Sapphire Technologies Ltd

Vernon

• Information Security Business Consultant with over 30 year’s relevant experience.

• A respected as a global IS trainer with ISACA for over 20 years.

• An experienced and valued global presenter on Information Security Management and all best practice standards on Information Security Culture and Governance.

• COBIT5/19 expert and leading ISO 27000 series expert (UK and International Committees).

• Respected as a global authority on Cyber and Information Security projects both in UK, Europe and International across all market sectors.

• Sapphire’s ISO/IEC 27001:2013 re-certification.

• Assisted many public and private sector organisations to ISO27001:2013 accreditation.

• One of ISACA’s global on-site trainers from 2008 onwards on certifications (CISM; CRISC; CGEIT

Martin

• Information Security Consultant with over 25 years’ experience.

• ISO 27001/2 Security Specialist with extensive COBIT 5 Best practice experience.

• Microsoft Certified Professional with an expert understanding of Business Continuity, IT and Cyber Security.

• Leading in IT and compliance governance, ITiL standards, risk management and project management.

• Spearheaded and delivered a two-year data security project to be awarded offshore status by DWP and government, achieving first award ever granted in the UK.

• Implemented and certified several public and private sector organisations to ISO27001 accreditation.

• As a Prince 2 Practitioner, directed several organisations on cloud solutions, risk, business risk and cyber security.

• defined and implemented Business continuity management across several organisations to ISO22301 standards

Vernon

• ISO27001 Lead Auditor

• CISM, CGEIT and CRISC

• COBIT5/19 Accredited Trainer

• BSc Economics and MA

• CIPFA

Martin

• ISO27001 Project management and implementation

• ISO27001 Auditor

• Prince 2 Practitioner

• ITiL Practitioner

• Microsoft Certified Professional

• IASME Cyber Essentials

• Data protection - GDPR

Vernon

• Implementation of an Information Security Management Frameworks (governance; policies and procedures; risk assessment; training and implementation)

• UK / Health Services – development of Information Assurance Frameworks to create appropriate frameworks (advising on rollout; advising on appropriate controls; advising on tailored requirements)

• European – expert advisor on ensuring the security cycle adequately designed, built & tested during the project life ( definition on policies, procedures and standards ; design, development & testing of security elements; training & transfer of knowledge to IS team)

• Financial Services – expert advisor on ISO27001 rollouts (design of policies, procedures and standards; assessment of key risks and selection of controls; awareness & training) for major UK Banks

• UK /Public Sector – Lead Consultant on introduction of IS governance model developed around the concepts ofISO27001:2013 incorporating the relevant aspects of the DP and FoI Acts.

• UK / Education – Lead auditor covering the adoption of DPA within FE Colleges/Universities utilising the ISO27001

• UK/Law Firms – Lead Consultant on over 35 major law firms – all achieved ISO27001 certification

• Respected trainer on CISM (Certification on Information Security Management) – holds the global No.1 trainer for highest pass rate. Provides both public & in-house courses for major organisations like banks

• Respected trainer on CRISC (Certification on Risk & Information System Controls) & CGEIT (Certification on the Governance of Enterprise IT)

• Provides clients with tailored Risk Assessment methodologies as part of ISO27001 implementations • Provides awareness & training methods to improve the ‘Information Security Culture’ of clients

Product Skills:-

• ISO27001 and COBIT5/19 Assessment Products

• NHS Toolkit/Assurance; Cyber Essentials & NIS Directive regimes

• International Standards/Regulations (RiskIT and COBIT)

• Various Risk Assessment / Management Products

• Governance Benchmarking using COBIT5/19

General Skills: -

• IS Governance

• IS Management; Cyber Essentials

• Information Asset Risk Assessment

• IS Training and Awareness

• IS Cultural Development

• IT Governance Assessments (COBIT/ISO27001:2013)

Martin

• Implementation of an Information Security Management Framework (governance; policies, processes and procedures, risk assessments; training, implementation and certification).

• UK / AU / NZ welfare to work sectors – Implementation of Information Assurance Frameworks to ISO27001 standards (Director of Project management on implementation, design and rollout. advising on applicability of controls; advising on tailored requirements to multiple international standards)

• Implementation of ISO27001 framework and certification in the health and safety sector. Directing and project management of the standard to stringent government directives.

• Project management and implementation of ISO27001 within a leading IT service sector organisation, delivering outsourced IT services to over 100 major multi sector organisations across the UK. Achieved certification and clean re-certifications over 7 years.

• Provided several major organisations with Risk Assessment methodologies, incident and incident management processes and methodologies in order to deliver ISO27001.

• Directed and managed many awareness and training projects in order to ensure standards, policies, process and procedures were implemented and measured for effectiveness

Product Skills:-

• ISO27001 and COBIT5 Assessment Products

• International Standards/Regulations

• Various Risk Assessment / Management Products

• Governance Benchmarking

• Cyber Essentials

General Skills: -

• Information Security Governance

• Information Security Management

• Information and business Risk Assessment

• IS Training and Awareness

• IT Governance Assessments (COBIT5/ISO27001:2013)

• ISO 90001

• Prince 2 Project Management

• ITiL Practitioner