$ cat ./resume.md
A working chronology of 20+ years across information security, governance, risk, IT operations, and the people who keep all of it moving.
#Experience
April 2022 — Present
Melco Resorts & Entertainment
Information Security Manager
May 2021 — April 2022
Tototheo Maritime Ltd
Head of Information Security
2020 — Present
The CISO Times
Owner & Lead Author
Sep 2020 — May 2021
IronFX
Head of Information Security
Jun 2018 — Sep 2020
Melco Resorts & Entertainment
Data Risk Analyst
Jun 2016 — Jun 2018
FxPro Financial Services
Senior Information Security Auditor
Aug 2015 — Dec 2015
Odyssey Cybersecurity
Information Security Consultant
2011 — 2015
Logicom Public LTD
Senior Group IT Officer
2008 — 2010
Alouette S.A.
IT Infrastructure Manager
2006 — 2008
Media Group of Companies — KMG
Group IT Administrator
2004 — 2006
ALTEC S.A.
Systems & Network Engineer
Jul 2004 — Aug 2004
NBC Olympics
ICT Expert
2000 — 2004
ALTEC S.A.
Staging Supervisor & Field Service Engineer
#Education
2012 — 2014
University of Portsmouth
B.Sc. Business Information Systems (First Class)
2000 — 2002
Organization of Vocational Education and Training
Computer & Peripherals Technician (HND equivalent)
1999 — 2000
Paisley University
Media Technology
#Courses
Offensive Security
OSCP — Offensive Security Certified Professional
IAPP
CIPP/E — Certified Information Privacy Professional / Europe
SimpliLearn
ITIL (SO, SS, ST, SD, CSI)
Axelos
Diploma in IT Service Management
ISACA
CRISC — Certified in Risk and Information Systems Control
PECB
ISO/IEC 27001 Lead Implementer
#Certificates
CISSP — Certified Information Systems Security Professional
CISA — Certified Information Systems Auditor
CISM — Certified Information Security Manager
CRISC — Risk and Information Systems Control
PRINCE2
ITIL v3
ITIL Service Operation (SO)
Information Security based on ISO/IEC 27002
IT Service Management based on ISO/IEC 20000
// Additional Microsoft, Cisco and other learning certificates omitted for de-cluttering purposes.
#Skills
Technical
Cloud Security (Azure, AWS, GCP, Alibaba)88%
Web Application Security (OWASP, WAFs, Secure Coding)87%
SIEM & SOC Operations (Splunk, Wazuh, ELK)90%
Coding (Python, PHP, Bash, SQL)85%
Databases (MySQL, PostgreSQL, MongoDB)75%
Operating Systems (Windows, Linux, macOS)100%
Networks (Routing, Firewalls, VPNs, IDS/IPS)90%
Management / Operational
Security Maturity Assessments / Gap Analysis100%
Business Continuity & Disaster Recovery (BCP/DRP)88%
Security Risk Assessments100%
Vulnerability Management93%
Incident Management85%
Policies and Procedures Management92%
Project Management82%
Security Operations & Engineering
Vulnerability Assessment Tools (Nessus, OpenVAS, Qualys)90%
Penetration Testing / Exploitation (Kali, Metasploit, Burp)78%
Endpoint Security & EDR/XDR85%
Container Security (Docker, Kubernetes, K8s Hardening)78%