As a UK Business Security Manager, I provide Solution Line/Business Level security connection to the Global Security Services to ensure they are appropriately leveraged to mitigate Business Unit security risks.In practical terms this means I am jointly responsible for:Security Risk Management:• Leading a Security Risk committee to handle security risks;• Track remediation of Security Audit and Compliance findings;• Review security metrics and lead remediation… Show more As a UK Business Security Manager, I provide Solution Line/Business Level security connection to the Global Security Services to ensure they are appropriately leveraged to mitigate Business Unit security risks.In practical terms this means I am jointly responsible for:Security Risk Management:• Leading a Security Risk committee to handle security risks;• Track remediation of Security Audit and Compliance findings;• Review security metrics and lead remediation programs;• Lead or sponsor security initiativesSecurity Leadership• Provide security reporting to leadership Committees and Boards;• Represent Security to appropriate regulatory bodies;• Represent the BU in the Security Incident Response process;• Align Security services with the BU growth strategy;• Remediation Management (IA Findings);• Security Compliance and Conduct management.Client Support/Escalation Management• Represent Security on Client calls or issues;• Provide first line security advice, guidance and Policy and Standard support to Client teams;GSS Service Delivery Management• Handle GSS Service delivery critical issues;• Support GSS project implementation within the UK;• Contribute to GSS service improvements;• Security Intake & Relationship Management;• Regulatory & Compliance Assessment Support;• Continuity and Disaster Recovery Support;• Data Governance Support. Show less

As a Manager within Cyber Assurance, my primary responsibilities were to:• Plan and co-ordinate all cyber security activity resulting in advising and assisting in 1LOD activity.• Lead assessments and thus work closely with both departmental management and other cyber security operations staff to:o Identify and prioritise the mitigation of cyber security risks;o Ensure the implementation of, and compliance with, cyber security governance;o Communicate and aid… Show more As a Manager within Cyber Assurance, my primary responsibilities were to:• Plan and co-ordinate all cyber security activity resulting in advising and assisting in 1LOD activity.• Lead assessments and thus work closely with both departmental management and other cyber security operations staff to:o Identify and prioritise the mitigation of cyber security risks;o Ensure the implementation of, and compliance with, cyber security governance;o Communicate and aid understanding of cyber security issues, requirements and priorities;o Promote, monitor and report on the implementation of cyber security awareness programmes;o Contribute to the establishment and maintenance of cyber security competence assurance;o Assist in the planning, conduct and reporting of cyber security crisis or incident response exercises.• Contribute to the maintenance of cyber security governance documentation.• Perform cyclic reviews of cyber security governance and standards with a remit of improvement, currency and appropriateness; with particular focus on first line of defence self assessments, to ensure they are effective, simple and suitable.Thus I am accountable for the planning, conduct and reporting of 3LOD and 2LOD cyber security audits; and the subsequent monitoring, tracking to closure, and reporting of actions arising from cyber assurance assessments. Show less

My primary role was to manage the UK arm of the global analytics service from a operational/delivery perspective. This meant working with a global team with the remit to bring to fruition some key global strategies. This was very much audit driven.As an altruistic enabler, I nurtured and developed team members at an appropriate pace which, in turn, meant any team I put together was rich in capabilities and could be trusted to perform to high standards.My skills as a lateral… Show more My primary role was to manage the UK arm of the global analytics service from a operational/delivery perspective. This meant working with a global team with the remit to bring to fruition some key global strategies. This was very much audit driven.As an altruistic enabler, I nurtured and developed team members at an appropriate pace which, in turn, meant any team I put together was rich in capabilities and could be trusted to perform to high standards.My skills as a lateral thinker enabled me to identify areas of risk not commonly identified as they stem from the unique nuances of the client’s operational practices. Show less

As a Manager within the Information Security Team my primary role was as outlined below: My focus was in delivering IS Reviews to clients, and my skillset covered the following subject areas: Cyber Security• IT Governance• Physical and system accessibility• User activity monitoring• IT change control• Incident management• Asset management• Business continuity / Disaster recovery• ComplianceMy secondary role was to manage the pipeline… Show more As a Manager within the Information Security Team my primary role was as outlined below: My focus was in delivering IS Reviews to clients, and my skillset covered the following subject areas: Cyber Security• IT Governance• Physical and system accessibility• User activity monitoring• IT change control• Incident management• Asset management• Business continuity / Disaster recovery• ComplianceMy secondary role was to manage the pipeline for the umbrella Cyber Security Team as a whole, from initial enquiry through to delivery of report; including, but not limited to: all aspects of risk management; scoping; budgeting; building of teams; managing all forms of communication to both internal and external stakeholders; ensuring all documentation was completed to exacting standards, including the client report and internal systems; and many other areas. Personnel InsightI was directly responsible for giving an ear, and providing a voice for personnel within the wider team. As with any large corporation, it’s difficult to be heard, and not uncommon for personnel to not feel empowered to speak up about issues they may be facing through fear of recrimination. I provided that platform and maintained their anonymity to ensure nothing was watered down and real issues were articulated. The initial impact • Less people left the team and/or the firm• Issue were dealt with, and where this was not possible, satisfactory explanations were given• New innovations were discussed in depthIn addition I was the sole practitioner of the following area: EUC• Policy and monitoring process• Discovery and assessment• Control framework implementation• Remediation and controlOther skills utilised were the following: Extraction of data from a wide variety of platforms and applications; Cleansing and formatting extracted datasets; Analytics of data using tools such as IDEA and ACL; Development of Computer Aided Audit Techniques, and tailored reports Show less

My role was to provide data analytics across the transactional data held within the financial applications run by our clients. This was to aid our audit teams gain efficiencies and further insight into the financial statements of their clients.

As a SAP Functional Expert I had the following responsibilities:• Support the users in their use of both WM and SD modules within SAP• Provide user training in both modules too• To write user instructions/guides to aid users in their day to day use of SAP• To work alongside the development team to ensure any developments tied in with current working practices. Where this was not possible, to build processes to incorporate necessary developments into new working… Show more As a SAP Functional Expert I had the following responsibilities:• Support the users in their use of both WM and SD modules within SAP• Provide user training in both modules too• To write user instructions/guides to aid users in their day to day use of SAP• To work alongside the development team to ensure any developments tied in with current working practices. Where this was not possible, to build processes to incorporate necessary developments into new working operations• To work with users to understand what may make their work more efficient and relay this to the development team Show less