GSMA Security

As the threats targeting the mobile ecosystem increase the GSMA continue to enhance the security support offered to its membership.

Our Purpose

Our purpose is to analyse the industry’s threat landscape and provide information that enables our member’s ability to protect the mobile ecosystem.

Industry Engagement

The GSMA Security Team supports the Fraud and Security Group (FASG). We work collaboratively with this group of experts on Fraud and Security topics.

Further to our work with the FASG we have broadened our presence within industry through best practice publications, as well as providing security operations services for our membership. We work with a wide variety of stakeholders to deliver our services, these include:

  • Academia
  • Industry Bodies
  • Standards Development Organisations (SDO)
  • Security practitioners
  • Security researchers
  • Senior security representatives

Meet the Team

Samantha Kight

Head of Industry Security, GSMA

James Moran

Head of Security, GSMA

David Maxwell

FASG Director, GSMA

David Maxwell is a Senior Working Group Director in the GSMA’s Fraud and Security Group (FASG). FASG drives the mobile industry’s management of fraud and security matters related to technology, networks and services, and brings together fraud and security management specialists from the GSMA membership to share intelligence and develop best practice.

David also manages the GSMA Security Accreditation Scheme (SAS), which provides production security auditing and certification for sites supplying UICCs, eUICCs and subscription management services to the mobile industry.

Ian Smith

Security Operations Director, GSMA

Ian is presently Security Operations Director within the GSMA’s Fraud and Security team where he leads the security team who specialise in GSMA’s Security Accreditations Schemes (SAS), Coordinated Vulnerability Disclosure Programme (CVD) and Telecoms Information Sharing and Analysis Center (T-ISAC). His team also issues regular security reports that provide insight into the latest security challenges and trends within the mobile industry.

Prior to this current role, Ian developed many of the GSMA’s IoT security resources including IoT SAFE which leverages the SIM as a ‘root of trust’ for IoT services, the GSMA’s IoT Security Guidelines and associated IoT Security Self-Assessment scheme. Ian led the delivery of the GSMA IoT Connection Efficiency Guidelines and the first release of the GSMA Embedded SIM Specifications.

Before joining the GSMA, Ian has held senior technical positions within network operators including Hutchison (Three) and Orange.

Ian holds a B.Eng. with joint honours in Electronic Engineering and Computer Science from Aston University, UK.

Leonie Lewis

Senior T-ISAC Manager, GSMA

Leonie Lewis is the GSMA Senior Telecommunications – Information Sharing Analysis Center (T-ISAC) Manager, responsible for facilitating and improving processes for cybersecurity threat-related information sharing in the global mobile ecosystem. This member-driven initiative is essential for the advancement of cybersecurity in the telecommunications industry.

Prior to GSMA, Leonie was the Senior Threat Intelligence Lead at Inmarsat and representative for information sharing with internal stakeholders, as well as global government, law enforcement and several ISAC communities.

Leonie has also held various roles in Law Enforcement; notably, as part of City of London Police (CoLP) Cyber Protect Network that links with the Regional Organised Crime Units throughout the UK.

Martin Beauchamp

Security Industry Analyst, GSMA

Martin Beauchamp is an Industry Security Analyst at the GSMA’s Cyber Security Department where he works on delivering practical security responses to the evolving threats facing the mobile industry.

Martin has significant global experience in delivering cyber & security outcomes with industry, government and academic perspectives. He has a strong technical background and nurtures trust relationships to understand solutions to complex cyber security problems. Martin has a broad range of current interests including cyber and open source software security, equipment supply chain risk, new technology exploitation. risk management, industry engagement and programme delivery.

Prior to joining GSMA, Martin worked in UK Government on Telecoms Security & Resilience at the Department for Digital, Culture, Media and Sport and in a variety of cyber security roles at BT.  He holds 2 degrees and is a Chartered Engineer.


Roger Brown

Security Services Manager, GSMA

Roger is the GSMA Security Services Manager, responsible for the effective management of a variety of security services provided by the GSMA to protect the mobile ecosystem.

Jo Heaphy

Security Services Assistant Manager, GSMA

Jo is the GSMA Security Services Assistant Manager, responsible for the day-to-day management of the GSMA’s Security Accreditation Scheme (SAS) which provides production security auditing and certification for sites supplying UICCs, eUICCs & subscription management services to the mobile industry.