Lead security analysis and monitoring of external threat data sources to maintain visibility of threat conditions and determine which security issues may have an impact on the company.Managing and coordinating on Cyber Security incidents and identifying key indicators of compromise for threat hunting purposes.

Primarily specialising in assessing and enhancing cyber security baseline controls across Vodafone UK through the application of in-depth tactical and strategic plans. Utilising a derivative of ISO27001 to assess security controls against requirements to identify the level of compliance, coverage and effectiveness across the estate which is captured in clear and concise reports and dashboards to ensure alignment with broader strategies across the Group. Plans and strategies are applied against key security controls and actioned accordingly with subject matter experts and programme delivery. Expanding key control effectiveness to be used across multiple KPIs and business functions including providing an integral metric in defining risk exposure.Running local phishing campaigns covering all of Vodafone UK to measure staff awareness and susceptibility to cyber threats via email. The results are presented to the respective heads of departments as well as internally to the security team.Delivering Security Awareness training across the organisation, both at a high level and tailored to department specific threats through targeted training, security awareness articles, webinars and company-wide events.

Specialising in providing IT and device security guidance and consultancy to projects across the IT estate;Responsible for articulating security requirements and defining security testing of solutions to project stakeholders;Performing impact assessments in accordance with technical security baseline controls and subsequently providing security consultancy for initiatives in order to implement the controls successfully;Identifying risks to the business and clearly communicate them to the stakeholders; providing mitigation actions or recommendations on how best to minimise risk;Review and approve project design documentation and provide sign off to confirm the solution meets the baseline security requirements;Build relationships with stakeholders across the company to ensure Vodafone security principles and requirements are understood and best practices are followed.

Performing thorough and in-depth vulnerability assessments of clients’ networks from an external and internal perspective and assisting in developing and applying a remediation plan;Carrying out detailed Internet investigations: from assessing clients’ requirements to reporting findings and planning a means of progressing.

Extensive profiling and reconnaissance as preparation for an investigation. Imaging and securing evidence to ensure they are admissible in court. Used a number of forensic tools including OSForensics to investigate a device in accordance with the ACPO guidelines.Investigations into computer misuse which may be in the form of industrial espionage, document theft, unauthorised computer access, etc.Carried out in depth network penetration tests to find any vulnerabilities that may be at risk from exploitation. Captured live data using Wireshark; filtered and searched through the data to collate evidence involved in investigations.