Nick Hall

As a strategic Senior Security Engineer, I architected and led Mitto's comprehensive security compliance program, achieving ISO 27001, ISO 27701, and SOC2 Type II certifications/reports with zero critical findings. I orchestrated end-to-end security transformation by pioneering a multi-layered DevSecOps approach that reduced deployment vulnerabilities while accelerating release cycles. Developed and implemented an innovative vulnerability management platform integrating Kubernetes Trivy Operator deployments with proprietary EPSS (Exploit Prediction Scoring System) and KEV (Known Exploited Vulnerabilities) analytics for real-time threat prioritization.

Project Highlights:

• Designed and implemented full-spectrum vulnerability management ecosystem with CI/CD pipeline integration and executive-level reporting dashboards
• Led cross-functional teams through ISO 27001, ISO 27701, and SOC2 Type II compliance initiatives, establishing mature GRC frameworks that survived rigorous audits
• Engineered containerized security solutions with Kubernetes operators that automated scanning across development, testing and production environments
• Developed Python-based EPSS and KEV analysis tools that reduced critical vulnerability response times from 9 days to under 24 hours
• Established shift-left security practices that embedded automated security controls at every stage of the SDLC

As Technical Security Solutions Specialist at Dimension Data, I spearheaded enterprise-level security transformations for clients across multiple sectors. Architected and implemented comprehensive OT/IT security convergence solutions for manufacturing environments, delivering segmentation across production facilities. Led SD-WAN deployments spanning multiple countries, designing resilient architectures that reduced security incidents by 64% while cutting operational costs. Orchestrated complex cloud migration initiatives, establishing secure-by-design frameworks that enabled seamless transition of critical workloads with continuous compliance monitoring.

Project Highlights:

• Designed and implemented industrial firewall ecosystems for critical infrastructure clients, integrating Purdue Model security principles with next-generation threat detection capabilities
• Architected global SD-WAN security frameworks for multinational enterprises, creating standardized security policies across locations while maintaining local compliance requirements
• Developed reference architecture for secure cloud migrations, incorporating automated compliance controls, CSPM tools, and IAM frameworks that maintained compliance with ISO 27001, PCI-DSS, and SOC2
• Established security control matrices that bridged IT/OT environments, enabling clients to achieve regulatory compliance while maintaining operational uptime
• Led security workshops and governance sessions with C-suite stakeholders, translating complex security architectures into business value propositions

As Security Engineering Team Lead within Dimension Data's MSSP division, I managed comprehensive security operations for enterprise clients across financial, healthcare, and manufacturing sectors. Oversaw enterprise-wide PKI infrastructure for multiple organizations, implementing multi-tier hierarchical designs that achieved 99.999% availability while meeting stringent compliance requirements. Orchestrated security for 100+ network security devices including next-generation firewalls, WAFs, proxies, and IPS systems across globally distributed environments. Led high-profile incident response teams during critical breach scenarios, successfully containing advanced persistent threats.

Work Highlights:

• Lead technical teams of 5+ engineers, establishing mentorship and technical advancement that improved team professionalism and moral
• Orchestrated comprehensive disaster recovery testing for mission-critical environments, achieving 100% recovery success rate while reducing RTO/RPO by 60%
• Led remediation of high-severity security incidents involving nation-state actors, coordinating with vendors and implementing countermeasures that prevented data exfiltration
• Designed and implemented cloud migration security frameworks enabling zero-downtime transitions while maintaining continuous security monitoring
• Established automated security configuration management for heterogeneous environments, reducing security drift by 85% and enabling continuous compliance verification

As a certified Network Engineer, I served as the primary technical resource for McGraw-Hill's EMEA networking infrastructure, traveling extensively to European satellite offices to provide hands-on support and implementation expertise. Orchestrated a critical infrastructure overhaul of Cisco Catalyst Chassis switches at the European Head Office, coordinating with business units to ensure zero operational disruption during the migration. Managed all aspects of network infrastructure including data center operations, WAN optimization, and telephony systems, establishing the foundation for my subsequent cybersecurity career path.

Work Highlights:

• Led enterprise-wide deployment and optimization of routing protocols (EIGRP, OSPF, BGP) across multiple international locations
• Designed and implemented high-availability data center switching infrastructure using Cisco Nexus technologies
• Executed major infrastructure refresh of core Catalyst Chassis switches at European headquarters with minimal downtime
• Managed technical support for 12+ European office locations, providing on-site expertise for complex networking challenges
• Pioneered virtualized infrastructure deployments in data center environments, creating a modern platform for business applications