Skip to main content

Honorary and visiting staff

Honorary and visiting staff

Steve Babbage graduated from Oxford University in 1987 with a first class honours degree in Mathematics & Philosophy. In 1994 he received a PhD from Royal Holloway, University of London.

From 1987 to 1995, Steve worked as a mathematician and cryptographer at Racal Comsec Ltd, a company specialising in communications security equipment. In 1995 he moved to Vodafone, where he remained until 2021. He quickly assumed the role of Chief Cryptographer for the Vodafone Group, and went on to lead the security research team in Vodafone Group R&D. In 2012, Steve was appointed one of the first Vodafone Distinguished Engineers – one of only seven at the time from the whole Vodafone Group. Steve has a number of patents in mobile telecommunications security and related areas.

Steve was a director of tScheme Limited, a technical advisor to PGP Corporation, and a founding member of the IoT Security Foundation’s Executive Steering Board. He is currently a technical advisor to Nok Nok, Votem Corp. and Sandbox AQ. In 2021 he became the first recipient of a GSMA Fraud & Security Group Outstanding Contribution Award.

Andrew's career in the information security industry started in 1984 when he joined Open Computer Security as Research & Development Manager for the company's range of commercial encryption products aimed at the banking and finance sector. He remained with the company during its acquisition by new owners and relaunch as Computer Security Limited. Subsequently he joined Logica's Secure Systems Division where he was responsible for the business and technical success of a range of secure programmes in the government sector.

Since the mid 1990's he has been involved in five new business start-ups in secure systems development and analysis and computer and cryptographic forensics. In 2010 he left Detica, where he was Head of Forensics, to found his latest venture, Primary Key Associates Limited, a multidisciplinary team that specialises in addressing a wide range of information security and forensics challenges from physical to cyber security.

His current research interests include the challenges of successfully acquiring and forensically analysing increasing levels of data stored in mobile and cloud based systems. He is an experienced expert witness and has prepared and given evidence in chief in a wide range of civil and criminal cases in the UK courts. He maintains a particular interest in cryptographic research and served on the Board of Directors of the International Association for Cryptologic Research (I.A.C.R.) for seventeen years. The membership elected him Vice President between 1995 and 2001 and subsequently elected him President of the Association between 2002 and 2007. In 2010 he was awarded Fellowship of I.A.C.R.

He is a co-author of the book 'Enterprise Security Architecture: A Business Driven Approach' published in 2005. The SABSA methodology detailed in the book is now used in both commercial and government sectors for designing secure business systems. He is a Director and Trustee of The National Museum of Computing at Bletchley Park.

Paul has over 25 years management experience in information security gained as a senior security and risk executive at Morgan Grenfell/Deutsche Bank, Barclays Bank and BP. His work has encompassed information security management, operational risk management, business continuity planning and crisis management, privacy and the security of process control systems.

Paul has consulted to several governments in protecting critical national infrastructure, was a founder of the Jericho Forum, and was the founder Chairman of the Institute of Information Security Professionals (IISP) and now carries the title Chairman Emeritus. He has sat as an independent expert on the Permanent Stakeholders Group of the European Network Information Security Agency (ENISA). His industry recognition includes being awarded Chief Security Officer of the Year (2006), IT Security Executive of the Year (2008) and his induction into the IT Security Hall of Fame (2009).

His interests include the problem of establishing and communicating trust in IT systems, risk convergence (integrating IT Security with physical security and other risk disciplines) and demonstrating the value of security investment through alignment with management risk frameworks and business strategy. In addition to his academic interests, he currently runs two consultancy firms specialising in developing commercial security strategies and building programmes to improve security team capability and knowledge sharing in the industry. Details of his work and some of his publications can be found here.

Dieter received his Dipl-Ing in Engineering Mathematics (1979) and Dr techn (1984) from the University of Linz, Austria, where he was a research assistant in the Department for System Science. He was a Lecturer in Computer Science at Royal Holloway, University of London, and later a scientific assistant at the University of Karlsruhe, Germany. He received a Dr. habil. from University of Karlsruhe, Germany in 1991. He rejoined Royal Holloway in 1990, where he was the first Course Director of the MSc in Information Security.

He joined Microsoft Research in Cambridge in 1998, and in 2003, he took the chair for Security in Distributed Applications at Hamburg University of Technology, Germany. He retired from the latter in 2021.

Dieter Gollmann is an editor-in-chief of the International Journal of Information Security. His textbook on 'Computer Security' has appeared in its third edition.

Ray received his Master of Engineering (Electrical) from the University of Canterbury, Christchurch, New Zealand and his PhD from the University of South Australia, Adelaide, Australia. Ray has worked in the airline industry designing international networks, and has also taught in a variety of Universities in Australia, New Zealand, Asia, Vancouver and London. Over the last 20 years he has provided numerous training courses and consultation for industry and Governments (including Defence, NZ and Police (NSW) in the areas of networks and cybersecurity. In particular he has visited Asia over 70 times in the last 25 years. Specifically these have included numerous workshops for British Aerospace (Australia), Reuters and AT&T (Hong Kong), Ministry of Defence and Fujitsu (Singapore) as well as a variety of related workshops in Bangkok, Taiwan and Kuala Lumpur.

Ray currently holds the following positions: Adjunct Associate Professor at the University of South Australia; Visiting Associate Professor at the Advanced Informatics School, Technical University of Malaysia; Honorary Associate Professor at Deakin University, Melbourne; and Adjunct Associate Professor at the University of Canterbury, New Zealand.

Paul graduated in 2000 from the University of Hull with a B.Sc.(Hons) in Business Computing, M.Sc. in Information Security in 2008 from Royal Holloway and holds a Ph.D. in Cyber Defence from Cranfield University, Shrivenham. He has been working within the information security field for over 20 years, and has worked in a range of technical and senior management positions with industry, higher education and central government.
 

Paul chaired the Centre for the Protection of National Infrastructure (Now NPSA) SCADA and Control Systems Information Exchange (SCSIE) and has served on the EPSRC Digital Economy Programme Advisory Board and latterly the Digital Security and Resilience theme. Paul is also a member of the Institution of Engineering and Technology (IET).

His research interests include software vulnerabilities, the application of systems dynamics to cyber security and novel approaches to communicate cyber risk in complex environments.
  

Igor received his BSc (Hons) and PhD in Physics and Mathematics from Moscow State University (MSU) in 1985 and 1989 respectively.

He was a lecturer in Low Temperature Physics and in Applied Computing at the Physics Faculty of MSU in 1988-1995. He started researching computer viruses in the 1980's when the anti-virus industry was in its infancy.

In 1994, Igor Muttik joined Computer Antivirus Research Organization (CARO) and then took a position of Senior Virus Researcher at Dr Solomon's Software, UK in 1995. Igor shaped the current state of the anti-malware industry by pioneering detection of non-replicating malware in 1997 when he introduced the generic protection from AOL password stealing trojans. He discovered IRC worms in 1998. He implemented the first global commercial anti-malware telemetry and meta-data gathering system for McAfee in 2007. In 2010 he introduced the concept of cryptographically marking sources of obfuscated software (now known as 'software taggants').

Igor was the founding member and a member of the Board of Anti-Malware Testing Standards Organization (AMTSO), a Vice Chair of Industry Connections Security Group (ICSG) of IEEE and a Chair of the IEEE Taggant working group. He held the position of a Senior Principal Architect at McAfee Labs (part of Intel in 2011-2016) focusing on mobile, IoT and hardware-assisted security technologies. Igor authored more than 100 patents (issued and pending) and more than 100 publications (including 5 co-authored books) in four areas: low-temperature physics, malware reverse-engineering, anti-virus technologies and security industry cooperation.

He is a regular speaker at major international computer security conferences (BlackHat, RSA, DEFCON and many others). Since 2016 he runs Cyber Curio, a UK security research company.

Explore Royal Holloway