Driving the implementation of a global security strategy via a multi-year programme of security improvement initiatives, securing supply chain, new product development, product manufacturing, logistics and distribution, and retail (stores and ecommerce).

Engaged to build teams, technology and processes to support Currys across the UK, Ireland and subsidiaries in Europe and Asia, implementing and augmenting capabilities to defend against security threats. Leading a number of teams including Security Operations, Security Testing, Security Architecture, Security Assurance, Risk Management and Compliance and Security Governance and Portfolio.Extensive Exco and Board exposure and interaction, influencing and educating stakeholders to realise Vision and Strategy via relatable and measurable security capabilities and initiatives.

Retained to advise and support a FTSE 100 manufacturing business with over 60 sites globally throughout a period of security and privacy transformation. Consulting on and assisting with product security, incident management, data protection, security audit, governance, risk and compliance. Emphasis on move from transactional, reactionary stakeholder interaction to relational, anticipatory business cooperation, influencing at VP and Board level centrally, and throughout management teams in EMEA, NA, LATAM and APAC.

Providing CISO Advisory services to leading UK companies via Reply - global consultancy.John Lewis Partnership:Advising and assisting the CISO, Information Risk and Enterprise Architecture functions on the replacement and capability uplift to the Partnership’s Security Operations department; revising and refining tooling and processes, empirically improving efficiency and alignment to business objectives, enabling tangible security improvement, risk reduction and return on investment.

Approached and employed to partner with Netskope's new and existing customers to strategise, architect and operationalise business-aligned cloud security programs, designing and executing success plans in order to manage the customer's journey from on-boarding to operational maturity. Coaching customers to be product experts and train their teams on new capabilities or existing features to help become increasingly self-sufficient, influencing CISO/CIO/CIRO/CRO through to control design and implementation. Utilising cyber domain expertise to articulate Netskope’s value to customers and map solutions to their business objectives and desired outcomes and drive customer health and business alignment through the identification and achievement of cloud security goals.Establishing the "voice of the customer” through clear and concise feedback that helps Netskope align to customers and improve their platform.

Providing Information Security subject matter expert consultancy into Burberry project life-cycle with the objective of defining security requirements, designing and embedding enterprise security controls, managing information security risks and building secure-by-design principles. Development of information security architectural principles, terms and definitions, security services and control catalogue, products catalogue, reference library and standardised security patterns. Security guidance was provided to digital teams, global store networks/concessions/third parties, cat-walk shows and other public events, and Burberry factories and supply chains.

Designing security risk assessment methodologies to be utilised via project portfolio governance to determine control requirements and track and report on security requirements levied on projects/initiatives through to successful implementation.

Managing Cybersecurity Risk reviews for HSBC’s legacy applications on a global level. Design and direction of control validation against internal policies and standards and producing gap analysis, creation of data flows for key systems and information assets to determine threat profiles and the production of adversarial viewpoints in order to anticipate potential attacks. Extensive collaboration with global teams, presentation of application risk profiles to senior stakeholders, with executive and technical extrapolation as necessary, recommendation of additional security controls for risk mitigation.

Providing consultancy on multiple security remediation work streams across the company brands, including Costa Coffee and Premier Inn. Inception of new ISMS, control library and risk assessment methodology. Information security governance and support of procedural and technical security initiatives, including managing BYOD risk, data privacy (GDPR), supplier assurance, agile methodology adoption and Identity and Access Management.

Engaged to consult on remediation of the organisation’s PCI DSS status across multiple functions and locations. Leading a team in performing a gap analysis of existing payment flows, establishment of Information Security Policy and Processes, technical control implementation, secure coding techniques, full education and awareness training for all members of staff with supplementary targeted training for specific job functions, third party control review and the implementation of Controls Assurance functions in order to provide sustainability. Multiple SAQs delivered across multiple acquirers and payment brands.

Consulting on security remediation programme following high-profile security breaches. Working with the Security function and the business to establish a Security Risk Management function, defining a Security Operating Model for TalkTalk. Initiating a data discovery and data amnesty work stream in order to map critical services and functions and document asset vulnerabilities.Engaging with senior stakeholders to determine risk appetite and tolerances, informing risk assessment methodology and procedure. Responsible for the development and application of security strategy and budget, security policies, security governance structure. Production of practical strategies and techniques for secure application coding. Working with ICO on remediation progress and reporting, preparation for GDPR.

Consulting on PCI DSS and 27001 work streams as Subject Matter Expert, advising on scoping and planning, policy production and dissemination, vendor negotiation and data assurance. Implementation of technical controls including SIEM, FIM, DLP, WAF and DAM, SDL (OWASP). Mainframe security gap analysis and remediation. Working across the business with representatives from multiple departments, and liaising with key stakeholders and sponsors up to board level. Group point of contact for QSA, managing audit activities.

Augmenting Cyber Security function on key projectsDepartment of Work and Pensions:Providing Information Security consultation on Government departmental programmes of work, including Threat Horizon Planning, Threat Modelling and and Vulnerability Management, Identity and Access Management, Cryptographic Controls and Implementation, Security Infrastructure deployment, Data Centre Migration Strategy and Architecture Assurance.University of Oxford:Consulting on Risk Assessment and Vulnerability Management, offering Threat Modelling and Risk Management expertise to the University. Emphasis on protecting and safeguarding key organisational assets, providing comprehensive security support and guidance delivering visible and robust security governance and accountabilities and a defined and resourced implementation strategy. PCI DSS consultation of college payment solutions.

Providing strategic direction and leadership for all aspects of Security, Risk, and Incident Response. Developing the business security strategy and subsequently leading the implementation across the business, in conjunction with other areas of BSKYB. Forming effective relationships with business leadership at all levels, both internally and externally and representing Security Risk issues against a business context to the highest level within BSKYB. Implemented Secure Coding Techniques and Secure Development exit criteria within BSKYB Agile Development environments, utilising the Spotify Model to create a Cyber Security Guild and Chapters. Sky CIRT stakeholder. Corporate PCI DSS sponsor and oversight committee chair. Data Protection Manager for Sky Sports and Sky Bet, including horizon planning for GDPR. Ultimate security sign-off for all new products and services. Extensive product evaluation and vendor negotiation to meet stringent regulatory and internal customer requirements. Pragmatic approach to Security, providing secure solutions to enable continued growth in an exceptionally dynamic environment.

Network and Security Lead for MoD ECND Cyber Defence project via BT Defence division - mapping, monitoring, scanning and protecting internal military resources. Engaged to design and develop effective and efficient security systems and evaluate architecturally significant changes within existing solutions, adhering to strict time/cost/quality/security criteria. Security Incident Management workflow design. Pervasive customer contact, requirements negotiation, architectural analysis, product evaluation and option presentation to senior leadership and Government representatives. Production of high and low level architectural and security documentation pertaining to solutions and internal components utilising UML and TOGAF/MODAF notation, RMADS, JSP440, EAL/Common Criteria, GCSx CoCo. Extensive integration of multiple network, security, WinTel and storage technologies into streamlined, virtualised systems. Working with a team of architects, delegation of work, prioritisation, purchasing decisions, senior stakeholder engagement.

Network and Security Subject Matter Expert for BT/Connecting for Health Joint Technology Assurance Group (JTAG). Responsible for Network and Security Design on Spine, London/Southern LSP, Core Services and N3 pertaining to NHS NCRS NPfIT. Instrumental in delivery of modular, multi-context, multi-tier data centre topology, with Cisco 6500 switching service modules used for load balancing (CSM & ACE), security (FWSM, SSLM & IDSM) and network monitoring and analysis (NAM), based on Cisco Architecture 2.5 framework. Primary work encompasses the production of detailed security documentation, logical diagrams and network flows deliverable to the NHS. Evaluation, design and configuration of security, network, server and storage architecture across Live, Path to Live, Sandpit and Dev environments. Team workflow management and delegation, impacting internal change requests and allocating time and resources accordingly. Release specific technical lead, delivering environments to the customer for integration and testing. 4th line escalation for Live faults and security incidents, diagnosing and fixing in exceptionally tight SLAs under high pressure - daily hands on “Live” network and servers classified as Critical National Infrastructure. High levels of interaction with multiple levels of management, articulating issues or concerns with an appropriate level of technical detail.

Expansive position incorporating technical project inception, proof-of-concept, design, development, build, acceptance testing, and operational support of internal and external security systems for Orange Web Hosting platforms. Emphasis on transition from outdated products to highly functional, streamlined, and cost-effective solutions to improve efficiency, decrease expenditure, and optimise data integrity and security posture. Daily exposure to a wide range of networking and security technologies from major vendors and application of these technologies to address specific business requirements. Working closely with vendors, project management and implementation teams to ensure requirements were met within their budgetary and time constraints. Design validation and input, deploying equipment, testing and transition planning for introduction into live service. Ensured Network architecture & ITIL operational practices were set to maintain network security, load-balancing, high availability, resiliency and disaster recovery.

Responsible for the design and delivery of secure infrastructure supporting Web Portals, Billing and Self-Care environments across multiple countries for Wanadoo UK and France Telecom. Provided high level support for existing infrastructure acting a point of proactive management, incident response and resolution, and deployment on Network and Security devices within a 24/7 data centre environment. Developed and evolved Wanadoo's core service platforms, working in the design team to identify requirements, problems or enhancements pre-implementation and prepare build scripts based on latest design strategies. Liaised with Project Management to ensure customer requirements and deliverables were met and appropriate documentation availability for implementation and support. Internal penetration testing and vulnerability management processes and procedures.Built and managed bespoke Freeserve.com security systems to support UK’s busiest Search and Web Portal platforms in accordance to design requirements specialising in content load balancing. Management and support of hardware in multiple European countries. Maintained stringent SLAs through diligent and rigorous testing of solutions. Troubleshooting network issues and fixing live faults. Managing security alerts and planning upgrade paths with according priorities. Technical and high-level documentation and network topologies. On-call resource for systems issues, faults and security incidents. Conversant in Cisco and Nortel technologies, providing technical expertise across France Telecom as a whole.

Primarily responsible for the service integrity of the Freeserve Chat platform (at the time the largest chat solution in the UK) from an Service and Server perspective. Developed strong relationships with key members of specific business functions and ensured the quality of the service provided was maintained to the highest standards and conformed to ITIL best practice. Production of service metrics and reporting, capacity management for in-house platforms. Evaluated, procured and implemented Service Monitoring solution across Freeserve.com Infrastructure estate to ensure service quality.