CV / Résumé

Responsible for supporting the organisation as a technical lead and cyber security SME in identifying and preventing harm to Peabody Trust systems and information assets.

Responsibilities include:

• Leading on the review of existing and proposed security related systems and providers.
• Leading on the delivery of a secure and operationally resilient in-house SOC function.
• Leading on penetration testing, vulnerability management, and offensive security engineering.
• Leading on day-to-day monitoring and administration of the organisation cyber security controls.
• Leading on the creation and review of security policies, procedures, standards, and playbooks.
• Acting as an SME providing risk-based consultancy on security controls and operations.
• Driving the development and implementation of the ISMS and wider organisation security strategy.

Reporting directly to the Head of Information Security, I was responsible for the protection of IT infrastructure, co-ordinating security operations (SOC), and acting within the digital environment to manage the security, safety, and operational effectiveness of journalists and their sources.

Responsibilities included:

• Investigating and responding to network/host intrusion detection alerts.
• Responding/investigating IT security incidents or breaches and coordinating post-incident review.
• Monitoring the external landscape for emerging threats and advising on threat intelligence risk.
• Reviewing current corporate policies and helping to refine procedures for better security.
• Forensically analysing suspect malware via sandbox environments.
• Reviewing and approving firewall changes.
• Maintaining security monitoring platforms and logic.
• Designing server builds, standards, and security baselines to protect systems, services, and data.
• Finding vulnerabilities in company deployed web applications and software.

• Analysis of vulnerabilities in the infrastructure (software, hardware, networks).
• Creating new tests to identify vulnerabilities across several systems.
• Assessing the threat model to pinpoint and map likely entry points for hackers.
• Maintaining awareness of the latest security threats and malware.
• Hardening enterprise infrastructure with implementations of better security standards.

• Engaging with stakeholders to map infrastructure estate to improve visibility of attack surface.
• Implementing enterprise level IDS/IPS systems and managing their dynamic rule sets.
• Responding to DLP alerts and educating our user populace on data protection.
• Enterprise PGP key management (generation, issuing, publishing, revocation).
• Managing enterprise AV suites to protect servers, clients, comms, and collaboration platforms.
• Continuously reviewing web gateway reputation requests for whitelisting.
• Liaising with 3rd party pen testers, updating controls, and remediating where necessary.
• Supporting with alignment of the wider business strategy advising via the ISWG panel.
• Providing user admin and training for our whistle-blowing platform (SecureDrop).
• Member of the ITIL Change Advisory Board.

Worked closely with the ISO, Operations, Architecture and Engineering teams to ensure that computer systems and facilities remained secure and that IT security was effectively managed.

Responsibilities included:

• Recommending solutions and best practices for cyber security improvement.
• Assisting in the creation, implementation, and management of security solutions.
• Assisting in the management of the Service Continuity Plan.
• Analysis of vulnerabilities in Design Briefs for security related projects.

Responsible for working as part of the GRC function to support DLP and information assurance. Took ownership of driving security initiatives, auditing of operational processes, and supporting a culture of continuous improvement.

Responsibilities included:

• Design audits of systems and processes to ensure compliance with operational standards.
• Assisting with automation (eg patching levels, email security, encryption, backups).
• Managing third party assurance activities of suppliers and contractors.
• Supporting the DP team, managing technical controls, and mapping DP risks.
• Assisting in the design of security controls and providing input to new projects.
• Developing data controls, linking risks, defining metrics and capturing measurements.

• Shadowed the internal SOC and DP teams and helped improve operational processes.
• Assisted with the creation of incident reports as part of the internal IR process.
• Helped co-ordinate user awareness training exercises for new employees.