The ADISA audit process is multi-layered including full audits, unannounced operational audits and forensic audits. This approach ensures ADISA Certified companies are constantly being kept on their toes. With companies suspended and others removed from the program, the certification is something companies work hard to achieve and even harder to maintain.
With free end user services such as tender review, compliance reporting and real-time monitoring, the ADISA certification program is something which many companies are now building into their requirements as a pre-requisite for their suppliers to hold.
THE ADISA TEAM
Our professional team has a wealth of knowledge and experience across all areas of data policy, information science and the asset disposal sector.
John is a former lead policy developer at CESG. He is the author of Information Assurance Standard 5 (IAS5), which sets out the UK national standards for the secure disposal of retired IT assets and also the secure sanitisation of sensitive data.
In the development of IAS5, John designed the current data wiping and degaussing standards and also established the test specifications and procedures that lead to the current range of data sanitisation products approved by CESG.
John worked with many international and national organisations, academia and commercial companies in the development of IAS5 and is now regarded as a leading expert of asset disposal and secure data destruction. John has also been CLAS consultant; a lecturer on a range of information security topics at the National School of Government and is a ISO 27001 Lead Auditor.
Steve has over 15 years’ experience in asset retirement working with industry, global manufacturers and personally helping write and implement asset disposal policies for some of the largest organizations in the world.
A strong advocate of secure asset disposal Steve founded ADISA in 2010 to proactively deal with the current malaise from all parties concerned with data security issues within asset retirement. Author of the ADISA IT Asset Disposal Standard Steve is helping drive improvement in this service sector not only in the UK but also in North America, Europe and Asia Pacific. The ADISA industry Standard has been recognised by DIPCOG which is a CESG and UK MoD Committee as being an industry standard of merit and Steve continues to work with UK government on procurement frameworks and vendor management in this sector.
In 2012 Steve worked with the UK Information Commissioner’s Office and wrote much of the ICO guidance notes which were released to help businesses comply with data protection legislation in this area. Steve is also the author of the National Computer Centre (NCC)’s guidance notes on how to manage risk when disposing of assets.
Steve is also a lecturer on risk management within asset disposal and co-author of the ADISA Certified Professional training course and has spoken at many national and international conferences on the subject matter.
With over 30 years’ experience in Information Security, Adrian was formally Head of Information Security Policy and Departmental IT Security Officer at the UK Ministry of Defence. During his long career in government he has been involved in software development and testing, product and system evaluation, security inspections and audits, security policy development for the MOD, UK Government and NATO as well as lecturing on security and Information Assurance at the National School of Government and the Defence Intelligence and Security School.
In recent years he has been active with the British Standards Institute in the development of British and International standards, in particular the ISO 27000 family. He is a regular speaker at a number of security conferences in the UK and on the international stage.
In his spare time his primary interests are classical music, reading and photography.
Tony has a degree in Mathematical Physics with Astrophysics from Kings College, London and was until recently a lecturer in Digital Forensics, Computer Network Security and Security Management at the University of South Wales.
He is a published scientist carrying out doctorate research in Computer Network Defence for the MoD, focusing on Data Ex-filtration APT attacks and implementing countermeasures using Behaviour Engines. Tony has much experience in education, mentoring and coaching and was recently part of a group forming national standards for a government body.
Tony's paper on Network Attack Analysis and the Behaviour Engine" can be downloaded here.
PROFESSOR ANDREW BLYTH
Professor Andrew Blyth is currently Director of the Information Security Research Group at the University of South Wales. He has functioned as a expert witness in the area of computer forensic and data recovery for a wide variety of law enforcement agencies such as the Home Office, SOCA and the Met Police.
Professor Blyth has also published a number of journal papers on the areas of computer forensic and data recovery and is one of the leading global authorities on data sanitisation and forensic techniques on solid state media.
In addition Professor Blyth is on the ISO advisory board for standards relating to Computer Forensics as well as a member of the National IA forum.
Lisa has a lifetime of experience working in customer service roles which started with a ten year career working as a flight attendant with British Airways and more recently as General Manager of a busy Country Inn and restaurant.
The demanding and challenging nature of these front line customer service roles developed many valuable skills that Lisa utilises in her day to day role at ADISA.
Lisa’s primary function is to help administer the certification program, deal with new member enquiries and assist existing members with any auditing or administrative issues, Lisa is the first port of call for any ADISA enquiry.