Sam F.

Security Engineering @ Apple

Greater Cheltenham Area

About

Part-researcher, part-engineer, I'm a competent and curious technologist and leader, with 15+ years of cyber security experience. I love generating new insights into problems and building environments for small agile teams to create the right solutions. My particular interests include data-driven security and security by design. When not working, you’ll find me enjoying time with my family, at church or pretending that I have time to keep fit.

Experience

  • Security Engineering and Architecture at Apple
    Jan 2021 - Present · 5 yrs 7 mos

  • UK Government (Full-time · 9 yrs 5 mos)
    • Engineering Manager, Security Engineering
      May 2017 - Jan 2021 · 3 yrs 9 mos

      A maker-manager, responsible for establishing a new internet security research division to conduct research and early-stage product development to measure and mitigate systemic internet security risks in the UK, instigating industry partnerships where appropriate. As a systems thinking proponent, I set up several cross-organisational communities, including one focused on data-driven security to improve mission outcomes through better knowledge and capability sharing across different technical specialisms. Selected for and completed a competitive leadership development programme

    • Head of Platform, Digital Services
      Feb 2016 - May 2017 · 1 yr 4 mos

      Pioneered early product development of a national-scale internet security programme, building out the core platform capabilities on public cloud services as part of a wider digital transformation effort. This included successfully launching the organisation's first public digital service, whilst performing analysis on newly-identified opportunities and associated value propositions. I managed multiple product teams, setting product roadmap priorities in line with customer needs and the overarching standards required to launch new public services.

    • Senior Security Researcher
      Feb 2014 - May 2017 · 3 yrs 4 mos

      Led a small team of researchers and consultants, responsible for specific security research programmes. This included authoring and commissioning UK security standards related to product security and development practices; collaborating with product vendors to disclose vulnerabilities, recommend mitigations and raise overall product security; advising senior policy makers on systemic issues that warranted additional interventions

  • Summer Student at UK Civil Service
    Jun 2010 - Sep 2010 · 4 mos

    Selected for a 4-month student programme, working on a mobile security project.

  • Junior Network Engineer at Max WiFi
    Jun 2009 - Sep 2009 · 4 mos

    I designed, configured, installed and operated (predominately Cisco) networking equipment and SIP telephones for short-term events in remote locations. This included multiple networks for event management teams and media centres. As well as a range of small events, I worked on the Queen's Club Championships, the Scottish Open and the Royal Windsor Horse Show.