Professional Profile

Name: Adrian Anglin Current Role: Cybersecurity Lead Location: London Experience Level: 10+ Years in Cyber and Information Security

---

Professional Summary

Accomplished cybersecurity professional with over a decade of experience protecting organisations from evolving cyber threats. Expertise spans designing and implementing secure architectures, managing security operations, leading incident response efforts, and developing strategic security initiatives. Adept at aligning security initiatives with business objectives to mitigate risks, ensure compliance, and safeguard critical assets. Recognised for building and leading organisational security initiatives and delivering practical solutions to complex cybersecurity challenges.

---

Key Skills and Expertise

• Security Operations and Incident Response (IR):

  • Proficient in designing, implementing, and managing SOCs, including cloud-native environments (Splunk, Defender XDR).

  • Expert in conducting digital forensic investigations, malware analysis, and incident containment.

  • Skilled in threat-hunting methodologies using MITRE ATT&CK, Velociraptor, Defender and other tools

• Organisational Security Architecture and Risk Management:

  • Experience in creating and implementing security architectures aligned with NIST CSF, ISO 27001, and CIS Controls.

  • Conducting enterprise risk assessments, developing remediation plans, and managing third-party risk.

  • Experienced in securing hybrid environments (Azure).

• Regulatory Compliance and Governance:

  • Knowledge of regulatory frameworks such as GDPR and PCI DSS.

  • Proficient in policy development, audit readiness, and maintaining compliance documentation.

• Emerging Threats and Technologies:

  • Knowledge of emerging trends in zero-trust architectures, AI-driven threat and detection.

• Security Awareness and Training:

  • Experience in supporting comprehensive employee training programs to foster a strong security culture.

  • Adept at engaging cross-functional teams and leadership in cybersecurity best practices.

---

Certifications

• Industry Certifications:

  • Certified Information Systems Security Professional (CISSP)

  • Information Systems Security Architecture Professional (CISSP-ISSAP)

  • Certified Cloud Security Professional (CCSP)

  • Systems Security Certified Practitioner (SSCP- ISC²)

  • ISACA Certified Information Security Manager (CISM)

  • ISACA Certified Data Privacy Solutions Engineer (CDPSE)

  • EC-Council Computer Hacking Forensic Investigator (CHFI)

  • Certified Ethical Hacker (CEH)

  • GIAC Certified Incident Handler (GCIH)

  • Offensive Security Certified Professional (OSCP)

  • Certified Cloud Security Professional (CCSP)

• Vendor Certifications:

  • Cisco Certified Network Associate

---

Professional Experience

Role: Cybersecurity Lead | 2015 – Present Key Contributions:

• Spearheaded the migration of on-premises SOC to a cloud-based SOC, enhancing scalability and threat visibility.

• Directed incident response operations and initiatives.

• Implemented advanced threat-hunting workflows utilising MITRE ATT&CK, Velociraptor, and Defender XDR to uncover persistent threats.

• Managed cybersecurity operations to monitor and respond to security events across a global network.

• Reduced the risk surface through vulnerability assessments and threat management.

• Developed and executed an organisation-wide security initiative that reduced organisational exposure and increased phishing resilience.

• Regularly brief stakeholders about current operations, future challenges and opportunities for improvements

• Develop security solutions to safeguard business objectives and priorities

• Implement controls that allow the organisation to protect its revenue streams and business operations.

• Develop/implement security best practices, policies and standards.

• Evaluate operational risk that allows informed decisions to be made and appropriate control implemented.

---

Education

• Master of Science in Computing | The Open University, 2023

• Bachelor of Science in Computing | The Open University, 2019

---

Technical Proficiencies

Networking: o Skills in configuring and managing network security controls, including firewalls, VPNs, and intrusion detection/prevention systems (IDS/IPS). Security Information and Event Management (SIEM): o Experience with SIEM tools (Splunk and Microsoft Sentinel) for aggregating, analysing, and responding to security alerts and incidents Cloud Security: o Knowledge of cloud computing concepts and experience with cloud security practices for platforms like Microsoft Azure. This includes an understanding of cloud-native security tools and services. Vulnerability Management: o Proficiency in using the vulnerability scanning tool Nessus Endpoint Security: o Knowledge of endpoint security solutions (antivirus, EDR/XDR platforms) and techniques for managing and securing endpoints against threats.

Operating System Knowledge: o In-depth knowledge of Windows and Linux, including system logging and configuration proficiency. o Understanding of system administration, file systems, and network configurations. Incident Response and Threat Hunting: o Ability to conduct incident response operations, including the use of forensic and EDR tools (Magnet AXIOM, Binalyze AIR, CyberTriage, Velociraptor, Microsoft Defender Suite, Sentinel, EnCase, FTK, Autopsy) for investigating and analysing cybersecurity incidents. Compliance and Security Standards: o Familiarity with cybersecurity frameworks and standards (NIST, ISO 27001, GDPR) to ensure that operations comply with legal and regulatory requirements. Threat Intelligence: o Ability to leverage threat intelligence (feeds, reports, indicators of compromise) to inform security operations and improve defensive measures.

About Me