Simon Viney is a Director within the Security Science practice of Stroz Friedberg’s London office. He is responsible for leading customer engagements across a wide range of security science disciplines including; security risk and threat assessments, security architecture, information risk strategy development, maturity assessments and supporting information risk and control related outsourcing activity.
Mr. Viney has over 16 years of information risk and security management experience, primarily focused in financial services and the public sector. He has wide ranging experience assisting customers to meet challenges in relation to security architecture approaches, delivery of strategic security and risk related improvement activities and managing information risk and controls within outsourcing programs.
Prior to joining Stroz Friedberg, Mr. Viney managed his own consulting company. During this time he assisted a global investment bank in implementing improved controls in relation to privileged user access, executing a strategic patch management program covering all aspects of the bank’s infrastructure, and in managing risk and control related aspects of a major outsourcing program. Mr. Viney also provided support to a major energy firm in developing and formalising its approach to managing security risks and engagement within business and IT change activities. As part of this role, he was involved in managing the security aspects of the launch of new business services, the rollout of mobile devices to a field workforce and the upgrade of legacy systems to new technologies.
Previously, Mr. Viney worked as a Senior Manager in the Enterprise Risk Services practice for Deloitte and the Financial Services IT Risk and Assurance practice for Ernst & Young. In both of these roles he supported customers on the security risk and control aspects of large transformation programs, including setting up a vendor assurance program, a re-launch and upgrade of a bank’s business banking platform and development of a strategic security improvement program for a global insurance organisation. He also provided support in relation to fraud and data breach events for several financial services organisations.
Mr. Viney has presented on various security topics at events for the Information Security Forum, ISACA and the UK Building Societies Association. He is a Certified Information Systems Security Professional (CISSP), holds the ISEB Certificate in Data Protection and has extensive IT and security audit experience.
Mr. Viney received a BSc (Hons) in Chemistry from the University of Bath.