Dear Sir,
I have been an Cyber Security Consultant including penetration tester for the past 15 years within UK government, NATO and the Ministry of Defence, I believe I fulfil the requirements for this project. I have pasted a brief list from my skills profile below.
Skill Profile:
CLAS : CESG Listed Advisor Scheme, provides a pool of private sector consultants approved by CESG/GCHQ to provide Information Assurance (IA) advice.
PSN (Public Sector Network) Compliance and review, Corrective actions and recommendations
Management of Staff (Largest group – 8 staff from 3 different sectors), Projects and Budgets, Integrated Secure Business System Install/Plan/Project Management.
Public, Academic, MOD, Government, Private and NATO sector experience
Secure systems (gateway, firewall, router) Design, implementation, monitoring, reporting and managing. In house and Supplier based solution review and audit.
Zero day vulnerability located on Ixia Breakingpoint published by vendor
Creation of Incident Management and Response Manuals / Guides (Operational)
Full ISO27001/2 IT Security Policy Authoring (from requirements to production)
Penetration / vulnerability testing (PEN Test) – using several off the shelf and custom written packages (including nessus/etherdetect/Perl Etc.) CHECK standard
Proficient user of Kali and Backtrack: Snort, Nessus, Nmap, OpenVAS, Metasploit, W3AF, Burpsuite, IDS Bypass, Zenmap etc.
Extensive Production of RMADS and independent review inline with IAMM