¡Bienvenido al perfil Malt de Ashley !

Malt te da acceso a los mejores talentos freelance para tus proyectos. Ponte en contacto con Ashley para hablar de tus necesidades o busca otros perfiles en Malt.

Ashley W.

cyber security and risk consultant

Puede desplazarse Barcelona , Madrid, Barcelona

  • 41.3828
  • 2.1774
High Potential
Proponer un proyecto El proyecto sólo comenzará si aceptas el presupuesto de Ashley.
Proponer un proyecto El proyecto sólo comenzará si aceptas el presupuesto de Ashley.

Localización y desplazamiento

Barcelona, España
Puede trabajar en tus oficinas en
  • Alrededor de Barcelona y 50 kms
  • Alrededor de Madrid y 100 kms
  • Alrededor de Barcelona y 100 kms


Duración del proyecto
  • ≤ 1 semana
  • ≤ 1 mes
  • Entre 1 y 3 meses
  • Entre 3 y 6 meses
  • ≥ 6 meses
Tamaño de la empresa
  • 1 persona
  • 2-10 personas
  • 11-49 personas
  • 50 - 249 personas
  • 250-999 personas
Preferiría evitar:
≥ 5000 personas




Habilidades (12)

Ashley en pocas palabras

✅ My methodology for all of my work begins with understanding your business, first and foremost

✅ 5 years experience working in cyber security

✅ Certified as an cyber security incident handler (GCIH) and a security auditor (GCCC)

✅ Qualified at BSc level in computer security and forensics

✅ Experience as a non-executive director - I understand the business context as well as the technical and security aspects

✅ Experience in a variety of positions within security:
- Technical (SOC analyst)
- Risk (Information security officer)
- Strategy (cyber security strategy specialist)

✅ I am not the type of consultant for a tick-in-the-box approach. If you genuinely want to achieve a better cyber security understanding and/or posture, my work quality will be a good fit.

A pragmatic, down-to-earth Cyber Security professional who translates technical jargon into understandable business terms. I have worked in technical, risk and strategy roles in both large enterprises and smaller organisations - so I can relate to most organisations' security challenges.

The vast majority of my experience is in the financial services sector, the most heavily regulated and mature industry for cyber security. However, I've also worked in a consultancy services role, working directly with customers in identifying breaches and recommending how they can improve their security posture.

With cyber security, a business can't focus on improving everything, so it is important to focus on those few areas which give the greatest return on investment.
My specialty is explaining cyber related businesses risk in a simple way, and advising on solutions in a rational, quantified manner to maximise ROI, both in effort and cost.

I offer practical and pragmatic consultancy on:
- Risk Assessments
- Strategy/Policy Design
- vCISO Services
- Compliance Assistance
- Supplier Security Due Diligence


Leeds Building Society

Banca & seguros

Technical Information Security Officer

Leeds, Reino Unido

enero de 2015 - septiembre de 2017 (2 años y 8 meses)

It was at Leeds Building Society where I truly became a stand-out Information Security professional. I learnt security is all about basic fundamentals, processes, being pragmatic, and doing the right things in a risk based, prioritised approach, instead of just doing things.

My job duties widened, deepened and my responsibilities increased to an exceptionally high level considering my non-senior role; including full responsibility for arranging and managing regular red team exercises and holding subsequent meetings with executive directors, to discuss results and improvement recommendations.

As part of a diverse team, I learnt to independently manage a high workload in my specific role and provide periodic updates and suggestions to the Head of Information Security & IT Risk. This freedom gave me the ability to thrive and work in a way which suited me best, helping contribute my greatest levels of value to the organisation.


Agencias de subcontratación

Cyber Security Analyst

Barcelona, España

noviembre de 2018 - mayo de 2019 (6 meses)

Learning to become a top-class security operations center analyst:
- Thoroughly analysing security alerts for a variety of technologies, companies and sectors
- Providing accurate, actionable information on incidents and recommendations on how to respond
- Making suggestions to create and improve SIEM content rules
- Understanding real-world attacker techniques, tools and procedures
- Making recommendations to customers to improve their security posture against their specific threat actors

Banco Santander

Banca & seguros

CyberSecurity Strategy Specialist

Madrid, España

junio de 2019 - noviembre de 2019 (4 meses)

Main responsibilities:
- Contributing to the creation of and continuous development of the global group's cyber security strategy
- Collaborating with other cyber functions within the group to better understand their activities, problems and how we can help
- Researching the development of emerging technologies, threat actor activities, best practice etc. to understand how the group can best prepare for the future from a cyber perspective
- Understanding and helping steer how cyber security can directly impact the bank's ability to digitally transform and achieve growth in line with appetite
- Analysing risk data, metrics and other outputs to prioritise control improvements in a pragmatic manner

Practical Infosec Limited

Banca & seguros

Owner and lead security consultant

Barcelona, España

mayo de 2020 - Hoy (1 año y 5 meses)

1 recomendación externa

Consulta las recomendaciones de Ashley