The leaders below are either currently serving as CISOs, are closely tied to the role, or work in security roles that touch the mining and natural resources industry, bringing valuable perspective to the sector’s unique cyber risks. Each has demonstrated leadership in securing complex industrial systems, protecting critical infrastructure, and managing high-stakes cyber risk in regulated environments.
Malcolm Norman — Chief Information Security Officer, Anglo American
Recognised as one of the top 100 CISOs globally, Malcolm Norman is an accomplished executive leader with extensive experience across both logical and physical security. His expertise spans information security, cyber security, business continuity, regulatory compliance, and crisis management. Since joining Anglo American in September 2023, he has driven world-class security programmes across one of the UK’s most influential mining companies, bringing a strong track record of delivery in both public and private sectors.
Scott Brown — Chief Information Security Officer, Rio Tinto
While Scott Brown is based in Australia, Rio Tinto has a significant UK presence, making his leadership highly relevant to UK mining security audiences. With over nine years at Rio Tinto and as CISO since 2022, Brown oversees security for a global mining powerhouse, focusing on the unique challenges of protecting industrial systems, operational technology, and global supply chains.
Joseph Da Silva — Chief Information Security Officer, Johnson Matthey
Joseph Da Silva is a highly accomplished information security leader with a proven record of building multi-disciplinary teams and delivering measurable improvements across large, regulated organisations. He is known for strong stakeholder communication, pragmatic risk management, and a deep focus on security education and awareness. In September 2024, he joined Johnson Matthey as CISO, where he continues to drive security excellence in a resource-intensive industrial environment.
Jane Martin — Chief Information Security Officer, Holcim UK
Jane Martin is a flexible and results-focused IT leader responsible for delivering IT business systems and cyber/information security in a fast-changing environment. She has led process improvements and compliance initiatives, including ISO27000, ISO20000, and PCI-DSS, while driving user security awareness programmes. As CISO of Holcim UK (formerly Aggregate Industries), she oversees cyber risk in a sector closely tied to mining and natural resources through aggregates, construction materials, and industrial operations.
Babu Srinivas — VP Cybersecurity & Architecture (CISO), BHP
BHP maintains a significant corporate presence in the UK through BHP Group (UK) Ltd, and Babu Srinivas serves as VP Cybersecurity & Architecture (CISO). He brings 26 years of experience across security governance, risk management, business continuity, industrial control systems (ICS/SCADA), and enterprise security architecture. His leadership spans multiple industries, including manufacturing and energy, making him a key figure in industrial cybersecurity within the mining and natural resources ecosystem.
Alex Bransome — Cyber Security Lead, Barrick Mining Corporation
Alex Bransome serves as Cyber Security Lead at Barrick Mining, one of the world’s leading mining companies. His role is directly aligned with the operational and IT security needs of large-scale mining environments, where cyber risk is closely tied to operational continuity, safety, and global supply chain resilience.
Why These Leaders Matter
These CISOs and security leaders represent the evolving face of cybersecurity in mining and natural resources, an industry where operational technology, physical safety, and global supply chains intersect with cyber risk. Whether they are leading security programmes directly in the sector or shaping strategy from adjacent industrial roles, their work is defining how mining companies protect critical infrastructure in an increasingly hostile digital world.