Michael Jay Email and Phone Number

Lead architect for a security transformation programme, modernising the Bank’s Information and IT security defences. Successfully led the Secure Systems team, assuming project management and lead security architecture responsibilities for successful implementation of the £55M programme from inception to closure, including scoping and managing the annual ETRA.Provided Information Assurance consultancy to deliver key technologies and new processes in a diverse range of IT security areas including vulnerability management and identity and access management, as well as designing and implementing a network monitoring and forensic capability, to ensure the Bank was best protected from cyber threats. Responsible for the design, establishment and staffing of a Security Operations Centre [SOC], operational 24x7 to monitor and respond to security events across the entire IT estate.Drew on experience in IA areas such as Penetration Testing, Event Logging, System Compliance & Secure Development Life Cycle to ensure that the Bank was able to deal with threats & manage any identified risks. Delivered new policy and standards aligned to industry best practice and government guidelines, and implemented a number of IT Security Big Data initiatives.Responsible for producing a full range of PM artefacts including high/low level designs, project plans, product breakdown structures & associated reporting, as well as technical and business process documentation following industry standards such as BPMN and the ISO 27000 series.

Security Architect and Technical Lead for a £7M system, delivering a secure, multi-site system to stakeholders in a highly security environment.Liaised at a technical and management level with internal stakeholders, other systems providers and contractors and with all the aforementioned again on an international basis, to ensure all requirements were met. The project involved both live in place and staggered migrations of applications and users until full new operating capability was achieved, requiring a breadth and depth of knowledge in various technologies and security best practice.Provided technical assurance and consultancy for the in house SOC capability and responsible for managing and availability of engineers.Designed and implemented vulnerability management, event logging and identity and access management capability and led annual penetration testing task, ensuring accreditation was achieved, system documentation was fully populated and the network was appropriately secured.Lead Architect on an inter-nation identity and access management project, using federated PKI, ADFS and SAML technology to authenticate and authorise users against disparately hosted web-based secure communities of interest.Appointed as subject matter expert to a number of international technical coordination groups, responsible for delivery, strategy and governance within the international security community.

Involved in numerous government and intelligence projects that required high levels of technical skill within security based architectures.Technical lead on implementing new functionality in a highly specialised government system. Examples of technologies include PKI, Secure Chat, Border Directories, Encrypted Email and SSL scanning.Responsible for defining and implementing Secure Configuration and technical compliance capabilities across the entire IT estate, as well as for penetration testing and vulnerability management capabilities.Technical Design Authority for another government project in establishing a real time offsite DR capability for critical national infrastructure. Responsible for migrating users from legacy platforms, taking ownership of system documentation such as high and low level designs.A key member of the team implementing the METLAB Forensic system for the Metropolitan police. Involved in a number of other consulting activities, including assessing a Forensic system for the FSA.

Responsible for the system health, maintenance and deployment of a 500+ server environment running a mixture of Microsoft, Solaris and Linux operating systems. The server farm was spread across 4 data centres in different locations, delivering public facing web solutions for many government departments such as DVLA, TDA, DCSF. Responsible for planning, design and implementation of new technologies to offer more advanced solutions to customers and migration paths from legacy platforms, including software patching, rolling out of new Anti Virus and Backup solutions. Implemented company wide acceptable usage and security policies, as well as starting the process of gaining company wide ISO27001 accreditation. Member of the OnCall team providing 24x7 cover to all systems.

Responsible for second and third Line support of a broad range of Government Department websites. Able to work within a strict ITIL environment. Developed strong web technology skills, alongside basic web programming skills over a mixture of Microsoft and Unix technologies. This ranged from front end web site anomalies to ColdFusion and CMS problems through to remote access issues. Responsible for supporting the Athens service, a federated identity and single sign on environment [based on Shibboleth] used by many HE institutions and the NHS for access to web based services.

Performed a full range of IT related duties from desktop, to server and infrastructure support through to contract management and board level engagement. Single point of contact for all IT issues for offices in Bristol, USA and India, and responsible for all IT infrastructure in these locations. Extremely diverse role enabled development of strong technical skills, as well as a positive customer facing position. Involved in IT Bid Management, negotiation of IT services contracts and responsible for presenting various reports and findings to the Board of the company.

Responsible for the daily operation of all desktop systems in London, New York and Tokyo. Gained experience of computing in the financial sector including SWIFT and real time forex settlement. Learned many new skills within hardware, software, customer support areas and first exposure to building security elements into IT systems and methodologies. Project managed the design and implementation of a complete Asset Management System for keeping track of all IT software assets in an automated fashion.