Andrew Olson
Verified Expert in Engineering
Security Architecture Developer
Andrew是一位经验丰富的安全领导者,主要研究复杂数字安全的策略和架构, cloud, and enterprise initiatives. 他拥有与银行业多学科团队和高层领导合作的丰富经验, finance, technology, and retail sectors. Experienced in leading, consulting, devising, and executing strategies, Andrew拥有高度的技术技能,喜欢就数字和云平台安全以及转型业务安全提供建议.
Portfolio
Experience
Availability
Preferred Environment
Windows, Visual Studio Code (VS Code), Office 365, Confluence, Amazon Web Services (AWS), Google Cloud, Azure, SaaS
The most amazing...
...我已经完成的是从一些简单的想法开始,为银行提供服务构建一个基础的云安全功能.
Work Experience
Consulting Security Architect
Enterprise Blueprints
- 管理和组建安全架构师团队,为全球客户提供咨询服务.
- Evolved internal controls to continue ISO 27002 accreditation.
- Managed security architecture for Southeast Asian banking platform.
Security Architect
International Airlines Group (IAG)
- 监督平台的安全性以及集团内各品牌的使用情况.
- Spearheaded data security architecture within the group.
- 开发平台安全策略,以满足整个集团的数据需求.
- 管理安全工程功能,确保与安全目标保持一致.
- Provided security leadership on automation, microservices, and event-driven architectures and platform integration security.
- 定义并实现集团(AWS)云安全架构,供多个运营公司采用.
Enterprise Architect | Cloud Security
Lloyds Banking Group
- 制定了整个银行的云安全战略和路线图,以平衡Azure的积极采用和“默认安全”思维, GCP, AWS, and other SaaS.
- 制定的功能,如密钥管理、数据泄漏和数据泄露预防.
- 定义了一个解决方案,平衡了云中的身份管理问题和IAM功能.
- 倡导整个银行从工程到技术和安全领导(CISO)的云安全优先事项, CTO).
- 开发安全功能,支持从数据中心向云的大规模迁移.
- 改进了多云安全方法,以支持可移植性和操作问题.
Cloud Security Architect
HSBC
- 提供了明确的云安全策略和路线图,包括服务消费和集成, DevSecOps, response, and remediation.
- 根据当前的威胁形势和风险,执行工业化方法来保护银行运营的云服务.
- 跨云平台(GCP、AWS)的安全模式和护栏的定义自动化.
- 管理跨技术和业务团队的涉众,以及跨银行组织单位、技术供应商和咨询公司的领导.
Digital Security Architect
National Australia Bank
- Uplifted API authentication methods within the bank.
- 领导改进中央DevOps安全性(DevSecOps)功能,以提高敏捷性和可预测性.
- Led security architecture for microservices and AWS cloud deployments.
- 构建了一个新的遵从性门户,支持在云中快速自动化部署.
- Aligned security with divisional divestment strategies.
- Spearheaded architectural governance and strategy across on-premise and cloud.
- Performed technical leadership on application security strategies.
- Acted as a stakeholder manager and liaisoned with senior business leaders, architecture, and delivery teams.
Lead Digital Security Architect
Lloyds Banking Group
- Developed fraud solutions to support customer enrolment journeys.
- 开发事务性验证解决方案,通过应用程序和网络与客户互动.
- Defined the SaaS strategy for fraud and authentication platform integrations.
- 监督和管理特色团队的交付,以确保与体系结构目标保持一致.
Lead Security Architect
Natwest Markets
- 领导企业数据分类和数据泄漏解决方案的架构交付.
- Aligned security solutions with divestment and ring-fencing goals.
- 执行多学科团队的利益相关者管理:高层领导和C-suite, programme management, the architectural leadership team, and delivery teams in engineering, support, and security assurance.
Senior Digital Security Architect
Lloyds Banking Group
- 在第三方和银行内部员工的资源配置方面发挥战略领导作用,交付关键项目.
- Provided security architecture for a new retail online banking service.
- Delivered solutions for card fraud prevention systems.
- 提供涉众管理,以确保解决方案适合目的,并在实际中平衡安全性和业务需求. 这还涉及到识别和评估关注点和可重用资产(如模式), standards, and roadmaps.
Senior Security Consultant and Technology Specialist
Microsoft
- 为客户和合作伙伴的广泛和复杂的技术问题执行架构和业务领导.
- 提供关于使用微软安全技术的架构和专家指导, including DLP, antimalware, and secure application publishing.
- 为大英图书馆翻页开发并实施端到端安全解决方案.com project, allowing the public to view rare manuscripts online.
- 为一家大型银行的抵押贷款应用程序设计微软安全架构, minimizing costs and operational overhead.
- 为国家医疗服务提供商的电子邮件迁移到Microsoft Exchange Online设计了体系结构并领导了安全团队,以扩展到1.2 million users.
- 为总部位于英国的最大制药公司之一创建了全球PKI.
- 为伦敦的一项重大紧急服务建立PKI并监督其实施.
IT Security Consultant
IBM
- 为亚太地区的一家零售公司和一家机构银行设计了DMZ架构和恶意软件解决方案.
- Built a remote access VPN solution for the same businesses.
- Architected and implemented a PKI to be used by those companies.
Systems and Security Architect
Campbell Soup Company
- Owned all security-related activities for the Asia Pacific region.
- Mentored and provided technical leadership to the IT team within the Asia Pacific, spanning multiple countries and cultures, including Australia, New Zealand, Indonesia, Japan, and Vietnam.
- Managed system and network security compliance, including security compliance of regional applications and infrastructure.
- Developed, planned, and delivered the architecture for major systems (e.g.(ERP,制造)以支持亚太地区的整体业务需求.
- 与全球安全团队一起建立和维护全球安全政策和程序.
Experience
Continuous Compliance (aka Deputy)
Skills
Other
Certified Information Systems Security Professional, IT Strategy, Enterprise Architecture, Security Architecture, Information Security, Stakeholder Management, Cloud Security, IT Governance, Data Security, Leadership, Application Security, Software as a Service (SaaS), Agile Practices, OpenID Connect (OIDC), APIs, Solution Architecture, Containers, Tokenization, Platform as a Service (PaaS), SaaS, Web Application Firewall (WAF), Cloud Migration, Patterns, Fraud Prevention, Compliance, Classification, Architecture, Data Loss Prevention (DLP), Presales, Public Speaking, Sales Presentations, Client Success, PKI, Data-level Security, Antivirus Software, Firewalls, Computer Networking, Virtualization Technology, DMZ Networks, Enterprise Resource Planning (ERP), IP Networks, Consulting
Platforms
Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, Windows
Languages
Python, Snowflake, SAML
Frameworks
OAuth 2, JSON Web Tokens (JWT)
Tools
HashiCorp, Microsoft Teams, VPN
Paradigms
DevSecOps, Application Architecture, Management
Storage
PingFederate, Google Cloud
Certifications
AWS Solutions Architect Associate
Amazon Web Services
Certified Information Systems Security Professional (CISSP)
ISC2
How to Work with Toptal
在数小时内,而不是数周或数月,我们的网络将为您直接匹配全球行业专家.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring