Accountable for:- Zero Trust / SASE Architecture with ZScaler- Foundational Cloud Landing Zone in Azure- Microsegmentation in Virtualised Environments

Accountable for the following services globallySecurity Architecture & ConsultingSecurity Delivery Risk & Assurance Penetration Testing (12 months)Security Engineering (12 months)Designed and built team and management structure in place to support growth from 30 through to 110 people.

Responsible for leading and building highly successful Technical Security Consulting team. Hired, retained and attracted highly skilled and talented resources in a very tight marketplace.Built team up scratch to currently 14 consultants.Delivered consulting services globally across all large projects in the bank, including;-Apple and Android Pay-New Payments Platform-Various Cloud initiatives across AWS, Azure and GCP-DevOps and CICD tooling-Containerisation including Docker / Kubernetes-Internet Banking and Mobile Banking Rollouts-Enterprise Windows Server Platform-Security Enablement ProjectsDefined low level technical security standards for Cryptography and Networking as well as platform security standards for ANZProvided technical security thought leadership around upcoming technology trends, including Cloud (SaaS / Paas / Iaas), DevOps, Containerisation, Zero Trust / Perimeter architectures.

Part of the re-establishment of Security Architecture practice within ANZ.Responsible for providing consulting for IT security controls, ensuring they are designed, assessed and technically implemented in line with ANZ and industry standards.Rectified adverse finding from security test activities, including redesigning and creating compensating controls.Developed Security Architecture for Mobile Device Management Solution (Airwatch) delivering secured managed iPad usage into the bank.

Responsible for all Fosters security services, delivered by multiple outsourced service providers (firewalls, intrusion prevention, anti virus, proxy servers, content and spam filtering. • Ran regular internal and external vulnerability scans of Fosters environment globally.• Defined and engaged specialised Penetration Testing of critical external and internal applications globally. Aligned findings with Fosters risk framework and remediated issues.• Responsible for security incident management and investigations, including several major global security incidents.• Provide SME security advice for Fosters projects including Core ERP upgrade, Treasury Wine Estates Demerger, Windows Server and Desktop SOEs Windows 2008r2 & Windows 7.• Assisted driving architectural direction for future initiatives, including Private Cloud Computing, Microsoft Office 365, Identity Management, Patch & Vulnerability Management.

Responsible for providing governance and assurance over the following security technologies; firewalls, intrusion prevention systems (host and network based), anti virus & malware protection, certificate authorities and proxy servers/content filtering.• Managed the resolution of key security investigations and incidents. This involved dealing with all levels of business, technology and legal teams.• Defined, sourced and coordinated Penetration Tests with external providers. Responsible for remediating identified vulnerabilities with technology teams and following risk processes for unremediated vulnerabilities.• Provided Security guidance and design services for multiple high value Business Process Outsourcing (BPO) projects within Wholesale Banking.• Identified and improved process inefficiencies within Security Administration team. Processes automation led to reduction in manual provisioning and reconciliation work, with increases in both accuracy and timeliness.• 2iC role (2nd in Charge). Assisted with recruiting, interviewing, team composition, task allocation and day to day running of the team of 8 Security Analysts.

Key responsibilities included;•Managed External Vulnerability Scanning via Qualys toolset•Coordinated and rolled out two security awareness programs worldwide (10,000 users across 14 countries)• Reviewed and assessed all security related changes, including internal and external firewall changes.• Involved in the major integration project between ABN Amro and RBS, approving all security infrastructure changes and application security compliance reviews.• Responsible for coordinating monthly Microsoft patch assessment and deployment.

•Primary security resource for large projects and initiatives.- Active Directory Implementation and retiring of 5 legacy Windows NT domains.- Active Directory Implementation for Unix and Linux fleet utilising Vintela (Quest Authentication Services)- Sarbanes Oxley Rollout; Conducted ISO 17799 gap analysis, Analysed non-compliant Infrastructure, designed and implemented remediating controls.•Responsible for monthly Anti-Virus and vendor patch assessments.•High level escalation point for Infrastructure and Security issues.

• Administered access to 30 financial applications for 4000 global markets users.• Supported and maintained Identity Access Management solutions (Control-SA & In-house Lotus Notes Application)• Provided 2nd Level support for Security Identity Access Management issues.