Senior IT Security Consultant with over ten years experience supporting core infrastructure services in the Banking/Finance and ISP sectors including Australia's largest Managed Security Service Provider. Performing Penetration Tests since 2000 and currently lead penetration tester since 2005. Neil has performed over two hundred (200) Penetration & fifty (50) Application Tests from four different perspectives:- • As a Security Systems Engineer for CyberTrust (formally 90East), Australia's largest Managed Security Service Provider and supplier of Information Risk Management services up to and including the SECRET level for Government and commercial clients. Neil performed his first application test against Westpac Bank’s B2Buy E-procurement system in 2001; • As a Senior Technical Specialist for IBM Global Services partner Red Squared where he was responsible for Global Network Security for Damovo (formally Ericcson), provider of telecommunications to the European Parliament, Australian Department of Foreign Affairs & Trade and the Metropolitan Police; • As a full-time Penetration Testing Consultant at NCC Group plc working on various HMG IT Health Checks with CHECK team leaders; • And as Lead Penetration Tester for Fujitsu on RESTRICTED UK Government assignments including Home Office, HM Revenue & Customs (HMRC) and the Financial Services Authority (FSA).

Senior Security Consultant - Penetration Tester (SpiderLabs) @ From March 2009 to Present (6 years 10 months) Senior Consultant - Penetration Tester @ From September 2008 to January 2009 (5 months) Senior Consultant / Lead Penetration Tester @ Internal Penetration Test Team for HMG projects. Current SC Clearance. Home Based. Neil has been instrumental in developing Fujitsu’s Penetration & Application Testing methodology, proposal & reporting formats and training new team members. He also tested and refined the design for the Fujitsu RESTRICTED laptop build. Led & perfomed hands-on penetration tests including Technical & Management Report Delivery & Presentation for the following: Perimeter, VPN, Internal, Enterprise, Application. Firewall, Switch & Router policy reviews against best practice. From October 2005 to September 2008 (3 years) Senior Consultant / Penetration Tester @ Full-time Penetration Testing Consultant working on various HMG IT Health Checks with CHECK team leaders for Unix/Windows Systems, Network and Web Application Auditing. Performed Policy and Infrastructure Security review of CAF Online Bank while seconded to Information Security Consulting Division. Specialities included Firewall configuration & OS Hardening including: Cisco PIX, Check Point FW-1, Solaris, Windows XP 2000 & 2003. Developed Best Practice for Laptop, PDA, Router, Switch, VLAN, WindowsXP, Windows 2000, Solaris & Firewall. From June 2004 to October 2005 (1 year 5 months) Senior Technical Specialist @ IBM Global Services Certified Application Hosting Partner Responsible for Network Security reporting to Global Network Manager of Damovo (Formally Ericsson) Responsible functions included: Global Network Security of Win2K Active Directory & Cisco Network at 40 sites in 19 Countries.; Firewall; Anti-Virus; Incident Handling; Disaster Recovery & IPSec VPN Monitoring. From May 2002 to April 2004 (2 years) Security Systems (Solaris) Engineer - 90East @ DSD (Australian CESG equiv.) Certified SecureGateway Environment - Australia's largest Managed Security Service Provider and supplier of Information Risk Management services up to and including the SECRET level for Government and commercial clients. Neil performed his first application test against Westpac Bank’s B2Buy E-procurement system in 2001 Adherence to Defence Signals Directorate (DSD) security policies: Gateway Certification Guide; Commonwealth Protective Security Manual & Australian Communications Electronic Security Instruction ACSI33. Project Experience: Solaris & Windows NT/2000 Secure e-commerce project management & implementations. OS hardening and vulnerability testing of FedLink Government Intranet Management Infrastructure. Project support for Prime Minister & Cabinet mail gateway upgrade. Secure web server implementation for Australian Federal Police. From September 2000 to March 2002 (1 year 7 months) Technical Support - Sydney Australia @ Professional Services included Pre/Post Tech Sales devising remote connectivity solutions. Provided facilities management for the following: Firewalls, Cisco Access Servers, Sendmail & Samba installations. Implementation of Financial, ERP & Supply Chain Mgt Business Applications. From March 1999 to September 2000 (1 year 7 months) Account Manager @ Reporting to General Manager of Australia. Provided technical and financial application support for client’s NT, Solaris and HP-UX platforms both on site and remotely. Managed successful rollouts for Lanier and GE Capital. Technical Project Management on AGC/Westpac HP-UX to Solaris conversion. From December 1997 to July 1998 (8 months) Incident Manager - Contract @ Reported to UK Branch Network Manager - Radbroke Hall Liason at regional management level & management of Incident Handling Scheduled field engineer support for over two thousand RS6000 platforms. From June 1996 to October 1997 (1 year 5 months)

Neil Burrows is skilled in: Penetration Testing, Firewalls, Information Security, Vulnerability Assessment, Security, PCI DSS, Network Security, Information Security Management, ISO 27001, Disaster Recovery, Vulnerability Management, VPN, Computer Security, Security Audits, Application Security, Cisco Technologies