Professional Experience
Information Security Lead
Resonate Group Ltd | Aug 2022 - Present
- Maintaining compliance with ISO27001 accreditation
- Supporting IT and Quality teams in maintaining ISO9001, 14001, and Cyber Essentials
- Responsible for Information Security across the business directed by the CTO and CIO
- Work closely with the Head of Technical Operations to maintain and enhance security controls across IT estate
- Work closely with Product Owners to maintain and improve security posture of developed OT systems
- Maintain compliance across the business to IT & Security Policies
- Influence changes to existing, and design new policies for the ISMS in line with the changing threat landscape
- Monitor threat landscape through horizon scanning, partner collaboration, and supplier relationships
- Manage internal and external security projects such as penetration testing, security auditing, framework assessments, and security Improvements
- Provide role-specific training to all staff on security and policy assurance
- Provide security assurance for supply chain management
- Maintain vulnerability management programme across the IT and OT estate
My role at Resonate is Information Security Lead. I report directly to the CIO and work closely with the Head of Technical Operations to drive compliance and a security mindset across the business.
My role includes:
Information Security Analyst
Acorn Insurance & Financial Services Ltd | Nov 2021 - Aug 2022
I previously worked as an Information Security Analyst for Acorn Insurance. I worked as part of the InfoSec team in communication with the IT and Infrastructure teams daily.
My core responsibilities included reviewing new and existing supplier due diligence on a regular basis to ensure suppliers maintain a baseline for Acorn Insurance risk appetite, reviewing and implementing new systems alongside the relevant teams in relation to information security, and regularly updating policy documentation upon review.
I was responsible for researching and evaluating emerging cyber security threats and how to manage and mitigate them. Reviewing alerts on a number of critical systems is a daily task to ensure unauthorised or suspicious activity is investigated and resolved immediately to ensure the integrity of Acorn Insurance systems.
Aside from the technical tasks, I was responsible for generating regular reports for technical and non-technical staff and stakeholders across several systems.
User training is at the heart of Acorn Insurance when it comes to security and awareness, I was responsible for regular email newsletters to all staff as well as managing the cyber security training portal.
Network Engineer
Safetynet Solutions Ltd | Sep 2016 - Nov 2021
- Responsible for IT and Security for the business directed by the company directors
- Providing 3rd line support for customer support tickets
- Maintain compliance to SLA for customer support desk
- Support software implementation teams on complex software builds
- Support software implementation teams on installations remotely
- Carry out installations of on-premise software offerings
- Carry out on-premise installations of networking equipment
- Maintain customer servers and systems including SQL Server, Web Services, and Storage solutions
- Maintain the IT infrastructure for the business including IT software, production software, IT equipment, telecommunications equipment, and SaaS applications
- Manage IT and complex customer projects
- Maintain compliance to SLA for customer support deskMaintain compliance with Cyber Essentials
- Complete third-party supplier forms and questionnaires
- Maintain supplier assurance to security controls
Safetynet Solutions is a SME with 50 – 100 employees across 2 offices that supplies in-house Visitor Management solutions to customers from the education system to tenanted building across several countries.
My role developed massively over the course of 5 years starting from helpdesk support technician to Network Engineer.
My role included: