$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Information Security Professional specialising in governance, risk and compliance
Keith Hickson
,
Witney, United Kingdom
Experience
Other titles
Skills
I'm offering
A confident, versatile and enthusiastic Security Consultant, with extensive experience, gained working in information security roles including architecture, consultancy, IT transformation projects and pre-sales. Has in-depth knowledge of the design and implementation of security governance solutions, and architectural frameworks within the technology, financial services, government, retail and energy industries on a global basis.
Acknowledged as a highly focused and committed professional, with a pragmatic approach to being able to demonstrate value, along with the ability to develop and maintain effective working relationships at all levels of seniority. Possesses excellent interpersonal and communication skills using strategic and planning expertise to successfully deliver and implement information security management systems, together with risk and compliance management, to International Standards.
Acknowledged as a highly focused and committed professional, with a pragmatic approach to being able to demonstrate value, along with the ability to develop and maintain effective working relationships at all levels of seniority. Possesses excellent interpersonal and communication skills using strategic and planning expertise to successfully deliver and implement information security management systems, together with risk and compliance management, to International Standards.
Markets
United States
(Remote
only)
Canada
(Remote
only)
United Kingdom
France
(Remote
only)
Germany
(Remote
only)
Lithuania
(Remote
only)
Denmark
(Remote
only)
Norway
(Remote
only)
Sweden
(Remote
only)
Finland
(Remote
only)
Links for more
Once you have created a company account and a job, you can access the profiles links.
Industries
Language
German
Good
English
Fluently
Ready for
Larger project
Ongoing relation / part-time
Full time contractor
Available
My experience
2020 - 2020
freelance
Pre-sales consultancy
Fujitsu Services.
Information Security Consultancy to a bid for the outsource management and transformation to cloud technologies of a Bank's database infrastructure
Information Security, ISO 27001, Sarbanes oxley, Banking
2019 - 2020
freelance
Freelance Consultancy
Fujitsu / Heathrow Airport Ltd.
• Project leadership to document information security process and controls for the Heathrow operational radio service
• Perform Risk assessments and NIS CAF assessment of the Radio Service
• Provision of subject matter expertise on security frameworks and their implementation (ISO27001, NIS Directive)
• Perform Risk assessments and NIS CAF assessment of the Radio Service
• Provision of subject matter expertise on security frameworks and their implementation (ISO27001, NIS Directive)
Governance Risk and Compliance, Information Security, Security, ISO27001, Assessment, Optimization and development of processes, NIS Directive, Security Assessment
2019 - 2019
freelance
Lead Information Security Consultant
Fujitsu / Aviva.
• Provision of subject matter expertise on security frameworks and their implementation (ISO27001 and ISF SoGP)
• Provision of guidance for integration of MAS TRM (Singapore) and NIS OES (France) requirements into the controls framework
• Development of controls framework and test scripts for the Aviva controls improvement project.
• Provision of advice and guidance to markets and functions within Avia on the implementation of controls
• Development and delivery of the technical quality assurance process for Market and Function control assessments
• Provision of guidance for integration of MAS TRM (Singapore) and NIS OES (France) requirements into the controls framework
• Development of controls framework and test scripts for the Aviva controls improvement project.
• Provision of advice and guidance to markets and functions within Avia on the implementation of controls
• Development and delivery of the technical quality assurance process for Market and Function control assessments
Governance Risk and Compliance, Information Security, Optimization and development of processes, ISO 27001, Security Assessment
2018 - 2019
freelance
Data Protection and Security Consultant
BNP Paribas.
• Provision of Information Security Consultancy to GDPR and NIST Projects
• Development of the supplier assessment process and conduct assessment of key data processor suppliers.
• Development of Information Security Policies
• Development of the supplier assessment process and conduct assessment of key data processor suppliers.
• Development of Information Security Policies
Governance Risk and Compliance, Data protection, GDPR Compliance, Information Security, NIST 800, Application security, Security policy, Security Assessment
2018 - 2018
freelance
GDPR Consultancy
MTI.
• Provision of GDPR Consultancy to MTI Clients
GDPR Compliance
2018 - 2018
freelance
GDPR Consultancy
Secure Business Computing Solutions.
• Provision of GDPR Consultancy to MTI Clients
GDPR Compliance
2017 - 2017
freelance
Interim Lead Security Consultant
S-RM.
• Provision of information security governance risk and compliance and ISO27001 Support to S-RM client, a Global Business Process outsourcing company, to guide them through their ISO27001 surveillance audit in October 2017.
• Provision of solutions to resolve issues identified in the ISMS, in readiness for the audit, which have been Identified in 2016, and have been further exposed by changes in the security organisation and a major incident in Q2 2017
• Provision of solutions to resolve issues identified in the ISMS, in readiness for the audit, which have been Identified in 2016, and have been further exposed by changes in the security organisation and a major incident in Q2 2017
Information Security, Governance Risk and Compliance, Compliance, ISO27001, Outsourcing, Support, Security Assessment
2017 - 2017
freelance
Interim Senior Consultant
Ultima Risk Management (URM).
Provision of information security governance risk and compliance; and PCI DSS consultancy to a variety of small to medium size enterprises (SME) clients across several industry sectors.
Information Security, Risk Management, Governance Risk and Compliance, PCI DSS, ISO 27001, Cyber Essentials, Security Assessment
2016 - 2017
job
Principal Information Assurance Consultant
CNS Group.
• Provision of information security governance risk and compliance consultancy to 10 SME clients across several industry sectors.
• Designed and delivered supply chain assurance review for a Financial Services company of its key suppliers
• Designed and delivered supply chain assurance review for a Financial Services company of its key suppliers
Information Security, Governance Risk and Compliance, Compliance, Security
2013 - 2016
job
Security Practice Architect, Solutions and Sales Support
Hewlett Packard Enterprise (HPE).
• Information security lead within multidisciplinary bid teams for large outsourcing deals, including security requirements definition, architectural design work, advice and guidance on security issues, risk assessment, guidance on residual risk and mitigation strategies, contracts review, governance strategies, costing of security operations and preparation of written submissions.
• Secured large deals which included information security governance, data privacy and managed security services solutions as part of data centre outsource deals for large global banking, insurance, infrastructure and energy companies.
• Development of processes to assure compliance of HPE, its partners and suppliers ongoing compliance to the clients' supply chain risk programmes.
• Secured large deals which included information security governance, data privacy and managed security services solutions as part of data centre outsource deals for large global banking, insurance, infrastructure and energy companies.
• Development of processes to assure compliance of HPE, its partners and suppliers ongoing compliance to the clients' supply chain risk programmes.
Information Security, Governance Risk and Compliance, Infrastructure, Outsourcing, Compliance, Sales, Contracts, Security architecture, Security Assessment, Due Diligence, ISO 27001, Data protection, Risk Management
2006 - 2013
job
Principal Security Consultant
Fujitsu Services.
· · Security Consultant working on client projects as a lead for information security governance and security architecture.
· Developed and Implemented of ISO 27001 accredited ISMS for outsourced services
· Developed and implemented Information risk management processes for outsourced services
· Development and of 3rd party supply chain assurance programme for a motor retail and finance company.
· Security input into multi-disciplinary bid teams for large outsourcing deals to define and cost security solutions for outsourced services engagements to clients across a range of commercial and government clients.
· Security architect for the Southern Cluster Implementation of the Care Records System.
· Developed and Implemented of ISO 27001 accredited ISMS for outsourced services
· Developed and implemented Information risk management processes for outsourced services
· Development and of 3rd party supply chain assurance programme for a motor retail and finance company.
· Security input into multi-disciplinary bid teams for large outsourcing deals to define and cost security solutions for outsourced services engagements to clients across a range of commercial and government clients.
· Security architect for the Southern Cluster Implementation of the Care Records System.
ISO 27001, Information Security, Security Assessment, Third Party Assessment, Security architecture, Application security, Information Security Management, Policy development, Policy advice
2005 - 2005
freelance
Freelance Contractor
Consultancy in IT Security.
• Consultancy to Euroclear NV for a security improvement project.
• Successful development and documentation security procedures and controls for UNIX systems management to address high priority audit issues.
• Successful development and documentation security procedures and controls for UNIX systems management to address high priority audit issues.
Audit, Unix, Management, Security, Development, Audit
2001 - 2005
job
Manager - Process Improvement Consulting - IT Security
PricewaterhouseCoopers.
Manager within the Security, Risk and Compliance Practice responsible for managing, scoping and delivery of information security governance risk and compliance audit and consultancy projects for clients across a range of industry sectors and government.
Audit, Information Security, Governance Risk and Compliance, Consulting, Compliance, Security, It, Audit, Manager
1994 - 2001
job
Computer and Network Management
Various.
Network and systems administrator for various companies in the public sector and telecommunications
Network and System Administrator, It support, It administrator, Windows Server and Clients, IT operation and user support, Installation of IT systems
My education
1993
-
1994
Microtech Computer Services
City and Guilds, Level IV
City and Guilds, Level IV
1984
-
1982
Textile Institute
Intermediategraduate, Textile Technology and Analysis
Intermediategraduate, Textile Technology and Analysis
1979
-
1982
Bristol Polytechnic
BTEC HND, Business Studies (Minor in International Marketing)
BTEC HND, Business Studies (Minor in International Marketing)
Keith's reviews
Keith has not received any reviews on Worksome.
Contact Keith Hickson
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Keith directly in Worksome.
38100+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark