Stephen Kelly

Accountable for leading Harbour Energy's cybersecurity strategy to protect sensitive data and critical systems. I lead cross-functional teams to foster security awareness and align cybersecurity initiatives with business objectives.

I have built strong industry networks, such as the Oil & Gas Information Security Forum, and championed corporate social responsibility initiatives. I coordinate teams for streamlined workflows, promote diversity and inclusion, and guide organizational development with structured performance management systems.

I achieve corporate objectives through strategic planning and execution, enforce compliance standards, and maintain high staff morale. I foster a positive work environment, ensure regulatory compliance, and sustain revenue growth by monitoring industry forecasts and adjusting budgets and marketing strategies.

I establish budgets based on data, allocate resources effectively, and develop key operational initiatives for business growth. I spearhead strategic planning, establish strong stakeholder rapport, and drive organizational improvements through aggressive hiring and training. I implement financial controls, direct daily operations, and partner with management to optimize operations and reduce costs.

Additionally, I have successfully delivered mergers from a cybersecurity and data privacy perspective, ensuring the seamless integration of systems and safeguarding sensitive information throughout the process.

• Developing the risk management framework for Capital Projects and the Mobility initiative.
• Standardising the Shell IT Control framework to reduce costs and improve manageability.
• Designing and implementing security processes, guidelines, and procedures and performing cost-benefit analyses on individual controls.
• Collaborating with external auditors for in-depth compliance audits and presenting results to senior management.
• Creating efficient risk management plans to minimize data breaches and conducting penetration testing to identify network vulnerabilities.
• Staying updated on cybersecurity threats and countermeasures to enhance proactive defence mechanisms.
• Assisting in developing secure coding practices to reduce code vulnerabilities.
• Drafting policy documents on acceptable IT resource use to foster employee responsibility towards information security.
• Partnering with security professionals to address issues through incident validation and action synchronization.

• Primary contact for critical technical issues at the Netherlands branches of the Rabobank
• Tasks included resolving technical failures promptly, automating application monitoring tools, implementing disaster recoverable printing services, providing technical expertise for application and server upgrades and managing a 12-hour server helpdesk
• Managed complex technical projects, resulting in successful on-time deliveries.
• Improved operational efficiency with the design of innovative engineering solutions.

• Employed initially to run a server consolidation project, the project aimed to consolidate and decommission as many servers as possible to save hardware and support costs.
• Secured on-time completion of projects by enforcing strict deadline adherence among team members.
• Developed comprehensive project plans to meet stakeholder expectations.
• Implemented innovative solutions, improved efficiency in project work.

• Instrumental in the delivery of the Trust Domain and Y2K projects.
• Reviewed and updated company policies regularly to comply with regulations and industry best practices in cyber security.
• Conducted regular risk assessments, resulting in proactive threat mitigation.
• Developed comprehensive disaster recovery plans to ensure business continuity after a security breach or natural disaster.
• Collaborated closely with other departments to integrate IT needs into overall company strategy.
• Identified potential weaknesses within the system through rigorous testing methods, enhancing overall security posture.
• Recommended upgraded technologies to meet evolving business requirements.

IT administrator duties at several companies in Aberdeen, including Total, Oryx and Marine Offshore Management.

• Managed user accounts and permissions, ensuring proper access control procedures were followed.
• Documented all actions during the troubleshooting process, ensuring transparency and providing a reference for future incidents.
• Maintained network security for optimal data protection.
• Assisted in the configuration of new devices for seamless integration into existing networks.
• Kept abreast of the latest technology trends for continuous improvement in systems administration tasks.
• Improved system performance by implementing software updates and patches.
• Installed new hardware, resulting in enhanced system capabilities.
• Coordinated with IT team for efficient project execution.
• Implemented stringent firewall rules to protect against cyber threats.
• Audited the network infrastructure regularly ensuring compliance with relevant industry standards.