Stephen McColl

We provide cyber and information security services through a team of seasoned and highly qualified professional consultants. This includes completing risk assessments and threat analysis to ensure you can choose the most suitable security solutions which we can deploy and manage. We are vendor agnostic and choose the best fit based on a rigorous market review process.

PKI services; crypto standards and specifications. Consultancy to CISO department Supplied security solution architectures, principles, standards, roadmaps. Established cloud security technical design authority (TDA). Vault,CyberArk,AWS KMS/ACM/ACMPCA/Shield/Cognito,Azure/OracleKeyVault,Akamai Anti-DDoS/WAF,F5/Symantec(bluecoat) forward/reverse proxy,ISAM,SymantecCASB,AWS APIGateway,KONG,Aquasec,CI/CD(Jenkins,Terraform,Github,CheckMarx,JFrog Artifactory),Checkpoint,Splunk,QRadar,RACF/ACF2.

- Providing cloud security architectural guidance and leadership to customer project teams and stakeholders. - Ensuring cloud compliance with industry sector requirements. - Management and delivery of end to end on-boarding of cloud technical security solutions to security operations (SOC); including encryption, intrusion prevention, firewalling, DDoS protection, multi-factor authentication/SSO, eMail & web traffic content filtering, SIEM, end point protection.

• Design, deployment and management of Security Operations Centre. • Supporting customers achieve ISO27001 and PCI-DSS compliance and certification. • Security architecture solutions for major, complex accounts; provision of multiple Security stacks: CyberArk, Checkpoint, Cisco ASA, Palo Alto, Fortinet, IBM ISAM, AD, Symantec/Bluecoat, F5 Anti-DDoS/WAF, Akamai, Thales HSM, QualysGuard, RSA Analytics, Sophos, IBM Mainframe RACF/ACF2.

• Enterprise security architecture and roadmaps. • Implementation and maintenance of group security policies. • Security awareness education and training. • Information security risk management. PCI-DSS management and assessments. • Managing and training a team of 15 senior security managers. • Management of Data Protection. • Cloud consumption security governance. • Management of third-party providers ensuring security requirements are contractually binding and reported upon. London

• Implemented security architecture policies, standards and guidelines for corporate businesses in English and German. • Designed enterprise security solutions. • Contributed to market reviews of enterprise firewalls for a leading car manufacturer ensuring delivery of the most efficient and effective global solution. • Security architecture and risk reviews of multi-radar tracking and air situation display systems for the German Aerospace Authority – DFS (Deutsche Flugsicherung). Muisch Germany

• IT process, data centers, suppliers and security audits. • Monitoring the security of all systems and networks in the head office and bank branches. • Management of data privacy requirements and encryption of all data flows. • Designed and embedded security architecture using TOGAF, SABSA and ISO27001. Hannover, Germany

Infantry Soldier - Military Operations Based in Fallingbostel, Germany

Advanced cryptography

Microsoft Certified Professional

In German- for more of a challenge :)

C, Unix Shell Scripting, Pascal, Turbo Pascal