Summary
Overview
Work history
Education
Skills
Certification
Hobbies & Interest
Accomplishments
Timeline
Generic

Thomas Leigh

Wigston, leicester,United Kingdom

Summary

Seasoned IT professional with comprehensive experience in leading IT support teams and help desks, focusing on Active Directory, DHCP, DNS, and GPO Policies.

Resourceful professional with proactive attitude and keen eye for identifying potential security vulnerabilities. Possesses strong analytical skills and strategic mind-set, capable of implementing robust security protocols and enhancing organisational cyber resilience. Committed to safeguarding digital assets and ensuring compliance with regulatory standards.

Overview

28
28
years of professional experience
1
1
Certification

Work history

Information Security Manager

London Electric Vehicle Company (LEVC)
Coventry
06.2024 - 01.2026
  • Developing and Implementing Security Policies and Procedures
  • VEEAM Backups
  • Cyber Essentials
  • Cyber Essentials Plus
  • PEN Testing
  • N-Able Microsoft Server and Endpoint Client Security Patching.
  • ISO 27001 Implementation.
  • Payment Card Industry (PCI) compliance.
  • Sophos Data Loss Prevention.
  • Data Classification.
  • Business Continuity & Disaster Recovery Planning
  • Compliance & Regulatory Frameworks (e.g., GDPR, NIST, ISO 27001, UNECE R155/R156)
  • Cryptography & Data Encryption
  • Security Awareness Training
  • Incident Response and Handling
  • Vendor and Third-Party Security Management
  • Security Audits and Assessments
  • Implementing Security Controls
  • Third Party Data Protection Impact Assessment (DPIA)
  • Asset Management
  • Data Catalogue
  • Managed internal and external audits to ensure regulatory compliance.
  • Work thorough risk assessments, identified potential vulnerabilities.
  • Ensured secure digital environment with regular penetration testing.
  • For better firewall protection, oversaw installation of advanced software systems.
  • Conducted vulnerability scanning to identify and minimize potential security loopholes.
  • To maintain up-to-date knowledge of emerging threats, frequently attended industry conferences and workshops.
  • Mitigated risks of cyber threats for enhanced network security.
  • Implemented robust data encryption processes to improve information confidentiality.
  • By conducting regular staff training sessions, improved overall cybersecurity awareness.
  • Coordinated disaster recovery plans, ensuring business continuity in crisis situations.
  • Implemented email filtering controls to mitigate phishing attacks.
  • Developed company-wide IT security policies by liaising with all departments.
  • To manage third-party risks effectively, established vendor management protocols.
  • Instituted data loss prevention strategies, safeguarding crucial business information from potential leaks or thefts.
  • Introduced multi-factor authentication methods, reducing incidents of unauthorized access.
  • Collaborated with technical teams for smooth implementation of security measures.
  • Established incident response protocols to minimise downtime during breaches.
  • Recommended upgraded technologies to meet evolving business requirements.
  • Advised on Information and communications technology policy and process improvements.

IT Security Manager

Oadby & Wigston Council
Wigston, leicester, Leicestershire
06.2021 - 06.2024
  • Implementing IT Security and Policies.
  • Disaster Recovery Processes.
  • Managing IT Helpdesk.
  • Managing IT support Team.
  • VMware.
  • Microsoft E5 and Azure.
  • Intune.
  • Microsoft End Point.
  • DATTO Cloud Backup and Virtual Server Hosting.
  • Office365.
  • TEAMS.
  • TEAMS for Phones Implementation.
  • Terminal Servers.
  • Remote Support.
  • Check Point Always On VPN.
  • Supporting End Users Working from home.
  • GDPR.
  • Sophos Central
  • Manage-Engine.
  • Public Service Network (PSN)
  • Coordinated data backup procedures, ensuring rapid recovery.
  • Liaised with external stakeholders to communicate IT risks effectively and resolve any issues promptly.
  • Collaborated closely with other departments to integrate IT needs into overall company strategy.
  • Conducted internal audits for evaluation of information technology control effectiveness.
  • Oversaw installation of new hardware and software solutions, enhancing operational efficiency.
  • Reviewed and updated company policies regularly to comply with regulations and industry best practices in cyber security.
  • Managed IT team to deliver projects on schedule and maintain network uptime.
  • Instituted staff training programmes for improved awareness of information security protocols and procedures.
  • Ensured network security by implementing and maintaining firewalls, encryption, anti-virus software.
  • Reduced vulnerability of systems with constant updates and patches implementation.
  • Mitigated potential threats by conducting periodic penetration testing exercises across all networks and systems.
  • Developed comprehensive disaster recovery plans to ensure business continuity.
  • Implemented robust access controls, keeping sensitive data secured from unauthorised users.
  • Conducted regular risk assessments, resulting in proactive threat mitigation.
  • Maintained system security through regular testing and servicing.
  • Advised on Information and communications technology policy and process improvements.
  • Sourced new and emerging technologies to optimise information services.

ICT Network Manager

Babington Academy
Leicester, Leicestershire
07.2014 - 05.2021
  • Supporting 1500 End Users.
  • Managing 2008, 2012, 2016 VMWARE Hosted Servers.
  • Managing MERU Wireless Network.
  • Managing HP SAN Storage
  • Managing Cisco Network Switches and Firewall
  • Managing Service Helpdesk and ICT Support Team.
  • Managing MDT and SCCM
  • Managing Sophos Cloud Anti-Virus.
  • Deploying WSUS updates to Client/Servers.
  • Managing Windows 7 & Windows 10 Clients.
  • Managing GPO Group Polices.
  • Supporting Cashless Catering & Pre-Pay Kiosk.
  • Managing VOIP Phone System through IP Office.
  • Managing MFD/Printers and Paper-Cut Print Services.
  • Managing Office 365 Email, OneDrive & Office Applications, TEAMS.
  • Managing Azure AD Connect Services.
  • Supporting AV solutions in Classrooms, Epson Projectors, Sound System, and Interactive Boards
  • Managing IPADS through JAMF MDM.
  • Managing SIMS
  • Managing IT support team and Help Desk.
  • Effectively balanced workload among team members during peak periods without compromising service levels.
  • Kept abreast of technological advancements to stay ahead in competitive market dynamics.
  • Implemented robust firewall settings, fortifying company's defence against cyber threats.
  • Developed comprehensive documentation on network configuration, facilitating quicker issue resolution times.
  • Managed procurement of networking equipment within budget constraints while maintaining quality standards.
  • Initiated training sessions to keep team updated on latest networking technologies and trends.
  • Mitigated risks associated with data breaches through effective implementation of cyber-security measures.
  • Assisted in recruitment process of IT professionals based on specific project requirements.
  • Monitored network usage to identify potential bottlenecks and resolve them proactively.
  • Improved system stability by performing regular backups and disaster recovery procedures.
  • Regularly maintained hardware components for optimal network performance.
  • Deployed and managed complex networks across broadband, Wi-Fi, LANs and VPNs.
  • Verified system stability and integrity by conducting daily testing and monitoring.
  • Assessed existing hardware and software to determine viability and recommend improvements.
  • Automated patching and updates to improve efficiency and accuracy of network administration.
  • Consulted with management and key stakeholders to define business needs and specifications.
  • Configured, tested and maintained network equipment.
  • Backed up data daily to prevent undue information loss and coordinated disaster recovery plans.
  • Investigated problems with hardware and software to trace faults.
  • Maintained high availability of infrastructure through enterprise-wide planning, testing, implementation and support.

IT Manager

Leicester City Council
Leicester, Leicestershire
07.2009 - 07.2014
  • Managing multiple schools across Leicester & Leicestershire.
  • Citrix, Hyper-V and VM Ware ESXi Virtual Servers.
  • Managing IT support team.
  • Managing IT helpdesk.
  • Installing and Setting up 2008, 2012 Servers, DHCP, DNS, GPO Policies.
  • Managing Exchange Servers.
  • Supporting End Users.
  • Managing Ghost Server and Windows & Deployment Servers.
  • Supporting Windows XP and Windows 7, Windows 8 Client Computers.
  • Managing Meraki Wireless Networks Wireless Networks.
  • Managing Apple IPAD
  • Responsible for overseeing technology infrastructure, systems, and services across multiple schools within Leicester & Leicestershire
  • Updated legacy systems, reducing maintenance costs significantly while improving reliability and efficiency.
  • Managed software licensing agreements; ensured compliance with regulations.
  • Monitored network performance regularly with proactive troubleshooting steps taken at signs of instability or potential failure points identified in advance, ensuring uninterrupted service provision.
  • Ensured secure data management with robust cybersecurity measures.
  • Maintained updated inventory of all IT assets; facilitated efficient asset management.
  • Trained staff members in new technologies, enhancing overall technical proficiency.
  • Liaised with third-party vendors for necessary hardware and software acquisitions, ensuring cost-effectiveness without compromising on quality or functionality.
  • Managed IT resources to ensure optimal performance and reduce downtime.
  • Coordinated team efforts for successful project completion within deadlines.
  • Established stringent IT policies with clear guidelines on usage and security procedures, bolstering company-wide adherence to best practices.
  • Recommended upgraded technologies to meet evolving business requirements.

Primary Schools Network Manager

Beauchamp College
Leicester, Oadby, Leicestershire
06.2001 - 07.2009
  • Responsible for all software applications across that run over networks, and creating MSI installation packages and Snapshots for software applications
  • Responsible for Cisco Wireless Network
  • Responsible for Laptop for teachers and creating laptop images
  • Responsible for IP addressing and numbering system of all network device
  • General duties include, creating user/email accounts, full user support, file retrieval, PC hardware repairs, printer repairs, and general ICT user support
  • Responsible for Developing ICT Networks, supporting network infrastructure, supporting end users across multiple schools.
  • Setting up Ghost Servers, Backup servers using Backup Exec utility software, setting up anti-virus servers, Main DC Servers, Active Directory, and Group Policies.
  • Managing IT Network Support Team.
  • Managing IT Helpdesk.
  • Conducted routine audits, ensuring compliance with data protection regulations.
  • Mitigated risks associated with data breaches through effective implementation of cyber-security measures.
  • Implemented and managed robust firewall configurations using Palo Alto, Check-Point, Sophos, and Cisco devices, fortifying organization’s defence against cyber threats.
  • Improved system stability by performing regular backups and disaster recovery procedures.
  • Deployed and managed complex networks across broadband, Wi-Fi, LANs and VPNs.
  • Oversaw all phases of system upgrade projects, resulting in improved productivity across departments.
  • Monitored network usage to identify potential bottlenecks and resolve them proactively.
  • Planned and executed selection, installation, configuration and testing of switches and routers.
  • Employed cybersecurity knowledge to establish stable connections and firewalls.
  • Minimised security and data risks, verifying completion of nightly data backups.

Server Systems Installation Technician

Barron McCann It Services
Derby, Derbyshire
06.2000 - 06.2001
  • Building and installing servers for Retail Industry
  • Installing Servers in retail outlets around UK
  • Configuring Cisco Routers and setting up RAS servers for external access
  • Upgrading and configuring Epos tills with memory upgrade
  • Backing up existing data from old servers and restoring data back to new servers
  • Configuring RAS Servers for remote access

Field Technician

WBS
Coventry
01.1998 - 04.2000
  • Fault diagnostics and fault rectification
  • Replacing Motherboards
  • Updating Bios and installing latest updates
  • Ghosting Hard Drives with new images
  • Replacing faulty modems, Memory Upgrades
  • Installing peripherals, printers, scanners, camera
  • Installing software applications, anti-virus, firewalls

Education

BSc Honours - Computers

De Montfort University
Leicester

HND - Computers

South Leicester College
Leicester

HNC - Computers

South Leicester College
Leicester

Skills

  • IT support management
  • Active Directory and DHCP
  • Server administration
  • ITIL frameworks
  • Project management
  • Cybersecurity principles
  • Public service network
  • ISO 27001 compliance
  • GDPR compliance
  • Data loss prevention
  • Incident response coordination
  • PCI-DSS standards
  • Disaster recovery planning
  • VMware, Hyper-V, and KVM
  • Windows client systems
  • Mobile device management
  • Network infrastructure design
  • Wireless network solutions
  • System configuration management
  • Office 365 suite proficiency
  • VOIP systems expertise
  • SIMS software knowledge
  • Print management solutions
  • Cashless catering systems
  • Storage area networks (SAN)
  • Data backup strategies
  • Driving license holder

Certification

  • South Leicester College: Certified Cisco Network Administrator (CCNA)
  • Aslan Training Centre in Coventry: Microsoft Certified Professional (MCP)
  • Aslan Training Centre in Coventry: Microsoft Certified Systems Engineer (MCSE)
  • JBC Computers in Coventry: Microprocessors & Computers City & Guilds Level 3
  • Q&A Training Centre Birmingham: FITS Practitioner Certification.
  • Q&A Training Centre Birmingham: ITIL Certification.
  • Q&A Training Centre Birmingham: Prince2 Certification.
  • Q&A Training Centre Birmingham: Administrating System Centre.
  • Q&A Training Centre Birmingham: Installing & Configuring Windows Server 2012.
  • Q&A Training Centre Birmingham: Administrating Server 2012.
  • Q&A Training Centre Birmingham: Configuring Advanced Windows Server 2012.
  • Q&A Training Centre Birmingham: Installing, Storage & Computers with Windows Server 2016.
  • Q&A Training Centre Birmingham: Automating Administration with Windows PowerShell.
  • Q&A Training Centre Birmingham: VMWARE, vSphere, Configuring & Managing (v5.5)
  • Q&A Training Centre Birmingham: Security + Certification Support Skills.
  • Q&A Training Centre Birmingham: Ethical Hacking.

Hobbies & Interest

Reading., Theatre., Fitness, Running, Swimming., Golf., ICT Technology., Playing Piano., Volunteering for One-Roof

Accomplishments

  • Babington College:
  • Led full IT implementation for Babington College under the Building Schools for the Future (BSF) programme, delivering the project on time and within scope.
  • Managed IT operations for seven years, maintaining infrastructure stability, security, and scalability to support institutional growth.
  • Implemented an IT helpdesk system to triage support tickets and improve issue tracking and root cause analysis.
  • Established an IT training programme for the IT team, promoting continuous professional development and skills enhancement.
  • Implemented MFA, Role Based Access Control (RBAC), Principle of Least Privilege (PoLP) and Singel Sign-On (SSO).
  • Implemented LightSpeed web filtering to ensure safe web browsing for students and staff, monitor internet usage, and block unwanted access to inappropriate content, enhancing overall network security and compliance.
  • Promoted to IT Manager for multiple schools across Leicester and Leicestershire. Delivered governance-aligned modernization by replacing legacy RM environments with secure, scalable Microsoft client/server networks, extending hardware lifecycles, reducing total cost of ownership, and standardizing IT systems across all cluster schools.
  • Oadby & Wigston Council:
  • Led the transition of IT services from an external managed service provider (MSP) to an in-house support model, achieving significant cost savings and improved service quality. Focusing on enhancing cybersecurity controls, implementing data loss prevention measures, and ensuring reliable data recovery processes.
  • Achieved Public Service Network (PSN) Certification along with Cyber Essentials and Cyber Essentials+ accreditations.
  • Completed a CREST-accredited IT Health Check (ITHC), identifying and mitigating critical security vulnerabilities.
  • Implemented ISO-27001 and Information Security Management System (ISMS).
  • Implemented a comprehensive disaster recovery procedure, incorporating DATTO onsite and cloud-based immutable backups, to ensure data resilience and rapid recovery, aligned with an incident response plan to effectively manage and respond to cybersecurity incidents.
  • Implemented Microsoft Entra ID Privileged Identity Management (PIM) with Just-In-Time (JIT) access capabilities to provide temporary, time-limited privileged permissions, thereby enhancing security and reducing the risk of excessive access.
  • Performed email security testing and verification using tools such as Mx Toolbox, DMARC Analyzer, and Microsoft Secure Score to ensure proper configuration of DMARC, DKIM, and SPF protocols, strengthening email authenticity and security.
  • Conducted Office365 (CIS) Centre for Internet Security Benchmark Foundation Testing.
  • Implementation KnowBe4 cyber awareness training to recognise and avoid phishing and social engineering attacks.
  • Implemented Rapid7 Insight-Connect (SOAR) to automate security workflows, streamline incident response processes, and enhance overall cybersecurity efficiency. This allowed for faster threat detection, reduced manual effort, and improved incident management across the organization.
  • LEVC (London Electric Vehicle Company):
  • Implemented an ISO 27001-aligned Information Security Management System (ISMS), establishing robust security governance.
  • Secured Cyber Essentials, Cyber Essentials Plus, and PCI-DSS compliance, significantly raising cybersecurity standards.
  • Developed comprehensive security frameworks including policies, data classification, and implemented, Sophos Data Loss Prevention (DLP).
  • Implemented data classification processes, categorizing information by sensitivity, value, and compliance needs, enabling tailored security and access controls, protecting critical data, and ensuring GDPR compliance.
  • Implemented Immutable Cloud Backups with VEEAM.
  • Reduced cyber incidents through targeted staff awareness training.
  • Established cyber insurance coverage and incident response protocols to enhance organizational resilience.
  • Implemented Microsoft Entra ID cloud based Privileged Identity Management (PIM), Privileged Access Management (PAM).
  • PEN testing including, Wireless Assessment, External unauthenticated infrastructure, Internal authenticated infrastructure, Network Segmentation, Firewall Review, Office 365 Assessment/SharePoint and Web Applications.
  • Aligned Cyber Security Policies with Legal and Compliance frameworks GDPR, PCI-DSS
  • Implemented Incident Response Plan.
  • Deployed Tenable Nessus vulnerability assessment solution, enhancing proactive detection and management of security vulnerabilities.
  • Implemented Cisco ISE for secure network access and policy enforcement and deployed Cisco Identity Services Engine (ISE) to manage authentication and network access.
  • Established and executed regular data backup and restoration processes, maintaining data integrity and minimizing risk of loss.

Timeline

Information Security Manager

London Electric Vehicle Company (LEVC)
06.2024 - 01.2026

IT Security Manager

Oadby & Wigston Council
06.2021 - 06.2024

ICT Network Manager

Babington Academy
07.2014 - 05.2021

IT Manager

Leicester City Council
07.2009 - 07.2014

Primary Schools Network Manager

Beauchamp College
06.2001 - 07.2009

Server Systems Installation Technician

Barron McCann It Services
06.2000 - 06.2001

Field Technician

WBS
01.1998 - 04.2000

BSc Honours - Computers

De Montfort University

HND - Computers

South Leicester College

HNC - Computers

South Leicester College

Similar Profiles

Create profile
Thomas Leigh