Leadership Team

The people behind Report URI.

Scott Helme

Founder & CEO

Scott is an internationally recognised security researcher with over a decade of work focused on browser security and HTTPS. He created Report URI and Security Headers and has spent years helping organisations adopt and operationalise standards like Content Security Policy, HSTS, and Certificate Transparency.

Scott speaks regularly at international conferences, writes extensively about practical browser-native security on his blog, and works directly with organisations of all sizes on real-world client-side security challenges.

Troy Hunt

Strategic Partner

Troy is a Microsoft Regional Director and the creator of Have I Been Pwned, the world's largest free data breach search service. He brings decades of experience in security, web application architecture, and developer education.

Troy joined Report URI as Strategic Partner in 2017 and contributes deep expertise in scale, public-facing security communication, and the practical realities of running security services that organisations depend on every day.

Nicola Helme

CFO

Nicola leads Report URI's financial operations, overseeing planning, reporting, and the financial controls that support a growing software business.

She works closely with the wider leadership team on commercial strategy, sustainable growth, and the operational decisions that keep the platform running for organisations around the world.

Paul Oggelsby

Chairman

Paul serves as Chair of the Board at Report URI, providing strategic direction and oversight as the business continues to expand.

He brings extensive experience in technology leadership and corporate governance, and works alongside the executive team to support long-term planning, board-level decision making, and the broader direction of the company.

Edward Saxton

Software Developer

Edward is a software developer at Report URI, contributing to the platform that ingests, processes, and surfaces hundreds of millions of browser security reports every day.

His work touches the engineering systems that make client-side security visibility practical at scale for organisations across the customer base.

About Report URI

Learn how Report URI approaches client-side security.

About Report URI → Our History →

Industry Expertise

Years of work at the browser layer.

The Report URI team has spent years helping organisations understand browser behaviour, operationalise security standards, and reduce risk from third-party code.

Their work spans browser security research, CSP implementation, client-side security practices, and broader efforts to improve visibility and enforcement at the browser layer.

Through industry collaboration, technical education, standards advocacy, and practical implementation experience, the team continues to contribute to how organisations approach browser-native security and client-side risk management.

Learn how Report URI approaches client-side security →

Built by experts in browser-native security.