This is Identity Revive, a newsletter mainly about cyber security, strategy, architecture, lessons learnt. Occasional about economics, physics, climate change, biology and politics. I hope you enjoy the read. Let me know in comments what I can improve.
About me
My expertise is in:
Understand your requirements and help you with any identity and access issue. Lets delight and surprise your customers and staff!
Architect, design, deliver and run your cyber security controls in code so you are compliant with regulation and don't suffer from a cyber incident.
Make sure you are getting value out of your Managed Service Providers (MSP’s) and help them use less ClickOps so you get charged less and they make fewer errors.
Other areas of expertise:
Identity and Access
Engineering cyber security as code.
Program and Project Management.
Business analysis.
I am a Cyber Security thought leader and security architect with over 20 years’ experience at in Australia, UK and the US. I have worked for 3 of the 4 major banks in Australia (CBA, NAB and ANZ) and in UK/US: Barclays, Blackrock Visa Europe. I complement this strong foundation in Financial Services with Operational Technology (OT) / Industrial Control systems (ICS) at Australia Post, Royal Mail, Transurban and APA Group.
My key achievements as a cyber thought leader and security architect:
Cloud and digital expert having led multiple customer and billing transformations and cloud migrations to AWS, Azure and GCP.
Successfully built cyber business cases, a highlight example being Program Ascent: a $50m cyber security program at Transurban including OT.
Highly experienced at conversations with senior stakeholders having presented at the C-suite and Architecture governance boards. I explain complex technical concepts to a non-technical, business experts, and bring them on the journey for your cyber uplift.
I have developed requirements, evaluated the market and made recommendations accepted by the CIO and Architecture councils in every cyber security domain. Great examples are for Identity and Access, email security and SIEM. I then closed the loop and took these through architecture, high level and detailed design and guided implementation.
I am an Identity expert with experience in Entra ID (Azure AD), Okta and SailPoint.
Expertise in global cyber security frameworks including ISO27001/2, NIST and the Australian Energy Sector Cyber Security Framework (AES-CSF).
Experience with regulation such as the Australian Privacy Principles and Australian Security of Critical Infrastructure (SOIC) act. Key highlights are implementing a comprehensive security control framework aligned to NIST at Transurban in AWS focusing on maximising prevention and automated remediation so you can scale without increasing headcount while being compliant and avoiding fines.
Experienced in all domains of cyber security, everything from identity and access, zero trust, network security, endpoint, anti-malware, logging and monitoring and application security. You name, I have done it.
Thought leader in DevSecOps and everything as code. I can win the respect of even your most experienced Infrastructure and Application leaders and their teams.
Built a business case for, architect and deployed Microsoft Purview suite at Transurban. Subject matter expert in DLP, you will not find someone better in the Australian market.
Started in consulting at PWC so I always hit the ground running and I can present extremely well. My superpower is understanding your business and technology within 3 months and building relationships. I am your trusted adviser for Cyber and soon your business and technology will also believe this. This will only benefit you.
