Information Security · GRC & Risk Management · Compliance & Audit Support

I am an information security professional with hands-on experience in regulated environments, governance frameworks, and risk-based security operations. I have a proven track record supporting live security audits, managing endpoint compliance at scale, and building practical GRC tooling including a published NIS2-aligned vendor risk assessment framework. I hold the CompTIA Security+ certification and am currently pursuing Network+ certification. I am familiar with ISO/IEC 27001, NIST CSF, and EU regulatory requirements through applied work rather than theory alone.

Currently, I am employed as a Sales Representative at Systembolaget while deliberately transitioning back into cybersecurity. During this period, I have actively pursued Security+ certification, independent security and GRC research, and developed several security tools such as a vendor risk assessment framework, MFA Coverage Tracker, and Incident Tracker. I have also built and maintained Linux VPS infrastructure, applying operational security in practice.

Previously, I worked as an IT Deployment Engineer embedded with the cybersecurity team at Capita / South Eastern Health & Social Care Trust in Northern Ireland. I was involved in remediating non-compliant endpoints during a live NIST CSF audit, managing endpoint lifecycle governance across multiple hospitals and sites under ITIL-governed change management, and supporting the go-live of the first Encompass EPR deployment in Northern Ireland.

I have completed training and certifications including CompTIA Security+, IBM Cybersecurity Analyst Professional Certificate, ISC2 Entry-Level Certification, Microsoft Learn Security, Azure & Identity Fundamentals, Splunk SIEM & Log Analysis Fundamentals, Linux Foundation Training, and I am an active member of Hack The Box Academy.

I am seeking a junior information security or GRC role where I can contribute from day one and grow into increasing independence. I am passionate about governance, risk, and compliance, and continuously develop my skills through practical experience and independent research.