2012 – to April 2012 Not-for-Profit Social
To assist Empowering Communities to operate ECINS at Impact Level 3
Result : These controls were implemented through a set of procedures which are summarised in the ECINS SyOPS which defined the procedures to be followed for the business to operate an Information Security Management System ( ISMS ) in accordance with ISO 27001 and the associated policies and controls.
GDS June 2017-July 2018 Cabinet Office Government Digital Service (GDS) Information Security Manager
The task was to enable the Digital, Data and Technology Profession (DDAT) survey project to persuade all departments to share anonymised data about roles and numbers of personnel operating in these roles across all departments .
Result : The corporate risk management process was undertaken in accordance with Cabinet Office requirements and followed recognised industry good practice for risk assessment and management, as contained within ISO 27005:2011 supplemented by reference to NCSC standards and guidance documentation. The project went ahead and as far as I am aware the survey was initiated.