Sam is the Head of Information Security at Cifas and has a wealth of knowledge and experience in InfoSec. Sam leads the development and maintenance of Cifas’ Information Security Management System (ISMS) which is certified to ISO 27001. This includes the InfoSec policies, standards, and processes that help protect Cifas against both the insider threat and external attack. Sam provides InfoSec risk assessments, as well as general security advice and guidance across the business, protecting Cifas’ information assets and systems, and reputation with its members and stakeholders. Prior to joining Cifas, Sam worked in Digital Forensics, and was an InfoSec and Data Privacy Consultant.