Taylor Wimpey

Part of Cybersecurity teams for a large British based housebuilding company where he was responsible for providing advisory and technical expertise on improving the Cybersecurity posture of the client’s organization. We was responsible for performing security architecture reviews, risk management security policy development, scoping penetration testing and assisting in the remediation of vulnerabilities found in the environment. 

We was responsible for providing technical guidance on securely configuring Azure and O365 on a range of integrated services. This included setting policies, alerts, risky users, ensuring azure environment is compliant with policies, coordinating penetration tests, remediating O365 assessments etc. We was tasked with implementing a risk management plan and creating a security action plan for 100+ issues. We contributed to the development of multiple security policies and standard including, cloud, hardening, segregation, patch and vulnerability, penetration testing, project assurance and secure design.  

We was also responsible for managing a number of internal and external audits. We worked closely with the SOC team implementing suitable recommendations raised in the audits. He reviewed the monthly SOC reports and assisted in the security improvement programme initiative. He assisted in the development of an appropriate incident response management.

We also performed a number of security design reviews on a Microsoft teams benchmarking solution and reviewed the results from the ISF Maturity Model Accelerator tool to identify the client’s security gaps and recommend improvements.