About Me
As Senior Management I held positions with multi-million pound CapEx and OpEx budgets; Controlled up to 60 personnel (on a global 7/24 basis). Created lines of business that have generated £100 millions in revenue and won awards. Overseen countless high risk projects (100% successful); Managed IaaS, PaaS, SaaS, DaaS environments of over 4000 (24/7/365) servers and services (ITIL). Created business Strategies and Operationally run global security services protecting 250K users.
I remain Technology agnostic having worked in Global business’s running in Microsoft, AWS and Google Clouds. Fully au fait with HPC and AI environments, I continue the fight to keep companies safe from hackers and compliant with regulation.
Education
ISC2 2004
CISSP
Membership has lapsed
Manapoer Services Commision 1984
Electronic Protoype Wireman
Building Computers
Work & Experience
Getronics MSP MSSP 09/05/2022 - 05/30/2025
vCISO
Employed to manage the “Security” migration, with BAU oversight, within a NIS2 defined sector environment employing 15K Users at 45x locations, 23x separate companies with 1.4K servers. Working closely with Legal and Compliance to ensure European GRC & Policy is defined and adhered to (ISO 27001-22). Organising the regular patching of the enterprise environment (FW, Server, Desktop, Network). P1 incident escalation (including Supply Chain breaches). Integral part of the client’s Architecture Team and CAB authority. Previously the business had consecutive years of ransomware, but since I took over no ransom breach in 3 years. ➢ Successfully Migrated 23x OpCo onto a single platform solution from desktop to Enterprise (3 year program). ➢ 6x Service Teams dotted line into me as I had complete Security oversight for the entire European business. ➢ Writing and presenting monthly SOC reports & Strategy recommendations to the senior Execs and Board. ➢ Ad hoc DPO handling DSAR PII in Purview, as well as GRC advisory (NIS, ISO27001:2022, DORA). ➢ Validating 3rd party connectivity, supply chain and factory SCADA (IEC26443) with OT security compliance. ➢ AWS, M365 Hybrid E3 with Intune & EntraID , Service-NOW (ITIL), VMware (EMC SAN), Telco SD-WAN, Cisco. ➢ Sentinel-1 EDR, Pal Alto, BeyondTrust PAM, Vectra NDR, Mimecast, Forensics & Pentest Services (Red Team). ➢ On-Prem SCCM, Rapid 7, WSUS, LogRhythm (SIEM), Swim Lane (SOAR), Recorded Future CTI.
Nexus Frontier Tech AI 03/01/2021 - 02/25/2022
Security & Infrastructure Manager
Employed to design and run the Security Infrastructure based on best practices for an Artificial Intelligence start-up with offices in Japan, Vietnam, Singapore, UK. This was Business Strategic, Chief Architect and BAU role. ➢ Writing Company-wide threat assessment and business strategy document covering every area of the business. ➢ Writing the Company DR Plan and Company Policies, as well as acted as Privacy & Awareness Manager. ➢ Passing Cyber Essentials. ➢ Ops of AI BaaS solution, Slack, Hubspot, JIRA, GitHub source code via Skyvia and Rewind, Open VPN. ➢ Pre-Sales Support in assessing country Regulation, Standards and Compliance requirements (GRC). ➢ Google Enterprise (GCC)- 100% designed, configuration and Management of all internal Users and Security. ➢ GDPR and best practices implementation based on ISO 27001 and Cyber Essentials Plus. ➢ Company Website (Bitnami WordPress) & Proxy Services Support hosted on AWS & Cloudflare. ➢ End Point Lockdown on PC & Mac (Kaspersky Business) and regular Pen-testing. ➢ Support for Users in UK, Vietnam, Singapore and Japan for Microsoft 365 E3.
Centrica Plc Energy 02/02/2015 - 10/25/2019
ITIL Infrastructure Manager
Employed to initiate and run the ITIL Transition requests utilising ‘Service Now’. The entire IT estate (4000+ servers for 8 million customers) had been outsourced to HP, Fujitsu, Vodafone, Cognizant, whilst migrating to AWS Cloud. As such all alterations that required server, network or storage changes within IaaS and PaaS Clouds, Hadoop Bigdata, Oracle 8i, Couchbase clusters were managed by my team. The clustered environments included Oracle, Exadata, SQL, SAP, with MS Servers, Linux, Cisco network and VOIP MS Lync Office365 integration (E3). Towards the end the company used Packer, Docker and Kubernetes. All desktops applications delivered through AppSense and a federated AD from Fujitsu with BMC Patrol. ➢ 100% migration of Dev & Prod environments from 2x HP Datacentres to Cloud (AWS & Azure). ➢ Successfully completed 500+ PM changes. ➢ Managing change for 4000+ servers in mixed out-sourced environments (physical, VMware, Azure, AWS). ➢ Internal management of 300 IT techs and 3rd party specialists on changes. ➢ External management of the following Primary Vendors with regards to change or incident requests i.e. HP Infrastructure (Philippines), Fujitsu 2nd line AD support Techs (Portugal), Avenade Support (UK), Cognizant (India). ➢ After 4 months promoted from ITIL Change Management to ITIL Project Management (with certification). ➢ Updated the UPS at both Datacentres.
Assi Generali 10/05/2009 - 08/29/2014
Technical Infrastructure Manager
Employed as the Infrastructure Manager at Generali (Global €400B Underwriters), with a remit to architect and oversee the Operational, Tactical and Strategic running for all IT infrastructure across 5x UK locations. Technologies includes Alcatel VOIP/SIP/PBX, NetApp HA3250 with Snapshot & Flexclone storage, VMware 5.x with SRM and Wyse VDI, Cisco 65xx & 3560 PoE & 2500 WiFi, Win7, MS Server/ Exchange/ SQL up to 2010, MS Lync, Unix. Paygate (BACS, CHAPS, SEPA), Payroll and Finance support. LogRhythm for SIEM. Full OpEx, CapEx, with full 3rd party IT outsourcing control. Directly managing a team of 5x internal techs and 3x external consultant services, for 550 local users and 3000 European users. Related accomplishments and responsibilities- ➢ Championed all Security and Compliance initiatives to achieved ISO27001 Certification (start-finish on 1st attempt). ➢ Since taking over the Operations I maintained an average 99.99% uptime across all services with no security breaches. In comparison, when I first started with the company the average uptime across all systems was 43%. My department was audited twice a year and passed muster every time, the ISO27001 in 2014 being the final stamp of quality. ➢ Managed the replacement of the entire physical server, desktops with virtual replacements, enabling 100% business mobility. ➢ Managed and upgraded the Enterprise applications e.g. Exchange, MS Office, RPost, BO, Phoenix Life, IMACS. Broker system, Backup Exec, Veeam, TopDesk & Jira, Cryoserver Archiving, BACS, Payroll, DMS. ➢ Maintaining user facing Helpdesk with 1st to 3rd line support as well as 3rd party Vendor escalation. ➢ Managed the replacement of the PABX with Alcatel VoIP, SIP and Lifesize Video Conferencing. ➢ Design and implementation of full DR, reducing total business RTO from 5 days to 3 hours. ➢ Managed the replacement of Checkpoint, Bluecoat, Websense, FireEye, F5, McAfee desktop policy lockdown. ➢ Managed the monthly Microsoft patching, mobile security enforcement and MessageLabs email filtering. ➢ Designed and managed the European-wide Insurance services (3000 users) utilising OpenCo and Geocoding. ➢ Ran robust backups that utilised Snap, Backup Exec, Veeam and offsite tapes. ➢ Selected all outsourced and 3rd party vendor-maintained services. ➢ Office 365 and SalesForce support for the Belgium office; SAP from the Italian office. ➢ International MPLS (Italian owned), xDSL, Internet, triangulated Gigabit WAN links, WiFi Meraki. ➢ Updated the UPS and HVAC in the main computer room. ➢ Extensive SQL support, including MS Dynamics in the Azure Cloud for 3000 users and support of 22TB of DWH. ➢ Linked all LAN, WAN, SAN, Cisco, Brocades, Servers, DR to Nagios Operational monitoring and alerting system.