Bexhill, England, United Kingdom
Information security engineer with experience in modern identity access management, security automation, security operations, security policy and compliance, risk assessment, and endpoint security. Experience across a range of industries, including Telecoms, FinTech, and EdTech. Inquisitive and self-motivated problem solver, with an Electrical and Electronics Engineering BEng and an Information Security MSc.
Assessing and implementing foundational security controls across the business, both technical and administrative. Proposed and leading a security program to implement a high standard of modern privilege management and identity access management. Evaluating and responding to security events and alerts. Assessing and integrating security solutions to enhance effectiveness and efficiency. Advising optimal tool combinations and refining existing mechanisms to provide a comprehensive and cohesive security program to support the business.
Developed and implemented risk-based vulnerability management processes and procedures, for use in enterprise and PCI environments. Completed security reviews of vendors, internal tools, and go-to-market products. Evaluated third party security tools for suitability. Coordinated security initiatives with a wide range of stakeholders.
Assessed compliance to internal security controls. Coordinated the reporting of vulnerability notices from the global cyber function to IoT engineering and operations teams. Developed tooling and processes framework for vulnerability management within Vodafone Business Products & Services - IoT. Collaborated on wider risk reporting within Vodafone Business Products & Services.
Worked with project teams to assess new and upgrading products prior to launch to perform comprehensive security assessments, ensuring that products and services have security designed in at an early stage. Completed a proof of concept project using automation tools to simplify and enhance the efficiency of the security assessment process.
Administration of the Vodafone Group vulnerability management platform. Monitored, analysed, and reported on system statuses across more than a dozen markets globally. Assisted local teams in remediation planning and scheduling. Collaborated on the development and improvement of several vulnerability management processes.
Designing custom control panels for industrial heaters, costing and quoting for bids to a wide range of international and domestic clients. Executed medium to long term projects in a tightly knit team to meet demanding requirements within strict time scales.