Lee Quinton Email & Phone Number

United Kingdom

United Kingdom

vCISO; senior consultant delivering SME guidance to fortune 100 companies across a range of regulatory requirements and governance frameworks, including: NIST CSF, 800-53, PCI-DSS, ISO:27001/2, CMMC, 171/172. Experienced designing, delivering, and supporting vulnerability assessment / management programs, and delivering penetration testing services.

United Kingdom

Accomplished Principal Security Expert, Consultant, and Director offering more than 17 years of experience elevating information assurance and risk management performance. Equipped with an impressive history of success securing enterprise networks for companies ranging from Fortune 100s to small businesses with a focus on online payment processing.

United Kingdom

vCISO; senior consultant delivering SME guidance to fortune 100 companies across a range of regulatory requirements and governance frameworks, including: NIST CSF, 800-53, PCI-DSS, ISO:27001/2, CMMC, 171/172. Experienced designing, delivering, and supporting vulnerability assessment / management programs, and delivering penetration testing services.

United Kingdom

Operated as the UK Business & Compliance for Equifax UK, and the ISO for the TDX debt collection arm of company. Responsible for the team managing ISO27001, PCI-DSS, and Cyber Essentials+ certification for both companies. Responsible for third-party (vendor) risk management and acting as the primary point of contact for security interactions with Cabinet.

United Kingdom

I am currently overseeing the PCI QA department, with the task of preserving the high standards of NuArx’s PCI deliverables. The QA program exists for the express purposes of ensuring that all PCI-DSS related deliverables (Gap Analysis, Pre-Assessment, and Report on Compliance) are reviewed in-line with the PCI Security Standards Council's Assessor Quality.

UK

Accuvant and FishNet Security merged at the beginning of August 2015 to become Optiv Security, Inc. My current role continues within the new organizational structure. Operated as a PCI QSA for 12 years, including the original Visa QDSP designation for 2 years prior to the PCI SSC being created. I have been a PA-QSA for the past 7 years, and was also a Visa.

London, United Kingdom

Operated as a PCI QSA for the past 9 years, including the original Visa QDSP designation for 2 years prior to the PCI SSC being created. I have been a PA-QSA for the past 5 years, and was also a Visa QIRA / MasterCard QFI for 3 years. I have been responsible for the final technical review and attestations on all ASV vulnerability scan reports for the past.

Tasked with proactively managing and growing the PCI consulting team and practice, and effectively continuing to build 7Safe's PCI business into a market leader throughout the UK and European markets.Accountable for increasing revenue streams through direct client interactions, pre-sales activities, IP development.Responsible for PCI based business.

Having operated as a PCI QSA for the past 5 years (including original Visa QDSP designation), a PA-QSA for the past 3 years, and a Visa QIRA (Now QFI) for the past 2 years, I am currently tasked with continuing to operate and grow an effective PCI Quality Assurance Program. The program is for the express purposes of conducting PCI-DSS RoC, PA-DSS RoV, and.

• Tasked with assisting the Director of the Incident Management practice with:
• Incident Response/Digital Forensic engagement methodology
• Incident Response/Digital Forensic engagement scoping
• Proactively responding to out of hour’s engagement scoping, to support the sales cycle
• Acting on behalf of the Director during absencePredominantly undertake incident response and digital forensic engagements within the corporate theater. Mainly conducting investigations to support QIRA/QFI incidents (on.
• Rapid response and system image acquisition

Continuing to conduct PCI assessments, and undertaking more forensic type roles within the payment card infrastructure, for corporate entities.Now UK based.

• Tasked with proactively leading the compliance consulting team and a national base of 40 QSAs.
• Accountable for increasing revenue streams through direct client interaction through pre-sales activities, IP development.
• Responsible for compliance based business development / sales training processes.
• Tasked with growing the compliance solution set and offering development methodologies for client initiatives encompassing:
• GLBA
• HIPAA

• Strategic and tactical security for global fortune 500 companies, with responsibilities that include consulting in the following areas;
• National PCI Compliance Practice Lead (Team of 18 QSA)
• PCI Compliance Onsite Audits for Merchants and Service Providers
• External & Internal Network Penetration Testing (To PCI ASV standards)
• Application Vulnerability Testing
• Wireless Network Vulnerability and Penetration Testing

Responsible for the security of the internal LANs and WAN perimeter devices of a medium sized Medical Transcription company. Duties also involved maintaining HIPAA compliancy of all company server / network infrastructure.

Responsible for the Security of the internal UK networks and EMEA Corporate Firewall infrastructure. Duties involved, managing the EMEA firewall teams, overseeing Internal vulnerability assessment of server infrastructure (UNIX & Windows), Incident response (Corporate and Customer), oversight of all external customer penetration testing, and offsite audits.

Responsible for the day to day security and operational requirements for a small London based ISP. Duties involved the management of the RADIUS servers, patch management, AV solutions, hardening the Linux & Windows infrastructures and acting as a junior for the management of core, edge and backbone routers & switches.

Master Of Physics, Physical Sciences

Bachelor Of Science (Bs) In Information Technology, Information Assurance And Security Specialization

Software Development Classes

Math Major, Comp Science

GPA 4.0 maintained.