Skills & Experience
I specialise in securing and hardening Linux and cloud environments at enterprise scale, with expertise across automation, monitoring, compliance, and incident response. I have extensive experience with working in Agile-based project teams.
My work is underpinned by 20+ years of project delivery across government, corporate, and academic sectors, supported by active UK SC clearance.
Enterprise Linux Security & Hardening
-
OS-level hardening (RHEL, Debian, Ubuntu, derivatives)
-
Secure baseline builds, CIS/STIG alignment
-
Kernel, package, and service lockdowns
-
Patch and vulnerability management at scale (Red Hat Satellite, automated pipelines)
Cloud Security (AWS & Hybrid Environments)
-
AWS IAM, Identity Center, and role-based access control
-
Secure VPC design, encryption, logging, and monitoring
-
Cloud compliance (ISO 27001, NCSC, CIS benchmarks)
-
Integrating cloud security controls with on-prem Linux estates
Automation, Monitoring & Incident Response
-
Ansible for provisioning, patching, and config drift control
-
Monitoring: Nagios, CheckMK, CloudWatch
-
Log analysis and SIEM integration
-
Incident response and recovery automation (reducing MTTR)
Compliance & Governance
-
ISO 27001, Cyber Essentials+, NCSC standards
-
Governance reporting and audit support
-
Aligning controls with enterprise risk and compliance obligations
Sector Experience
-
Government & Defence – SC-level secured environments
-
Corporate Enterprises – large-scale security and compliance programmes
-
Academic & Research – HPC clusters, sensitive data systems
Availability
Available for full-time contract assignments via specialist IT agencies or direct enterprise engagements.
Full CV/profile available on request.
Skills Matrix
| Category | Skills / Tools | Level / Notes |
|---|---|---|
| Linux Platforms | RHEL, CentOS, Debian, Ubuntu, VMWare | Extensive enterprise experience |
| Cloud | AWS IAM, VPC, CloudWatch, Identity Center | Enterprise deployments |
| Automation | Ansible, Bash scripting, Red Hat Satellite | Daily use in large environments |
| Monitoring | Nagios, CheckMK, Prometheus, Grafana | Integration & tuning for enterprise |
| Compliance | ISO 27001, Cyber Essentials+, NCSC standards | Audit support & delivery |
| Security Clearance | UK SC | Active |
| Certifications | CompTIA Security+, AWS Certified, CISSP (in progress) | Valid & current |