🚀 Leading the charge in revolutionising BT’s cyber defence, I seamlessly blend advanced security controls with core business operations to achieve policy requirements. My role? It is not just about ticking compliance boxes but redefining standards, pushing boundaries, and ensuring BT stands tall against evolving cyber threats through implementing an accountable Secure in Operation framework.📊 My data-driven approach to risk management is reshaping how BT views security, transforming it from a mere function to an ethos deep in our DNA. And as we navigate this complex digital landscape, I’ve initiated critical frameworks and strategies that aren’t just about fortification but about foresight.📷 Here’s a snapshot of my impact:• Curated a robust cyber control framework, turning lofty GRC goals into tangible results.• Spearheaded an end-to-end accountability ethos, weaving together cross-departmental collaborations.• Orchestrated a meticulous data dive into our security, revealing areas for excellence and enhancement.• Launched the ‘License to Operate’ certification, raising the bar for product and system owners, providing them with the skills to perform the role from a cyber perspective and accountability.• Seamlessly integrated security reporting within BT’s Group Risk Management Framework, fostering executive alignment and proactive engagements.🤝 At the heart of it all are the relationships I’ve cultivated right up to the C-Suite, reinforcing BT’s unwavering commitment to cybersecurity.Are you looking to chat about pioneering security strategies, controls or the future of cyber defence? Let’s connect!

🛡️ Steering BT through the complexities of the digital age, I've played a pivotal role in writing and co-authoring our robust security strategy. By seamlessly integrating innovation into the fabric of digital transformation, I've laid the foundation for a future-proofed cybersecurity approach at BT. My leadership? It's about foresight, positioning BT at the forefront, and always a step ahead of potential cyber threats.📈 Navigating the intricate digital landscape, I've authored and meticulously developed a CAF-based maturity model to support measuring our security strategy implementation. This approach hasn't just streamlined our security posture; it's set new benchmarks, allowing us to gauge our progress against industry competitors. Recognition of this pioneering approach isn't just internal – accolades have come from respected regulatory bodies such as OFCOM, NCC, and more, reinforcing BT's standing as a beacon of cyber defence excellence.📊 Within the dynamic tapestry of cyber security, my role goes beyond simple supervision. I'm deeply involved in crafting and actualising our strategic deliverables. This doesn't just stop at implementation – I ensure that well-defined metrics and control measures anchor each initiative. By setting clear KPIs, we don't just aim for results; we quantify them, creating a roadmap that measures our current standing and illuminates our path forward. This robust approach ensures that our security strategies yield tangible benefits, driving operational excellence and measurable outcomes for BT.🎓 Beyond strategies and systems, I've championed a culture shift, spearheading initiatives to empower employees with knowledge and awareness, moulding a workforce that embodies BT’s cyber-resilient ethos.Are you keen on discussing groundbreaking security frameworks, governance strategies or the essence of digital transformation? Let’s connect!

Transformed the company's security policies to meet industry best practices and regulatory requirements, achieving ISO 27001 accreditation and ensuring effective protection against cyber threats.Overhauled the security policy and compliance framework, achieving a target operating model for security risk, policy, and compliance.Elevated GRC cyber security compliance through delivering enhanced Ways of Working.Revitalised the security career development program aligning with CISSec.Oversaw the network security interconnect assurance service, which guarantees the secure connection of systems, applications, networks, suppliers, and customers.

I led strategic security projects to address cyber deficiencies identified by external auditors, overseeing initiatives to transform and enhance security control environments. Key initiatives included integrating the MITRE ATT&CK framework to improve logging and monitoring, establishing robust governance processes, and enhancing perimeter security and DDoS protection. I also implemented physical security measures and ensured timely responses to audit findings.

Led and defined the strategic vision and operation of vulnerability management activities for BT Technology, reducing risk from security threats and improving BT's security posture.Overhauled BT's approach to vulnerability management by introducing new standard operating procedures, resulting in zero impact on BT's material risks. Collaborated with senior stakeholders to provide compliance reporting.Utilised expertise in identifying and responding to security risks to provide strategic recommendations to C-Level leadership, raised awareness of security threats and facilitated knowledge sharing through producing and presenting quarterly executive cyber risk reports.Drove change by leading the governance and delivery of strategic security projects addressing organisation-wide deficiencies. Successfully resolved information security challenges by leading an end-to-end overhaul of the information security framework and managing highly skilled teams of specialist security consultants.Project managed to implement critical inter-dependant security programs, collaborating with multiple stakeholders and providing director-level management reporting. Led a program for a new logging solution in various control environments, delivering robust governance and oversight of the environment life cycle.

I designed and implemented a robust control environment to ensure compliance with S-OX requirements, which led to the successful external attestation of controls.

I led a team to manage and respond to security incidents, oversee assessment queues, and drive remediation efforts. I provided direction and guidance to ensure timely and effective responses, conducted detailed assessments, and implemented strategies to address diverse security threats.

I managed and assessed cybersecurity risks, ensuring comprehensive risk mitigation strategies were in place. My role involved conducting thorough risk assessments, validating residual risks, and developing robust test plans to ensure the effectiveness of security measures.

I coordinated and executed penetration tests to achieve CREST-approved government and major contract product certifications. I managed supplier relationships, testing requirements, connectivity, scopes, logical access, and target approvals while overseeing the tests and remediation efforts. Securing these accreditations enabled over £5 billion in revenue from customer sales.

I managed a team of contractors, overseeing both IT and physical security designs. I ensured firewall rulesets complied with policies and established the correct system connections. My leadership drove a program that successfully launched BT's 21 next-generation network on schedule.

I guided applications through a comprehensive security design process, ensuring all designs met stringent policy standards. I provided expert advice on security measures and supported teams through implementation, guaranteeing policy compliance.