$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Dynamic and vastly experienced security consultant
Roy Biakpara
,
London, United Kingdom
Experience
Other titles
Skills
I'm offering
Provides strategic vision for operational security while guiding daily operations and policy implementation. Identifies, researches, analyses, and resolves issues related to risk mitigation and project success. Builds and leads high-performance teams in completing complex assignments while providing virtual collaboration with international and remote teams.
Focused on achieving results at pace with a keen attention to detail and international dimension. Committed to managing and meeting stakeholder expectations, acting always with integrity and transparency. Confident in challenging opinions in the board room in the best interest of all stakeholders.
Focused on achieving results at pace with a keen attention to detail and international dimension. Committed to managing and meeting stakeholder expectations, acting always with integrity and transparency. Confident in challenging opinions in the board room in the best interest of all stakeholders.
Markets
United Kingdom
Links for more
Once you have created a company account and a job, you can access the profiles links.
Language
English
Fluently
Ready for
Larger project
Ongoing relation / part-time
Full time contractor
Available
My experience
2018 - ?
job
Cyber Security Trainer / QA Training
unknown.
Training, QA, Security
2015 - ?
job
Cyber Security Trainer / Firebrand Training
unknown.
Training, Security
2011 - ?
freelance
Principal Consultant
Cryptv Ltd.
UK
• Consulting as subject matter expert for security architecture & orchestration projects
• Created and implemented a Data Governance framework
• Defined indicators of performance and security metrics and ensure compliance with data related policies, standards, roles and responsibilities, and adoption requirements
• Led Project Managers in implementing hardware aspects of £400k in IT infrastructure projects.
• Support businesses with guidance to identify and mitigate information security risks
• Built documentation that conveys procedures for both proactively protecting against cyber threats and restoring operational components following disruption
• Directed GDPR gap analysis using own-developed methodology. Developing Privacy/Data Protection Policies & Procedures as a consequence of gap analyses.
• Created data governance and privacy policies specifying contract implementation
• Lead initiatives to regularly assess the adequacy and effectiveness of information security controls, security policies, direct remediation activities, compliance as related to process and workflows, and initiate actions to ensure that compliance and security gaps are successfully addressed
• Strategically directed matrix resources to execute operational tasks to deploy updated security controls, new tools, and decrease active vulnerabilities by 70% across the enterprise.
• Worked with regulators, aligned diverse teams, and participated as a key member of executive teams for global business
• Participate in risk-based security assessments, develop mitigation plans, and work with internal partners to assign responsibility
• Support the identification, implementation, and maintenance of technical security controls required by various stakeholders
• Coordinate and collaborate with the Legal, Business, Product, and Engineering teams to translate risk and legal regulations into product and system requirements
• Consulting as subject matter expert for security architecture & orchestration projects
• Created and implemented a Data Governance framework
• Defined indicators of performance and security metrics and ensure compliance with data related policies, standards, roles and responsibilities, and adoption requirements
• Led Project Managers in implementing hardware aspects of £400k in IT infrastructure projects.
• Support businesses with guidance to identify and mitigate information security risks
• Built documentation that conveys procedures for both proactively protecting against cyber threats and restoring operational components following disruption
• Directed GDPR gap analysis using own-developed methodology. Developing Privacy/Data Protection Policies & Procedures as a consequence of gap analyses.
• Created data governance and privacy policies specifying contract implementation
• Lead initiatives to regularly assess the adequacy and effectiveness of information security controls, security policies, direct remediation activities, compliance as related to process and workflows, and initiate actions to ensure that compliance and security gaps are successfully addressed
• Strategically directed matrix resources to execute operational tasks to deploy updated security controls, new tools, and decrease active vulnerabilities by 70% across the enterprise.
• Worked with regulators, aligned diverse teams, and participated as a key member of executive teams for global business
• Participate in risk-based security assessments, develop mitigation plans, and work with internal partners to assign responsibility
• Support the identification, implementation, and maintenance of technical security controls required by various stakeholders
• Coordinate and collaborate with the Legal, Business, Product, and Engineering teams to translate risk and legal regulations into product and system requirements
It, LED, Framework, Enterprise, Executive teams, Hardware, Infrastructure, Support, Implementation, It infrastructure, Data protection, Security, Compliance, Architecture, Engineering, Consulting, Information Security, GDpr
2014 - 2019
job
Cyber Security Trainer
Infosec Skills Ltd.
Security
2018 - 2018
freelance
Consultant
ThinkSmart.
2017 - 2018
freelance
Consultant
Cullum Detuners.
2017 - 2017
freelance
Consultant
MPM Supply Ltd.
2017 - 2017
freelance
Consultant
Lexia Group Ltd.
2016 - 2017
freelance
Consultant
Information Security Forum (ISF).
2014 - 2017
freelance
Consultant
Pro4 Solutions Group.
2011 - 2012
job
Interim IT Security Specialist
Severn Trent Water, UK.
• Developed, designed, implemented, and maintained programmes, policies, and risk management frameworks using ISO27001 standard.
• Collected, analysed, documented, and finalised business requirements to protect regulated confidential information and ensuring compliance.
• Created training material, conducted training, and communicated process changes to system users.
• Creation of Operational Technology (OT) security governance, frameworks, and operating models
• Coordinating OT Security Penetration Testing
• Carrying out treatment and tracking of identified risks in OT deployments
• Designed and implemented comprehensive security development roadmap through the year to enhance the security posture within agreed budget.
• Conducted Security operational BAU activities including log reviews & security information and event management
• Ensured a process of continuous information security improvement through collection and analysis of stakeholder feedback.
• Collected, analysed, documented, and finalised business requirements to protect regulated confidential information and ensuring compliance.
• Created training material, conducted training, and communicated process changes to system users.
• Creation of Operational Technology (OT) security governance, frameworks, and operating models
• Coordinating OT Security Penetration Testing
• Carrying out treatment and tracking of identified risks in OT deployments
• Designed and implemented comprehensive security development roadmap through the year to enhance the security posture within agreed budget.
• Conducted Security operational BAU activities including log reviews & security information and event management
• Ensured a process of continuous information security improvement through collection and analysis of stakeholder feedback.
Budget, Training, Event, Information Security, Risk Management, Management, Technology, Compliance, Security, It, ISO27001, Testing, Development, Interim, Penetration testing
2011 - 2012
freelance
Security Consultant
Accenture.
UK
• Ensured the market solutions were compliant to PCI DSS requirements and/or ISO27001 by aligning both standards.
• Provided integral security input and guidance to overall global programme which ensured that security and compliance requirements were met.
• Managed information security projects, budget of $10 million, including planning and deployment of new processes and technologies in areas of intrusion detection and response, deployment and management of authentication tokens and VPNs, and vulnerability assessment and remediation practices.
• Functioned as single point of contact for Global Fraud, Security & Compliance team for projects and for Qualified Security Assessors (QSA) for projects.
• Maintained and enhanced Enterprise Risk Management Process identifying and mitigating over 120 risks across client sites.
• Assist risk owners with identification of key risks and mitigating controls as well as action plans to address any gaps in the mitigating measures identified
• Provided counsel and recommendations to Accenture leadership allowing regulatory improvements to be realised by all of Accenture UK's regulated clients.
• Developed, integrated, and implemented a global telecommunications security program and team, consisting of 3 direct and 32 indirect staff across 24 countries.
• Managed the ISO/IEC 27001 certification of the Information Security Management Program, managed the compliance to the PCI-DSS and regulatory requirements and provided architectural and operational guidance for the security of mobile and location information.
• Achieved synergy of effort and benefit to cost in leveraging certification internationally to apply head office technologies to global locations where capable.
• Coordinated with Security Architecture and Security Engineering teams to standardise a security framework; worked with global locations to identify local partners, where necessary, capable of assisting in raising locations to meet approved standards such as PCI DSS and ISO 27001.
• Successfully managed and coordinated with all stakeholders, across the enterprise, and across regions to ensure that project deliverables were delivered on time
• Function as point of contact to executive leadership for dimensioning, managing, and driving remediation of information security risk within the context of the Cloud infrastructure.
• Ensured the market solutions were compliant to PCI DSS requirements and/or ISO27001 by aligning both standards.
• Provided integral security input and guidance to overall global programme which ensured that security and compliance requirements were met.
• Managed information security projects, budget of $10 million, including planning and deployment of new processes and technologies in areas of intrusion detection and response, deployment and management of authentication tokens and VPNs, and vulnerability assessment and remediation practices.
• Functioned as single point of contact for Global Fraud, Security & Compliance team for projects and for Qualified Security Assessors (QSA) for projects.
• Maintained and enhanced Enterprise Risk Management Process identifying and mitigating over 120 risks across client sites.
• Assist risk owners with identification of key risks and mitigating controls as well as action plans to address any gaps in the mitigating measures identified
• Provided counsel and recommendations to Accenture leadership allowing regulatory improvements to be realised by all of Accenture UK's regulated clients.
• Developed, integrated, and implemented a global telecommunications security program and team, consisting of 3 direct and 32 indirect staff across 24 countries.
• Managed the ISO/IEC 27001 certification of the Information Security Management Program, managed the compliance to the PCI-DSS and regulatory requirements and provided architectural and operational guidance for the security of mobile and location information.
• Achieved synergy of effort and benefit to cost in leveraging certification internationally to apply head office technologies to global locations where capable.
• Coordinated with Security Architecture and Security Engineering teams to standardise a security framework; worked with global locations to identify local partners, where necessary, capable of assisting in raising locations to meet approved standards such as PCI DSS and ISO 27001.
• Successfully managed and coordinated with all stakeholders, across the enterprise, and across regions to ensure that project deliverables were delivered on time
• Function as point of contact to executive leadership for dimensioning, managing, and driving remediation of information security risk within the context of the Cloud infrastructure.
Security, Processes, Framework, Enterprise, Assessment, Office, Regulatory, ISO 27001, Infrastructure, ISO27001, Budget, Compliance, Architecture, Engineering, Management, Leadership, Risk Management, Information Security, Cloud, Deployment
2010 - 2011
freelance
Information Security Consultant
BGL Group Ltd.
UK
• Led Incident Management activities for business units regarding internal investigations
• Analysed information security data from several sources and consolidated output to determine aggregate risk levels and communicate to management.
• Supported various information administrative controls including audit management/compliance, incident response and policies
• Created technical documentation to be used by teams and technical support departments
• Managed incidents raised via security alerts using Security Incident and Event Management (SIEM) tool (QRadar)
• Arranged for external resources to conduct penetration testing and third-party assessments. Saved over £10k by devising selection criteria that did not lower quality/effectiveness but improved savings.
• Managed exceptions and approving requests based on objective risk assessment outcomes via job ticketing service
• Communicated vendor security advisories to appropriate IT operations teams.
• Led Incident Management activities for business units regarding internal investigations
• Analysed information security data from several sources and consolidated output to determine aggregate risk levels and communicate to management.
• Supported various information administrative controls including audit management/compliance, incident response and policies
• Created technical documentation to be used by teams and technical support departments
• Managed incidents raised via security alerts using Security Incident and Event Management (SIEM) tool (QRadar)
• Arranged for external resources to conduct penetration testing and third-party assessments. Saved over £10k by devising selection criteria that did not lower quality/effectiveness but improved savings.
• Managed exceptions and approving requests based on objective risk assessment outcomes via job ticketing service
• Communicated vendor security advisories to appropriate IT operations teams.
It, LED, Penetration testing, Audit, Assessment, Technical documentation, Incident Management, Testing, Support, Operations, Security, Compliance, Service, Management, Information Security, Event, Audit
2009 - 2010
temp
Contract Lecturer
LTC College.
2008 - 2010
freelance
Security Consultant
Arthur Security Ltd.
Security
2008 - 2009
job
Security/Audit Manager
ACVA.
Audit, Security, Audit, Manager
2004 - 2006
freelance
Consultant/Manager
Equilibra Ltd.
Manager
2000 - 2004
job
IS Auditor/IT Manager
Intercity Bank Plc.
(Oversaw compliance audits for SOX, ERP and other operational systems)
Additional Roles
Additional Roles
ERP, Compliance, It, Manager
My education
Royal Holloway University of London
MSc, Information Security
MSc, Information Security
n/a
Bachelors, Mathematics
Bachelors, Mathematics
Roy's reviews
Roy has not received any reviews on Worksome.
Contact Roy Biakpara
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Roy directly in Worksome.
38000+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark