Head of Security Business Engagement for M&S.- Managing the BISO team across all M&S Business Units- Managing the Product Security Engineering team across multiple M&S products- Managing the Culture and Awareness team across the whole M&S business (65000 people across 1500 locations).

Interim CISO, CISO advisory, security consultancy and strategy. Performing cybersecurity due diligence, advisory and consulting to startups and blue chip organisations.

Directed the Security Separation (Gas from Grid) Programme.- Set up a £3m SOC programme over 3 years.- Managed £2m savings across the IDAM and Cyber Tooling programmes.- Set up the Secure by Design process for use across the business.

Assisting the new permanent CISO into his role and supporting technical programmes and boards across the business.

Interim Exec role managing a team of 40 security professionals across multiple technical programmes and environments. Responsibility for budgets, headcount, strategy and planning plus BAU security.

Interim Exec position as part of SmartDCC's Executive Committee. Led a £6m transformation project including target operating model change, threat intel and process automation tooling and building of a new Security Operations Centre.

A short-term piece of work to set and implement the initial stages of a new target operating model for Admiral Group’s Security Department.

Reporting to Global CISO, Programme Director and Aviva Global COO:Central security programme with an end to end rollout:- advised on Information Security Management System (ISMS)- part of UK governance and risk management structures- developing strategy, governance, policy, standards and controls- designed and established NIST800-53 policy framework within NIST CSF risk reportingReporting to UK CISO:Major projects and tactical troubleshooting:- Advised on security requirements for 3rd party SLAs- UK security remediation project- UK supplier onboarding and risk managementAchievements:- Advised on and kicked off redesign of Aviva UK Risk Management- Established UK Security Leadership and Risk Management teams- Contributed to Internet Security Forum's Standard of Good Practice, presenting to their management committee for development of the standard

Scope: >60% of UK business by technology footprintDefined strategy, architecture and target operating model. Embedded 3rd party governance framework to ensure CISO complianceAchievements:- Performed due diligence for Aviva Ventures on 3 critical cloud-based challenger startups - reporting positioned Aviva to seamlessly and rapidly link with startups to boost market share.

Reported to Group CISO and CTSO: managed 4 project assurance and 6 security designers and engineers.Setting security governance, architecture and strategy as SME for the Cyber Defence programme.