Steve Eyre

KryptoKloud are a boutique Managed Security Service Provider who have been operating for 8 years. They provide 24/7 Security Operations, Incident Response and Threat intelligence services for Private Equity, Academia, Law Enforcement, Insurance and CNI sectors. My role was to work with the CEO to drive tactical growth in security services and Threat Intelligence product development in order to prepare for series A investment. I was also tasked with building partnerships with technology and consulting suppliers and resellers in order to widen the KryptoKloud portfolio of services to the mid enterprise market.

Key responsibilities: -

• Assist the CEO in providing management, leadership, and vision to ensure the organisation meets its short-term and long-term delivery objectives.
• Assist the CEO in the maintenance of a company culture that strengthens operational efficiency and generates incremental Monthly & Annual revenue for KryptoKloud.
• Lead and motivate KryptoKloud staff to achieve sales and organisational objectives.
• Assist the KryptoKloud Operations and DevOps Teams in the production and the pro-active identification of cyber related threats and the development of timely actionable intelligence (including prevention and disruption of threats) for KryptoKloud customers.
• Supervise staff training programmes with focus on skill enhancement focused on Crest certification and Msc Cyber post graduate support.
• Fostered a positive work environment and increased employee morale.
• Championed change initiatives within the organisation for more streamlined operations.
• Optimised resource allocation to maximise productivity.
• Introduced new marketing campaigns and Threat Intelligence social media presence
• Drove process improvements and optimised workflow efficiency through adoption of DevOPs tooling, technical product roadmapping and aspects of Agile development.
• Evaluated market trends and competitor activities, informing strategic decision-making and market differentiation.
• Leading cyber & threat research activities and providing any necessary internal analyst training/guidance.
• Deliver and ensure quality threat intelligence outcomes and steer the deliverables for the development of the new intelligence capability for KryptoKloud and their clients.
• Lead the SOC & Intelligence Capabilities for KryptoKloud.
• Assist the CEO, Head of Sales and Head of SOC in any client engagement in support of cyber operations service delivery.
• Lead on all Intelligence Sales opportunities.
• Ensure the quality assurance of all Security services deliverables.
• Drive efficient and timely product development projects and oversight of professional services Statements Of Work, SOC proposals and Bid strategies.

Alchemmy Security & Resilience is a start-up cyber consulting firm focused on doing things differently in the market. Joining Alchemmy as the Head of Cyber technical consulting required an entrepreneurial spirit and flexibility that stretched right across the practice' overall mission and vision. Our strategy was to help customers understand their security better by assessing how effective their investments in security actually perform against known Threat Actor tactics, techniques as well as helping to baseline end-end security posture, acting as independent technical assurers.

Key objectives:

• Developed consulting practice services for Security performance testing, Purple Teaming as-a- service, Security operations maturity reviews and Security Architecture advisory engagements
• Developed and led engagements for our Offensive security testing services with technology partners AttackIQ, Cymulate, Validato, Tidal Cyber, Cobalt strike and Outflank
• Developed Pen Test as-a-service capability with Crest accredited SME partner to provide ongoing infrastructure and web application testing to the market at competitive price point and more simplistic engagement model to scope, price, schedule pen tests via dedicated interactive SaaS platform that provides visibility of testing reports and tracked vulnerabilities to manage risk more proactively.
• Built sales campaign collateral, marketing, Statements Of work and commercial pricing models for One off engagements and purple Teaming 'As-a-service' delivery packages
• Directing delivery of contracted consultancy services for Security Attack Simulation services, Cyber Defence advisory utilising SOC-CMM assessment framework.
• Authoring Cyber blogs, webinars and TechUK talks on Red teaming and offering thought perspectives on evolving Threat Actor Tactics and Techniques, objective viewpoints on SOC optimisation and the need for automated security testing across operational security environments.
• Advocating the utility of MITRE ATT&CK operationalisation to enable organisations defend against threats more effectively using a common Threat framework embedded into Security Ops.
• Defining Security Architecture target models/roadmaps for clients moving toward advanced Security maturity frameworks such as NIST CSF and MITRE ATT&CK Enterprise IT.
• Recommend improvements in security Controls design and assessing technical risk factors for remediation strategies, cost v benefit and defining risk mitigation options assessed against customer risk tolerance against budget constraints.
• Attending conferences and Cyber Industry workshops representing Alchemmy's portfolio
• Managing technology vendors and our System Integrator partner relationships
• Experienced knowledge of Security frameworks such as ISO27001, NCSC CAF, NIST Cyber Security Framework, NIST 800-53, IASME Cyber Essentials, Cyber maturity models [CMMC]
• scoping and designing Offensive testing prospects with customer CISO's and SOC leadership.
• Studied and completed Certified Red Team Operations [CRTO] course
• Leadership and training of Cyber Threat simulation consultants ensuring high quality delivery of projects.

This role entailed being the lead technical security consultant/advisor for the DXC Banking and Capital Market customer portfolio. Responsible for establishing and directing a clear strategy that brought together teams of security domain subject matter experts to design, architect and deliver new and existing client security solutions.

Key Responsibilities: -

• Worked closely with UK and European banking portfolio account teams to translate security requirements into opportunities and develop conceptual security architectures and solutions for medium- Large UK & European Banks and Insurance organisations
• Building relationships with client CISO's and security leadership to act as their trusted advisor
• Responsible for technically leading and evolving the DXC MxDR service built on the Microsoft Defender and Sentinel platforms
• Led Design of Zscaler SASE solutions and services for 3x European Banks working alongside vendor partners and customer Enterprise security architects
• Led the technical design for a greenfield Forgerock Identity Access Management Cloud solution for German Wealth fund management Bank
• Led the technical design and delivery of AWS and Azure Native Security services for UK's largest Insurer's investment in DXC' public cloud application modernisation by shifting from legacy mainframe to Multi cloud target model
• Acted as DevSecOps representative for Palo Alto's Prisma Cloud solutions and services
• Responsible for presenting and designing Crest certified Pen Test engagements for infrastructure, Webapp, STAR focused services delivered by DXC red team into several UK Banks
• Provided Banking industry 'Cyber security viewpoint' for Monthly Banking and capital Markets newsletters issued to industry clients and social media channels
• Served as the established 'subject matter expert' for Modernised Cyber Defence/SOC/SIEM services utilising the Microsoft technology stack.
• Proactively participated and contributed to professional community and coached other Security specialists in area of expertise
• Regularly produced internally published material such as knowledge briefs, service delivery kit components and Solution proposals
• Created and supported sales activities
• Managed bids, or provided major input into the sales lifecycle for managed security services
• Identified current inefficiencies and recommended changing functionality or behaviours to eliminate concerns.
• Produced complete proposals for smaller engagements within area's of Security Operations, MDR, Vulnerability Management, Red Teaming and VCISO Cyber Maturity Review engagements
• Directed presales technical/functional support activity to prospective clients and customers to develop and deliver high quality conceptual solutions and demonstrations
• Contributed to Solutions cost & pricing commercial and technical reviews

Reporting directly into the Computacenter security CTO and Director of group services as the security authority within the UK&I Offerings team. The role was a multi-faceted mix security solutions development, strategy and sponsorship for Computacenter's Contracted Security services business

Key Responsibilities:

• lead the Computacenter UK&I Security services roadmap:
• Responsible for leading the development of Computacenter's Workplace ‘Embedded Security' offering with Microsoft strategic partnership
• Key stakeholder in the development of the Managed Detect & Response service and technical development for Microsoft Sentinel and Splunk SIEM platforms
• Led the development and delivery of Zscaler SASE consultancy service
• Led the development and delivery of Microsoft EDR consultancy & Managed service
• Working with product and capability owners on cost & price modelling, sales and delivery enablement collateral
• Supporting Marketing team with sales collateral and thought leadership papers on newly developed security advisory and Professional services capability
• Supporting presales activities with RFI/RFP oversight and approval
• Pipeline review and qualification
• Seeking board approval for development funding for security roadmap innovation
• Reporting and reviewing Security services contracted In Year recurring revenue and Total contract values within Salesforce to sales and delivery leadership
• Working closely with strategic technology partners to identify opportunities, enhanced offerings
• Assessing the onboarding of new supplier technology partners who can bring additional value to Computacenter offering portfolio
• Security services strategy:
• Trusted within Computacenter Security community and CTO to provide market view and customer trends in the security market and feeding observations into future developed security services strategy
• Attending the security development working group providing feedback and peer review of newly developed portfolio offerings
• Global Stakeholder in the development of new security technology and services portfolio providing challenge and point of view with regards to services improvement, competition, pipeline review and future roadmap synergies between geographic regions in Germany, North America & Northern Europe

The Computacenter Security consultancy practice offers an advisory as well as technical capability and can be agnostic with vendor portfolio as well as working with the managed security service provider business to deliver end-end security capability into existing clients and new business pipeline

Main Responsibilities:

• Leading multi-disciplinary technical infrastructure delivery work streams on cyber defence, penetration testing and technical infrastructure deployments
• Leading and assuring the end-to-end delivery of multiple environments (Development, Test & Production, proof of concept) as well as the necessary processes; technical governance and quality assurance, structured change management and the successful transition of delivered infrastructure to operational management and support
• Respond, propose, design, implement, transition and support Secure IT transformations
• Pre sales activities around developing new offerings and advisory services for Cyber security technical assessments, Client security maturity reviews, Security operations maturity assessments

Skills focus within practice

• Gap analysis against organisational security requirements (policies, standards, contractual and regulatory security requirement)
• Security best practise (ISO/IEC 27001, NIST, COBIT, NCSC, ITIL, ENISA, CSA)
• Applicable regulatory and industry requirements (GDPR, DPA, PCI-DSS, FSA, ISO27001)
• Architectural principles, procedures and roadmap development (TOGAF)
• Cryptographic key management (HSM, PKI)
• Third party security assessments
• Infrastructure / Perimeter security (Firewalls, NGFW, Gateways)
• Cloud / Hybrid IT security
• Data Loss Prevention (DLP)
• Strong two factor (2FA) and multifactor authentication (MFA)
• Security information and event management (SIEM)
• Identity and access management (IAM, PAM)
• Server and host based endpoint security (EPP, EDR, FIM, Application Controls)
• Software defined security solutions (SDN, SDDC, Orchestration, API security, micro-segmentation)
• Securing UK Gov public cloud services
• Security controls consolidation and simplification advisory service lead

The Atos Big Data & Security practice offers Cyber security services ranging from dedicated point solutions to cloud security services provision which can include the technical design, delivery, construction and operate capability for medium to large scale cyber security deals

Role description summary

• Designing and delivering Cyber security portfolio deployments for existing clients
• Engagement with onboarding new customers to Cyber security portfolio services
• Providing mentoring, coaching & leadership to experienced Engineers & Architects in a team leading capacity
• Leading technical delivery of complex cyber security programs of work across Public & commercial sector customer base
• Assisting with ongoing development of Cyber security portfolio
• Utilising appropriate management tools to ensure that engineering and Architect resources are assigned effectively
• Development of the Cyber Engineering & Architect Team's technical readiness against portfolio and pipeline
• Understanding and aligning to architectural frameworks i.e Togaf and Atos unified engineering method
• A pro-active member of teams working within the area of Security Portfolio design and requirements capture in a technical pre sales capacity
• Maintain knowledge of industry trends and developments
• Develop cross Service-Line relationships at a peer-group level to facilitate interworking and efficiencies
• Identify opportunities for driving automation and other process efficiencies with respect to Security Portfolio and Stakeholder engagements

Financial deliverables

• Ensuring a timely transition of Cyber services delivery into operational state, in order to maximize commercial recovery
• Supplier management and cost control for overall solution delivery
• Technical oversight of Cyber costs and risks within a customer transition project from bid to delivery
• Training budget holder
• Ensure appropriate level of training is provided to all security operations staff on new and existing products and services
• Lead with mentoring and training of graduate Engineers & junior architects

Focused mainly upon cyber security technical solutioning for customer engagement bids/projects, some light pre sales support within the cyber portfolio and design & build across all existing customer accounts and new pipeline

Role description summary

• The identification of new opportunities and potential new clients for pipeline growth
• Assist with on-going development of portfolio
• Act in a ‘stand in' management capacity upon request of senior staff
• Provide advice to clients on technical and operational security measures designed to help defend against cyber threats
• Lead Cyber security product deployments
• Provide technical responses to bids, RFP's,RFI's ITT
• Hold technical assurance accountability for key accounts and mentor junior staff
• Ensure documentation and procedures are kept up to date and adhered to including HLD, SDD, LLD in accordance with Atos architectural framework
• Technical stakeholder management
• Maintaining strong working relationships with vendor suppliers
• Provide information security advisory services to clients and internal stakeholders where appropriate
• Hold Security Architect assurance & governance responsibility for key accounts
• Lead pilot & POC testing for prospective clients
• Represent the Cyber portfolio where required to European project/sales teams and clients
• Good knowledge of security compliance standards is key including ISO27001, PCI-DSS, HMG SPF

Lead Technical Architect for Network security controls for UK banking client

• Oversaw network architecture and security, defining policies and procedures for successful operations.
• Established IT investigative practices to streamline diagnosis and resolution, minimising downtime and enhancing system performance.
• Liaised with third parties to respond to security events and understand threat landscape.
• Worked with business partners to balance requirements, security and risk reduction.
• Translated strategy into solutions and operating models by leading or managing others,

Security operations centre (SOC) Technical lead - Thales UK

The primary objectives were to provide technical leadership for the establishment of a fully operational in house Security operations centre (SOC). Design authority for the provision of the technical security tool stack and security processes, playbooks and compliance management for list X requirements.