7th - 12th October 2019

Great Malvern, UK

8th Edition


Cyber Security: Securing SMEs


Themed Symposium

Thursday 10th October 2019 (all day)

Malvern Theatres, Great Malvern, WR14 3HB

Cut-down versions of enterprise security solutions are a poor fit for most small and micro organisations. However, the high volume, low margin business of securing small and medium sized enterprises (SMEs) is a relatively new one and needs innovative products and services. Not only are the majority of business in the UK SMEs, but they also have a direct impact on the supply chain security of large organisations. Join us at this free event to hear the latest about keeping SMEs secure.

The exhibition and symposium are free for all to attend, but please register in advance as places are limited.


European Cyber Security Month

ECSM is the EU’s annual advocacy campaign that takes place in October and aims to raise awareness of cyber security threats, promote cyber security among citizens and provide up to date security information, through education and sharing of good practices.

@CyberSecMonth, #CyberSecMonth




Registration & Exhibition Opens

Tour the exhibition ahead of the symposium.

@festivalofinnov #InnovateMalvern #cybersecurity #SME



Presentations begin in the auditorium

Dr Adrian Burden, Festival Founder & Managing Director of Innovate Malvern CIC @apburden

Dr Emma Philpott MBE, Managing Director of UK Cyber Security Forum CIC @emphilpott




Innovation at a small scale

The Global Cyber Alliance focuses on solutions that make a difference in eradicating cyber risk and making the internet safer for everyone. They make these solutions available for free to any person, any organization, anywhere. Their projects focus on the most prevalent cyber risks individuals and businesses face, and to this end develop and deploy practical, real-world solutions that measurably improve the security of the cyber ecosystem. Looking to the future, GCA are investing resources to securing Internet of Things (IoT) devices and technologies.

Andy Bates, Executive Director UK & EMEA, Global Cyber Alliance

Andy joined the Global Cyber Alliance (GCA) in September 2017 bringing more than 25 years of experience having served as a Chief Engineer, Business Development Consultant, Product Development Director, and IT Director in Racal, Cable & Wireless and Level3. Most recently he served as the CTO at Verizon EMEA. While working across a range of technologies such as network, cloud, mobile, VOIP & identity, Andy has tended to specialise in large secure solutions for governments and challenging the status quo and conventional wisdom of security. He was deeply involved with systems such as Government Secure Intranet, PSN, Police National Network, as well as working with all the major UK government departments and international government customers and agencies. Andy is a Chartered Engineer and Fellow of the Chartered Management Institute.




Cyber – What are the numbers?

This presentation will take a look at cyber security related statistics, predominantly as they pertain to breaches, vulnerabilities, peoples/businesses attitude towards cyber exposure and security, and the cost.

Gary Green, UK Regional Sales & Business Development at AXA XL

Gary is the regional sales and business development representative for Axa XL specialising in the online SME division Angel Risk Management. He began his career in insurance in 1982 and since then has held roles as a broker as well as more predominantly in underwriting. Gary currently specialises in professional liability classes for small to medium sized enterprises in the UK where his role has evolved in to a more client facing business development and customer liaison position promoting Angel’s range of online products including Cyber. 




Defending the nation: the future of SME cyber security

In this utopian talk, we’ll find out how the backbone of our economy will learn to defend itself. With growing attacks, increasing legislation and pressure on supply chains, SMEs have never been more challenged by cyber security. Through the support of Government, industry and using technology, they will come out ahead of the hackers.

Jamie Akhtar, co-founder and CEO at CyberSmart

Jamie’s obsession with technology started at a young age, he has been building and breaking things since he could turn on a computer. He’s built over 100 web applications, served as the CTO of several organisations and wears a white hat as an ethical hacker. He is now founding CEO of CyberSmart, a venture-capital backed cyber security startup that provides automated compliance for SME’s.







Title to be confirmed

Synopsis to follow.

Melanie Oldham, CEO & Founder Bob’s Business

Melanie is the driving force behind Bob’s Business, an award-winning cyber security awareness training and phishing simulations provider. She has racked up over 15 years’ experience in the cyber security sector and has become a reputable and well-respected force within the industry. Bob’s Business has delivered awareness campaigns to organisations of all shapes and sizes, from 10 users through to 70,000 users. Melanie is also the founder of the Yorkshire Cyber Security Cluster, a collaborative group that works together to reduce cyber security within the region. The cluster brings together local businesses, academics, the police and experts to discuss, collaborate and educate on the key issues facing the region.



Networking Lunch

Opportunity to tour the exhibition



Workshop: Data Breaches and how to manage them?

Has your company taken the right measures to avoid data breaches and mitigate the risk? Is your thrid-party supply chain network prepared? If you suffer a breach, do you have the right processes in place to manage it and ensure you take the right remedial action?  Under the new data protection regulations being introduced globally, there are regulations that protect and regulate the use of an individual’s personal data.  This hands-on session will look at how to avoid breaches of data privacy and how to minimise the effects and risks.

Places limited, so a sign-up sheet will be available on the day at the registration desk or you can This email address is being protected from spambots. You need JavaScript enabled to view it. to add your name to the workshop list.

David Clarke FBCS, Chief Technology Officer at The Trust Bridge

David is a highly experienced Chief Information Security Officer / Cyber Security and GDPR Manager. He has a deep knowledge of global project delivery and operational leadership, operating across FTSE 100 companies, SMEs and start-ups within Financial Services, FinTech, Telecoms, Technology and Utilities sectors developing strong coherent cyber security, GDPR data protection and privacy strategies. David was the founder of the GDPR Technology Forum with over 18,000 members. He has also been recognised as one of the top 10 influencers by Thompson Reuter top 30 most influential thought-leaders and thinkers on social media in risk management, compliance and regtech in the UK and features in top 50 list of Global Experts list by Kingston Technology. David is co-author of the popular online training courses accredited by Bureau Veritas and AMPG: “Data Breaches and How to Manage them”, ”Marketing in the Data Privacy Era” and “Certificate of GDPR Understanding."

@1DavidClarke, @TheTrustBridge1



Raising the Cyber Security Bar

Speaker from the National Cyber Security Centre (NCSC).




Eliminating Commodity Cyber Threats in SMEs

Continuous monitoring can not only accelerate the adoption of Cyber Essentials and Cyber Essentials Plus through rapid and accurate IT asset discovery, but the same policy combined with regular risk scoring can gamify cyber security for SMEs helping them increase their security posture. By adopting this approach, most SMEs can implement effective cyber protection in seven days eliminating most commodity cyber threats.

Tim Moran, Founder & CEO, LuJam Cyber

Tim is an ex Cold War Submariner who has 30 years of experience in IT Networking, Cyber Security and Cyber Intelligence. He previously held senior sales management roles within the finance sector at Cisco, Juniper and VeriSign before entering the world of start-ups in 2009. Gaining valuable experience in three early stage cyber businesses, Tim decided to go it alone founding LuJam Cyber in 2014. Using cloud based data science, LuJam provides jargon free, active cyber protection, risk and compliance solutions for Managed Service Providers targeted at their customers.

@LuJamCyber, @uknsc




Securing the changing workforce

This presentation will explore how economic and social changes in the workplace have created a need to rethink security.

Tim Wilkinson, UK Sales Leader, Avast Business

Tim manages a team of experienced account managers and business development professionals to oversee all aspects of the relationships with Avast Business channel partners. He brings more than two decades of experience leading IT channel sales and business development teams for vendors, distributors and managed service providers with a focus on support and services targeted to small and medium-sized enterprises. Tim has a passion for building long-term relationships with clients based on trust and excellence of service backed by a well-trained and motivated team. Prior to Avast, Tim held management roles at businesses that include Doherty Associates, Acer, Northamber, Lenovo and Ideal Hardware (Bell Microproducts). Highlights include leading Acer’s newly established specialist end-user sales team and running the entire channel business at Lenovo.

@AvastBusiness, @avast_antivirus




Low cost effective monitoring solutions for small companies and individuals

The Community SOC Team have been together for a year now and they have been very busy and productive. 24 very talented Neurodiverse people have now been trained and employed as a result of the UK Cyber Security Forum's training initiative, including those now empowered to deliver products and services on behalf of the IASME Consortium Ltd.  Two members of the SOC team will provide an insight to the latest monitoring solutions aimed at small businesses in partnership with LuJam. Hear how the IASME team has also developed enterprise-style solutions with Avast that fit the needs and budgets of those with more limited resources like small charities and vulnerable individuals.

Jonathan Ellwood, Community SOC Manager at The IASME Consortium

Jonathan has more than twenty years of experience as a Project Manager and as a Production Director in design and sub-contract precision engineering across a range of different sectors, specialising in complex safety-critical applications for Aerospace and Oilfield guidance systems.  He has certain specialist areas including the development of new processes, services, business analysis and approved techniques. Jonathan was diagnosed with Asperger’s in 2016 and joined UK Cyber Security Forum's training for Neurodiverse individuals following a referral by the NHS. He also received a distinction in a post graduate programme for business leadership in 2018 during this time. Jonathan brings his extensive engineering experience and transferable skill sets to the role of Community SOC Manager and has developed an empowered, diverse team to deliver a range of cyber security services.

@iasme1, @J_Ellwood1

Jessica Burden, Cyber Security Analyst at The IASME Consortium

Jessica works in IASME’s Community SOC, developing and maintaining methodologies and processes that deliver monitoring services to both SMEs and individuals. Having pioneered the Firewall Analysis Service, she is now Product Designer and Technical Writer for the new IASME service, ’Community Protect’, for vulnerable individuals. She enjoys promoting these IASME services at exhibitions and conferences. 




Development of certification schemes suitable for large numbers of small organisations

Synopsis to follow.

Dr Emma Philpott MBE, CEO of The IASME Consortium.

Emma is CEO of the IASME Consortium Ltd, a company which focuses on information assurance for small companies and the supply chain. IASME worked with the UK government to develop the Cyber Essentials scheme and then was one of the first two Accreditation Bodies for the associated assessment. Emma is also Founder and Managing Director of the UK Cyber Security Forum, a network of more than 600 small companies working in cyber security across the UK. The Forum is leading on an initiative to train unemployed neuro-diverse adults in cyber security and supporting them to find employment. 23 of these individuals have now found employment since the training began in June 2018.

@iasme1, @emphilpott







 Join us at the Festival's Formal Dinner during the evening. 



Please register to exhibit.

AdventIM 150

Advent IM is one of the UK’s leading independent cyber security specialist, with a unique approach to providing holistic security management solutions. They work with clients nationwide across both the public and private sectors to implement best practice security policies, processes and procedures and understand security threats in order to address security risk.  Advent IM is a Crown Commercial Services Supplier through the G-Cloud Frameworks as well as a supplier to HM Government. [Stand TBC]



Bob’s Business is a cyber security awareness company on a mission to help you bridge the knowledge gap between IT and end users. They specialise in delivering security awareness and education in an innovative way that engages the user and results in a culture change within the workforce. [Stand TBC]


businessmix 150pxw

business mix is a collaboration network and consultancy. They work with both large corporates seeking to innovate and start-up and scale-up companies, helping them to grow operationally. business mix focuses on a specific area; owning the space between the large corporates and the start-up world allowing them to make it work for both sides.  [Stand TBC]


DRisQ 150pxw

D-RisQ has built an expert team of consultants, analysts and implementers to “change the way the world develops software” by bringing advanced automated software development tools to safety critical, security critical and business critical systems developers. [Stand TBC]

IASME 150pxw

IASME is one of the four Cyber Essentials accreditation bodies appointed by the UK Government. Together with their Certification Body companies, they can certify you to the Cyber Essentials scheme required for many government tenders. They also offer the IASME Governance standard which, based on international best practice, is risk-based and includes aspects such as physical security, staff awareness, and data backup. [Stand TBC]


MalvernCyber 150pxw

The Malvern Cyber Security Cluster is a group of small / medium cyber security companies centred around Malvern in Worcestershire, cooperating on a range of initiatives to grow their businesses. [Stand TBC]



Shayype is quite simply a new way for everyone on the planet to prove who they are, anywhere, any time. One of its uses is as a great substitute for ordinary (vulnerable, hard-to-remember) passwords. Unlike passwords and other “codes”, Shayype is extremely easy to remember. All you need is to remember a simple pattern or shape, which you’ll use to read off “new” sets of numbers from a little matrix of squares. As your Shayype code will change every time, it’ll help keep you and everything you do online much safer.   [Stand TBC]

 TheTrustBridge 150pxw

The Trust Bridge™ offers organisations a unique combination of expertise and advice, combined with independently accredited training, designed to ensure that they deliver trusted, compliant, secure services to their customers, clients and members, operating at all the touchpoints of Data Privacy regulation, including GDPR, CCPA and others, PECR and linked e-privacy laws. [Stand TBC].


ThinkCyber 150

ThinkCyber's RedFlags product applies behavioural science theory in a highly innovative approach to security awareness. By delivering context-sensitive, real-time, security awareness nudges, their toolset drives enduring secure behavioural change, reduces operational risk, nudges users to 100% training compliance and increases visibility of staff cyber risks.  [Stand TBC]


Todays Security 150

Built on experience and practicality, Today’s Security believe in helping businesses regardless of their size to improve their Information Security. They believe in a jargon free, straightforward and accessible approach to cyber security. Every business needs to understand this area and we’re here to help with a range of products and services to keep your data safe and the bad guys out.  [Stand TBC]


Tranchulas 150pxw

Tranchulas are a global provider of offensive and defensive cyber solutions, information security assessment, compliance and managed security services. The company’s elite team of security experts employs the latest threat intelligence and advanced countermeasures to help build effective security design that protects and enhances business operations. [Stand TBC]


UKCSF 150pxw

The UK Cyber Security Forum represents small medium enterprises who are actively working in cyber security across the UK, helping to set up informal local "Clusters" for the industry. With over 500 SME members, the forum provides a collaboration portal, industry news and business opportunities both in the UK and overseas. [Stand TBC]


WICLogo 150pxw

The Wyche Innovation Centre is a business accelerator and technology incubator situated in an Area of Outstanding Natural Beauty on the side of the Malvern Hills in the heart of the UK's Cyber Valley. It is home to over 40 businesses & organisations, including companies involved in the cyber security sector, operating from serviced offices, hot desks or as a virtual office. [Stand C01]



Business Centre

If you need time or space to sit at a desk and respond to some emails, you can pop next door: BLOOM.SPACE have kindly made part of their facility available to Festival delegates during the business sessions.

BloomSpace 150pxw

BLOOM.SPACE is located in Great Malvern at The Grange, between the Coach House Theatre and the Malvern Theatres. They have a Club Room, hot desks, fixed desks, multiple private offices, training room, meeting rooms, a treatment room, pop-up shop space and some wonderful views of the Malvern Hills. Membership includes free access to their London office.


Subject to change. 


2019 Festival Sponsors

2019 Festival Supporters