H.E. Essam Abdulmohsen Al-Marzouq

Minister of Oil Minister of Electricity & Water, Kuwait Petroleum Corporation

Speaking at: Inaugural Address

Board Chairman of Kuwait Petroleum Corporation (KPC) – State of Kuwait

Academic Qualifications:

  • B.Sc. in Mechanical Engineering
    from University of Southern California, 1982.

Work Experience:

  • Joined Kuwait National Petroleum Company (KNPC) as Mechanical Construction Engineer 1982- 1986.
  • Joined Japan Gas Company (JGC) in Yokohama as Training Engineer in Design, Inspection and Estimation, as part of the training program for KNPC engineers 1984- 1985.
  • Joined Kuwait Petroleum Corporation (KPC) as Planning Engineer 1986- 1989.
  • Promoted as Senior Planning Engineer “for the Downstream Operations of KPC, which includes KNPC and Petrochemical Industries Company (PIC) 1988.
  • Held the position of General Manager at Kuwait Industrial Refinery Maintenance & Engineering Company (KREMENCO) 1989- 1996.
  • Joined Kuwait Shipbuilding 8a Repair Company (KSRC) as Board Director 1996- 1999.
  • Joined Gulf Dredging Company (GDC) as Chairman and Managing Director 1999-2007.
  • Family business in Kuwait and abroad 2007-2016.
  • Chairman of the Board of Boursa Kuwait Company 2014-2016.
  • Board Member of KPC 2015-2016.
  • Minister of Oil, Minister of Electricity & Water and Chairman of the Board, KPC 10 December 2016.

Nizar Al-Adsani

Deputy Chairman & CEO, Kuwait Petroleum Corporation (KPC)

Speaking at: Day 1 - Introductory Speech

Mr. Nizar M. Al- Adsani is the Deputy Chairman of the Board of Directors, and Chief Executive Officer of Kuwait Petroleum Corporation

He joined Kuwait Oil Company in 1984, and held several positions before being appointed General Superintendent, Project Management. In 1999 he moved to the Kuwait Petroleum Corporation to become Manager of Planning and Investment Coordination He held this position until September of 2004, at which point he became Executive Director, Business Administration for Khafji Joint Operations. In November 2007 he was promoted to Deputy Managing Director (KJO) at the Kuwait Gulf Oil Company. In October 2009 he was named Chairman of Joint Operating Committee at KJO. From 2011-2013, Mr. Al-Adsani served as Chairman and Managing Director of Kuwait Foreign Petroleum Exploration Company

Mr. Al-Adsani received his Bachelor’s Degree in Science (Mechanical Engineering) from South Dakota State University in 1984.

Wafaa Youssef Al-Zaabi

Managing Director - Finance & Planning , Kuwait Petroleum Corporation (KPC)

Speaking at: Executive Panel Session – Day 1

Mrs. Wafaa Youssef Al Zaabi is the Managing Director of the Kuwait Petroleum Corporation, and is a Member of the Kuwait Oil Company Board.

She is proficient in the oil industry, reorganizing and restructuring the oil sector, Gas importing, private sector participation and privatization, as well as oil pricing policies and mechanism.

 Mrs. Al-Zaabi previously was a Board member of Al Sour Fuel Company, and of the Kuwait Gulf Oil Company, as well as was a member of the Higher Tender Committee Steering for the Oil Sector.

 She holds a Bachelors degree in Chemical Engineering and a Masters degree in Chemical Engineering from the College of Petroleum and Engineering, Kuwait University.

Mohammad Ghazi Al-Mutairi

Chief Executive Officer (C.E.O.) , Kuwait National Petroleum Company KNPC

Speaking at: Day 1 Executive Message

Mr Mohammad Ghazi Al-Mutairi, Chemical Engineer from Kuwait University, he joined KNPC in 1987 and has over 26 years’ experience in downstream sector, Refining Industry, Technologies and Management

His vast experience includes working in senior management as Deputy Managing Director of both MAA and MAB Refinery.

Mr. Al-Mutairi as CEO-KNPC, he is responsible for managing the Kuwaiti Downstream business such as Refinery and Gas Processing.

He has vast experience in Operations Department, he worked  as Manager Operations for both SHU and MAA Refinery.

Mohammad Husain

President & CEO, EQUATE Petrochemical Company

Speaking at: Day 1 Executive Message1

With a professional background consisting of more than 30 years of in the oil and gas sector, Mohammed Husain’s areas of expertise include exploration, development and production of oil and gas, petrochemical and downstream activities, as well as corporate planning and strategy development.

Mohammed took over as President and CEO of EQUATE in April 2012. During his career, he has held various leadership positions, both administrative and technical, in a number of leading companies including: Kuwait Oil Company (KOC), Petrochemical Industries Company (PIC) and finally at Kuwait National Petroleum Company (KNPC) where he served as Deputy Chairman & Deputy Managing Director for Mina Al-Ahmadi Refinery.

Mohammed had also served on the EQUATE Board of Directors from 2004 until 2012, and is currently a board member of the Gulf Petrochemicals & Chemicals Association (GPCA). He received his Bachelor's degree in Petroleum Engineering from the University of Tulsa in the United States.

Ziad Al-Labban

Chief Executive Officer , Sadara Chemical Company

Speaking at: Executive Panel Session – Day 1

Ziad Al-Labban joined Sadara Chemical Company as Chief Executive Officer in October, 2012 bringing with him over 34-years of experience in the oil, gas and petrochemical industries, both in the upstream and downstream sectors.

Prior to joining Sadara, Ziad was President and CEO of Petro Rabigh, a 400,000 barrel per day integrated refinery-petrochemical plant in Rabigh, Saudi Arabia, which came on-stream the year he joined the company.  He served in this capacity from August 2009 until September 2012.  During his tenor at Petro Rabigh, he led the company from realizing a net loss in 2009, to realizing a consistent net profit each year for 2010, 2011 and 2012.

Before Petro Rabigh, Ziad served as President and CEO of Saudi Refining, Incorporated (SRI) in Houston, Texas from August 2007 through July 2009.  During that time, he was responsible for managing SRI’s interest in Motiva Enterprises, a major US refiner with three refineries supported by a marketing network that includes approximately 8,000 Shell branded gasoline retail outlets in the southern and eastern United States.  The Port Arthur Refinery in Texas is the flagship refinery of Motiva and is the largest oil refinery in the United States, with a production capacity of 600,000 barrels per day.

Graham Cluley

Public speaker and independent computer security analyst, Award-Winning Tech Security Analyst

Speaking at: Day 1 - Keynote : Who is attacking your control systems & Why?

Graham Cluley is an award-winning security blogger, researcher, and public speaker. He has been a well-known figure in the computer security industry since the early 1990s when he worked as a programmer, writing the first ever version of Dr. Solomon's Anti-Virus Toolkit for Windows.

Between 1999 and 2013, Graham worked as a senior technology consultant at security firm Sophos. He was also the head of corporate communications, and the editor and main writer of Sophos's award-winning Naked Security site, which typically receives 1.5 million page views each month.

Graham has given talks about computer security for some of the world's largest companies. He has also spoken at events around the world such as RSA, Infosec, Web Summit, Microsoft Future Decoded, EICAR, AVAR, ICSA, ISSA, Virus Bulletin, Ja.net, Campus Party, and the European Internet Security Forum. He has worked with law enforcement agencies on investigations into hacking groups, and regularly appears on TV and radio explaining computer security threats. 

As well as being an independent blogger, Graham has also made many international media appearances, including BBC, NPR, Good Morning America, Sky, Fox, CNN, Mashable, and TechCrunch. He has written columns on computer security for publications such as the Telegraph, IT Week, Computer Weekly, VNUNet, and the BBC College of Journalism.

Graham Cluley was inducted into the InfoSecurity Europe Hall of Fame in 2011, and was given an honorary mention in the "10 Greatest Britons in IT History" for his contribution as a leading authority in internet security.

Mohammad Altura

Chief, Information Technology Sector, CITRA

Speaking at: Day 1 - Session #2 "National Cybersecurity Strategy"

Mohammad have spent most of his career with Microsoft International after graduating B.A. Computer Science from University of Colorado in May 1993.

19 years of experience in software giant played multiple roles:

  1. Corporate Sales Manager – Dubai
  2. Copyright Manager - Saudi Arabia
  3. Manufacturing Sector Manager - Saudi Arabia
  4. Public Sector Manager – Kuwait
  5. Public Sector Manager - Kuwait, Qatar, Bahrain
  6. Business Development Manager – GCC

Currently as a Chief of IT at CITRA, Mohammad is responsible for:

  1. IT Governance Public Sector.
  2. IT Industry Development.
  3. National Cybersecurity.

Joerg Krämer

Line Manager – Functional Safety & Cyber Security, TÜV Rheinland Industrial Services GmbH

Speaking at: Day 2 : Session 10 - IoT and Industrial Control Systems: Functional Safety meets Cyber Security

Joerg Krämer is specialized in Functional Safety and has more than 25 years of business experience in the Automation and Process Industry.

Joerg has detailed knowledge of Functional Safety for product development specializing in HW and SW Design and Development, for machinery applications and for automotive.

Additionally, he is responsible Product Manager for Trainings and Workshops and has long-term experiences and expertise as trainer for specialized topics in Functional Safety as well as in Cyber Security. He has studied at the renowned University of Applied Sciences in Siegen, Germany.

Dr. Reem Faraj Al-Shammari

Team Leader ,Information Security, Kuwait Oil Company

Speaking at: Day 1 - Session #6 "Information Security Culture -Changing the Mindset"

Being part of Kuwait Oil Company that is an Oil & Gas Company with responsibilities under the KPC's Umbrella which involve the exploration, drilling and production of oil and gas within the State of Kuwait.

The Company is also involved in the storage of crude oil and delivery to tankers for export. Dr. Reem’s extensive experience includes Leading and managing projects in various Information technology areas such as Cyber Security, Digital Oil Fields, Wireless and Telecommunication technologies, Corporate systems and applications, Real Time and Industrial Control systems and applications, and Web development and design. In short, Dr. Reem was well prepared and trained by the best to be a "Joker“who innovates in any field or project she joins and that’s what she has become now.

Dale Peterson

CEO and Founder, Digital Bond & S4

Speaking at: Day 1 - Session #4 "ICS Security: Defense Will Win"

Dale Peterson is a CISSP, CISA and NSA certified cryptanalyst. He has a BS in Finance from University of Illinois.

Internationally renowned SCADA security technologist. In addition to his widely read SCADA security blog, he has written two Protection Profiles for NIST’s PCSRF, many whitepapers, magazine articles and presentations. In 1998 founded Digital Bond. Leads a team on consulting engagements that assess and improve security of SCADA and DCS. 

Peter D. Reynolds

Process Industries Sr. Consultant & Analyst, ARC Advisory Group

Speaking at: Day 1 - Session #5 "Cybersecurity Implications for an Industry in Transition"

Peter brings more than 20 years of professional experience in process control, advanced automation applications, information technology an in the downstream oil refining industry.

20 years of professional experience in process control, advanced automation applications, information technology an in the downstream oil refining industry. Served as the Strategic Planning Manager for Automation and IT at Irving Oil which operates Canada’s largest refinery. At ARC, he has authored global market studies and published several whitepapers related to automation and IT with various speaking engagements throughout North America the EMEA.

Antonio Forzieri

Global Cyber Security Practice Lead - Cyber Security Services, Symantec

Speaking at: Day 1 - Session #3 "Cyber Defence Center"

Mr. Antonio Forzieri is responsible for the Cyber Security offering for Global from a technology perspective at Symantech. Previously Antonio worked in Symantec as a Cyber Security Practice Lead for EMEA supporting customers in complex Cyber Security Initiatives ranging from building/evolving Cyber Defense Centers to supporting customers in Cyber Security Intelligence Programs.

Before joining Symantec, Antonio worked for a number of Italian companies with EMEA wide responsibilities dealing with Compliance, Endpoint Security, Data Loss Prevention, Encryption, Ethical Hacking, Fraud Management and Security Education topics. Amongst other activities, Antonio supports public and private organization during significant security outbreaks and fraud investigations.

Antonio Forzieri holds a degree in Telecommunication Engineering from Politecnico di Milano where he is also a lecturer for the course “Internet: Mobility and Security” and he teaches the Master Class “Fraud Management” for the Security Specialist Master at CEFRIEL.

John Matherly

Founder , Shodan

Speaking at: Day 2 - Keynote : Conversions with your Control System

John Matherly launched Shodon in 2009. He conceived the idea of searching devices linked to the Internet.

The name Shodan is from a reference to SHODAN, a character from the System Shock video game series is a search engine that lets the user find specific types of computers (web cams, routers, servers, etc.) connected to the internet using a variety of filters. Some have also described it as a search engine of service banners, which are meta-data the server sends back to the client. This can be information about the server software, what options the service supports, a welcome message or anything else that the client can find out before interacting with the server.  Shodan collects data mostly on web servers (HTTP/HTTPS - port 80, 8080, 443, 8443), as well as FTP (port 21), SSH (port 22), Telnet (port 23), SNMP (port 161), SIP (port 5060), and Real Time Streaming Protocol (RTSP, port 554). The latter can be used to access webcams and their video stream.

Dr. Ebrahim Alrashed

Professor in Computer Engineering, Kuwait University

Speaking at: Day 2 - Session #7 "IoT for control systems and cyber security"

Ebrahim Alrashed received his PhD degree in computer engineering from The University of Southern California, Los Angeles, CA in 1997.

He is currently a faculty member in the computer engineering  department  at Kuwait University. His research interests includes network security, mobileand wireless networks, Internet of Things, and sensor networks. Dr. Alrashedis a   member of IEEE and ACM (Association ofComputing Machinery).

Sinclair Koelemij

Industrial cyber security professional, Honeywell, Amsterdam., Honeywell

Speaking at: Day 2 - Session 12 : Plant Safety vs. Cyber Security Culture

Sinclair is an industrial cyber security professional (Active CISSP-ISSAP, CISM, CRISC, GSNA certifications) working for over 37 years in process control and cyber security. The first twenty years of his career he worked exclusively in process control engineering, the second part of his career was focused on control networks and cyber security.

During the first period he developed control solutions for customers, was for multiple years a site resident engineer at two large European refineries, and participated in the commissioning and start-up of many green field and brown field DCS, SCADA, and SIS installations. The second part of his career was filled with designing large process control networks, performing close to sixty cyber security and risk assessments and implementing security operations, disaster recovery plans and security program management for the industry.

This rare combination of skills makes him one of the few industrial control system security specialists that has worked both in process control and industrial cyber security in a multi-vendor environment.

Ernie Hayden

ICS Security Lead, BBA

Speaking at: Day 2 - Session #9 : A New Approach to Perimeter Security Analysis

Ernie is a highly experienced and seasoned technical consultant, author, speaker, strategist and thought-leader with extensive knowledge in the power utility industry, critical infrastructure protection/information security domain, industrial controls security, cybercrime and cyberwarfare areas.

His primary emphasis is on project leadership and execution involving cyber and physical security of industrial controls, smart grid, energy supply, and oil/gas/electric systems and facilities with special expertise on industrial controls security and NERC Critical Infrastructure Protection (NERC CIP) standards.  He is a student of geopolitics and the associated influence of cyber security issues.  Hayden has been an Executive Consultant at Securicon, a Non-resident Fellow at the Caspian Strategy Institute, and has held roles as Global Managing Principal – Critical Infrastructure/Industrial Controls Security at Verizon, held information security officer/manager positions at the Port of Seattle, Group Health Cooperative (Seattle), ALSTOM ESCA and Seattle City Light. In 2012 Ernie was named a “Smart Grid Pioneer” by Smart Grid Today and published an article on Microgrid security in Jesse Berst’s Smart Grid News. Ernie is a frequent author of blogs, opinion pieces and white papers.  He has been cited in the Hazar Today Journal, Financial Times, Boston Globe, and Energy Biz Magazine.  Many of his articles have been posted to such forums as Energy Central, Public Utility Fortnightly “SPARK,” and his own blog on Infrastructure Security.  He is an invited columnist for the “Ask the Experts” discussions on www.searchsecurity.com and he published an article regarding electric grid security versus compliance in Public Utility Fortnightly magazine.  Other thought-leadership articles have included a chapter on "Cybercrime's Impact on Information Security," in the Oxford University Press Cybercrime and Security Legal Series and several articles in Information Security Magazine including his original research on data lifecycle security and an article on data breaches in the same publication.  Ernie is a very active contributor in global security forums.  His past includes membership in the Cloud Security Alliance where he was the leader for the Information Lifecycle Domain in the Cloud Security Guidelines document Version 2.  He has also been an instructor, curriculum developer and advisor for the University of Washington Information System Security Certificate program in Seattle.  Additionally, Ernie has been a contract instructor for the Cyberterrorism Defense and Analysis Center, sponsored by the U.S. Department of Homeland Security.  One of his technical papers on cybersecurity governance of the U.S. electric grid received “Best Paper Award” at the 2012 Critical Infrastructure Symposium co-sponsored by the Society of American Military Engineers (SAME). Ernie is a CISSP - Certified Information Systems Security Professional, Certified Ethical Hacker (CEH), ASIS Physical Security Professional (PSP), SANS Global Industrial Controls Security Professional (GICSP - GOLD) and holds the ISA99/IEC 62443 Cybersecurity Fundamentals Specialist certificate.  He is also a member of ASIS.  He received a Masters of Infrastructure Planning and Management and a Bachelors Degree in Business Administration (with International Business emphasis) both from the University of Washington in Seattle.  He is also a graduate of the FBI Citizens Academy, Seattle Police Department Citizens Academy, US National SCADA Test Bed (NSTB) SCADA Security Course, and Center for Creative Leadership - Leadership Development Program.

Eitan Goldstein

Senior Manager, Industrial Cyber Security, Siemens

Speaking at: Day2 - Session 10 "ICS best practices and learnings from the field"

Eitan Goldstein is a Senior Manager on Siemens’ Industrial Cyber Security team.

He helps set the strategic direction, develop new products and services and accelerate growth for the Siemens industrial security business worldwide.  Prior to coming to Siemens, Eitan was a strategy consultant at the Boston Consulting Group, and worked as an attorney at General Electric.   He has a BA from UCLA, and holds a JD from the University of Virginia School of Law, and an MBA from Columbia Business School.

William J Cotter

Co-leader, ISA99 Working Group for Patch Management

Speaking at: Day 2 - Session #11 : Overview of ICS Patching

Mr. Cotter has more than 40 years of manufacturing experience in various chemical manufacturing areas. He started as a mechanical engineer then progressed thru maintenance, project engineering and finally into process control. He has worked for a tire company, a large chemical, a small pharmaceutical and now 3M, where he has worked for the last 35 plus years.

He has reached the level of Master System Engineering Specialist with the Process Information and Control Solutions group in St. Paul Mn. He has a strong involvement in the security of process control systems in the manufacturing environment.

He has also been active in international organizations to improve manufacturing use of computer systems. He has been the Chair of the Microsoft in Manufacturing Users Group ( MSMUG ) and is currently a co-leader of the ISA99 Working Group 6 team ( Patch Management ). This is the group that has created the IEC62443-2-3 Technical Report - Patch Management in the IACS environment and is part of the ISA99\IEC62443 Industrial Automation and Control System (IACS) Security set of documents. The current work is to convert the technical report into a standard.

Joel Langill

Industrial Cyber Security Expert, AECOM Management Services

Speaking at: Day 2 - Workshop "A Risk-based Approach to Improving ICS Cybersecurity and Resilience"

Joel brings a unique perspective to industrial security with over three decades field experience deploying ICS solutions covering most major industry sectors in more than 35 countries encompassing all generations of automated control from pneumatic to cloud-based services.

Over nearly 30 years’ experience through in-depth, comprehensive industrial control systems architecture, product development, implementation, upgrade and remediation in a variety of roles covering manufacturing of consumer products, oil and gas including petroleum refining, automation solution sales and development, and system engineering. Worked for General Electric, Shell Oil Company, Honeywell Process Solutions, and ENGlobal Automation. Holds a rare and insightful expertise in the risks and mitigation of cyber vulnerabilities in industrial control systems.

Hasan Mohammad Al-Hamadi

Team Leader IT, Kuwait Petroleum International

Speaking at: Day 2 "Threats and Investments of Cyber Security"

Hasan Al-Hamadi Team Leader Kuwait Petroleum International (KPI-Q8), Master of business administration from Maastricht School of Management

He has a BS in Information technology from Queensland University of technology (Australia) with over 20 years of IT management and operation 16 of which in the oil and gas sector in Kuwait. Al-Hamadi is also deputy chair of the high committee in H.H sheikh Salim Al-Sabah informatics award as a volunteer for over 10 years and co founder of the Kuwait Internet group. Al-Hamadi has number of publications in IT security and telecommunications, he also provides professional consultancies to government and private sector.

Justin Somaini

Chief Security Officer, SAP

Speaking at: Day 2 : Technical Debate "Futurecasting Cyber Security & Innovations in ICS"

Justin Somaini heads the SAP Global Security (SGS) unit in the board area of Products & Innovation, reporting to Bernd Leukert, member of the SAP Executive Board. With more than 17 years of information security experience, he is responsible for SAP’s overall security strategy, ensuring that SAP and our customers have a consistent and convenient security experience and establishing SAP as a recognized and trusted leader in the industry.

In his role Justin develops, implements, and manages SAP’s overall policies, standards, and guidelines in accordance with the SAP Security Strategy as well as ongoing SAP security initiatives to meet the emerging international IT and cyber security environments and data protection and privacy laws worldwide.


Before joining SAP in 2015, Justin was Chief Trust Officer at Box, the world's leading enterprise software platform for content collaboration. In his position he was responsible for working globally and collaboratively across Box's growing customer base, technical-operations, and business-development teams to ensure the company is consistently delivering on its information security commitments, investing to meet the rapidly evolving security environment, and building transparent, deeply trusted relationships with its customers.  Prior to Box, Justin held the role of Chief Information Security Officer (CISO) at Yahoo!, driving security planning and operations for the company. Prior to Yahoo!, he was CISO of Symantec. He developed the company's Information Security Enterprise Risk Management process, worked cross-functionally to manage critical incidents to resolution, and drove implementation of controls for both a significant threat environment and regulatory needs. In addition to his roles at Yahoo! and Symantec, Justin was Director of Information Security at Verisign and an advisor to Qualys, Palo Alto Networks, Sentinel Labs, SourceClear, Solve Media, and others.


Justin holds a Bachelor's of Science degree in Management Information Systems from Drexel University, Philadelphia.

Girard Moussa

Cybersecurity Sales Lead for MEA, Microsoft

Speaking at: Day 2 – Technical Debate "Futurecasting Cyber Security & Innovations in ICS"

Girard Moussa is the Cybersecurity Sales Lead for MEA at Microsoft.  He joined the Enterprise Cybersecurity Group in June 2016, based in Dubai.

Previous to Microsoft, Girard was the Regional Sales Director for Splunk across the Middle East. Girard has over 17 years of Industry experience across the Middle East and Australia. He has held senior sales roles at multinationals including Google, Cisco Systems, Dimension Data and Schlumberger.

Jay Abdallah

Director - EMEA & APAC Cyber Security Services, Schneider Electric Dubai

Speaking at: Day 2 - Session#10 How to appropriately protect against ICS security threat vectors

Years of Experience 18 years Education BS - Applied Science and Technology from Thomas Edison State University – Trenton, NJ USA

Areas of Specialization • Industrial control systems cyber security engineering

• Advanced network / systems security consulting

• Enterprise-class information technology architecture and design

• Compliance and risk analysis, solutions design / implementation

Major Projects • Secure Industrial Automation System Implementation

o EMEA Oil, Gas, Petrochemical Industry.

• Vulnerability assessment, risk analysis, control system auditing / hardening

o EMEA Oil, Gas, Petrochemical Industry.

• Designed and implemented security solutions for US-based corporations

consisting of 5,000 – 330,000 endpoints.

• US National Computer Incident Response Team Engineer (Symantec) –

reactive systems breach and infiltration remediation.

• Architectural design and implementation services for Fortune 100

corporations worldwide.

Experience • Director EMEA Cyber Security Services – Schneider Electric Dubai

11.2010 – Present

• Senior Symantec Security Consultant – CBI Inc. USA

05.2008 – 11.2010

• Network Systems & Security Manager – Inergex Inc. USA

01.2006 – 05.2008

• Manager of Information Technology – FedEx Trade Networks USA

09.1999 – 01.2006

Professional • CISSP – Certified Information Systems Security Professional

Certifications • CISM – Certified Information Security Manager

• CISA – Certified Information Systems Auditor

• ISO27001 Lead Auditor

• ISA99 / IEC62443 Cyber Security Certified Specialist

• Juniper JNCIS / JNCIA

• Enterasys ECS-S / ECS-P

• Microsoft Certified Professional

• Symantec ASC / STS Endpoint / STS NAC

• US Federal Aviation Administration – Certified Private Pilot