Information security

I've setup information security and quality management systems, following ISO27001, ISO9001 and PCI-DSS. I've also worked with penetration testing, encryption and secure hosting.

ISO27001 & ISO9001 Compliance

Information Security and Quality Management Systems

Between 2011 and 2017, I developed an Information Security and Quality Management system that was ISO27001 & ISO9001 compliant. This included internal & external audits, recertification and transition to new versions of the standards.

View project

Government Data Connections

Submission of electronic criminal record check applications

Between 2011 and 2017, I was responsible for maintaining a secure data connection to the Disclosure and Barring Service, via the a Ministry of Justice Secure Environment. This required a high-level of assurance and information security management.

View project

E-commerce and encrypted communications

Creating secure and trustworthy websites

I have experience of creating SSL encrypted websites, and undertaking the compliance work necessary for PCI-DSS compliance. I have worked with a range of SSL vendors and certificate types.

View project