CISO | Founding Director

• Jun 2020 - Present

CyberGrape is a 100% New Zealand owned and operated cyber security company, providing cyber risk management and cyber security solutions to all businesses. We pride ourselves in delivering 'top-right' grade security solutions, to businesses of all sizes and industries, in Aotearoa. IT Security is in our DNA, and through our strong technology partnerships, we provide security solutions uniquely tailored help your businesses effectively manage cyber security risks, cost effectively. We provide : - Cloud based Security solutions - End Point protection - Vulnerability Management - Third Party Risk management - Human Risk Management - SaaS Backup Solutions - Dark Web monitoring - Secure Password Vaults and Management - Security Training - Security Policy creation - Security Assessments - vCISO Consulting

Cyber Security Consultant

• Nov 2021 - Present

Provding Cyber and Information Security oversight across multiple IT initiatives within Vodafone. Engagements vary between light security baseline reviews to involved security architecture design and assessments. Provding Cyber and Information Security oversight across multiple IT initiatives within Vodafone. Engagements vary between light security baseline reviews to involved security architecture design and assessments.

CISO | Head of Security Services

• Mar 2021 - Oct 2021

I was responsible for the security services business. I lead the Security Operations Centre team, comprised of security analysts, engineers and architects. We fulfilled security services for prominent mid-market firms New Zealand as well as provided pragmatic security consulting and assessments. As well as supporting existing security services, I have been built out new security services to meet the needs of an ever changing security landscape.I was also the SecureCom CISO and responsible for driving their internal security to ensure they maintained a very high level of security posture.

Banking and Payments System Manager

• Aug 2019 - Mar 2021

Leading a team of business analysts, developers, testers, and specialists, I am responsible for the day-to-day IT operations of TSB core banking and payments environments. Predominantly a people leadership role, I ensure high level stakeholder management is upheld and oversee security, risk and compliance measures are met. My team is also responsible for all development against core bank and I ensure our business analysts elicit, analyse, communicate, and validate requirements for changes to business processes, policies, and information systems. I am also responsible for the banks SWIFT payment environment ensuring compliance to SWIFT CSP security standard.

Global Head: Network Operations

• Jan 2016 - Jul 2019

Leading a large team of operations staff, engineers, architects, and network security specialists, I was responsible for global network operations for the group. We managed the group Palo Alto firewall infrastructure globally (10,000 staff) as well as MPLS network and employee customer VPN solutions. We operated and managed the BT trading desks both in UK and SA. We also managed 164 video conferencing rooms / boardrooms and the cisco jabber and telephony environments. We were responsible for the banks Contact Centre as well as screen and voice recording systems. I was a permanent seat on the Architecture, Information Security and Infrastructure governance boards and reported directly to the Group CIO. I personally managed a budget of in circa NZD $15M as well as technology strategies and roadmaps.

Head Of Technical Architecture

• Feb 2014 - Dec 2015

The central IT services for South Africa was missing an overall infrastructure architectural discipline and I was given the opportunity to head up the newly created area. With a small architecture team, I was successful in implementing several architectural processes which aligned the core infrastructure teams in their service delivery and technology roadmaps. There was several years of poor practice across the ICT teams which lead to a vast backlog of architectural artefacts missing, making operational support of the various areas difficult as well as creating key man dependencies. By forming partnerships with other IT teams, we documented the environment and successfully created more visibility and developed standard infrastructure patterns. New services could be introduced, more often by leveraging existing systems and platforms resulting in cost savings for the bank.

Technical Business Analyst

• Jun 2012 - Jan 2014

My primary function was to bridge between business and technical teams. This was undertaken in various forms. First, the bridging was done by translating business requirements into technical artifacts. I was able to assess the business requirement and note the details there of. Using my broad skilled knowledge in technology I then translated the given into technological terms and mapped out the requirements against existing and proposed technologies, collaborating with the various technology domain SME’s creating artefacts containing details of the functional and non-functional requirements. These were then used to implement the supporting technology stack. Often, I would get involved with the testing (and occasionally implementation) of the technology stacks and qualify the implementation against the requirements.

Senior Project Engineer

• May 2010 - Jun 2012

Initially a 6-month contract, I was drafted to refactor the banks Single Sign On system backend for their trading desk. This was my first introduction to Agile SCRUM and the project was successful maintaining 100% uptime while all systems and codes were systematically replaced. Further on from that, I rebuilt the supporting x.509 PKI environment used to digitally sign every trade transaction uniquely. I also implemented the first layer 7 application gateway installed in the bank. While there, I also assisted 3rd line support by rolling out JBOSS application upgrades, deploying new NetScaler solutions regionally and globally. I also managed the BMC proactive Net upgrade project across the ecommerce environment.

Senior Systems Engineer

• Apr 2006 - Jun 2010

contracted via fujitsu Restructuring and reconfiguring applications’ specific infrastructure • Providing third line support, mentoring and coaching junior personnel • Troubleshooting Windows and Solaris based web applications • Defining configurations and administrating Checkpoint firewalls • Writing and implementing infrastructure management Unix shell scripts to mitigate repetitive work contracted via fujitsu Restructuring and reconfiguring applications’ specific infrastructure • Providing third line support, mentoring and coaching junior personnel • Troubleshooting Windows and Solaris based web applications • Defining configurations and administrating Checkpoint firewalls • Writing and implementing infrastructure management Unix shell scripts to mitigate repetitive work

Global Support Manager

• May 2005 - Apr 2006

• Conducting external vulnerability scans on Windows and Linux based infrastructure, reporting back to executive and technical levels with results and recommendations • Defining service management processes and procedures for first and second line support • Setting up Active Directory internal network services such as mail, file and print, security data storage, backups and disaster recovery in UK and Europe, handling IT processes for new joiners • Working closely with developers to test threat management security portal for customers to control and schedule external vulnerability scans, saving the company time and staff hours.

Security Consultant

• Apr 2005 - May 2005

1 Month Contract 1 Month Contract

Implementation Consultant

• May 2002 - Sep 2002

Network Management Consultant

• Mar 2000 - Apr 2002

• Providing day to day operational support for web hosting environment, focusing on Apache and IIS • Delivering a high standard of pre- and post-sales support • Managing three-tier secure network infrastructure within a staging and production environment, across multiple data centres • Managing security policies on firewalls, to enable onboarding of new applications • Maintaining antivirus infrastructure • Writing shell scripts for functions across more than five hundred mixed Solaris and Windows production and staging environment servers, securely using SSH • Assessing the implementation of SSH on Windows environments, sourcing, testing and reporting on alternative applications • Building Solaris and Windows servers for multiple new projects • Assisting with PwC’s first SAP installation in UK • Work allocations and call log management • Performing as a strong member of a cohesive team with strict adherence to health and safety regulations

Firewall Security Consultant

• 1998 - 2000

Network Support Engineer

• 1997 - 1998

Network Administrator

• 1997 - 1997

Desktop Support

• 1996 - 1997

Destop support engineer based at Eskom, megawatt park. Destop support engineer based at Eskom, megawatt park.