About Cyberseconomics
Cyberseconomics was founded by veteran CISOs and cyber security leaders to solve some of the biggest challenges we faced leading security programmes – and that existing services, frameworks, technologies, and strategies didn’t adequately tackle.
That’s why we founded Cyberseconomics and created HQBE SaaS. To build the platform we needed when we led enterprise cyber security programmes.
We’ve developed and led cyber security programmes for small and medium enterprise, as well as the Fortune 500
We’ve assessed and advised hundreds of organizations, of all scales and complexities, across all industries, including National Critical Infrastructure
We’ve advised national cyber security strategy
We’ve helped investigate and mitigate some of the biggest cyber security breaches
Team
Douglas Ferguson
Principal & Product
Douglas has been a cyber security professional and executive for over 25 years. From early days at the RCMP in Canada; to Internet Security Systems (ISS) and the X-Force (and IBM via acquisition) in Atlanta, Georgia; to cybersecurity management and leadership roles at Barclays bank in London, England. Then building a cyber security consultancy, specializing in cyber protection-economic models, to millions in revenue. Douglas has assessed and advised SecOps, CISOs, and C-Suites, at over 200 organizations, in over 30 countries, including national critical infrastructure, and advising national cyber security strategy for several nations.
Carric Dooley
Principal
Carric has been a cybersecurity consultant since 1998 working for industry-leading companies like Internet Security Systems (ISS), McAfee Foundstone, Intel, and Microsoft.
He built and led the Foundstone practice for McAfee in Europe/Middle East/Africa (EMEA) starting in 2010, and then ran the team as Global VP of Foundstone from 2014 to 2018. He has international experience building practices and leading teams consulting on cybersecurity program strategy, various assessments, incident response, penetration testing, application security, and security operations.
Over his career, Carric has participated in several globally published incidents, like Aramco/RasGas (Shamoon), the Sony PlayStation Network breach, and Sony Pictures. He is a published author contributing to How to Break Web Applications in 2007, and Ultimate Hacking 7 in 2013.
Carric was an instructor for the Foundstone Ultimate Hacking series (UH, UH Advanced, UH WiFi, and UH Windows) of classes taught to government 3-letter agencies and at BlackHat (US, Middle East, and Europe), and has his Defcon 10-year ‘goon’ badge. He has presented at cybersecurity conferences as a thought leader in the US, Middle East, UK, and Europe.
Brad MacKenzie
Principal
Over 25 years experience in building highly technical consulting teams. Managed consulting teams delivering Vulnerability Assessments, Penetration Tests, Application Assessments, Incident Response, and Security Strategy. Ability to distill technical concepts to non-technical people. Quickly understands systems and networks to propose enhancements. Excellent knowledge of security best practices and ability to suggest easy ‘quick wins’ and longer-term goals. Understands that businesses need to run efficiently, and security needs to balance risk based on executive goals.
David Mathews
Senior
A dynamic cyber security specialist, with over twelve years’ global experience in a myriad of leadership, management, and technical roles in the financial services, power, manufacturing, private and public sectors.
Brad Harris
Commercial Director
As an Executive Advisor and Leader I continually add value and produce results. I have succeeded in many environments, sectors and roles which has produced a fairly unique breadth and depth of experience in Financial Services, Energy/O&G, Pharma/Life-sciences and Technology Services allowing insight into the traits that out-performing organisations possess
David Bell
Commercial Director
As SVP of Business Development, David Bell brings more than 21 years of experience in critical aspects of sales operations to Cybereconomics HQBE.
From leading cross-functional sales and delivery teams within the Public Sector to developing Channel Sales Departments from the ground up, David places his focus on driving the core of the business forward – and on continually improving the client experience.
In each of his last 3 roles, David has been a key part of the Executive Leadership Team designing Go-To-Market strategies, developing company-wide business targets, and driving growth.
Advisors
Daniel Bovill
CISO Advisory
Offering 18 years of success as an innovative and results-driven Chief Information Security Officer (CISO) with a rare track record of developing and executing global information security programs across multiple regulated industries. Proven success in driving significant cost reduction initiatives while simultaneously enhancing security posture. A visionary leader skilled in leading high-performing global teams and integrating security seamlessly into business processes. Passion for aligning and delivering security solutions that enable and empower businesses to achieve their vision, strategy, and goals.
As the Chief Information Security Officer (CISO) at LifeScan, I lead a global and enterprise-level strategy and program to protect the physical and digital information assets and technologies of the company and its medical device products.
Lee Whatford
CISO Advisory
A veteran, board level, CISO and highly accomplished and commercially astute information security executive skilled in setting and implementing security strategy for large, complex organisations. A wealth of experience with 25+ years advising on and leading transformation of security capability for organisations across multiple industries including Central and Local Government, Insurance, Retail, and Hospitality.
Lee was named a Top 100 Global CISO in 2022, is a regular keynote speaker at high profile industry events including Blackhat, is a Non-Executive Director for the UK Government’s Cyber Resilience Centre and holds several positions advising small and growth phase companies in the industry.
Communicate with the C-Suite in Business Terms
Translate the jargon of ‘doing security’ into real-world protection and cyber risk exposure narratives that actually resonate with Executives.
Model Protection Outcomes
Enable Executives to choose 'what good looks like' to them so they can easily show fiduciary duty and defend the opportunity cost of the security budget.
Correlate Budgets to Outcomes
To ensure the CISO isn't liable for cyber risk they weren't funded to effectively handle.
Guide, Track, and Optimize Delivery
With a comprehensive suite of metrics, assessments, and analytics tools; and centralize the visibility and accountability of security deliverables and assets.