Hands-on experience implementing cybersecurity controls and processes within enterprise environments -- translating security requirements into day-to-day IT practice across financial services, healthcare, and regulated industries.
Practical, hands-on implementation work across several security areas -- executing on security requirements as part of broader IT operations and infrastructure roles.
Implementing Conditional Access policies, MFA rollouts, and Entra ID configurations -- hands-on work configuring and maintaining access controls across the environment.
Writing and maintaining security policies, standards, runbooks, and procedures that support compliance requirements and day-to-day operations.
Contributing to the implementation of Zero Trust principles, network segmentation, and secure hybrid cloud configurations as part of broader infrastructure work.
Active participant on the IT Risk Committee -- contributing to risk identification, documentation, and tracking of remediation efforts across the organization.
Implementing and supporting EDR platforms, endpoint security configurations, and security tooling -- focused on deployment and ongoing operations.
Supporting security governance processes including policy reviews, access reviews, and control documentation tied to audit and compliance cycles.
Practical experience implementing controls and processes within environments governed by these frameworks -- not a certified specialist, but a practitioner who has worked within each.
Principles that guide how I approach security implementation work as part of day-to-day IT operations.
Happy to connect with teams where security awareness and practical IT experience matter.
Get in Touch Back to Home