Accountable for the delivery of alloperational services and outputs from the Threat Operations function within the CyberSecurity Operations Centre (CSOC). This includes oversight and management of threathunting and threat intelligence live services. I Ensure the objectives and activities of the Threat Hunting and Threat Intelligenceteams are aligned with overarching CSOC strategy.• Identify and implement new solutions to further the team objectives of securingNHSE and empowering the wider system to secure their organisations.• Represent the function at operational and managerial meetings, including regularlyreporting to senior leadership.• Be responsible for the management and production of Key Performance Indicators(KPI) for the function.• Manage the resource allocation and workload across the function, includingdeveloping innovative solutions to improve quality and efficiency.• Manage the relationships and process integration between the Threat Intelligenceand Threat Hunting teams.• Drive continuous improvement initiatives for the function, for the benefit of the widerCSOC

NHS Cyber Security Threat Operations Lead responsible for the Threat Intelligence, Threat Hunting and Threat Modelling teams within the Cyber Security Operations Centre. Responsibilities:Manages CSOC strategic relationships with critical vendors such as Microsoft. People, Process and Technology management for Threat Operations including procurement, recruitment, line management and development. Technical focal point for High Severity Alerts issued NHS wide.

Lead for the threat hunting team and function looking for threats across one of the largest enterprise level networks in the world. My team has crippled otherwise undetectable threats receiving global recognition across mainstream publishers such as bleeping computer, dark reading and highly respected security professionals. Key responsibilities:Team Management and leadership.Threat Hunting Strategic Direction.Policy and process creation.Liaising with third party stakeholders.Metrics and Reporting to executive and senior leadership teams. Threat hunting at scale on large enterprise networks.Malware analysis dynamic and static, reverse engineering and detection development. Security orchestration and automation.Deep log analytics across endpoint, network and cloud sources.Development of programmatic, time series and machine learning analytics.Technical and threat Lead in serious incidents.Data documentation and modelling. Production of detection and threat reporting.

Key highlights: Queens New Years and birthdays honours for a individual and team commendations.Produced and maintained cyber security solutions to defend military and government communication assets when deployed on operations.Produce and tested cyber security solutions for MOD systems.SME deployed and fixed communication systems conducting analytics and advising on security and technical incidents and solutions.Trialed, produced analytics and reported on MOD disaster recovery capabilities.Designed and implemented secure solutions for the F35 supply chain systems into MOD assets.Network Design, Architecture and Implementation: Designing and implementing network solutions to meet information requirements. Network security architecture including Intrusion Detection Systems, Data Loss Prevention and Next Generation Firewalls. Challenges include attempting to get modern security concepts such as Defence in Depth within legacy networks. Evaluation, Test and Reporting: Testing and reporting on new hardware and software inclusive scoping for future capability development. Documentation includes Network diagrams, test plans and reports ranging from engineers to executive teams. Documentation and briefings vary from managerial, technical, accreditation and risk managament.Governance and Compliance: Working to and above recognised standards.Innovation and Capability exploitation: design and implementation of IT solutions to innovate the methods to deploy and secure communications.

Rapidly progressed to Senior Network Engineer with an in-depth understanding of Network and Security engineering.