top of page
Ben-Curran.png

Ben Curran

Microsoft Cloud and Cyber Security Specialist

Phone:

+44 (0)1900 822 458 (Office)
+44 (0)7557 772 812 (Direct)

Key areas of expertise:

  • Security Architecture of Cloud and IT Environments

  • Governance, Risk and Compliance of Cloud and IT Environments

  • Security Assurance of Cloud and IT Environments

  • Critical National Infrastructure

  • Digital and Cyber Security Related Regulation and Legislation

  • Microsoft Cloud Digital Modern Workplace Transformation

  • Microsoft Cloud Security Audits

Certifications & Memberships:

SC-900 Microsoft Security (various), Prince2 Foundation, ITIL Foundation

A Bit About Me

I am passionate about safeguarding sensitive information and critical infrastructure for organisations across the private and public sectors. Specialising in information security, cyber risk management, compliance, and assurance, I am committed to ensuring systems are robust, resilient, and aligned with evolving cyber security challenges, and regulatory requirements, whilst meeting the organisational needs.

With expertise in the Microsoft Cloud environment, I assist organisations with the adoption of the environment to enable secure and innovative digital transformation. My focus areas are around designing and implementing cloud solutions to meet organisational needs, enhancing security postures, and ensuring alignment with recognised assurance frameworks that allow organisations to operate confidently.

From supporting large-scale enterprise solutions to providing ongoing security operations services, I assist organisations to ensure their systems are not only secure but also optimised for efficiency and scalability. I thrive on helping organisations adopt innovative cloud technologies while mitigating risks and aligning with recognised industry best practices.

Download Pen Portrait
Download CV

Recent Assignments

2025

Cyber Security & Information Assurance Specialist and Microsoft Cloud SME / Government Digital Services (GDS), UK. Supporting the Digital Modern Workplace team within GDS to review and update the UK Government Microsoft Technical Blueprints for the processing of information in the Official classification tier. Working with GDS and Microsoft to ensure the guidance is applicable for UK Government departments and is aligned to mitigate and defend the current geo-political threat landscape. Additionally, services are provided to UK Government departments digital transformation programme and project work relating to the Microsoft Cloud environment.

2024 - 2025

Cyber Security & On-boarding lead / Sellafield Infrastructure Delivery Partnership (IDP) and Decommissioning Nuclear Waste Partnership (DNWP), UK. Responsible for authoring the pre-mobilisation business change plans and supporting the cyber security lead in the creation of governance and establishing the cyber security framework throughout the programme lifecycles..

2021 - 2024

Microsoft Cloud Specialist and Cyber Security & Information Assurance Specialist, Sellafield Information Services Organisation, UK. Supporting Sellafield by delivering leading Microsoft Cloud consultancy services for the Journey to Cloud project. The focus of the project is transformation of the Sellafield enterprise by utilising the Microsoft public cloud to meet business and operational requirements. This agile project is being delivered to a DevSecOps model and baselines to HMG ‘Best Practice’ of the Microsoft/NCSC UK Government guidance, aligned to a Zero Trust framework, CIS Benchmarks, NIST standards, CSF, CAF, NDA PCOS, ONR SYAP’s, CSA, Mitre ATT&CK, etc.

2021 - 2025

Cyber Security & Information Assurance Specialist / Sellafield Infrastructure Strategic Alliance (ISA). Supporting Morgan Sindall Construction by delivering Microsoft Cloud Consultancy Services for the ISA:

  • Ongoing review of the Microsoft hosted ISA Cloud, ISA’s primary digital platform in line with NCSC/UK Government guidance

  • Create gap analysis of security controls and processes aligned to NCSC/UK Government guidance for securing OFFICIAL information (v1/v2)

  • Create security architecture for ISA’s digital platforms

  • Risk assess ISA’s digital platforms

  • Advise ISA of regulatory controls required for solutions hosted within the ISA Cloud, including risks and mitigations.

  • Review of ISA’s SharePoint Online security configuration and gap analysis of vulnerabilities, risks and issues

  • Define the ISA CSOC function

Testimonial

 

​

bottom of page