IT Security Architect
Responsible for providing security consultancy and architectural guidance to multiple projects and initiatives of varying complexity; maintaining PCI compliance in a busy retail and online environment.
Lead security architect on a significant virtualisation and "DevOps" transformation project - changing the way in which William Hill delivers and maintains infrastructure and applications.
Designed and implemented a global engagement model for the security architecture team, formalising the interactions between projects, architects, application security specialists, and the security architecture team.
Designed and implemented a security architecture model - abstracting the compliance requirements for William Hill into a generalised set of control objectives and architectural principles to allow for the creation of repeatable patterns and more consistent design advice.
Assessment of new mobile gaming providers; web application security assessment for new gaming products; close working with testing teams and system integrators to validate security vulnerabilities and to identify solutions and workarounds; facilitation of penetration testing and remediation of findings.
Also covered: Firewall rule review and approval, IPS design, testing of DLP solutions, AD/GPO security configuration, assessment of CA/PKI and certificate management requirements and options, assessment of remote access solutions, data centre migration assessment, supporting of external audit activity for various international audit requirements.
Conducted interviews for Security Architect vacancies in the UK, Gibraltar, and Tel Aviv via face-to-face, telephone, and Skype.