Niel Harper, Member, Expert Network on  Cybersecurity

Niel Harper

Member, Expert Network on Cybersecurity

World Economic Forum

Location
Denmark
Education
Master's degree, Law
Experience
27 years, 2 months

Share My Profile

Block User


Work Experience

Total years of experience :27 years, 2 months

Member, Expert Network on Cybersecurity at World Economic Forum
  • Switzerland - Geneve
  • My current job since March 2017

The Forum’s Expert Network brings together leading experts from academia, business, government, international organizations, civil society, the arts, and the media committed to improving the state of the world by helping to shape the global agenda. The network focuses on collaboration around key insight areas, covering economies, industries and global issues. Specific insight areas for this domain include Cybercrime, Cyber War, Critical Infrastructure Protection, Cyber Privacy, Security of Things, and Technology & the Law. Advise governments, international organizations, and corporations that participate in the Forum's ecosystem.

CISO at United Nations Office for Project Services (UNOPS)
  • Denmark - Copenhagen
  • My current job since February 2019

Define, implement and oversee a strategic, comprehensive enterprise cybersecurity, privacy and IT risk management program in alignment with the overall strategic objectives of a project-based organisation with an operating footprint in 120 countries. Execute the end-to-end transformation of cyber response capabilities, including cyber risk governance, security architecture, threat intelligence, supplier risk management, identity & access management, and incident response, among others. Partner with all functional verticals such as internal audit, legal, technology, safety & security, and global hub and project leadership to facilitate collaborative risk governance in response to existing and emerging cyber threats. Assist developing nations in formulating cybersecurity programs, including knowledge transfer, risk assessment, policy development and technology deployment. Serve on the IT Steering Committee and Data Governance Board of the organization and on the United Nations Information Security Special Interest Group (UNISSIG).

Director, Global Capacity Building Programs at Internet Society
  • United States - Virginia
  • April 2012 to February 2019

Led the development of a comprehensive program to meet the capacity building needs of the individuals who design, deploy, secure, regulate and oversee Internet infrastructure across the globe. The program delivered training to 75, 000+ persons from more than 100 countries through online, blended and classroom-led courses, fellowship opportunities and leadership conferences. Training catalog included, but was not limited to, courses on Building Computer Security Incident Response Teams (CSIRTs), Core Internet Routing Security (MANRS), DNS Security (DNSSEC), IoT Privacy & Security, Managing Online Identity, and Internet Governance & Policy. Represented the organisation in key technical communities such as the IEEE, IETF, ITU, W3C, regional Internet registries (RIRs), research and education networks (RENs), and network operator groups (NOGs).

Advisory CISO at Bemol
  • Brazil
  • June 2017 to December 2018

Reporting to the CEO, conducted a detailed cybersecurity capabilities maturity assessment, looking across people, process and technology and considering risk levels and impact. Developed a multi-year roadmap to enhance cybersecurity capabilities and deliver process improvements, including addressing key risk and compliance priorities and staffing requirements to support executive-level resourcing and investment planning. Performed oversight and assurance to ensure that recommendations were implemented in an adequate, effective and sustainable manner.

Cybersecurity Expert at European Union
  • Belgium
  • August 2017 to February 2018

Successfully delivered a consultancy to perform a country-level cybersecurity capabilities maturity assessment and develop a 3-year strategic roadmap. The detailed scope of work included a risk-based assessment of critical domains that included national cybersecurity strategy, critical infrastructure (CI) protection, crisis management, incident response, legal/ regulatory frameworks, and education & workforce development. Developed and delivered a series of capacity building workshops for senior government officials, business leaders, and civil society representatives.

CIO at Bermuda Commercial Bank
  • United Kingdom - London
  • November 2014 to June 2016

As a key member of executive leadership, spearheaded the digital transformation strategy of the group, implementing key systems such as core banking, Internet/mobile banking, reconciliations, data warehousing and anti-money laundering (AML) to deliver omni-channel customer engagement and adapt to emerging regulatory demands. Implemented a strategic cybersecurity program, premised on a ‘security by design’ philosophy and focusing on an adaptive layered security architecture, pervasive security awareness, and collaborative risk governance. Managed an annual CAPEX budget of USD$1.5M+ and OPEX budget of USD$3M+.

Head of Telecoms & Network Security at CIBC FirstCaribbean International Bank
  • Barbados - Bridgetown
  • August 2008 to April 2012

Oversaw the transformation of the organisation's legacy network and communications infrastructure into a best-in-class converged network, spanning 17 countries and supporting the core business lines. Led the strategic, tactical and operational aspects of routing & switching, messaging/collaboration, telephony and network security across the enterprise. Recruited, managed and developed a geographically distributed, high-performance, multidisciplinary team. Served on the Change Advisory Board and Technical Architecture Committee of the organisation. Managed an annual CAPEX budget of USD$6M+ and OPEX budget of USD$32M+.

Senior Audit Manager (IT & Change Management) at CIBC FirstCaribbean International Bank
  • Barbados - Bridgetown
  • May 2006 to July 2008

Strengthened the business' control environment and overall technology risk and cybersecurity posture by leading more engaged and collaborative audit coverage for the Technology, Operations and Change Management business units. Successfully delivered key audit engagements such as Information Security Management, Business Continuity Management. IT Service Management, PCI-DSS Attestation, and Datacenter Operations, among others. Developed the enterprise's strategic information security roadmap. Served on the organisation's Operations and Technology Risk Committees.

Chief Internal Auditor at St. Maarten Telephone Company Limited
  • Netherlands Antilles
  • January 2006 to December 2006

Developed the group's overall audit approach for providing independent and objective assurance and consulting services designed to improve the effectiveness and efficiency of the Sint Maarten Telecommunications Group of Companies (Telem Group) operations in Sint Maarten, Curacao, Saba, St. Eustatius, and Dominican Republic. Directed the planning and execution of financial, regulatory, compliance and operational reviews/audits. Delivered key audit engagements such as Human Resources Management, Retail Store Operations, Warehouse & Inventory Management, SAP R/3 Project Implementation, and Cashflow Management.

Manager, Network Operations at AT&T Wireless
  • Puerto Rico
  • November 2003 to November 2005

Led all operational aspects of AT&T Wireless' mobile network, including data centre operations, facilities management, physical security, network security, field operations, switch operations, and staffing / recruitment, all towards optimising key processes and technology. Maintained wireless network operations according to defined SLAs and achieved the best network KPIs in AT&T Wireless International for two consecutive years. Led a multifunctional team of engineers, senior technologists and contractors. Managed an annual CAPEX budget of USD$2.5M+ and OPEX budget of USD$12M+.

Education

Master's degree, Law
  • at University of Strathclyde
  • August 2016

Master of Laws (LLM), Internet Law & Policy

Master's degree, Quality Management
  • at UNIVERSITY OF LEICESTER
  • July 2010

Master of Business Administration (MBA), Quality Management

Diploma, Telecommunications Regulation & Public Policy
  • at University of the West Indies
  • December 2007

Post-Graduate Diploma - Telecommunications Regulation & Public Policy

Diploma, e-Governance for Developing States
  • at UNIVERSITY OF THE WEST INDIES
  • December 2006

Awarded the UNESCO Scholarship

Bachelor's degree, Business Information Systems
  • at ALGONQUIN COLLEGE OF APPLIED ARTS & TECHNOLOGY
  • June 1995

Specialties & Skills

IT Strategy
Project Management
Internet Law
Telecommunications
Information Security Management
CHANGE MANAGEMENT
ENTERPRISE ARCHITECTURE
FINANCE
OPERATIONS
TELECOMMUNICATIONS ENGINEERING
CYBERSECURITY

Languages

French
Beginner
English
Expert

Memberships

IEEE
  • Senior Member
  • January 2000
British Computer Society
  • Chartered Fellow
  • May 2008
American Registry for Internet Numbers
  • Fellow
  • August 2008

Training and Certifications

Certified Data Privacy Solutions Engineer (CDPSE) (Certificate)
Date Attended:
May 2020
Valid Until:
January 2024
Certified Information Systems Auditor (CISA) (Certificate)
Date Attended:
September 2002
Valid Until:
January 2021
Certified Information Systems Security Professional (CISSP) (Certificate)
Date Attended:
April 2007
Valid Until:
April 2022
Certified in Risk and Information Systems Control (CRISC) (Certificate)
Date Attended:
April 2010
Valid Until:
January 2021