Andrew is available for hire

Andrew Olson

Verified Expert in Engineering

Security Architecture Developer

Location

London, United Kingdom

Toptal Member Since

November 19, 2021

Andrew是一位经验丰富的安全领导者，主要研究复杂数字安全的策略和架构, cloud, and enterprise initiatives. 他拥有与银行业多学科团队和高层领导合作的丰富经验, finance, technology, and retail sectors. Experienced in leading, consulting, devising, and executing strategies, Andrew拥有高度的技术技能，喜欢就数字和云平台安全以及转型业务安全提供建议.

Security Architecture Information Security Cloud Security Application Security Software as a Service (SaaS)Amazon Web Services (AWS)Google Cloud Platform (GCP)Python SaaS Cloud Migration Data Loss Prevention (DLP)PKI Firewalls DMZ Networks Enterprise Resource Planning (ERP)Certified Information Systems Security Professional (CISSP)

Portfolio

Enterprise Blueprints

Consulting, Architecture, Management

International Airlines Group (IAG)

Amazon Web Services (AWS), Snowflake, OAuth 2, Containers, Tokenization...

Lloyds Banking Group

Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, HashiCorp...

Experience

Security Architecture - 19 years Data Security - 19 years Enterprise Architecture - 14 years Certified Information Systems Security Professional - 12 years Application Security - 10 years Cloud Security - 10 years Software as a Service (SaaS) - 8 years Agile Practices - 6 years

Availability

Part-time

Preferred Environment

Windows, Visual Studio Code (VS Code), Office 365, Confluence, Amazon Web Services (AWS), Google Cloud, Azure, SaaS

The most amazing...

...我已经完成的是从一些简单的想法开始，为银行提供服务构建一个基础的云安全功能.

Work Experience

Consulting Security Architect

2023 - PRESENT

Enterprise Blueprints

管理和组建安全架构师团队，为全球客户提供咨询服务.
Evolved internal controls to continue ISO 27002 accreditation.
Managed security architecture for Southeast Asian banking platform.

Technologies: Consulting, Architecture, Management

Security Architect

2021 - 2023

International Airlines Group (IAG)

监督平台的安全性以及集团内各品牌的使用情况.
Spearheaded data security architecture within the group.
开发平台安全策略，以满足整个集团的数据需求.
管理安全工程功能，确保与安全目标保持一致.
Provided security leadership on automation, microservices, and event-driven architectures and platform integration security.
定义并实现集团(AWS)云安全架构，供多个运营公司采用.

Technologies: Amazon Web Services (AWS), Snowflake, OAuth 2, Containers, Tokenization, Information Security, SAML, PingFederate, Platform as a Service (PaaS), SaaS, Web Application Firewall (WAF), Patterns, IT Strategy, APIs, Solution Architecture, DevSecOps, Cloud Security, Data Security, Security Architecture, Enterprise Architecture, Stakeholder Management, Leadership, Management

Enterprise Architect | Cloud Security

2020 - 2021

Lloyds Banking Group

制定了整个银行的云安全战略和路线图，以平衡Azure的积极采用和“默认安全”思维, GCP, AWS, and other SaaS.
制定的功能，如密钥管理、数据泄漏和数据泄露预防.
定义了一个解决方案，平衡了云中的身份管理问题和IAM功能.
倡导整个银行从工程到技术和安全领导(CISO)的云安全优先事项, CTO).
开发安全功能，支持从数据中心向云的大规模迁移.
改进了多云安全方法，以支持可移植性和操作问题.

Technologies: Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, HashiCorp, PingFederate, SaaS, Platform as a Service (PaaS), SAML, Containers, OAuth 2, Cloud Migration, IT Strategy, APIs, Patterns, DevSecOps, Cloud Security, Data Security, Security Architecture, Information Security, Enterprise Architecture, Stakeholder Management

Cloud Security Architect

2019 - 2020

HSBC

提供了明确的云安全策略和路线图，包括服务消费和集成, DevSecOps, response, and remediation.
根据当前的威胁形势和风险，执行工业化方法来保护银行运营的云服务.
跨云平台(GCP、AWS)的安全模式和护栏的定义自动化.
管理跨技术和业务团队的涉众，以及跨银行组织单位、技术供应商和咨询公司的领导.

Technologies: Google Cloud Platform (GCP), Amazon Web Services (AWS), Patterns, IT Strategy, Cloud Security, DevSecOps, Data Security, Security Architecture, Information Security, Enterprise Architecture, Stakeholder Management

Digital Security Architect

2018 - 2019

National Australia Bank

Uplifted API authentication methods within the bank.
领导改进中央DevOps安全性(DevSecOps)功能，以提高敏捷性和可预测性.
Led security architecture for microservices and AWS cloud deployments.
构建了一个新的遵从性门户，支持在云中快速自动化部署.
Aligned security with divisional divestment strategies.
Spearheaded architectural governance and strategy across on-premise and cloud.
Performed technical leadership on application security strategies.
Acted as a stakeholder manager and liaisoned with senior business leaders, architecture, and delivery teams.

Technologies: OAuth 2, OpenID Connect (OIDC), APIs, IT Strategy, Application Security, Patterns, Solution Architecture, Cloud Migration, Cloud Security, Data Security, Security Architecture, Information Security, Enterprise Architecture, Stakeholder Management

Lead Digital Security Architect

2017 - 2018

Lloyds Banking Group

Developed fraud solutions to support customer enrolment journeys.
开发事务性验证解决方案，通过应用程序和网络与客户互动.
Defined the SaaS strategy for fraud and authentication platform integrations.
监督和管理特色团队的交付，以确保与体系结构目标保持一致.

Technologies: APIs, OpenID Connect (OIDC), JSON Web Tokens (JWT), Solution Architecture, Enterprise Architecture, Cloud Security, SaaS, Fraud Prevention, Data Security, Security Architecture, Information Security, IT Strategy, Stakeholder Management

Lead Security Architect

2016 - 2017

Natwest Markets

领导企业数据分类和数据泄漏解决方案的架构交付.
Aligned security solutions with divestment and ring-fencing goals.
执行多学科团队的利益相关者管理:高层领导和C-suite, programme management, the architectural leadership team, and delivery teams in engineering, support, and security assurance.

Technologies: Classification, Architecture, Information Security, Security Architecture, IT Governance, Data Loss Prevention (DLP), Data Security, Cloud Security, Enterprise Architecture, IT Strategy, Stakeholder Management

Senior Digital Security Architect

2011 - 2016

Lloyds Banking Group

在第三方和银行内部员工的资源配置方面发挥战略领导作用，交付关键项目.
Provided security architecture for a new retail online banking service.
Delivered solutions for card fraud prevention systems.
提供涉众管理，以确保解决方案适合目的，并在实际中平衡安全性和业务需求. 这还涉及到识别和评估关注点和可重用资产(如模式), standards, and roadmaps.

Technologies: APIs, Application Security, Application Architecture, Fraud Prevention, Security Architecture, Stakeholder Management, IT Governance, Data Security, Cloud Security, Information Security, Enterprise Architecture, IT Strategy

Senior Security Consultant and Technology Specialist

2006 - 2010

Microsoft

为客户和合作伙伴的广泛和复杂的技术问题执行架构和业务领导.
提供关于使用微软安全技术的架构和专家指导, including DLP, antimalware, and secure application publishing.
为大英图书馆翻页开发并实施端到端安全解决方案.com project, allowing the public to view rare manuscripts online.
为一家大型银行的抵押贷款应用程序设计微软安全架构, minimizing costs and operational overhead.
为国家医疗服务提供商的电子邮件迁移到Microsoft Exchange Online设计了体系结构并领导了安全团队，以扩展到1.2 million users.
为总部位于英国的最大制药公司之一创建了全球PKI.
为伦敦的一项重大紧急服务建立PKI并监督其实施.

Technologies: Windows, APIs, Security Architecture, Presales, Stakeholder Management, Public Speaking, Sales Presentations, Architecture, Client Success, PKI, Data-level Security, Information Security, Antivirus Software, Application Security, Data Security, Enterprise Architecture, IT Strategy

IT Security Consultant

2004 - 2006

IBM

为亚太地区的一家零售公司和一家机构银行设计了DMZ架构和恶意软件解决方案.
Built a remote access VPN solution for the same businesses.
Architected and implemented a PKI to be used by those companies.

Technologies: Firewalls, PKI, Windows, VPN, Computer Networking, Security Architecture, Data-level Security, Application Security, Antivirus Software, Virtualization Technology, DMZ Networks, Data Security, Information Security, Enterprise Architecture, IT Strategy, Stakeholder Management

Systems and Security Architect

2002 - 2004

Campbell Soup Company

Owned all security-related activities for the Asia Pacific region.
Mentored and provided technical leadership to the IT team within the Asia Pacific, spanning multiple countries and cultures, including Australia, New Zealand, Indonesia, Japan, and Vietnam.
Managed system and network security compliance, including security compliance of regional applications and infrastructure.
Developed, planned, and delivered the architecture for major systems (e.g.(ERP，制造)以支持亚太地区的整体业务需求.
与全球安全团队一起建立和维护全球安全政策和程序.

Technologies: Firewalls, Enterprise Resource Planning (ERP), DMZ Networks, Antivirus Software, IP Networks, PKI, Security Architecture, VPN, IT Governance, Data Security, Information Security

Experience

Continuous Compliance (aka Deputy)

该项目交付了自动化治理平台和框架的第一个版本. 该平台为每个构建评估并执行遵从性，并启动持续集成管道.

Skills

Other

Certified Information Systems Security Professional, IT Strategy, Enterprise Architecture, Security Architecture, Information Security, Stakeholder Management, Cloud Security, IT Governance, Data Security, Leadership, Application Security, Software as a Service (SaaS), Agile Practices, OpenID Connect (OIDC), APIs, Solution Architecture, Containers, Tokenization, Platform as a Service (PaaS), SaaS, Web Application Firewall (WAF), Cloud Migration, Patterns, Fraud Prevention, Compliance, Classification, Architecture, Data Loss Prevention (DLP), Presales, Public Speaking, Sales Presentations, Client Success, PKI, Data-level Security, Antivirus Software, Firewalls, Computer Networking, Virtualization Technology, DMZ Networks, Enterprise Resource Planning (ERP), IP Networks, Consulting

Platforms

Amazon Web Services (AWS), Google Cloud Platform (GCP), Azure, Windows

Languages

Python, Snowflake, SAML

Frameworks

OAuth 2, JSON Web Tokens (JWT)

Tools

HashiCorp, Microsoft Teams, VPN

Paradigms

DevSecOps, Application Architecture, Management

Storage

PingFederate, Google Cloud

Certifications

SEPTEMBER 2017 - PRESENT

AWS Solutions Architect Associate

Amazon Web Services

JANUARY 2002 - JANUARY 2014

Certified Information Systems Security Professional (CISSP)

ISC2

Collaboration That Works

How to Work with Toptal

在数小时内，而不是数周或数月，我们的网络将为您直接匹配全球行业专家.

Share your needs

在与Toptal领域专家的电话中讨论您的需求并细化您的范围.

Choose your talent

在24小时内获得专业匹配人才的简短列表，以进行审查，面试和选择.

Start your risk-free talent trial

Work with your chosen talent on a trial basis for up to two weeks. Pay only if you decide to hire them.

Top talent is in high demand.

Start hiring