BSc. - Computer Applications. Extensive experience assessing IT risks and controls, audit issue management. SOX, PCI, GDPR, COBIT, NIST RMF, NIST CSF & 800-53. I have managed and delivered Information Security awareness and education programs, through the development of Computer Based Training courses published to an internal Learning Management System. Also have had the responsibility for the management of simulated Phishing scenarios across large scale organisations and reporting to senior management on the outcome of these and recommendations for education materials on foot of the results of the simulated scenarios.