Chris Mulhall's Linkedin Analytics

A highly experienced cyber security, information security and data privacy professional. I have a long track record of working with large enterprises, and also smaller niche businesses and startups. Large enterprises are challenging due to their scale, smaller organisations are challenging due to the availability of resources. Having experience at both ends of the scale brings knowledge and insight that you can bring to any table. My technical knowledge and exposure (CISSP, CRISC certifications), business-oriented approach (communicating with senior leadership) and practical approach enable to hold trust and confidence with board members regarding cyber risk and information security related initiatives. The success I hold lies with an ability to communicate with all levels of organisations, internally and externally to connect with client requirements, whether they are internal, business, regulatory or compliance. Implementation of industry standards such as ISO 27001, CIS, Cyber Essentials, PCI DSS, NIST CSF or any other standards are at the core of what I do. These standards are the bedrock of a successful security management system, helping organisations and the people within them to truly improve their ability to protect themselves from bad actors. How they are implemented differs from organisation to organisation, but the goal is the same, regardless of the business or its culture - to help businesses thrive in an ever complex and dangerous world. Please get in touch to discuss how I can help your business: [email protected] Specialist areas of interest: ISO 27001 - Information Security Management System implementation and certification ISO 27035 - Information Security Incident Management - Preparation, lessons learned and continuous improvement Cyber and Information Security Risk Management Third Party Risk Management (TPRM) Security Awareness Training - CBT and classroom based Phishing simulation exercises Cyber Essentials PCI DSS Compliance and certification Tabletop exercises (TTX) for incident response preparation Internal Auditing and Gap Assessments Senior management reporting of summary risk management and key performance metrics Delivering remediation, improvement and transformation Vulnerability and Penetration Testing Management Delivery of audit and testing remediation projects