MAIN RESPONSIBILITIES- Leading the Cyber Security Operations and Security Architecture teams, defining and implementing the 2024/26 strategies.- leading the adoption of the new Central Digital and Data Office Secure by design framework and principles.- Responsible for the alignment of security controls against NSCS guidelines and the Cyber Assessment Framework (CAF).- Defining and delivering a 2-year Cyber Security Improvement Program, creating a new team to deliver activities.- Supporting multiple security assessment and assurance activities to assess existing controls, identify gaps, drive improvements and increase the security maturity across multiple environments including AWS, Azure and on premise.- Develop comprehensive assurance, compliance and status reporting for the Leadership teams and boards.ACHIEVEMENTS- Successfully leading the Security operations and architecture teams, developing the effectiveness of existing core capabilities resulting in a notable increase in the quality and timely threat and risk identification and management.- Leading a working group of function heads, analysing the capabilities of the BSA project workstream against the Secure by design principles, identifying gaps and creating a transition and implementation plan.- Fostered collaboration between Information Security, Governance risk and compliance and Cyber Security teams to help align responsibilities and accountabilities, and develop stronger working practices to support service assurance activities.- Reviewed the security capabilities against the CAF of 3rd parties bidding for the Managed Service of the BSA Data Centres.- Expanded the coverage of alerting and monitoring with existing resources and tooling to drive greater intelligence data.

• Deputising for the Head of Governance, Risk and Compliance.• Delivering into the C-suite.• Owning core elements of the Information security strategy, programme, and reporting• Co-leading on the security mentoring, training and awareness programmes and campaigns.

• Line Management of the Faculty Information Security team and network of Information Security Champions• Delivering into, and directly accountable to the CISO and Exec team• Owning the Student Lifecycle Programme (SLP) IT and Information Security strategy, activities, and framework.• Leading the cyber security programme

• Introduced and owned the supplier assurance framework, process and materials covering procurement, data protection, contracts/vendor management and security.• Owned and embedded Information security tooling, metrics, and reporting.• Expert security advisor to all research teams and projects with internal and external stakeholder and sponsors including MOD, NHS Digital and research facilities.• Coordinated the windows desktop and server upgrade project and exception process.• Delivered information security and incident response training and awareness activities.• Owned and Managed freedom of Information requests

Following a redundancy from HSBC, I leveraged the opportunity to establish a successful small business. Although this experience yielded positive outcomes, it did not align with my long-term career goals and aspirations. I made the decision to transition back to my expertise in Information Security with a clear vision of advancing into a senior leadership position with significant team management responsibilities and opportunities for professional growth.

• Member of the IT Security Leadership Team, owning and leading all global staff management, communication, and training programmes• Advisor on the design and execution of the Global IT Security Target Operating Model, and transformation and change activities associated with merging Security and risk functions.• Owned the Global Cyber Security Awareness training.• Coaching and mentoring team managers with building and developing highly effective teams, holding effective 1to1s, development of staff and managing conflict.

• Line management of the Information Security team conducting internal Sarbanes-Oxley (SoX) audits and risk reviews, approvals, and reporting processes and metrics.• Successfully maintained certification for SoX against the IT general controls • Owned and developed the exceptions and assurance process for control noncompliance.• Develop stakeholder engagement, maturing relationships with business and country heads to develop information security and risk acceptance capabilities and knowledge.

• Responsible for the software delivery teams based in India.• Owned the transformation of both operations and team structure.• Defined and delivered the quality improvement plans, re-engineering the global software delivery process, improving day-to-day provisioning, and response to Incidents.• Strengthened and aligned relationships with offshore and quality teams, fostering collaborative work towards shared goals through SMART objectives.

• Team leader for the network implementation team, including prioritisation of work, support for incidents and emergency change activities.• Lead on network activities within scheduled datacentre loss exercises, failing over and restoring network elements without any impact to services.• Develop the team through mentoring, coaching, and training programmes.

Managed the full complement of existing IT requirements and future technology needs for a medium sized enterprise expanding the infrastructure aiding the introduction and development of remote working capabilities enabling it to grow from 50 to 200+ employees.

Project Managed large-scale bespoke systems based around core products for large motor vehicle manufacturing companies independently delivering technical design specs and proceeding to develop, implement and test the systems.