I am a IT Risk and Information and Cyber Security professional. I have worked with clients from a number of industry sectors with a particular focus on financial services, media, retail and business services. I help clients mitigate their information security risks by working with the business to understand and prioritise the information that matters. This is done by conducting interviews and workshops with key stakeholders, which can include anyone from C-suite executives to the data owners. My work also involves applying existing risk assessment and information security standards and frameworks (ISF Standard of Good Practice, ISO 27001 etc.) and using these to develop customised solutions to improve the client’s security posture.