Max Higginson

• Spearheaded cybersecurity operations for the supply chain across the UK and Ireland, focusing on Operational Technology (OT) and IoT.
• Developed and executed robust cybersecurity strategies to proactively mitigate risks and safeguard data integrity.
• Collaborated cross-functionally to conceive, implement, and drive innovative cybersecurity initiatives.
• Conducted rigorous security audits, aligning with IEC 62443, NIST, and CIS standards, to identify and rectify vulnerabilities.
• Led collaborative efforts with engineering teams to fortify ICS/SCADA infrastructure cybersecurity measures.
• Cultivated a security-centric culture through targeted initiatives, fostering heightened awareness across the organization.

Operational Technology (OT) Lead | (PwC Collaboration)

• Advocated for the inception and deliberate establishment of PwC's Microsoft OT service offering.
• Played a pivotal role as a featured speaker at PwC OT events, showcasing expertise and insights.

Transport (Rail Lead)

• Led rail-specific proposals and client projects, identifying innovative service offerings within the broader transport sector.

Deals Specialist

• Provided subject matter expertise in cybersecurity for the acquisition of target companies.
• Conducted high-level validation of target companies' cyber capabilities and assessed associated risks based on recent cyber reviews.

Vulnerability Manager & Sprint Manager | Global Law Firm (PwC Secondment)

• Successfully led a vulnerability remediation program, achieving an impressive 87% vulnerability reduction within six months.
• Formulated the vulnerability management strategy, overseeing sprint implementation and day-to-day operations.
• Managed all aspects of resources and quality, including commercial responsibilities such as billing.
• Outstanding results and feedback led to an extended secondment period.

NIST Consultant | Company: [Your Company/Role] | Dates

• Conducted stakeholder interviews to evaluate, review, and report on the organization's NIST maturity rating.
• Designed a comprehensive roadmap for improvement work packages, ensuring a strategic approach to enhancement.

Salesforce & Recruitment Champion

• Orchestrated a comprehensive training program, enhancing the skill set of incoming graduate hires at PwC in Salesforce.
• Assisted in cyber recruitment activities, contributing to the acquisition of top talent.

Financial Assistant

• Provided weekly insights through in-depth analysis of sales figures for the business unit.

Senior Project Manager & Transformation Consultant | National Rail Company

• Directed a comprehensive Microsoft E5 'Security' implementation initiative across the client organization.
• Collaborated closely on technical design, change management, product testing, and validation activities.
• Executed the deployment of critical security components, including Risk-Based Conditional Access (RBCA), Microsoft Defender Advanced Threat Protection (MDATP), Microsoft Cloud App Security (MCAS), Data Loss Prevention (DLP), and Advanced Azure Threat Protection (AATP).
• Employed an agile approach using Azure DevOps as SCRUM Master.
• Managed commercial billing and contract extensions, underlining commitment to client satisfaction.
• Received excellent feedback leading to a six-month contract extension.

• Recognized with the 'People's Champion' Award for advocating for peers to senior management.
• Attained an exceptional customer feedback score of 9.3 out of 10, the highest-ever recorded for cyber security client satisfaction within the account.

• Led a multifaceted role focused on implementing and delivering cyber security technologies in client projects, particularly within the nuclear and rail industries.
• Collaborated closely with project stakeholders and client contacts to define the scope of cyber security requirements. Assumed a leadership role in engineering, leveraging a diverse array of technologies.
• Leveraged investigative and requirement-gathering skills to ensure the implementation of necessary cyber security measures. Promptly initiated corrective actions to mitigate risks to clients and Atos.
• Regularly participated in meetings to provide comprehensive project updates, proactively addressing any concerns, delays, or issues raised by clients.
• Employed a range of systems, including Trend MicroSystems (OfficeScan, Control Manager, Vulnerability Protection), Imperva WAFs, Cisco products, and Microsoft Cloud offerings.