EY boosts forensic cybercrime team with high profile appointments

11 February 2014

  • Share

LONDON, 11 FEBRUARY 2014. EY has today announced the appointments of Massimo Cotrozzi and Paul Burrows to its cybercrime investigations team.

With over 50 years of experience between them, the pair will help lead investigations for companies that are breached by hackers. 

Prior to joining EY, Paul ran his own intelligence company, Abacus EW, which was recently bought by Cohort Group plc. He also served for 24 years in the British Army - Signals and Intelligence Corps, developing the military’s cyber intelligence and incident handling capabilities.

Massimo joins from KCS Group, an intelligence and investigations firm based in London. His previous experience includes working for governments and corporate clients on investigating intellectual property theft and large-scale cyber attacks. He is also a forensic expert witness in international litigation cases.

Commenting on these appointments, Paul Walker, Partner and UK head of Cyber Investigations at EY, said: “Paul and Massimo‘s combined experience of working in government and in defence brings an added dimension to our cybercrime capability.

“Cyber-investigation is a rapidly growing area for the business as hackers get more sophisticated. It’s no use simply taking precautions as the assumption is now that businesses have been compromised already, they just don't know it yet. Instead, there is an urgent need to be proactive in detection, conducting regular forensic analysis of an organisation’s infrastructure to prevent compromise from a rogue employee or external threat.”

Paul Burrows comments: “This is an exciting opportunity to join a growing and ambitious business at the cutting edge in the battle against the latest cybercrime attacks. Like a normal crime scene investigation, companies need to follow the cyber trail using forensic skills to find out the extent of the damage, and what to do in response. Failure to respond correctly, or to panic, will only further damage the company’s assets, defences and reputation.”

EY’s UK cyber-investigations team, which will be doubling in size in 2014 to meet demand from businesses, has personnel working on responding to cyber attacks, data breaches and intellectual property theft across varying markets such as oil and gas, financial services, life sciences and the public sector.