Prior to acquisition of SecureWorx by EY, I filled the COO and CISO roles. The EY position requirement was for me to utilise my knowledge and skills to ensure the successful integration and subsequent management of SecureWorx people, processes and technologies.Key Accountabilities / Achievements:• Provided the Sovereign Cybersecurity team with procurement and supplier management functions• Drove the successful integration of an acquired managed services based cyber security company with EY’s Australian cyber security division. Challenge was to tailor managed services processes and work practices into an organisation where all systems were designed to manage time and materials-based consulting services.• Provided the Sovereign operational team with provision of business level management functions including Governance, Risk Management, Financial Management, Contract Management, Independence, HR, Finance, Procurement and Quality.• Managed the risk and risk registers associated with the security controls underpinning delivery of Client facing managed services at a PROTECTED level.

As COO, to advise the CEO and manage the day-to-day operations of the company. I also assisted the CEO with the due diligence and other preparations associated with acquisition by EY. As CISO, to manage the information security program including the risk associated with providing PROTECTED level manged security services.Key Accountabilities / Achievements:• Streamlined the procurement and supplier management functions• Advised the Chief Executive Officer with the development of yearly strategies, budgets, and delivery plans.• Provided business level management functions including Governance, Risk Management, Contract Management, HR, Finance, Procurement, Quality and the response to COVID-19.• Identified, documented, and managed corporate and project related risk.• Drove the development of corporate standards and the subsequent transition of work practices, processes, and tooling to utilise the corporate standards.• Successfully managed a federal security (IRAP) assessment of the sovereign Security Operations Centre (SOC), its people and processes enabling management of Government data classified up to the PROTECTED level.• Managed and enabled continuous improvement for the Security Operations Centre (SOC) and its teams.

To assist the General Manager Cyber Security in establishing and enhancing cyber security capability in Australia based upon Thales’ global offerings. The position included day to day operational management of the business unit.Key Accountabilitis / Achievements:• Managed the procurement function for the Australian Cybersecurity branch• Advised and assisted the General Manager Cyber Security with the development of yearly strategies, budgets, and delivery plans.• Provided governance for the organisational changes required to support a rapidly growing cyber security team.• Developed, introduced, and refined business practices for the Cyber team that adhered to Thales Australia’s reference quality system.• Led the transition of work practices, processes and tooling to utilise corporate standards.• Ensured that internal and external audits passed with only minor issues enabling ISO9001 accreditation. In three years, the Cyber practice transitioned from a start-up business to ISO accredited.• Led the creation and implementation of a Melbourne based Security Operations Centre and associated managed services.• Led the development, socialisation and introduction of the standardised Cyber consulting services that formed the basis of our sales offerings to commercial and internal customers.

To lead the Knowledge, Information and Communications Technology function for the 100+ Business Units of the DJCS.