With over 20 years in IT, with nine years in roles within financial services. Specialist knowledge of producing working information security policies and procedures from international standards and frameworks such as CIS, NIST, Cyber Essentials, ISO27000.
A passion for promoting Cyber Defence based on knowledge of offensive techniques – constantly learning and in daily conversation with a global network of internationally recognised red team professionals and blue team defenders.
Ability to set the directions and strategy; to achieve immediate bottom line benefits, proven track record of success in providing solutions that improve the efficiency of IT Security and business operations. Strong understanding of the relationship between technology and strategic business objectives.
A gifted technologist with extensive experience in areas of IT Governance, Risk Management, Compliance, Business Continuity, Threat Intelligence Services, Forensic Investigation, Application Security, IT Infrastructure Security, SOC setup, SOC maturity, Vulnerability Management and Penetration Testing engagements.
Experienced at liaising with senior leadership teams to CX and board level to educate key stakeholders on the benefits of good security practice, changing cyber threats and a risk based approach to committing resource. Specialist knowledge of producing working information security documentation from international standards such as CIS, NIST, HMG, SANS, NSA, AusDSD, NESA and “Cyber Essentials”.