Jack Stuart
Email: jack@crash.run URL: https://crash.run
Personal Profile
I am a security analyst with over 10 years of experience in technology-driven industries. My expertise includes specialization in incident response through utilizing various industry standard tools and software. I have a thorough understanding of exploits, malware, and the implementation of controls to combat these threats. I have a deep knowledge of various computer systems, honed through over six years of professional experience. Additionally, I have experience in business strategy and management, having previously owned and operated my own business. In my spare time, I actively pursue my passion for technology through research, learning, and skill development, as well as enjoying hobbies such as music production, mountain biking, and VR gaming.
Core Skills/Attributes
- CISSP Certified Associate
- SIEM Admin
- Cloud Security
- Systems Admin (Windows and Linux)
- Vulnerability Management
- Incident Management
- Basic Scripting (Bash, Powershell and Python)
Work Experience
Acting Head of IT Security: July 2022 - November 2022 Office for Students
Role Summary: This was a short term promotion whilst the organisation was recruiting a new head of department. I was given the opportunity to develop my leadership skills and gain some invaluable experience. I was responsible for all areas of IT security.
Reponsibilities and achievements are covered as part of the analyst role.
IT Security Analyst: September 2021 - Present Office for Students
Role Summary: Monitor SOC, SIEM and Vulnerability management software. Strive to improve patching and security controls across the estate. Assist the organisation with advice and treatment plans. Carry out incident response and root cause analysis. Work with different departments as SME for cyber security.
Key Responsibilities: Monitor Security Tools and Investigate incidents - AV Software, Cloud App Security, SIEM, Vulnerability management system. Identify and help to resolve vulnerabilities with patching and fixing misconfiguration. Identify vulnerabilities and write treatment plans to work through with stakeholders and engineers. Improve integrations and automation with SOAR. Meet with various areas of the business to provide advice on security controls for IT systems used in projects. Preparing and delivering OpSec reports for management.
Achievements/Projects Treatment plans created for infrastructure team and endpoint product specialists to significantly reduce vulnerability risk scores. Worked with various departments to select and implement new security software including the SIEM, Vulnerability Management and Security automation tools. Creating automation workflows to enrich SIEM investigations with additional data from open source intelligence. Migration of vulnerability management system from windows to Linux host to help improve performance. Setup and configuration of SIEM with relevant logs. Setup and installation of dedicated scan engines. Deployment of agents across all endpoints for improved visibility of assets.
IT Service Desk Engineer/Systems Administrator: November 2016 - September 2021 High Education Funding Council (Office for Students’ Predecessor)
Role Summary: Responsible for troubleshooting a range of 1st and 2nd line support. Creating and managing user accounts onsite. Administration of Windows endpoints and fixing hardware and software issues with assets as required.
Key Responsibilities: Support the IT infrastructure, systems and applications of onsite clients. Working with other teams to resolve escalated issues quickly and efficiently. Design and update gold images for user devices. Create and maintain user accounts according to the JML process. Image and deploy user devices. (Acronis / VSphere) Spam Filter Management (FuseMail / Exchange Online Protection Microsoft 365) Web Proxy Management - Forcepoint Web Security Cloud (Formally Websense) Allow or block domains as needed. Directory Management (Active Directory) Create users, shared mailboxes, distribution and security groups.
Achievements/Projects:
Transition from on prem to federated cloud infrastructure - Assisted with preparing user accounts and mailboxes to use Azure Active Directory and Exchange Online.
MFA Implementation - Helped to set up user accounts to use Azure MFA and administer Azure MFA server.
Rollout of Office 365 / Microsoft 365 - Helped with the rollout of OneDrive and teams across the organisation.
Migration of Research England data from OfS tenant to UKRI - Worked with external contractors and UKRI to move all OneDrive and exchange data to a different tenant.
Designed and built a replacement system for Citrix - Proposed RDP solution to replace Citrix systems. Built a hardened image using NCSC baseline group policies.
Sound Engineer/Producer/Studio Manager: April 2012 - April 2016 Ink Recording/Wilder Studios.
Role Summary: Recording bands and artists. Producing finished recordings for demo or release on various media. Manager of the studio.
Key Responsibilities: Recording, editing, mixing and mastering audio productions. Handling bookings. Design and execute marketing strategies. Continual improvement and development of business and services. Network Administrator.
Achievements/Projects: Made recordings for various bands and artists that are now enjoying international success. Design and installations of all AV and IT systems. Acoustic design and treatment of recording and rehearsal space.
Education
Training
- ISC2: CISSP Associate
- Microsoft Certified: Security, Compliance and Identity
- Offensive Security: Pen Testing with Kali 200 Academy
- QA: Automating Administration with Windows Powershell
- ITIL: V4 Foundation
College Education: Truro College 2002 – 2005:
- City & Guilds Sound Engineering Parts 1
- City & Guilds Sound Engineering Parts 2
- City & Guilds Sound Engineering Parts 3
Secondary School Education: Redruth Technology College 1997 – 2002:
- Five GCSEs A-C
- Two GNVQs with Merit in ICT and Business Studies
References
Available upon request