|Job title of nominated professional (or team name)
|Company (where nominated professional or team is working)
|Company size (employees)
|100 to 499
Mark Nicholls has been working in the cyber security industry for over 12 years and in this time has quickly established himself as one of the UK’s top information security professionals.
As Chief Technology Officer at Redscan, he is responsible for driving continuous improvements to the company’s threat detection, incident response and security assessment capabilities.
After graduating from Royal Holloway, University of London, with an MSc in Information Security, Mark entered the profession as a Security Consultant, conducting risk assessments for organisations within civil government.
A desire to specialise in cyberoffensive security led him to pursue a career in penetration testing, an area where he has achieved CCT App, CCT Inf, CCSAM and CCSAS certifications, and led CBEST engagements across the financial services sector.
In November 2019, Mark was awarded a lifetime fellowship from CREST.
•An offensive mindset
Through his first-hand knowledge of how hackers think and operate, Mark has been vital in helping organisations across many industry sectors understand and improve their cyber security posture.
Mark’s work across the financial services sector is particularly noteworthy; he one of a select few security professionals in the UK trusted to perform red teaming engagements in accordance with the standards outlined by the Bank of England and Financial Conduct Authority.
One key area of Mark’s focus has concerned the simulation of insider threats, widely viewed as one of the biggest risks to organisations. His background in digital forensics has also been important in helping organisations mitigate the risk of hard-to-detect threats such as fileless malware. He has also performed vulnerability research into buffer overflow, format strings, SQL injection and cross-site scripting.
•Dedicated to innovation
At Redscan, Mark is committed to ensuring that Redscan’s security services remain effective in an ever-evolving security landscape. He is helping to:
-Develop new scenario-based security assessments mapped to common framewoks such as MITRE ATT&CK™ and designed to improve the effectiveness of controls and processes.
-Introduce SOC automation initiatives designed to help reduce manual workloads, improve threat visibility and enhance knowledge sharing.
-Review and test new security technologies for possible
-Develop and automate incident response playbooks.