Summary

Overview

Work history

Education

Skills

Certification

Timeline

Yoshika Patel

London

Summary

Experienced Information Security Analyst with strong expertise in vulnerability management, endpoint threat detection, and incident response. Skilled in developing and implementing security policies and procedures aligned with ISO 27001 and NIST frameworks, and in designing targeted awareness programs that effectively reduce user-based risk. Proficient in conducting third-party risk assessments with a focus on cryptographic controls, data governance, and adherence to financial and regulatory compliance standards such as GDPR and FCA. Currently advancing cloud security capabilities by pursuing Microsoft Azure certifications.

Overview

years of professional experience

years of post-secondary education

Certification

Work history

Information security analyst

EDF Trading

London

07.2023 - Current

Directed end-to-end vulnerability management for all Windows workstations using Qualys for scanning, detection, and severity analysis; developed customized Qualys dashboards and widgets to monitor KPIs across remediation timeframes and vulnerability levels. Coordinated with IT teams to prioritize high-risk findings and implement hardening strategies.
Led automated patch deployment using Qualys and Ivanti, resolving over 10,000 critical and high-severity vulnerabilities within the last 6-months and increasing overall patch compliance by more than 50% within the last year. Authored technical solutions to eliminate recurring remediation gaps.
Conducted forensic investigations and advanced threat analysis using CrowdStrike Falcon to validate firewall policies, detect phishing activity, and identify endpoint vulnerabilities; enhanced cyber threat intelligence through ongoing research, and regularly briefed both technical and non-technical stakeholders with actionable security updates and executive-level improvement plans.
Developed and executed tailored security awareness training for over 1000 users across the organization, aligned with threat intelligence trends and behavioural risk indicators.
Led phishing simulation campaigns for over a year which had reduced and maintained user click rates to below the industry average, and elevated reporting rates by 40%.
Supported third-party security assessments across 10+ vendors, conducting detailed evaluations of cryptographic controls, data protection practices, and access management protocols to ensure compliance with GDPR and FCA regulations; collaborated with risk and legal teams to document findings and mitigate exposure in line with internal governance frameworks.
Collaborated with development teams to implement secure coding practices and authored comprehensive cybersecurity policies and technical documentation aligned with ISO 27001 and internal compliance frameworks; delivered clear IT usage guidelines and presented strategic security improvement proposals to leadership, strengthening organizational security posture.

Trainee Cyber Security Practitioner

Capslock

London

01.2023 - 05.2023

Completed CAPSLOCK cyber security training programme, gaining hands-on experience solving real-world security challenges in a simulated enterprise environment. Covered key domains including security culture, secure architecture, GRC, cloud security (AWS/GCP/Azure), incident response, IAM/PAM, and business continuity.
Led a cross-functional team to deliver multiple cybersecurity projects under strict time constraints, producing stakeholder-focused presentations and tailored technical documentation. Applied Octave Allegro and SWOT methodologies to assess business risks, developed remediation strategies using Qualys and OWASP Top 10 alignment, and authored OS hardening, decommissioning, and audit plans.
Assessed and optimized hybrid cloud architectures to meet business requirements, enhancing security posture through Azure Firewall, Microsoft Sentinel, and KQL-based telemetry analysis.

Education

Capslock

01.2023 - 05.2023

A-Levels -

Woodhouse College

London

09.2015 - 08.2017

GCSEs -

Valentines High School

London

09.2010 - 08.2015

Skills

Vulnerability Management, Risk Mitigation and Patch Management (Qualys, Ivanti)
Incident Response & Threat Detection (CrowdStrike, Microsoft Defender)
Security Awareness & Phishing Defence Training
Firewall Policy Testing & Validation
Asset Management & Endpoint Monitoring

Policy Writing & Governance (ISO 27001, NIST CSF)
Cloud Security Fundamentals (Microsoft Azure)
Third-Party Risk Assessment & Compliance
Stakeholder Communication & Technical Reporting

Certification

Google Crash Course on Python (Coursera - May 2022)
AWS Cloud Technical Essentials (Coursera - February 2023)
IBM Cybersecurity Analyst Professional Certificate (Coursera - February 2023)
Google Analytics For Beginners (Google - March 2023)
ISO/IEC 27001:2022 (BSI Training Academy - April 2023)
Cert. in Information Security Management Principles (CISMP) (May 2023)
Certified Cyber Security Professional (Ce-CSP) (CAPSLOCK May 2023

CompTIA Security + (CompTIA February 2024)

Currently working towards AZ-500, AZ-900 and Comptia CySA+

Timeline

Information security analyst

EDF Trading

07.2023 - Current

Trainee Cyber Security Practitioner

Capslock

01.2023 - 05.2023

Capslock

01.2023 - 05.2023

A-Levels -

Woodhouse College

09.2015 - 08.2017

GCSEs -

Valentines High School

09.2010 - 08.2015

Yoshika Patel

Summary

Overview

Work history

Information security analyst

Trainee Cyber Security Practitioner

Education

A-Levels -

GCSEs -

Skills

Certification

Timeline

Information security analyst

Trainee Cyber Security Practitioner

A-Levels -

GCSEs -

Similar Profiles

Ashmapika JenaAshmapika Jena

Ruth ESSOUS DESSYRuth ESSOUS DESSY

Agostino De FeliceAgostino De Felice

Jasmine DebrahJasmine Debrah

Jun Xian (Henry) HuangJun Xian (Henry) Huang