Paul Holland is a principal research analyst with the Information Security Forum (ISF), the leading authority on cyber, information security and risk management. His work involves investigating, clarifying and sharing best practice with ISF member organisations.
His research has covered topics as varied as security operation centres (Socs), cloud security and human-centred security. He is currently running an ISF research project on securing open source software.
Paul has spent over 20 years in operational IT, 10 of those in information and cyber security. Prior to joining the ISF, he worked in a variety of industries (including manufacturing, finance, media, public sector, consultancy and retail) and holds a current CISSP.