Cybersecurity & Digital Resilience

Simon Goldsmith

Simon Goldsmith


A cybersecurity risk strategist, engineer and chartered information security professional on a mission to make a complex and increasingly threatened digital world safer for businesses of all sizes.

I can help you with

developing digital resilience strategies, rightsizing cybersecurity and privacy programmes, securing cloud and on premise infrastructure, cybersecurity assessment testing and due diligence, managing third party cyber risk, automating security operations, securing DevOps and agile SDLCs, fusing financial crime and cybersecurity operations


After a 2-year Italian adventure with Fiat Group’s international graduate programme my security and intelligence career began in the United Kingdom’s Ministry of Defence, developing novel technologies and tactics to increase the survivability of military helicopters against low-tech but highly innovative threat actors. In 2006 I switched from physical to digital security and worked across a range of classified programmes including a role as business case lead for the Defence Information Infrastructure – at the time the largest IT programme in Europe. By this time I was working for a UK business specialising in electronic and information systems for National Security and countering Financial Crime. We caught the attention of the world’s third largest defence company and were promptly acquired to boost their portfolio in the burgeoning information security market.

Following the acquisition, significant investment was made by the parent company in our cybersecurity capabilities, and I was part of the leadership team charged with building a global dedicated cybersecurity business unit. I led a team delivering projects for national security, defence and aerospace customers. This team included a product engineering function that productised and packaged software and hardware cybersecurity solutions for wider commercial use.

After successfully growing this business unit a stint in SE Asia and the Middle East followed. Over three years my teams designed blueprints for advanced security operations centres for governments and deployed and maintained a hardware security product which both connected and secured the IT and Operational Technology (OT) of the bulk plants, refineries and command and control centre of a national oil company. I also acted as sales and local delivery director for the financial crime portfolio in the Middle East which included Anti-Money Laundering, Counter Terrorist Financing and fraud analytics.

I then moved to EY as Director of the European financial services cybersecurity centre of excellence and spent two years recruiting and training a team up from 2 to 25 consultants specialising in penetration testing, cloud security, DevOps, threat intelligence, cybersecurity and privacy regulations and security operations orchestration and automation. 

I’m currently the information security officer for the global distribution centre network and Asia Pacific regional information security officer at a global retail company. My responsibilities include IT and OT security architecture, application security, governance risk and regulatory compliance and security operations.

Resilience and compassion are the values I hold dearest and I apply them daily - from sense making of disorder, chaos and complexity in my day job, to enjoying (and suffering) the highs and lows of England and British Lions rugby. 

YEars of Experience

21 years


London, United Kingdom

Countries worked IN

United Kingdom, Hong Kong, Italy, Spain, Malaysia, UAE, Oman, Saudi Arabia, China


Retail, Banking, Insurance, Energy, Utilities, Oil & Gas, Government