Marc Avery

Marc is a Chief Information Security Officer and Cyber Security Advisor with over 20 years’ experience in Security Leadership, complex Transformation Programmes, Cyber Security Strategy development and Operating Model design. Across a range of Critical National Infrastructure programmes. Marc has managed outstanding and high-performing teams and delivered security assurance and confidence allowing organisations and key stakeholders the freedom to innovate.

Skilled and qualified in Risk Management practices Technical Security Architecture, Internet of Things (IoT) and Operational Technology (OT), Security Operations, Security Testing, Strategy and Target Operating Model development. A high-performing executive operating with pragmatism, clarity in communication and passionate about leadership and people development.

Marc has predominantly worked within government services for commercial organisations and has therefore been at the forefront of implementing the UK’s National Security Strategy for the past 10 years. Some of Marc’s engagements include the Ministry of Defence, Home Office, Department for Business, Energy and Industrial Strategy (BEIS), Department for Education, Department for Work and Pensions, Financial Conduct Authority and the Office for National Statistics.

As the Chief Information Security Officer for Smart DCC Ltd, Marc was pivotal to the implementation of the UK’s Smart Metering infrastructure; the first in the world to deliver both Gas and Electric Smart Meters to over 30 million consumers. An IoT network with over 50 million end devices and the largest Public Key Infrastructure in Europe, the Security of this national asset is paramount and Marc’s ability to engage effectively across the organisation and with his peers in Ofgem, BEIS and the National Cyber Security Centre (NCSC), is testament to his leadership qualities.

With a background in technical security consultancy, Marc is articulate, pragmatic and operates within the most mature, effective and industry-recognised security frameworks. He is a recognised UK Government Senior Security & Information Risk Advisor, Senior Information Assurance Architect and has deep experience in the implementation and operation of standards such as ISO 27001, ISO 27005, HMG Risk Assessment and Risk Management, IRAM2, NCSC Cyber Essentials, SOC2, NIST, the General Data Protection Regulation (GDPR) and Cloud Security Standards.