Stephen McColl
Bis 2019, Enterprise Security Architect, Aviva
England, Vereinigtes Königreich
Werdegang
Berufserfahrung von Stephen McColl
Bis heute 4 Jahre, seit Juli 2020
Security Architect
Aviva
4 Jahre und 7 Monate, Jan. 2016 - Juli 2020
Managing Director/Chief Security Architect
Secure Working
We provide cyber and information security services through a team of seasoned and highly qualified professional consultants. This includes completing risk assessments and threat analysis to ensure you can choose the most suitable security solutions which we can deploy and manage. We are vendor agnostic and choose the best fit based on a rigorous market review process.
2 Jahre und 2 Monate, Sep. 2017 - Okt. 2019
Enterprise Security Architect
Aviva
PKI services; crypto standards and specifications. Consultancy to CISO department Supplied security solution architectures, principles, standards, roadmaps. Established cloud security technical design authority (TDA). Vault,CyberArk,AWS KMS/ACM/ACMPCA/Shield/Cognito,Azure/OracleKeyVault,Akamai Anti-DDoS/WAF,F5/Symantec(bluecoat) forward/reverse proxy,ISAM,SymantecCASB,AWS APIGateway,KONG,Aquasec,CI/CD(Jenkins,Terraform,Github,CheckMarx,JFrog Artifactory),Checkpoint,Splunk,QRadar,RACF/ACF2.
1 Jahr und 8 Monate, Jan. 2016 - Aug. 2017
Principal Security Consultant
Interoute
- Providing cloud security architectural guidance and leadership to customer project teams and stakeholders. - Ensuring cloud compliance with industry sector requirements. - Management and delivery of end to end on-boarding of cloud technical security solutions to security operations (SOC); including encryption, intrusion prevention, firewalling, DDoS protection, multi-factor authentication/SSO, eMail & web traffic content filtering, SIEM, end point protection.
• Design, deployment and management of Security Operations Centre. • Supporting customers achieve ISO27001 and PCI-DSS compliance and certification. • Security architecture solutions for major, complex accounts; provision of multiple Security stacks: CyberArk, Checkpoint, Cisco ASA, Palo Alto, Fortinet, IBM ISAM, AD, Symantec/Bluecoat, F5 Anti-DDoS/WAF, Akamai, Thales HSM, QualysGuard, RSA Analytics, Sophos, IBM Mainframe RACF/ACF2.
5 Jahre und 9 Monate, Juni 2007 - Feb. 2013
Head of Information Security
Xchanging
• Enterprise security architecture and roadmaps. • Implementation and maintenance of group security policies. • Security awareness education and training. • Information security risk management. PCI-DSS management and assessments. • Managing and training a team of 15 senior security managers. • Management of Data Protection. • Cloud consumption security governance. • Management of third-party providers ensuring security requirements are contractually binding and reported upon. London
10 Monate, Okt. 2006 - Juli 2007
Security Architect & Information Security Consultant
CSC - Computer Sciences Corporation
• Implemented security architecture policies, standards and guidelines for corporate businesses in English and German. • Designed enterprise security solutions. • Contributed to market reviews of enterprise firewalls for a leading car manufacturer ensuring delivery of the most efficient and effective global solution. • Security architecture and risk reviews of multi-radar tracking and air situation display systems for the German Aerospace Authority – DFS (Deutsche Flugsicherung). Muisch Germany
3 Jahre und 3 Monate, Juli 2003 - Sep. 2006
Information Security Architect & IT Auditor
General Electric Money Bank
• IT process, data centers, suppliers and security audits. • Monitoring the security of all systems and networks in the head office and bank branches. • Management of data privacy requirements and encryption of all data flows. • Designed and embedded security architecture using TOGAF, SABSA and ISO27001. Hannover, Germany
11 Jahre, Jan. 1991 - Dez. 2001
Combat Infantry Soldier / Telecommunications and IT Security Specialist
British Armed Forces
Infantry Soldier - Military Operations Based in Fallingbostel, Germany
Ausbildung von Stephen McColl
3 Jahre und 1 Monat, Sep. 2011 - Sep. 2014
Information Security
University of London
Advanced cryptography
Internal Audit / Information Security
University of London
Information Security
University of London
Telecommunications & IT Security
Army Training Centre
MCP
DAA Hannover
Microsoft Certified Professional
Electrical Engineering- Information and Telecommunications Systems
DAA Hannover
In German- for more of a challenge :)
Computer Programming
Langside Technical College
C, Unix Shell Scripting, Pascal, Turbo Pascal
Sprachen
Deutsch
Fließend
Englisch
Muttersprache