My role within the Capita Group Security team includes supporting a wide range of businesses across both the Public and Private sector. My main responsibilities include working with businesses to identify key business risks, develop and enhance policies and procedures, managing and providing guidance when responding to security incidents, recommending security controls that enable the business to be in control and reduce the impacts of the risks they face.

My main responsibilities include working with clients to identify key business risks, develop and enhance policies and procedures, recommend security controls that enable the business to be in control and reduce the impacts of the risks they face.This work involves many of the following:Providing advice and guidance in relation to meeting various standards and compliance programs (ISO27001, ISO22301\BS25999, PCI-DSS and HMG SPF) Conducting information security control reviews and maturity assessmentsNetwork and Web Application Security AssessmentsIdentification and understanding of Business Risk, Impact Assessments and Threat AnalysisInformation Security Incident Management: including, Incident Investigation, Reporting and while ensuring the integrity and accountability is maintained at all times.Maintaining up-to-date detailed knowledge of the security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectorsWorking with Technical Architects, Engineers to ensure that the strategy and/or solution design is in accordance with good practice and compliance to business requirementsProviding targeted Security Awareness training for staff across a number of roles including Systems users, Operational staff and Software Application Development.

My responsibilities at Capita Employee Benefits consist of managing and supporting the Capita Employee Benefits Information Assurance team in ensuring all applicable requirements are met.Particular focus on supporting IT in maintaining compliance with the Information Security Management System (ISMS) ISO27001 and Business Continuity Management System (BCMS) BS25999. Deputising for the Business Continuity Manager.During 2012 I had the opportunity to take Capita Employee Benefits through certification to ISO27001 which was obtained in November.My role includes the following conducting Policy Review, Risk Management,Risk Assesment and Reporting, Staff Awareness Training, IT control audits, Firewall rule and Infrastructure\Web Vulnerability Assessments, Incident Response\Investigation, Malware Investigation and Log Management.Managing HMG clients operating at PROTECT IL2 and RESTRICTED IL3

Identifying and resolving surrounding Desktop, Network and Applications.Configuration and maintenance of Active Directory, Group Policies, Citrix applications and Bespoke applicationsCall escalation and handling of Major Incidents including Incident Status reports and recommendations surrounding the Major IncidentsCall Resolution and Route Cause AnalysisDeveloping and Internal Knowledge base of know issues and resolutions

Customer facing position which included the logging of problems and subsequent resolution.Meeting tight Service Level Agreements which included heavy penaltiesNetwork Fault FindingDatabase Fixes including Backups and Restores using Transact-SQL, SQL Server 7 and 2000Analysing and resolving inaccuracies in Sales and VAT calculationWriting custom database queries