Summary

Luke Deegan
Sydney, NSW, Australia | linkedin.com/in/luke-deegan-/ | +61 400 947 626 | ldeegan1@hotmail.com

SUMMARY
Ex-military cybersecurity professional with over 8 years of experience, now serving as a manager in the Technical
Security Assessment team within the Cybersecurity service line at Grant Thornton. Skilled in various security areas
including endpoint protection, operational technology, and cloud security. Expert in managing network
infrastructures and leading cybersecurity efforts. Holds a master’s in Forensic Computing & Cybercrime
Investigation, with certifications like CISSP and CASP+. Notable for policy development, penetration testing, and
managing incident responses, focusing on critical infrastructure protection.

EDUCATION
University College Dublin
MSc, Forensic Computing & Cybercrime Investigation
● Awards: First Class Honours (GPA: 3.96)
Graduation Date: September 2021
● Modules: Network Investigations, Computer Forensics, VoIP & Wireless investigations, Programming for
Investigators (Python), Data & Database Forensics, Malware Investigations, Linux for Investigators, Financial
Investigation, Advanced Scripting (BASH)
Institute of Technology, Carlow
BEng, Electronic Engineering (Military Communication Systems)
● Awards: Distinction (GPA: 3.5)
● Modules Included: Mathematics, Digital Communications, Computer Networks,
Microcontrollers/Programmable Electronics, C/C++, Radio Design & Maintenance

WORK EXPERIENCE
Grant Thornton Ireland
Manager – Cybersecurity
Dublin, Ireland
January 2024 – October 2024
● As the Information Security Officer for a principal client in the railway transportation sector since April 2023,
Luke is responsible for safeguarding the organization’s information security posture, including the development,
implementation, and periodic review of security policies and procedures tailored to meet evolving threats and
regulatory requirements.
● Spearheaded the discovery, inventory, and risk assessment of the OT / ICS environment in accordance with
NIST SP 800-82 and ISA/IEC 62443. Identifying all components, and building a criticality-based asset
inventory.
● Developed a comprehensive OT / ICS risk register with a road map for the mitigation of elevated risks, and
presented findings to C-level executives.
● Conducted comprehensive risk assessments and audits, aligning with ISO 27001, NIST CSF and various CIS
Benchmarks, to identify technical vulnerabilities and assess policy, procedure, and control suitability.
● Utilized various tools including Qualys for continuous vulnerability monitoring and prioritization, developing
risk based remediation plans.
● Engaged with the National Cyber Security Centre (NCSC) for threat intelligence, integrating insights into
security strategies.
● Collaborated with the security team to ensure backup reliability through development and execution of testing
plans for various recovery levels.
● Led security awareness programs, prepared reports, and presented findings to senior leadership, enhancing
organizational security posture and decision-making.
● Supported Privileged Access Management (PAM) audits, assessing client privileged account lifecycles and
defining remediation projects.
● Continues to lead the Technical Security Assessment team at Grant Thornton, effectively managing resource
allocation and project execution. This strategic oversight has resulted in a more efficient and streamlined
workflow. With the authority to approve deliverables, Luke ensures that each security assessment meets
superior standards of precision and excellence.
● Enjoy expanded autonomy in decision-making processes across client interactions, project guidance, and team
leadership, utilizing my expertise to enact decisions that drive significant benefits for both clients and the
organization.
● Fosters team growth by actively promoting development through targeted mentoring. Designed and implement
comprehensive training and career development programs that enhance capabilities and cultivate a culture of
continuous learning and excellence.
● Participates in strategic corporate meetings, offering cybersecurity insights that help to shape the company’s
service offerings and direction.
Grant Thornton Ireland
Dublin, Ireland
Assistant Manager – Cybersecurity
August 2022 – December 2023
● Led numerous offensive security engagements, including web application testing, internal/external network
vulnerability assessments, phishing campaigns, API testing, and mobile application testing. Incorporating tools
such as Burp Suite, Nessus, and Kali Linux.
● Utilized skills developed and honed in the military to conduct successful Red Teaming operations, including
physical intrusion and social engineering. These efforts lead to data exfiltration and account compromise, resulting
in the distribution of pseudo-malicious mail throughout target organization.
● Drafted bespoke proposals to address specific client requirements, and penned thorough, professional reports
post engagement.
● Managed cloud integration security reviews, including Microsoft 365 assessments, ensuring compliance with CIS
benchmarks.
● Acted as the primary point of contact for client communications. Managed and aligned client expectations with
service delivery, ensuring satisfaction and retention. Conducted briefings and presentations to clients on security
assessment findings and recommendations.
Irish Defence Forces
Senior Network Security Engineer
Dublin, Ireland
November 2015 – August 2022
● Configured and managed network infrastructure (routers, switches, hubs) for a 7,000+ person organisation,
including Cisco, Aruba, and HP devices.
● Automated deployment of 200 network nodes using HP IMC Zero Touch Provisioning.
● Resolved complex network issues and optimized LAN performance, enhancing system uptime and network
efficiency.
● Managed identity and access management technologies, including SailPoint IdentityNow, CyberArk Privileged
Access Manager, and Azure AD.
● Installed 100+ Aruba Wireless Access Points and enforced security with Aruba ClearPass and Mobility Master.
● Managed over 1,000 remote access laptops with RSA SecureID and implemented Palo Alto’s GlobalProtect VPN
for secure remote access.
● Leveraged VMware NSX for micro-segmentation and zero-trust strategies within virtualized environments.
● Monitored network traffic with Darktrace Antigena, collaborating in order to effect real-time threat response.
● Managed Skype for Business user accounts and policies using control panel and PowerShell; automated account
creation and permissions processes for IT Service Desk.
● Utilized Endpoint Detection and Response (EDR) and Managed Detection and Response (MDR) solutions,
including Symantec Endpoint Protection, to secure desktops, mobile devices, and servers against malware,
ransomware, and other threats.
● Responded to the 2021 HSE cyber-attack, conducting triage and isolation of affected systems, and managing the
re-imaging process for quarantined devices.
● Demonstrated communication skills and tact while dealing with vulnerable individuals during crisis response
efforts.
● Worked with government agencies and cybersecurity experts in simulated exercises to evaluate NATO’s Cyber
Defence posture.
Irish Defence Forces
Infantry Soldier
Galway, Ireland
September 2012 – November 2015
● Served in an infantry unit, gaining extensive experience in teamwork, leadership under pressure, and strategic
decision-making in dynamic environments, while developing a strong foundation in discipline, resilience, and
adaptability.
● Deployed overseas on multiple operational tours of duty.

CERTIFICATIONS
OffSec OSWP
ISC2 CISSP
CompTIA CASP+
CompTIA PenTest+
CompTIA CySA+
CompTIA Security+
CompTIA Network+

SKILLS & INTERESTS
Skills: Network/System Administration | IT Security | Offensive Security | Red Teaming | Firewall Management |
Malware Analysis | Scripting (Python, Bash, PowerShell, C/C++ | Linux | Microsoft Office (Excel, PowerPoint)
Interests: Cybersecurity, Adventure Sports, Learning, Travelling, Fitness

Education

2019 - 2021 MSc Forensic Computing & Cybercrime Investigation at University College Dublin

2016 - 2019 BEng Electronic Engineering at Institute of Technology Carlow

SKills