I am an information security consultant with over a decade of experience assisting and delivering guidance to industry-leading international businesses and organisations of all sizes.
My strong technical background and experience in penetration testing, combined with managerial knowledge and experience as a CISO, provide me with an in-depth understanding and response to information security challenges.
When not engaged with clients, I enjoy researching and writing about information security issues, privacy and free software, and occasionally other subjects that draw my interest.
Information security governance, information risk management, information security programme development, information security programme management, incident management and response, data protection, disaster recovery, network penetration testing, application penetration testing, wireless penetration testing, PCI DSS, ISO/IEC 27001, GDPR, NIST Cybersecurity Framework, Cyber Essentials
Education and Certifications
Certified Information Security Manager® (CISM) - ISACA
PhD - University of Manchester