Professional Experience
Information Security Lead
Resonate Group Ltd | Aug 2022 - Present
- Maintaining compliance with ISO27001 accreditation
- Supporting IT and Quality teams in maintaining ISO9001, 14001, and Cyber Essentials
- Responsible for Information Security across the business directed by the CTO
- Work closely with the Head of Technical Operations to maintain and enhance security controls across IT estate
- Work closely with Product Owners to maintain and enhance a security posture of OT systems
- Maintain compliance across the business to IT & Security Policies
- Influence changes to existing, and design new policies for the ISMS in line with the changing threat landscape
- Monitor threat landscape through horizon scanning, partner collaboration, and supplier relationships
- Manage internal and external security projects such as penetration testing, security auditing, framework assessments, and security Improvements
- Provide role-specific training to all staff on security and policy assurance
- Provide security assurance for supply chain management
- Maintain vulnerability management programme across the IT and OT estate
My role at Resonate is Information Security Analyst sits below the CTO and working closely with the head of Technical Operations to drive a security initiatives across the business.
My role includes:
Information Security Analyst
Acorn Insurance & Financial Services Ltd | Nov 2021 - Aug 2022
I previously worked as an Information Security Analyst for Acorn Insurance. I worked as part of the InfoSec team in communication with the IT and Infrastructure teams daily.
My core responsibilities included reviewing new and existing supplier due diligence on a regular basis to ensure suppliers maintain a baseline for Acorn Insurance risk appetite, reviewing and implementing new systems alongside the relevant teams in relation to information security, and regularly updating policy documentation upon review.
I was responsible for researching and evaluating emerging cyber security threats and how to manage and mitigate them. Reviewing alerts on a number of critical systems is a daily task to ensure unauthorised or suspicious activity is investigated and resolved immediately to ensure the integrity of Acorn Insurance systems.
Aside from the technical tasks, I was responsible for generating regular reports for technical and non-technical staff and stakeholders across several systems.
User training is at the heart of Acorn Insurance when it comes to security and awareness, I was responsible for regular email newsletters to all staff as well as managing the cyber security training portal.
Network Engineer
Safetynet Solutions Ltd | Sep 2016 - Nov 2021
- Responsible for IT and Security for the business directed by the company directors
- Providing 3rd line support for customer support tickets
- Maintain compliance to SLA for customer support desk
- Support software implementation teams on complex software builds
- Support software implementation teams on installations remotely
- Carry out installations of on-premise software offerings
- Carry out on-premise installations of networking equipment
- Maintain customer servers and systems including SQL Server, Web Services, and Storage solutions
- Maintain the IT infrastructure for the business including IT software, production software, IT equipment, telecommunications equipment, and SaaS applications
- Manage IT and complex customer projects
- Maintain compliance to SLA for customer support deskMaintain compliance with Cyber Essentials
- Complete third-party supplier forms and questionnaires
- Maintain supplier assurance to security controls
Safetynet Solutions is a SME with 50 – 100 employees across 2 offices that supplies in-house Visitor Management solutions to customers from the education system to tenanted building across several countries.
My role developed massively over the course of 5 years starting from helpdesk support technician to Network Engineer.
My role included: