CLIENTS & TESTIMONIALS
Guiding organizations to reapply best practices, drive organizational awareness, optimize organizational design & capability and start the journey to higher cyber security resiliency.
Previous P&G external collaboration and partnerships
P&G Alumni Network - Meeting the Moment DC
EPFL Business School Lecture
Saturday 13th Sept 2025
In today's increasing turbulent world we need resilient supply/value chains as we navigate AI, geopolitical challenges, emerging economic tensions including tariffs, cyber threats and the need for agility, hence it was great to talk 'Data Security & Human Trust' at EPFL with the business attendees of EPFL Executive Education - Sustainable Resilient Value Chains education program, where we covered 'Data Security & Human Trust'. We covered a lot of ground in 2 hours including risk assessments, strategy, organisational design, tech stacks, governance and critically how to measure progress.
Sharing business success stories and new capabilities is key to developing and maintaining resiliency!
Risk-!n Conference
Zurich - May 11th -13th 2025
Supply Chain Resilience - "Its more than Tech!"
Presenters :
Elaine Moran (EPFL Executive Director - SRVC)
Geoff Kerr (Former P&G Global VP Cyber Security)
LinkedIn Post - 27th May 2025
It has been very rewarding and insightful reading the continued posts and comments following the RiskIn25 conference on May 11th-12th. Elaine Moran and I appreciate your comments on our session 'Supply Chain Resilience - Cyber Security - It's more than Tech' at the conference.
In our ever-changing world of cyber threats, geopolitical shifts, environmental changes (impacting supply chains) and the business need to keep pace with the latest technologies in our increasingly digitally - we can't achieve resilience through silo thinking. If we want to achieve meaningful resilient supply chains we need to look beyond technology, where we often get too excited and adopt too soon, we need to step back (take a breath!) Take the time to look at what needs to change to ensure faultless rollout of new application to enable success. At the Risk-!n conference Elaine Moran and I covered these other factors such as building agile, results driven supply chains, training, new skills, revised supply chain thinking, organizational design (Galbraith model), prioritized risks, governance, how to set measurable targets and very importantly how to engage the total organization internally along with critical third parties (if they are not equally resilient what is your plan?)
This sounds like a lot of work (it is!) requiring the engagement of the whole organization from the Board/C-Suite to the employees running critical work processes and operating the manufacturing lines, but with right upfront thinking you'll achieve the desired resilience faster and with less rework.
EPFL (École polytechnique fédérale de Lausanne) – Business School Lecture -
Nov 22nd 2024
Executive leadership lecture in Sustainable and Resilient Value Chain (SRVC) Certificate of Advanced Studies (CAS) course.
Superb interactive session detailing ‘Data Security & Human Trust’ with a diverse group of senior business leaders. We covered cyber security strategy, risk assessment, organizational design, governance, NIST CSF and other critical measures along with how we need to engage the total organization and culture to deliver a robust and sustainable cyber security program.
University of St.Gallen Executive School of Management, Technology and Law
June 25th, 2024
Provide 3 in person executive lectures covering Risk Management Techniques, Strategies, Organizational Design, Measures (NIST Cyber Security Framework), Governance and Communications (to C Suite and to employees/business partners). 3rd lecture included an interactive Table Top session encompassing the material covered with real world challenges.
IMD – Feb 2024
Executive leadership lecture at The International Institute for Management Development in Lausanne
Insightful discussion yesterday as the guest lecturer at IMD with the global MBA students on the GNAM Global Network for Advanced Management program where we focused on digital resilience. My thanks to Öykü Işık for inviting me to share a business case and my thanks to the attendees for the engaging questions. As we talked at length, cyber resiliency is more than just the technology stack, to be resilient we need to ensure we have our risk appetite clearly defined, a solid strategy in place (with a compelling business need), an organizational design and culture to support the implementation of the program and a robust governance structure. Not an easy task, however if we get it right, we can step change our cyber resiliency and ensure attacks don't turn into breaches!
P&G Global Alumni Conference : Washington DC
Nov 2-5th 2023 > 400 Attendees
3 days at the P&G Alumni Global Conference in Washington DC with 400+ Alumni, 5 P&G CEOs, corporate and startup CEOs, thought leaders and most importantly game changers!
This year the focus was to 'Meet the Moment' and lead the changes to address our global challenges.
We rightly included the hot topics of CYBER SECURITY and AI in the event with a main stage session, with the focus on how we as leaders need to leverage and optimize these technologies within our organizations and collectively work together to address concerns and see these fields as opportunities! Cyber Security was explained as a "competitive edge" if done right, instilling trust in our organizations and institutions and our stakeholders. Key to success is to engage 100% of our people in the needed transformations to effectively bring cyber security resiliency alive in our organizations and think strategically before you "buy the tech" this includes risk assessment (know your risk appetite!), organizational design, governance and how to measure success.
EPFL
École polytechnique fédérale de Lausanne
Dec 9th 2023
Executive leadership lecture in Sustainable and Resilient Value Chain (SRVC) Certificate of Advanced Studies (CAS) course. Covering cyber security strategy, risk assessment, organizational design, governance, NIST CSF and other critical measures along with how we need to engage the total organization and culture to deliver a robust and sustainable cyber security program.
Global Cyber Conference
Zurich : 14th -15th Sept 2023 >350 Attendees
2 Panel discussions :
'How to mobilize a collective response to safeguard critical assets and mitigate systemic damage'
'How to embed security by design through all stages of a digital transformation process'.
Risk-!n Conference
11 May, 2023 - Zurich.
Great to attend, contribute and network on May 25th/26th in Zurich, a superb 2 day event uniquely focused on the importance of risk assessment and effective risk management. Too often companies and organizations focus on the available risk / cyber security solutions and services before undertaking comprehensive risk assessments, strategy development and organizational design work to ensure that the most appropriate, affordable solutions are applied with clear measures of success for boards & C Suite leadership. Risk management is critical to ensure leaders can crisply articulated and justify budget and people investments, with clear measures of progress such as NIST maturity, patching compliance, GRC tracking, minimal false positive alerts, which clearly show a return-on-investment!
2023 Success Stories
Cyber Security Resiliency Consulting engagements from April 2023
Masters Degree Lecture 3rd May 2023
University of Applied Sciences & Arts Northern Switzerland
30+ attendees
'Applied Industrial Cyber Security'
6 Modules - 4 Hours
1. Information/Cyber Security Risk Assessment
2. Creation of Strategy and Action Plan
3. Selection of Cyber Security Solutions
4. Organizational Design
5. Deploy & Monitor Progress
6. Re-assess and Renewal (including NIST CSF)
Attendee: “Your presentation style shows competence in both topic and presenting. Your slides and what you say about them neatly complement one another. It was structured well for good understanding”
Attendee: “Thanks for your great insights, was a really interesting class”
Attendee: “Working in the manufacturing industry myself and accompanying our cyber resilience team in IT and OT security initiatives from an IT procurement persepective, the lecture was a perfect fit. What I related to the most are 2 points. Firstly, the importance for a company of being able to motivate all the people working with the right tools and developing the right mindset to be more (cyber) resilient. And secondly, the relevance of the OT segment in relation to business continuity. I for sure got some good insights to discuss with our CISO!”
2022 Success Stories
External & P&G Internal Events
Procter & Gamble 'Cyber Day' 29th Sept 2022 - Frankfurt, Germany
'The Real & Present Danger of Cyber Security Threats'
30+ attendees (European Site Cyber Security Leaders - SCSL)
Agenda.
Threat Landscape (unsophisticated to organized crime to state sponsored actors).
Impact of attacks – business cost & operational disruption.
Realtime attack maps & explanation.
Compromised credentials (email, password etc on darkweb) and example attacks.
P&G specific (confidential) incident data & analysis.
Post event survey score : 4.7/5 (94%)
“Great event, as a SCSL it was super relevant for me, I learned a lot”.
“Should include Leadership Teams in such presentations”.
“Would be great for a broader audience”.
ICAEW Networking Evening Event 7th April 2022 The Institute of Chartered Accountants in England & Wales) Geneva, Switzerland
'Real life stories on how cyber security should be a core element of all businesses'.
10+ attendees (ICAEW Members)
Agenda.
- Realtime Attack Maps
- Threat Lanscape (unsophisticated to organized crime to state sponsored actors).
- Impact of attacks – business cost & operational disruption.
- Phishing Attacks with example thread.
- ‘Man-in-the-Middle’ attack demonstration.
- Question & Answers Session.
Event to be repeated at next Zurich ICAEW event in 2023.
P&G Site Leadership Event 21st Sept 2022. Warsaw Office, Poland
'Cyber Security, careers and stories'
Agenda.
- Product Supply Cyber Security – threats and P&G’s approach to provide cyber security resiliency.
- Operational Technology Governance – how do we embed services & solutions across our global operations.
- Careers in cyber security
- Personal stories on project successes and learnings – “it’s OK to fail and learn – this defines great engineers”
- Question & Answer session.