The Information Security & Risk Manager (EMEA) serves two roles in the EMEA division –Information Security practitioner working to respond to incidents and identify risks and threats,and Information Security lead supporting the EMEA CIO to assure client satisfaction with C&Wsecurity practices and commitments. The individual will be part of the global Information Security&; Risk Management team, participating in their activities, operating consistent with the team’spractices and project schedules, and sharing responsibilities for any security-related task thatmay be required of team members. The individual will coordinate closely with global and localInfrastructure team members and development team members to diagnose and remediatematerialized threats and to enhance security practices.

Advised the bank regarding optimisation of security applications including CyberArk, ArcSight, Splunk, Qualys and TripWire, and carried out the reconfiguring and monitoring of the applications.Performed several Proof of Concepts including secure cloud based computing, cryptographic key and password management, and an authorisation model and strategy for financial systems. Positively advised the business on how to properly mitigate many risks and vulnerabilities that had been erroneously accepted and found simple and efficient solutions to reduce risks. Developed an automated system for delivery of management and system security reports, including a monthly briefing, which highlight risks in systems and overall compliance with internal policies. The automating code allows for information customisations by the user creating the report and generates visualisations and graphic representations reflecting risk and trends.Aggregated many incongruent auditing frameworks to a single reference point, based on COBIT, saving the team time when dealing with audits and increasing cohesiveness in the approach to audits office wide. Created a centralised framework to capture systems information which improved risk management processes including systems risk reporting, systems risk tracking and the overall risk assessment process by standardising and automating outputs.

Maintaining secure and compliant systems and applying cutting-edge solutions in an FSA regulated trading facility.Performing critical risk and vulnerability assessments which inform business needs.Liaising regularly with compliance and risk teams to provide technical advice on separation of duties, Chinese walls, and general best practice within the firm. Working closely with external auditors and other stakeholders to develop a comprehensive security platform for the infrastructure to depend on and consistently maintaining systems above the minimum standards of leading auditing firms.Vetting and negotiating with vendors and consultants. Wrote a custom application which integrated with LDAP, Coda, Fidessa, RSA, internal databases, and Wiki to provide real-time system monitoring to ensure regulatory compliance.Organised and managed a successful move from KBC Financial Products to a new office for Peel Hunt LLP.

Supported an infrastructure of 750+ workstations and 800+ servers running Linux, Solaris and Windows.Created and maintained multi-tier network architectures to achieve optimisation.Scrutinised applications for security permissions and proposed changes. Designed and developed a secure computing environment for clients to use. Heavily involved in the in the logistical separation of Peel Hunt LLP from KBC Financial Products.Experience with AD and NIS, VMWare, Exchange 2007, SCCM, WDS, WSUS, Group Policy, Oracle and Sybase DBMS including Data Guard and Rep Server, plus applications and data feeds from Fidessa, Coda, Bloomberg, Euroclear, and Reuters

Designed software requirements and implemented code for employee time tracking system, while participating in software testing and code inspections. Sequences changes for monthly maintenance windows, including post-window testing. Generating required reports. Experience in a corporate Data center environment, maintaining servers and critical infrastructure Completed contract work for numerous amounts of clients. Managed multiple projects in an efficient and reasonable time frame. Created software which tracked technology standards for the bank.

Performing system audits to maximize efficiency and confirm adherence to standards. Forensic analysis and data recovery of information systems. Operate and maintain corporate networks and critical networks while protecting network assets. Created a structure for product development and certification. Assure test data, scheduled automatic/manual updates. Approve results documentation and tracking systems update. Programmed web-based asset tracking application, application could audit all computers on network while transferring information to globally accessible database. Company wide virtualization projects.

Daily Support of over 80 clients (both remotely and on-site)Participated in development and maintenance of global information security policy.Heavy involvement in projects including, but not limited to the following:Companywide virtualization projectsNetwork rollouts of 150 computers or moreDatacentre ASP model upgradesManaging the email system and ensuring the appropriate level of anti-virus protection.Responsible for server and network infrastructureTroubleshooting custom ERP software at database level

Assesses situations on site, determine the appropriate hardware and software needed to complete the job. Implemented network infrastructure while configuring servers to handle all companies needs. Provided daily end user support.

Responsibilities included upgrading and maintaining 400+ computers. Formatted and imaged new computers to be operational with Linux and Windows. Performed various computer maintenance tasks.