Security Analyst at The IASME Consortium

Jessica works in IASME’s Community SOC, developing and maintaining methodologies and processes that deliver monitoring services to both SMEs and individuals. Having pioneered the Firewall Analysis Service, she is now Product Designer and Technical Writer for the new IASME service, ’Community Protect’, for vulnerable individuals. She enjoys promoting these IASME services at exhibitions and conferences. 




Small Company Certifications and the Skills Gap

A certification scheme for large numbers of non-technical, small companies has to be fundamentally different to schemes designed to certify a small number of large organisations with in-house expertise. Emma will discuss how IASME is developing low margin schemes to focus on high volumes. Emma will then move on to discuss IASME’s work to help fill the cyber security skills gap with the untapped pool of talented, neuro-diverse individuals.

Dr Emma Philpott MBE, CEO of The IASME Consortium.

Emma is CEO of the IASME Consortium Ltd, a company which focuses on information assurance for small companies and the supply chain. IASME worked with the UK government to develop the Cyber Essentials scheme and then was one of the first two Accreditation Bodies for the associated assessment. Emma is also Founder and Managing Director of the UK Cyber Security Forum, a network of more than 600 small companies working in cyber security across the UK. The Forum is leading on an initiative to train unemployed neuro-diverse adults in cyber security and supporting them to find employment. 23 of these individuals have now found employment since the training began in June 2018.

@iasme1, @emphilpott







 Join us at the Festival's Formal Dinner during the evening. 



AdventIM 150

Advent IM is one of the UK’s leading independent cyber security specialist, with a unique approach to providing holistic security management solutions. They work with clients nationwide across both the public and private sectors to implement best practice security policies, processes and procedures and understand security threats in order to address security risk.  Advent IM is a Crown Commercial Services Supplier through the G-Cloud Frameworks as well as a supplier to HM Government. [Stand B03]


AurayaLogo 150pxw

Auraya has developed the next-generation voice biometric technology that delivers an easy to use yet highly secure authentication capability. Auraya provides its technology to a global network of partners that incorporate Auraya’s voice biometric engine, ArmorVox™, into their secure, customer-facing applications and fraud detection solutions. The ecosystem of partners delivers solutions in all industries including government, education, healthcare, financial services, retail services and telecommunications. [Stand B11]


Avast 150pxw

Avast is one of the largest security companies in the world using next-gen technologies to fight cyber attacks in real time, with products and services for both the consumer and for business. Their innovative security approach comes from some of the most talented and experienced security engineers on the planet. Headquartered in Prague – a center of excellence for engineering and computer science – they attract the best and the brightest with over 45% of their employees in R&D. [Stand B10]

@AvastBusiness, @avast_antivirus


BlockMark Technologies develops blockchain applications. As a proof of concept, it launched BlockMark Gems, a marketplace of eye-catching digital art that demonstrates nonfungible tokens (nfts) and the associated management of Intellectual Property. The company is now beta-testing BlockMark Registry, a certificate and accreditation management platform anchored to the blockchain. BlockMark also offers bespoke and interactive executive training programmes about blockchain technology. [Stand B12]



Bob’s Business is a cyber security awareness company on a mission to help you bridge the knowledge gap between IT and end users. They specialise in delivering security awareness and education in an innovative way that engages the user and results in a culture change within the workforce. [Stand B05]


BCSLogo 150pxw

The BCS (British Computer Society) is the Chartered Institute for IT, an organisation committed to making IT good for society. The Institute fosters links between experts from industry, academia and business to promote new thinking, education and knowledge sharing. [Stand B18]


businessmix 150pxw

business mix is a collaboration network and consultancy. They work with both large corporates seeking to innovate and start-up and scale-up companies, helping them to grow operationally. business mix focuses on a specific area; owning the space between the large corporates and the start-up world allowing them to make it work for both sides.  [Stand B16]


CrosswordCyber 150pxw

Crossword Cybersecurity plc (AIM:CCS) is a technology commercialisation company focusing exclusively on the cyber security sector. We work with research intensive European university partners to identify promising cyber security intellectual property (IP) from research that our industry partners tell us meet emerging real-world challenges. [Stand B07]


CyberSmart 150pxw

CyberSmart is the automated platform that helps businesses get and stay secure with recognised certification standards. They believe that every organisation should be able to comply with recognised standards and protect their data and infrastructure. CyberSmart builds technology to make security and compliance accessible. [Stand B13]

DRisQ 150pxw

D-RisQ has built an expert team of consultants, analysts and implementers to “change the way the world develops software” by bringing advanced automated software development tools to safety critical, security critical and business critical systems developers. [Stand B06]

GlobalCyberAlliance 150pxw 

The Global Cyber Alliance (GCA) is an international, cross-sector effort dedicated to eradicating cyber risk and improving our connected world. GCA projects focus on the most prevalent cyber risks individuals and businesses face. They develop and deploy practical, real-world solutions that measurably improve the security of our cyber ecosystem. [Stand B04]


IASME 150pxw

IASME is one of the four Cyber Essentials accreditation bodies appointed by the UK Government. Together with their Certification Body companies, they can certify you to the Cyber Essentials scheme required for many government tenders. They also offer the IASME Governance standard which, based on international best practice, is risk-based and includes aspects such as physical security, staff awareness, and data backup. [Stand B09]


Intel 150pxw

Intel Corporation are well known for their processors, but they also produce a range of innovative solutions for cloud computing, the Internet of Things and 5G connectivity. [Stand B19]


LuJam 150pxw 

LuJam Cyber was founded in 2014 to address the fact that small and mid-sized businesses need similar levels of cyber security to those enjoyed by major enterprises, but delivered in a way that is easy for a business owner or manager to use, without having to be an IT specialist. LuJam has since launched its Cyber Protection Service, an inexpensive subscription service offering a jargon free customer experience that gives visibility of all the devices connected to a network, while protecting it 24/7 against the latest cyber threats. [Stand B17]


METCloud 150pxw

METCloud is a cloud solution that has been built around the highest level of cyber security technologies available. They tailor their innovative services to specifically align with your organisation’s requirements, ensuring METCloud is the only cloud you need. METCloud’s services include: Next Generation Firewall (NGFW), Security Information and Event Management (SIEM), Endpoint Protection, Network Access Control, Automated Patch Management & Backup, Enterprise Class Servers & Storage and Proactive Monitoring & Surveillance 24/7. [Stand B01]


MalvernCyber 150pxw

The Malvern Cyber Security Cluster is a group of small / medium cyber security companies centred around Malvern in Worcestershire, cooperating on a range of initiatives to grow their businesses. [Stand B10]


 TheTrustBridge 150pxw

The Trust Bridge™ offers organisations a unique combination of expertise and advice, combined with independently accredited training, designed to ensure that they deliver trusted, compliant, secure services to their customers, clients and members, operating at all the touchpoints of Data Privacy regulation, including GDPR, CCPA and others, PECR and linked e-privacy laws. [Stand B08].


Todays Security 150

Built on experience and practicality, Today’s Security believe in helping businesses regardless of their size to improve their Information Security. They believe in a jargon free, straightforward and accessible approach to cyber security. Every business needs to understand this area and we’re here to help with a range of products and services to keep your data safe and the bad guys out.  [Stand B20]


Tranchulas 150pxw

Tranchulas are a global provider of offensive and defensive cyber solutions, information security assessment, compliance and managed security services. The company’s elite team of security experts employs the latest threat intelligence and advanced countermeasures to help build effective security design that protects and enhances business operations. [Stand B02]


UKCSF 150pxw

The UK Cyber Security Forum represents small medium enterprises who are actively working in cyber security across the UK, helping to set up informal local "Clusters" for the industry. With over 500 SME members, the forum provides a collaboration portal, industry news and business opportunities both in the UK and overseas. [Stand B09]


WorcBizCent 150pxw

Worcestershire Business Central, part of the Government-supported growth hub network, brings all aspects of business support into one place, making it clear and simple for businesses to access and find the help they need. With access to a helpline, website, and one-to-one sector focused support, they can offer free support and guidance at any stage of your business life-cycle; starting, growing, running and funding. [Stand B14]


WICLogo 150pxw

The Wyche Innovation Centre is a business accelerator and technology incubator situated in an Area of Outstanding Natural Beauty on the side of the Malvern Hills in the heart of the UK's Cyber Valley. It is home to over 40 businesses & organisations, including companies involved in the cyber security sector, operating from serviced offices, hot desks or as a virtual office. [Stand C01]


YorCyberSec 150pxw 

YorCyberSec was founded in March 2019 with the view to bring a more sensible approach to Cyber Security, Information Security, Risk and Compliance. They act as brokers and procurement specialists, assisting businesses with a variety of projects. YorCyberSec has experience working with a range of businesses from start-ups to multi-national FTSE 100s on projects from vulnerability scanning to putting in place a working Cyber Security Strategy including testing, security awareness training and phishing assessments. [Stand B15]


Business Centre

If you needed time or space to sit at a desk and respond to some emails, you could pop next door: BLOOM.SPACE kindly made part of their facility available to Festival delegates during the business sessions.

BloomSpace 150pxw

BLOOM.SPACE is located in Great Malvern at The Grange, between the Coach House Theatre and the Malvern Theatres. They have a Club Room, hot desks, fixed desks, multiple private offices, training room, meeting rooms, a treatment room, pop-up shop space and some wonderful views of the Malvern Hills. Membership includes free access to their London office.




2019 Cyber Security Sponsors

2019 Festival Supporters