Daniel K.
Cloud Security Architect | Cybersecurity Architect | Identity Governance | Zero Trust & ISO 27001 Specialist
Experience
ISMS Risk Tracker & Compliance Portal (Streamlit + PostgreSQL)
- Built Streamlit + PostgreSQL portal for ISO 27001 audit tracking; automated control evidence and reminders, cutting audit response time by 40%.
- Reduced audit response time by 40% and improved coordination across teams by centralizing control tracking, evidence management, and compliance operations.
National Information Security Compliance & Governance Program
- Led multi-institution ISO 27001 audit and cybersecurity-governance initiatives, improving national-level security maturity and data-protection readiness.
- Directed ISO/IEC 27001:2022 audits, digital-maturity assessments, and security-assurance programs across public-sector and academic institutions.
- Produced risk-remediation roadmaps, governance advisory reports, and secure ICT-architecture guidelines aligned with international standards.
- Supported strategic digital-transformation initiatives, ensuring alignment with global data-governance, cloud-security, and regulatory reporting frameworks.
Enterprise Microsoft 365 Tenant Migration & Cloud Backup Modernization
- Directed full Microsoft 365 tenant migration (Exchange Online, SharePoint, Teams, OneDrive), ensuring zero data loss, minimal downtime, and seamless user adoption.
- Re-architected identity governance (SSO, MFA, Conditional Access, secure access policies) improving authentication security and compliance alignment.
- Implemented enterprise-grade SaaS backup solutions using Acronis Backup and Veeam M365, enabling secure long-term retention and reliable restoration capabilities.
- Optimized Microsoft 365 licensing and configuration, improving cost efficiency and meeting governance requirements.
- Established secure data-protection baselines and retention policies supporting ISO 27001/ISMS compliance.
- Coordinated adoption, user readiness, and department-wide training, strengthening operational efficiency and cloud collaboration maturity.
Technology Manager | Cloud Solutions Architect | ISMS Lead
PNG DataCo - Yes You'll Be Covered
- Lead cloud-security architecture and governance across Azure, Entra ID, and Microsoft 365 environments, ensuring secure, compliant, and resilient service delivery.
- Design and maintain Zero Trust–based identity and access governance, implementing MFA, Conditional Access, PIM, SSO, and least-privilege access controls for enterprise users.
- Develop and enforce Azure Policy-as-Code, Defender for Cloud baselines, and configuration-drift prevention frameworks, maintaining near-perfect compliance across cloud workloads.
- Build and optimize Microsoft Sentinel SIEM, developing KQL analytics rules, incident-response playbooks, and automated SOAR workflows for proactive threat detection.
- Administer Intune endpoint security, including MDM/MAM baselines, device compliance, Autopilot provisioning, and application protection policies for hybrid and mobile fleets.
- Strengthen cloud resilience through improved backup governance, leveraging Veeam M365, Acronis, and Azure Backup for validated retention and recovery across critical systems.
- Lead ISO 27001–aligned security governance, performing internal ITGC audits, managing controls, collecting evidence, and supporting external certification assessments.
- Produce cloud-security dashboards and KRIs—including patch compliance, backup status, incident metrics, and policy drift—to support leadership decision-making.
- Guide modernization initiatives, secure cloud migrations, and architectural improvements that enhance operational resilience, reduce access incidents, and strengthen compliance.
- Direct cloud and infrastructure security operations for cross-functional teams, coordinating with internal staff and managed-service providers to maintain SLA performance.
- Develop and maintain security documentation including policies, SOPs, baselines, and technical standards to support continuous audit readiness and regulatory alignment.
- Promote organizational cybersecurity awareness through targeted training, phishing simulations, and secure digital-workplace practices.
ICT Governance & Infrastructure Consultant
Simbu Provincial Government
- Delivered ICT governance, operational risk management, and technology advisory services across multiple regional offices, ensuring continuity of critical financial and administrative operations.
- Led end-to-end ICT modernization initiatives that accelerated project delivery timelines, improved infrastructure resilience, and increased system availability across distributed platforms.
- Developed and implemented ICT planning, procurement, and governance frameworks aligned with national standards and international best practices, including cybersecurity and regulatory compliance requirements.
- Conducted comprehensive risk-based ICT assessments to guide strategic investment decisions, strengthen security controls, and align ICT environments with global governance benchmarks.
- Designed and facilitated ICT governance and cybersecurity awareness programs for staff, improving secure-system usage, compliance maturity, and organizational cyber readiness.
- Oversaw ICT procurement and vendor management processes, embedding SLA monitoring, performance oversight, and risk controls — reducing costs while increasing service delivery quality.
- Mentored and upskilled ICT officers, strengthening local capacity, improving operational ownership, and enhancing the long-term sustainability of ICT systems and governance practices.
Regional Information Technology Advisor
Volunteer Service Overseas International, Provincial Capacity Building Programme | AusAID | UNDP
- Delivered ICT governance and risk-management support across multiple regional offices, ensuring continuity of financial and operational services and resolving over 95% of reported ICT incidents.
- Designed and implemented ICT modernization programs that accelerated project delivery timelines, strengthened infrastructure resilience, improved system availability, and expanded capacity for critical platforms.
- Developed and executed ICT planning, procurement, and governance frameworks aligned with national standards and international cybersecurity and regulatory requirements.
- Conducted comprehensive risk-based ICT assessments to guide strategic investment prioritization, strengthen security posture, and ensure ICT controls aligned with global governance benchmarks.
- Delivered ICT governance, cybersecurity awareness, and digital-literacy programs to over 70% of staff, significantly improving secure system usage competencies and compliance maturity.
- Oversaw ICT procurement and vendor contracts, embedding compliance, SLA monitoring, and operational risk controls — achieving a 60% reduction in procurement costs while improving service quality and accountability.
- Mentored and supported ICT officers, improving governance maturity, enhancing operational ownership, and ensuring long-term sustainability of ICT systems and risk-management practices.
Summary
I bring over 15 years of hands-on experience designing secure cloud environments and implementing resilient IT infrastructure solutions. I specialize in Azure cloud architecture, Identity & Access Management (IAM), and Microsoft 365 security, with deep expertise in ISO 27001 and NIST-aligned governance frameworks. My work consistently strengthens risk management, improves audit readiness, and enhances operational resilience across enterprise environments.
I have led multi-institution cloud security and compliance programs, bridging technical engineering with strong governance oversight. By modernizing identity boundaries, improving cloud backup and resilience capabilities, and optimizing Microsoft 365 environments, I deliver secure, cost-efficient, and scalable solutions that safeguard critical data and support digital transformation across diverse sectors.
Languages
Education
Georgia Institute of Technology
Master of Science in Cybersecurity, Information Security · Cybersecurity (Information Security) · Atlanta, United States · 3.5
Currently pursuing a Master of Science in Cybersecurity with a specialization in Information Security, focusing on advanced areas such as secure network design, applied cryptography, threat detection, cloud security engineering, and enterprise security architecture. The program strengthens my ability to design secure systems, evaluate digital risks, and implement governance and compliance frameworks aligned with global standards such as ISO 27001, NIST, and CIS. This academic track directly supports my work in cloud security, identity governance, and enterprise resilience.
Kenya Methodist University
Bachelor of Science in Computer Science · Computer Science · Nairobi, Kenya · 3.5
Completed a Bachelor of Science in Information Systems with a strong foundation in systems analysis, database management, IT infrastructure, and software development. The program provided practical experience in designing and managing information systems, integrating technology with business processes, and applying IT solutions to improve operational efficiency. Developed competencies in networking, information management, system security fundamentals, and organizational IT support, forming the technical and analytical basis for my later specialization in cybersecurity and cloud security architecture.
Jomo Kenyatta University of Agriculture & Technology
Diploma in Computer Science · Computer Science · Nairobi, Kenya
Certifications & licenses
Certified Information Security Auditor
ISACA
AWS Certified Security - Specialty
AWS
AWS Certified SysOps Administrator - Associate
AWS
AWS Certified Solutions Architect - Associate
AWS
Microsoft 365 Certified: Teams Administrator Associate
Microsoft
Microsoft Certified: Azure Solutions Architect Expert
Microsoft
Microsoft Certified: Azure Security Engineer Associate
Microsoft
Similar Freelancers
Discover other experts with similar qualifications and experience
- English
- Deutsch
2025 © FRATCH.IO GmbH. All rights reserved.