Thomas B.

Thomas B. Email and Phone Number

CISO | NED | CRO | CIO | Executive Advisor (Local in UK, EU & US or Remote Worldwide) @ RHYTHM AI Ltd
Thomas B.'s Location
London, England, United Kingdom, United Kingdom
About Thomas B.

Thomas is an ex-Big Four information security professional with over 30 years of experience providing strategic, organizational, technology and pragmatic results-oriented solutions for organizations of any size and across every industry.Currently Thomas is providing executive services full-time or fractional as a Chief Information Security Officer, Chief Risk Officer, Data Protection Officer, non-executive director and other advisory services to address unique business challenges. Working from a strong consultancy background Thomas demonstrates expertise in board level communications, executive security management, compliance, strategy, technology transformation, third party assurance, data protection, cloud security and complex security solution design that balances business risk with value centric results.Previous client experience in financial services, government, defence, healthcare, oil and gas, telecommunications, audit, consulting, retail and critical national infrastructure enables Thomas to steer an organization’s strategy to leverage unique business solutions, diverse infrastructure, and limited resources while addressing emerging cyber risks. Thomas holds certifications and knowledge in: CISSP, Chartered Institute of Information Security, ISO 27001 Master, GDPR, PCI-DSS, NIST, ITIL, HIPPA, Cobit, Business Continuity, TOGAF, SABSA, CSA Star and others. Currently based in London, England since 2003, Thomas continues to provide client services in the UK, United States, European Union, and globally.

Thomas B.'s Current Company Details
RHYTHM AI Ltd

Rhythm Ai Ltd

View
CISO | NED | CRO | CIO | Executive Advisor (Local in UK, EU & US or Remote Worldwide)
Thomas B. Work Experience Details
  • Rhythm Ai Ltd
    Chief Information Security Officer (Ciso)
    Rhythm Ai Ltd Jul 2023 - Present
    London, England, Gb
    Providing executive, investor, client and organisational security leadership for this software as a medical device (SaMD) company focused on the use of artificial intelligence to assist physicians with atrial fibrillation ablation cardiac mapping procedures. Managing the cyber security risk management methodologies, processes, and solutions to ensure data is protected and secured throughout the service lifecycle.
    View
  • The English-Speaking Union
    Non Executive Director (Ned) & Cyber Security Advisor
    The English-Speaking Union May 2023 - Present
    London, Gb
    Providing board-level advisory services as a non-executive director related to cyber security, information technology, customer relationship management (CRM), and boarder aspects realated to risk and compliance.
    View
  • Imago Solutions Ltd.
    Ceo And Managing Director
    Imago Solutions Ltd. Dec 2008 - Present
    London, Greater London, Gb
    CEO and Managing director for this London based boutique cyber security advisory and consulting company who employ and leverage ex-Big Four resources with a minimum of 20+ years experience to provide strategic, organisational, technology and pragmatic results-oriented solutions for companies of any size and across every industry.
    View
  • Stealth Mode
    Non Executive Director And Board Advisor
    Stealth Mode Dec 2022 - Jun 2023
    Contracted as a NED and board advisor to help this startup prepare for a Series A funding drive while ensuring IP and sensitive data is protected from external and internal threat vectors. Leveraging a combination of COTS, SaaS and IaaS solutions to develop a pragmatic tactical security / data privacy architecture and strategy designed to improve over time as investment and profitability increases.
    View
  • Glg
    Council Member
    Glg Feb 2020 - Jun 2023
    New York, Ny, Us
    Corporate and executive advisor for GLG clients on a variety of industry and technology topics leveraging my non-executive director, consulting and advisory experience.
    View
  • Arm
    Ciso Advisor And Interim Head Of Grc
    Arm Sep 2022 - Dec 2022
    Cambridge, Cambs, Gb
    Supported CISO and CIO with the development of new enterprise IT and enterprise security target operating Models (TOM) along with a new information security strategy, while managing a team of 8 within the Governance Risk and Compliance (GRC) function. Laid foundation for new risk management framework based on ISO 27005 supported by an updated control framework using NIST CSF 1.1 integrated with ServiceNow IRM modules and UCF control mapping. Managed broad number of executive stakeholder relationships related to both tactical GRC functional delivery and pre-IPO readiness transformation activities. Supported complex data protection strategy with project input for ransomware, insider threat, Managed Security Service Provider (MSSP) outsourcing, audit facilitation and establishment of a new operational resilience framework to protect critical business services and assets.
    View
  • Doctor Care Anywhere
    Interim Chief Risk Officer (Cro)
    Doctor Care Anywhere Nov 2021 - Sep 2022
    London, England, Gb
    Leveraging experience to establish a new consolidated enterprise risk framework while managing the governance risk and compliance (GRC) function in the heavily regulated UK healthcare and cloud platform services market (e.g. CQC, NHS Digital, DCB0129/160, ASX, etc.). Established streamlined ISO 27001 Information security management system (ISMS) combined with ISO 9001 quality management system (QMS) for effective and pragmatic risk management across the enterprise.
    View
  • Doctor Care Anywhere
    Interim Chief Information Security Officer (Ciso)
    Doctor Care Anywhere May 2021 - Nov 2021
    London, England, Gb
    Provided information security leadership as CISO working with the Board, leadership and every department to drive complex compliance and assurance requirements (e.g. CQC, NHS digital, ISO, cyber essentials, commercial, M&A, PCI-DSS, etc.), establish a new information security strategy, structure a target operating model (TOM) and design controls to meet increasing risks within the UK healthcare and cloud platform services market.
    View
  • Signal ™
    Chief Information Security Officer (Ciso)
    Signal ™ Dec 2019 - Oct 2021
    Chicago, Illinois, Us
    Providing executive advisory services and fulfilling the Chief Information Security Officer (CISO) role. Developed and implemented custom ISO 27001 information security management system (ISMS) and privacy information management system (PIMS) for a US internet data marketing management company focusing on pseudonymized privacy and GDPR/CCPA compliance leveraging cloud security controls within Amazon Web Services (AWS), Google G Suite, FortiGate and other SaaS and PaaS solutions.
    View
  • Kpmg Uk
    Information Risk Management Framework Lead
    Kpmg Uk Oct 2020 - May 2021
    London, Gb
    Managed the design, development, and delivery of custom risk management framework team to support both enterprise risk and information security transformation programmes as well as architect a new risk target operating model (TOM). The new methodology supports a wide range of compliance and assurance capabilities (e.g. FRC, ISO, cyber essentials, HM government, contractual, etc.), custom controls, risk assessment methods, internal audit, reporting and integration with improvements to enterprise security solutions (e.g. vulnerability management, identity & access, business continuity, strategy, enterprise architecture, awareness and training, etc.).
    View
  • Deloitte
    Global Isms Compliance Lead
    Deloitte May 2016 - Dec 2019
    Worldwide, Oo
    Delivered a global security compliance programme resulting in 48 individual ISO 27001 certifications covering all 250 thousand employees of this Big Four audit firm while supporting the implementation of new security strategy for global, regional, and member firm CIOs, CISOs, and business partners.
    View
  • Deloitte
    Enterprise Isms Compliance Officer
    Deloitte Aug 2014 - Apr 2018
    Worldwide, Oo
    Successfully transitioned the enterprise from ISO27001:2005 to 2013 version and invented a custom designed ISMS methodology and part SharePoint / Excel GRC solution involving daily interaction with the CSO, executives, business owners, information owners, security, IT, suppliers, and internal audit.
    View
  • Yopro Global
    Chief Information Security Officer (Ciso) & Chief Technology Officer (Cto)
    Yopro Global Dec 2012 - Dec 2019
    Virtual Chief Information Security Officer (CISO) and Chief Technology Officer (CTO) covering information technology, information security and privacy (GDPR) compliance for this networking organisation focusing on providing resources, access, and opportunities to youth and young professionals in emerging communities and emerging markets across Europe, so they too can emerge, and compete at a global level, as leaders and informed consumers, regardless of where they may reside.
    View
  • Bt
    Infrastructure Contract Compliance Officer
    Bt Nov 2013 - Jul 2014
    London, Gb
    Designed a contract, personnel, technical, and process security control framework based on ISO27001, ITIL, and client specific security policies which included support for secure B2B, remote monitoring, ListX, Forensics, and custom DR requirements for three new infrastructure outsourcing clients. Also performed an ISO27001 security audit on a country wide healthcare database and messaging solution.
    View
  • Uk Government (Cpni)
    Security Training & Awareness Architect
    Uk Government (Cpni) Dec 2013 - Apr 2014
    London, Gb
    Authored two security awareness training courses for management and engineers within Industrial Control Systems (ICS) industries for the UK Centre for the Protection of National Infrastructure (CPNI).
    View
  • Bp
    Global Security Risk Manager
    Bp Apr 2013 - Nov 2013
    London, England, Gb
    Developed custom security compliance programme for all corporate and function business units (e.g., IT, Treasury, HR, Legal, M&A, Tax, etc) including training and awareness, governance and data driven reporting. Managed senior stakeholders from business leaders, CIOs and 1000s of employees and contractor relationships from business group leaders, CIOs, functional leads, and 1000s of supporting supplier contract control requirements.
    View
  • Rolls-Royce
    Contract Security Lead (Bt Infrastructure Outsourcing)
    Rolls-Royce Dec 2012 - Apr 2013
    London, England, Gb
    Developed custom security compliance programme for all corporate and function business units (e.g., IT, Treasury, HR, Legal, M&A, Tax, etc) including training and awareness, governance and data driven reporting. Managed senior stakeholders from business leaders, CIOs and 1000s of employees and contractor relationships from business group leaders, CIOs, functional leads, and 1000s of supporting supplier contract control requirements.
    View
  • Credit Suisse
    Chief Information Security Officer - Ciso (Bt Infrastructure Outsourcing)
    Credit Suisse Sep 2010 - Dec 2012
    Zurich, Ch
    Managing the global security and compliance team for a one billion-dollar six-year infrastructure outsourcing agreement with a large Swiss investment banking organisation covering networking, voice, and perimeter protection services. Focus includes contract compliance for global operations and implementations teams spanning over 200 suppliers, internal / external audit coordination including regulatory (FINMA, FSA, SEC, MAS, etc), risk management, standards compliance, business continuity, and vulnerability management.
    View
  • Visa
    Pci-Dss Compliance Program Lead (Visa Europe)
    Visa Apr 2010 - Aug 2010
    Foster City, California, Us
    Coordinated third party auditors and consulting organizations with all internal global business and IT departments to shape remediation projects identified within the first QSA gap assessment results. This included more than 20 thousand hours of estimated work requiring stakeholder management, budget management, contract legal reviews, and governance setup.
    View
  • Marks And Spencer
    Enterprise Security Architect
    Marks And Spencer Feb 2010 - Apr 2010
    London, London, Gb
    Enabled the enterprise architecture team to deliver security through a standard set of security services managed centrally using TOGAF and focusing on threat modelling, risk-based decision making, reusable design patterns and various workforces including on-shore and off-shore resources.
    View
  • Shell
    Program Management Lead (Pmo)
    Shell Jul 2009 - Jan 2010
    London, England, Gb
    Created a new centralised programme management office (PMO) for all the centrally managed IT security programmes valued over 20 million dollars, which also required direct interaction with the CSO, CIO, individual business units, security department heads, finance teams and delivery teams.
    View
  • Shell
    Security Delivery Manager
    Shell Dec 2008 - Jul 2009
    London, England, Gb
    Initiated project start-up for several security risk management technology projects including: data leakage / loss prevention (DLP), middleware and database scanning, SIEM active event monitoring, vulnerability scanning, strategic incident detection systems (IDS) and various incident detection / response solutions. Managed setup of legal contracts with third party consulting organizations and vendors to ensure delivery of consulting services and procurement.
    View
  • Shell
    Senior Security Consultant & Project Manager (Accenture)
    Shell Jul 2008 - Dec 2008
    London, England, Gb
    Provided project management and consulting for several projects including an enterprise security awareness platform replacement, security awareness content development and a common enterprise policy framework based on ISO 27001 and a new risk-based delivery model.
    View
  • Accenture
    Senior Security Delivery Manager
    Accenture Jul 2000 - Dec 2008
    Dublin 2, Ie
    Evolved Anderson Consulting’s strategic approach into Accenture’s tiered service delivery model by developing, leveraging, and delivering with various global diverse work forces across every industry and corporate technical environment. Establishment as a global security architect and eCommerce fraud expert provided a platform for specialisation, while a diverse project portfolio proved the capability for value-centric delivery management expertise.
    View
  • Lloyds Banking Group
    Lead Security Architect (Accenture)
    Lloyds Banking Group Apr 2008 - Jul 2008
    London, Uk, Gb
    Provided a full security architecture review for this large UK bank’s strategic international payment solution. Delivery included management of client, third party consultants, software vendors and legal teams to ensure the appropriate technical and process solution was within risk acceptance tolerances. Ensured first stage-gate governance passed with over 100 key stakeholders involved in the project.
    View
  • Spinvox
    Information Security Strategist (Accenture)
    Spinvox Feb 2008 - Apr 2008
    Provided a security architecture and strategy to meet the client’s unique high volume requirements transforming from custom developed hardware and software solutions to more standardised enterprise vendor solutions. Accenture was asked to design a practical security architecture with a phased rollout approach allowing for critical growth needs balanced with capital investment plans.
  • Barclays Wealth Management
    Ecommerce Technical Architect (Accenture)
    Barclays Wealth Management Jun 2007 - Jan 2008
    London, Gb
    Responsible for the application architecture work stream and delivering the initial overall end-to-end enterprise technical architecture for this UK-based global investment banking firm. The new solution required digital transformation of the eBanking and full eCommerce architecture while ensuring full regulatory compliance (e.g. FCA, PRA, PCI, SOX, MiFID, etc..) as well as compliance to industry standards (e.g. ISO, NIST, ITIL, etc.).
    View
  • Barclays
    Fraud Specialist & Enterprise Solution Architect (Accenture)
    Barclays Oct 2006 - Apr 2007
    London, Gb
    Acted as the eCommerce IT Fraud subject matter expert for the programme and helped with the initial business case, vendor analysis, technical feasibility study, and target solution architecture design for this international bank.
    View
  • Barclays
    Enterprise Architecture Domain Authority Lead (Accenture)
    Barclays Aug 2006 - Jan 2007
    London, Gb
    Managed a team of 16 enterprise solution architects to deliver a portfolio of over 50 internal banking projects including mainframe, card systems, fraud management, SOA, service interface designs and compliance activities requiring legal, procurement, security, and executive stakeholder management throughout all phases of the delivery lifecycle.
    View
  • Barclays
    Lead Fraud Consultant & Project Manager (Accenture)
    Barclays Apr 2006 - Jun 2006
    London, Gb
    Provided industry and technical experience to help with various initiatives including strong authentication, transaction integrity and new wireless communication channel security opportunities. This international bank required support and management of several on-going security / anti-fraud programs within online banking.
    View
  • Alcatel-Lucent Enterprise
    Business Continuity Specialist & Delivery Lead (Accenture)
    Alcatel-Lucent Enterprise Nov 2005 - Mar 2006
    92707 Colombes, Fr
    Led mixed Accenture and client French delivery team to 1) profile critical SAP business processes including a Business Impact Assessment (BIA); 2) map processes to underlying people, processes and technology against industry standards (e.g., ITIL, ISO17799, Cobit, etc.); 3) facilitate prioritization based on business, CFO and CIO impact / risk assessment; 4) establish a tactical and strategic roadmap for service management in both normal and disaster scenarios.
    View
  • Electrobel.By
    Security Strategist & Mobility Architect (Accenture)
    Electrobel.By Nov 2005 - Feb 2006
    Managed three strategic work streams for this Belgium telecom company: 1) overall mobility technical roadmap including policies and architecture, 2) securing Microsoft exchange for both client and web access, 3) 802.x wireless security architecture design. The designed solution was aligned with the client and industry risk / threat models providing context to both business and technical stakeholders.
    View
  • Airbus
    Project Manager & Lead Security Architect (Accenture)
    Airbus Feb 2005 - Oct 2005
    Blagnac Cedex, Fr
    Directed the investigation, design, and delivery of a custom IT Security Architecture to support physical, network, application, and operational delivery of a pre-European country boarder security 8-million-euro solution. Coordinated with large European defence contractor to manage a delivery ecosystem of providers across a wide range of security architecture controls including: I&AM, WAC, PKI, HSMs, Smart Cards, SSO, OCSP, Firewalls, IDS/IPS, Configuration Integrity Software, Antivirus, Content Filtering, Data Protection, Encryption, Operational / Admin solutions, and MI/Reporting.
    View
  • Rsa
    Senior Compliance Manager (Accenture)
    Rsa Oct 2004 - Feb 2005
    London, Gb
    Supported time-sensitive Sarbanes-Oxley (Sox) and data classification efforts with tight compliance deadlines. This included architecture, procedures, reporting, analysis, and implementation of delivered solutions to a global audience of client directors and client country leads. This large financial services client has offices on every continent and is managed through technical and policy controls developed by the client's Group Corporate Centre (GCC) security team.
    View
  • Rsa
    Lead Security Architect (Accenture)
    Rsa Nov 2003 - Nov 2004
    London, Gb
    Performed the role of lead Security Architect for a 6-year enterprise transformation program for this large global insurance company, including supporting 600+ delivery personnel throughout all phases of deployment and with a diverse Accenture lead ecosystem of providers and offshore delivery teams.
    View
  • Irish Government
    Security Strategist & Lead Security Architect (Accenture)
    Irish Government Aug 2003 - Oct 2003
    Dublin, Ie
    Managed a team of internal and external resources to develop custom cross-government identity and access management (I&AM) service-oriented-architecture (SOA) service to connect different agencies.
    View
  • Qinetiq
    Lead Security Consultant (Accenture)
    Qinetiq Apr 2003 - Oct 2003
    Farnborough, Hampshire, Gb
    Assessed the security risk for a 7-year UK government infrastructure outsourcing agreement.
    View
  • Kookmin Bank
    Security Strategist & Lead Security Architect (Accenture)
    Kookmin Bank Jul 2003 - Aug 2003
    Yeongdeungpo-Gu, Seoul, Kr
    Developed enterprise banking security architecture for a new banking infrastructure solution.
    View
  • Barclays
    Lead Security Architect (Accenture)
    Barclays Jun 2003 - Jul 2003
    London, Gb
    Delivered a tailored security architecture assessment conducted to ensure the technical and logical outsourcing design would maintain security compliance to meet both banking and functional requirements. This global bank was focused on security concerns should their entire software development department be outsourced to one or more vendors outside of the country.
    View
  • State Farm ®
    Project Manager & Lead Security Architect (Accenture)
    State Farm ® Jan 2003 - Mar 2003
    Bloomington, Illinois, Us
    Developed 7 security service strategies into a TOGAF enterprise security architecture framework.
    View
  • State Farm ®
    Security Strategist (Accenture)
    State Farm ® Nov 2002 - Jan 2003
    Bloomington, Illinois, Us
    Structured the Enterprise Security organization service offerings and business support models.
    View
  • Fannie Mae
    Lead Security Architect (Accenture)
    Fannie Mae Nov 2002 - Dec 2002
    Washington, District Of Columbia, Us
    Developed a comprehensive web application security architecture base on Netegrity SiteMinder.
    View
  • Anthem
    Lead Security Architect (Accenture)
    Anthem Aug 2000 - Apr 2002
    Indianapolis, Indiana, Us
    Architected and managed implementation of a full PKI and web application security B2C / B2B portal.
    View
  • State Farm ®
    Security Strategist (Accenture)
    State Farm ® May 2002 - 2002
    Bloomington, Illinois, Us
    Constructed enterprise security roadmap for CSO, CIO and executive board members.
    View
  • Deloitte & Touche, Llp
    Cyber Security Consultant
    Deloitte & Touche, Llp May 1999 - Jul 2000
    Worldwide, Oo
    Led US HIPAA practice for healthcare security methodologies and solutions. Managed security for 9 projects focused on PKI, incident response, SAP DR, network sec. and more.
    View
  • Principal Financial Group
    Advanced Security Research Analyst
    Principal Financial Group Oct 1997 - May 1999
    Des Moines, Iowa, Us
    Led SSO (Single Sign On) and Password Synchronization (OS390, NT, NetWare, Unix) initiatives. Managed ESM (Enterprise Systems Management) security team responsible for budget of $2 million. Analysed, researched, & consulted all strategic business units on new and/or existing technologies.
    View
  • Butler Consulting Ltd.
    Ceo And Principal Consultant
    Butler Consulting Ltd. Jun 1990 - May 1999
    Managed and implemented new web developments, networks, and security architecture designs. Provided IS consulting services for 50+ small to medium sized clients.
  • The Des Moines Area Association Of Realtors
    Head Of Information Technology
    The Des Moines Area Association Of Realtors Apr 1995 - Oct 1997
    Designed and implemented new enterprise network architecture including LAN & WAN connectivity and office IT infrastructure. Architected new cross-organization Multiple Listing Service (MLS) architecture from vendor assessment through to full state-wide implementation.
    View

Thomas B. Skills

It Strategy Protection And Assurance Information Security Consulting Enterprise Network Security Contract Management Cybersecurity Technology Advisory It Audit Data Privacy Security Architecture Design Computer Security Security Audit Access Control It Security Policies Strategy Cloud Security Enterprise Security Architecture Management Consulting Web Application Security Risk Assessment Business Continuity Program Management Risk Management Senior Stakeholder Management Policy Development And Administration Security Awareness General Data Protection Regulation Security Management Information Security Management It Transformation Virtual And Local Executive Leadership Information Security Governance Iso 27001 Governance Threat And Vulnerability Management Identity Management Vulnerability Assessment Pci Dss Digital And It Transformation Information Assurance Enterprise Security Executive Communication And Presentation Programme Governance

Thomas B. Education Details

  • The Open University
    The Open University
    Business Administration And Management (Technology)
  • Drake University
    Drake University
    Business Administration And Management (Technology)
  • Culver Military Academy
    Culver Military Academy

Frequently Asked Questions about Thomas B.

What company does Thomas B. work for?

Thomas B. works for Rhythm Ai Ltd

What is Thomas B.'s role at the current company?

Thomas B.'s current role is CISO | NED | CRO | CIO | Executive Advisor (Local in UK, EU & US or Remote Worldwide).

What schools did Thomas B. attend?

Thomas B. attended The Open University, Drake University, Culver Military Academy.

What skills is Thomas B. known for?

Thomas B. has skills like It Strategy, Protection And Assurance, Information Security, Consulting, Enterprise Network Security, Contract Management, Cybersecurity, Technology Advisory, It Audit, Data Privacy, Security Architecture Design, Computer Security.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.