Leadership and Management

Solution Architecture and Security Design involve orchestration, methodology, and delivery, ranging from solution and technical design to stakeholder management. This extends from Clouds, on-premises, network engineering, and security domains, medium size to large government scale and above.

Experience in Cyber Governance, Risk & Compliance: Over the past years, I have accumulated more than 3 years of dedicated experience in Cyber Governance, Risk & Compliance within various capacities in the cyber security domain. This includes comprehensive involvement in developing and implementing governance frameworks, conducting risk assessments, and ensuring compliance with relevant standards and regulations.

Australian Citizenship and Security Vetting: I am an Australian citizen, fully aware of the importance of national security and the sensitivity of the information handled within the cyber security domain. I currently hold an NV1+.

Designing and Assessing Solutions: My experience spans assessing and designing a wide range of IT solutions, including on-premise, cloud-hosted, and hybrid architectures. This involved evaluating security postures, implementing security controls, and ensuring the resilience and compliance of these solutions across different environments.

Engagement with Business Teams: I have demonstrated experience in effectively communicating and collaborating with both technical and non-technical business teams in Cyber GRC engagements. My role often necessitated translating complex cyber security concepts into accessible, actionable insights for stakeholders, thereby facilitating informed decision-making processes.

Experienced in Security Governance: I possess a deep understanding of key Australian Government compliance frameworks, including the Australian Cyber Security Centre’s (ACSC) Information Security Manual (ISM), the Attorney General’s Protective Security Policy Framework (PSPF), and the ISO27000 series of frameworks. This knowledge has been pivotal in guiding the compliance strategies and security policies I have developed.

Communication Skills: I bring highly developed written and verbal communication skills, honed through years of technical reporting, presentations, and stakeholder engagements. My ability to articulate security risks, compliance statuses, and governance strategies has been commended and has contributed significantly to the success of the projects I've been involved in.

Risk Management Application: My background in cyber security has provided me with extensive experience in applying risk management principles and methodologies. I have a track record of identifying, evaluating, and mitigating risks in alignment with organizational objectives and risk appetites.

Decision-Making Under Tight Timelines: My experience has often required making sound, pragmatic decisions under tight timelines, especially in response to emerging threats and vulnerabilities. My approach balances risk, operational requirements, and strategic objectives to make decisions that safeguard assets while enabling business continuity.

Interpersonal and Influencing Skills: I have strong interpersonal and influencing skills, with a proven ability to drive change collaboratively both within organizations and in wider industry contexts. My ability to build consensus, negotiate, and persuade has been instrumental in implementing effective cyber security practices and fostering a culture of security awareness.