Work
Seven documented engagements in OT and IT, between 2022 and 2026. Client identities under NDA — sector, country and figures are sharable.
Cybersecurity Officer & Industrial Network Expert
Securing OT networks for a multi-site energy operator: zones & conduits architecture, IEC 62443 risk assessments, access procedures, OT Active Directory, DMZ and segmentation across hydro, wind and thermal sites. FAT/SAT support with vendors, HLD/LLD standardisation.
Global IAM tooling rollout & maintenance
Rollout and scalable maintenance of a group-wide identity tool: user stories, access workflow modelling in ServiceNow (onboarding, offboarding, transfers, change), releases, data quality and L3 support.
DLP strategy & tooled roadmap (Purview / Sentinel / MCAS)
DLP strategy and tooled roadmap built with the CISO: business and IT workshops, EBIOS RM risk analysis and implementation plan for Microsoft processes and tools.
NIST SP 800-53 controls prioritisation & assessment
Working with the CISO to prioritise, collect and analyse evidence required by NIST SP 800-53. Scope-by-scope workshops, formalised remediation plan and follow-up.
ISMS rollout, post-pentest remediation & BIA/BCP
Security engagement to roll out an ISO 27001:2022 ISMS, remediate risks identified through a penetration test and train teams. Deliverables: ISMS, BIA/BCP, remediation plan.
Phishing campaigns & awareness, executive reporting
Deployment and operation of phishing tooling (GoPhish), awareness sessions and consolidated executive reports, with tool documentation.
Security escape-game workshops — technical setup
Technical design and setup of escape-game style workshops: VMs, mock phishing site, quizzes and hands-on attacker / defender scenarios.