Context: Global cybersecurity programme initiated after a cyber breach, requiring rapid stabilisation, stronger governance, and consistent delivery execution across parallel initiatives.

Constraints: Fragmented delivery model initially, high stakeholder sensitivity, and broad project types (IDAM, pen testing, SOC/SIEM, training, vendor-led initiatives).

Role: Portfolio delivery and operating model lead, building delivery capability from the ground up and enabling the organisation to sustain delivery.

Differentiators:

• Built governance from zero: Jira structure, cadence, ceremonies, RACI, prioritisation and reporting standards

• Coordinated complex stakeholder landscape including CISO leadership, business security, engineering teams, and operational stakeholders

• Supported vendor decision-making via structured evaluation where third-party solutions were required.

Approach: Defined portfolio cadence, standardised governance and reporting, implemented dependency visibility and confidence checks, and facilitated training and stakeholder alignment.

Outcomes: Stabilised delivery and established a sustainable operating model with improved visibility, predictability, and organisational confidence.

Artefacts to include: Operating model one-pager, governance calendar, RACI, reporting dashboard, vendor evaluation matrix (sanitised).

Skills demonstrated: Operating model design, portfolio governance, stakeholder management, vendor coordination, security programme delivery, organisational enablement.