E2e-assure appoints ex-BP VP to bolster critical infrastructure resilience amid rising ransomware and regulatory pressure

Ian Henderson joins to support OT operators as they navigate increasing threats, evolving regulation, and organisational complexity

Abingdon, UK; 10 March, 2026: SOC-as-a-service provider, e2e-assure, today announced the appointment of Ian Henderson as OT Security Advisor to support the company’s growing Operational Technology (OT) security offering. A volatile geopolitical landscape, increasing legislation such as the upcoming Cyber Security Resilience Bill, and evolving attacker tactics and techniques are putting increasing pressure on OT security teams. To respond to growing demand, e2e-assure has been investing in its OT portfolio, adding new capabilities such as 24/7 unified IT/OT detection and monitoring, and making strategic hires in the space. Ian joins e2e-assure from BP, where he built and led a world-class OT security function and advised board-level and C-suite executives on cyber risk, resilience, and safety.

Ian will support the protection of OT systems in critical national infrastructure (CNI), industrial, and regulated sector environments. The appointment comes at a time where critical utilities and manufacturers are increasingly experiencing the real-world impact of targeted attacks, with Jaguar Land Rover and Southern Water most recently falling victim to ransomware incidents. Ian will support building resilience into these organisations by providing insights and practical approaches to OT operators at different stages of security maturity. He will advise on how to balance safety, availability, and security and accelerate OT/IT convergence, without introducing operational risk, and to improve their resilience in the face of rising threats and complex legislation.

The upcoming Cyber Security Resilience Bill (CSRB) is just one piece of new legislation many OT operators will need to navigate. The CSRB will be applicable to any organisation deemed as “critical” if their failure could disrupt essential services, which many OT operators, especially CNI, will fall under. Preparing to comply with legislation will be a significant challenge to many OT operators. Ian brings experience of developing industry standards for Global Information Assurance Certification’s Global Industrial Cyber Security Professional (GIAC GICSP), a steering group which advises upon the creation and update of professional security qualifications for the industrial control community. Ian’s commitment to raising the bar across the industry means he goes beyond helping organisations achieve compliance – he works with them to build genuinely resilient cybersecurity strategies. With Ian on board, OT operators can feel confident they have a partner focused not just on meeting requirements, but on strengthening long-term operational resilience.

“e2e-assure is pioneering OT specialisation just as the market really needs those specific skills and experience,” explains Ian Henderson. “OT environments need expert support to manage their IT/OT convergence and to meet increasingly complex legislation. It’s not feasible for every organisation to build out a full security operations centre, so being able to help organisations scale their security operations so they can operate at the same level as a highly mature enterprise is a key value I see e2e-assure providing. I’m looking forward to providing more credible, outcome-focused OT security guidance and contributing to service design and assurance models that reflect how industrial environments actually function. The aim is to enable customers to move from reactive security to resilient, risk-informed operations.”

Speaking about the appointment, Rob Demain, CEO of e2e-assure, comments: “OT systems are now woefully exposed across numerous sectors, so it’s imperative that these organisations take swift and immediate action to address the burgeoning threat of attack. Ian’s IT and OT expertise will prove invaluable in helping our customers to identify areas of risk and put in place policies and technical controls that provide clear, business-relevant outcomes for CEOs, boards, and regulators.”

About e2e-assure

e2e-assure has provided expert SOCaaS solutions powered by our SaaS SOC platform, CUMULO, to government and CNI organisations for over a decade. Our 24/7/365 UK based Security Operations Centre, staffed exclusively by NPPV3 and security cleared cyber professionals, is dedicated to rapid, expert response for nation critical organisations.

Unlike providers locked into specific technologies, our fully owned SaaS SOC platform, CUMULO, integrates with your existing security stack to optimise the value of your existing investments. With UK data sovereignty guaranteed and an unwavering focus on SOC excellence, we help you build resilience, reduce risk, and stay ahead of threat actors with confidence.