Solution-focused Cyber Security Analyst with incident and vulnerability analysis expertise. Monitors new and emerging technologies to innovate risk management. Proactive and adaptive to deliver targeted remedial action, maintaining best practices.
Overview
14
14
years of professional experience
Work history
CYBER SECURITY ADVISORY/RISK MANAGER
UKSTRATCOM
LONDON, LONDON
06.2023 - 09.2023
Used agile scrum to implement roadmap for secure by design on MOD SBD project, developed implementation plan and security roadmap for implementation, managed vulnerability and mentoring other teams as required, delivered digital learning, and converted complex information in security into understandable data, security assets infrastructure, and security management, risk management, respond to Endpoint Protection related designs and data loss prevention.
Facilitating scrum and sprint planning events, supported team to high performing, supported team to achieve project goals, delivering values, used scrum framework to manage team sprints and backlog, including product backlog, supported teams with understanding of security concepts deeply enough to engage with technologies in appropriate manner, subject matter capabilities in security including, encryption techniques, event monitoring, anti-malware and endpoint protection software, advice organization on cyberspace and risk management to protect security of intellectual property, and applied security assurance
Managing risk, in thesecretive public sector, Third-party risk management, Incident management, security control, data protection GDPR, Knowledge of JSP 440, 441, experience of governance, risk, and compliance of ISO 27001, events management of security, Cloud security, DevOps, Amazon, and experience of NIST CSF framework with OWASP, understand of pen testing, hardware and software, routing, LANs/WANs/and Network, Firewall/VPNs, Active Directory -DNS/IDS, IPS and ITIL, Impact assessment and change management
Information security expertise, errors, faults, advanced knowledge of SIEM tools, logging, and alerts, and security infrastructure management.
Assessed application and infrastructure security to find and address vulnerabilities.
Assisted security teams with threat signature implementation and tuning.
Helped develop playbooks and exercises for incident response and remediation.
Analyzed security breaches to determine root causes.
Mentored and supervised junior analysts to sharpen security skills and grow talent pools.
SECURITY OFFICER
FCDO, ATALIAN SAVEST
02.2023 - 06.2023
Over 20 years of personnel and digital security experience and 10 years of cyberspace and, AML/KYC, vulnerability scanning and pen test, and welcoming top dignitaries from all over the world into commonwealth office delivered personnel security, protect systems ensuring digital assets are well protected and system health check, experienced and supported startup.
HCL, NASA GROUP
12.2021 - 02.2022
Used Agile and SAFe to manage project teamwork, worked on AML/KYC, systems risk and vulnerabilities, communicated risk status to organization leadership, handled training platform for upskilling of team's members, and guild against cyberspace attacks and compromise, led digital space effectiveness, and created enabling environment, overseeing IT related health checks for all systems, and data validation, giving guidance and direction for role-based access controls, spearheaded planning for destruction of unwanted hardware and disks for secured data forgotten according to GDPR
Delivered product management, using scrum principles and agile values, created and designed security, data management, pen testing, and system vulnerability checks, maintained security documentation, made recommendations on security controls, and identified solutions that supported business objectives, implemented security best practices for secure data transfer and data storage and recovery with focus on ransomware mitigation, prioritize and remediate of identified security weaknesses in systems, communicate widely with stakeholders and advise on important security-related technologies and inspired, influenced
Colleagues to execute security principles.
CYBER SECURITY NHS, NASA GROUP
11.2021 - 12.2021
Used agile to manage NHS data model and data forecast and used agile methodology to help team in adopting SAFe agile practice, software and product supply chain experience, agile coaching, and mentoring worked on GDPR Inventory, responded to change in delivering projects, digital transformation, experience in data migration in waterfall and agile ways of working using agile value agile principle, experience of GDS in public services, writing user stories, facilitation of sprint ceremonies, experience of AWS and cloud computer and managed pen tester
Kanban experienced and waterfall acted as subject matter expert for scrum and security, application security checks, strong work ethic, updated security to prevent database security threats, conducted annual risk assessments, implemented systems recovery procedures to minimize losses should attack occur, and coordinated internal audit schedule
Blocked weak security lapses, and trained team to become efficient in-service delivery, prevented adverse risks and avoidance risks that can impact on business, reduced risk to an acceptable level, established strong physical security control, managed cyber insurance for protection, and prevented likelihood of security breaches, created a preventive measure to lessen negative impact of incident occurrence
Ensured business continuity by safeguarding systems and all assets from adverse vulnerability, delivered products and software according to customer's needs and requirements, built a collaborative Team via continuous improvement, daily engaged with customers and stakeholders, setting feedback early for Quality and Improvement
SECURITY OFFICER
AXIS SECURITY
05.2010 - 08.2020
Physical security management, perimeter security alarm alerts monitoring, CCTV and Events management monitoring system for vulnerability of security breaches, and digital security access control monitoring for compliance with security standards requirements
Investigated security incidents, performed comprehensive investigation of security breaches on document and file security, maintained improvement log, maintained policies, monitored database access created awareness among staff, prevented cyber-attacks, and updated system with current antivirus software
AGILE PROJECT SUPPORT LEAD
HAYS RECRUITMENT
05.2009 - 07.2013
Using Agile to outline support prison officers and contractors, using agile ways of working and collaboration, accountable for identifying and analyzing business strategies
Executed projects using Waterfall and Agile methodologies.
Established clear budgets and cost control strategies to meet objectives.
Monitored health and safety measures for guaranteed compliance.
Education
BA (Hons) - Management
Arden University
MSc - Data Analytics and IT Security Management
Arden University
/Certified JIRA Tooling Expert.
Expert in Third Party Risk Management (One Trust) - undefined
Certified Enterprise System Management & Security 2019
PMI Agile Certified Practitioner (PMI-ACP) 2021, /Certified SAFe, 5 Advance Scrum Master 2021
Certified AWS Amazon web service - undefined
2021
Diploma - Computer Science
Arden University
2020
Scrum Master - undefined
2018
Certificate of Information Security - undefined
Royal Holloway University
2018
Skills
TOP KEYWORDS & SKILLS
CCTV Security and digital security, personnel security
Encryption, risk assessments, security alarms and alerts, malware prevention
Internal Audit Management, security and controls knowledge, vulnerability Management
Database, experienced in cloud to defend systems and to successfully run system vulnerability management
Delivered Cloud and AWS security and SaaS and IaaS, delivered data forecast and data model with public service, e-commerce, Data Migration GDPR, AML, and KYC security experience, managed risk, and prevented it from happening in information security
Excel proficiency
Reporting template development
Waterfall methodology
Risk mitigation planning
PCI Compliance
IDS Integration
Incident Response Management
Security planning
Agile framework
Project lifecycle management
Interpersonal Communication
Decision-Making
Requirements analysis
Infrastructure development
Timeline
CYBER SECURITY ADVISORY/RISK MANAGER
UKSTRATCOM
06.2023 - 09.2023
SECURITY OFFICER
FCDO, ATALIAN SAVEST
02.2023 - 06.2023
HCL, NASA GROUP
12.2021 - 02.2022
CYBER SECURITY NHS, NASA GROUP
11.2021 - 12.2021
SECURITY OFFICER
AXIS SECURITY
05.2010 - 08.2020
AGILE PROJECT SUPPORT LEAD
HAYS RECRUITMENT
05.2009 - 07.2013
BA (Hons) - Management
Arden University
MSc - Data Analytics and IT Security Management
Arden University
/Certified JIRA Tooling Expert.
Expert in Third Party Risk Management (One Trust) - undefined
Analyst, Risk and Financial Advisory (Cyber and Strategic Risk in Extended Enterprise) at Deloitte and Touche LLPAnalyst, Risk and Financial Advisory (Cyber and Strategic Risk in Extended Enterprise) at Deloitte and Touche LLP