SOC-as-a-service provider e2e-assure has appointed Ian Henderson as OT Security Advisor, as the company expands its operational technology security services for industrial and critical infrastructure operators.
Henderson joins from BP, where he led automation systems security, and advised senior executives on cyber risk, resilience, and safety, according to e2e-assure. The company said it has been building out its OT portfolio, including 24/7 unified IT/OT detection and monitoring, alongside further hires in the space.
The appointment lands amid a steady drumbeat of disruption affecting operators and their supply chains. Jaguar Land Rover’s 2025 incident, for example, halted production for weeks and became a case study in how quickly an IT-side event can propagate into operational downtime. Southern Water has also continued to publish updates following a cyber incident affecting parts of its IT environment.
For OT teams, the technical challenge is rarely limited to tooling. Henderson’s brief, as described by e2e-assure, is to help operators at different stages of security maturity balance safety, availability, and security, while managing OT/IT convergence without adding operational risk.
Regulatory pressure is also building. The UK Cyber Security and Resilience (Network and Information Systems) Bill was introduced to Parliament on 12 November 2025 and is progressing through the 2024–26 session, with government positioning it as a reform and expansion of the existing NIS Regulations framework. For many industrial operators, the practical implications will sit in reporting expectations, governance, supplier assurance, and the less glamorous work of proving what is connected to what — and who is responsible when it is.
e2e-assure also pointed to Henderson’s involvement with the GIAC Global Industrial Cyber Security Professional (GICSP) steering group, linked to professional qualification development for the industrial control community.
“e2e-assure is pioneering OT specialisation just as the market really needs those specific skills and experience,” said Ian Henderson. “OT environments need expert support to manage their IT/OT convergence and to meet increasingly complex legislation. It’s not feasible for every organisation to build out a full security operations centre, so being able to help organisations scale their security operations so they can operate at the same level as a highly mature enterprise is a key value I see e2e-assure providing. I’m looking forward to providing more credible, outcome-focused OT security guidance and contributing to service design and assurance models that reflect how industrial environments actually function. The aim is to enable customers to move from reactive security to resilient, risk-informed operations.”
Rob Demain, CEO of e2e-assure, added: “OT systems are now woefully exposed across numerous sectors, so it’s imperative that these organisations take swift and immediate action to address the burgeoning threat of attack. Ian’s IT and OT expertise will prove invaluable in helping our customers to identify areas of risk and put in place policies and technical controls that provide clear, business-relevant outcomes for CEOs, boards, and regulators.”
