Follow this page for updates on information security, leadership and organisational change management. My blogs will involve opinion pieces on how I believe information security risk should be seen as a business risk, and information security teams treated as a partner to the business.
Who am I?
Skilled information security professional, with experience working in IT Audit, Risk Management and Information Security Management. Currently leading a team of information security experts in a medium-tier, fast-paced organisation, within a highly regulated industry.
I’ve managed information security, governance and risk initiatives across a variety of sectors, including gaming, technology, property management, industrial engineering and logistics. I have a track record in adopting and adapting industry known security frameworks, such as ISO 27001 and NIST CSX, applied to companies with international presence inside and outside of Europe.
I am a certified information systems auditor (CISA), and hold a Bachelor Degree in IT (Computer Information Systems and Artificial Intelligence) and a Masters degree in IT, Management and Organisational Change from Lancaster University.
I am continuously learning and growing, always aiming to be the best leader I can be through managing myself and focusing on helping others grow and excel at what they do. I strongly believe in treating information security as a business risk, and in working with business leaders to prioritise information security initiatives. Security should always be an enabler of the business, protecting information without negatively impacting operations.