Peter Warren.

Peter Warren · Cyber Security Architect · Bath, UK

Cyber security architecture, identity and networks — delivered end to end.

I've spent 15+ years solving security problems from the business context through to architecture, implementation and handover — the person teams come to when something needs to actually work.

More about me Get in touch

About

A business-aware architect who stays hands-on

I'm a senior cyber security professional based in Bath, having relocated from Australia. I started out in networks and infrastructure, and that diagnostic instinct still shapes how I work — I read systems the way both engineers and attackers do, then translate what I find into decisions a business can stand behind.

Over fifteen-plus years across financial services, media and entertainment, FMCG, the public sector and major international events, I've worked end to end: understanding the business, designing the architecture, and staying involved through implementation and operational handover. I'm at my best in technically strong environments where capable peers keep the bar high.

Experience

Where I've worked

  • Financial services & payments

    • Mastercard

  • Public sector & local government

    • Gold Coast City Council
    • Brisbane City Council

  • Media & entertainment

    • Sony Pictures Entertainment

  • Consumer goods & manufacturing

    • Nestlé

  • Major events

    • Commonwealth Games 2018

The home laboratory

Keeping the craft current

Outside paid work I run a production-shaped home laboratory — a version-controlled, infrastructure-as-code environment where I stay genuinely hands-on with the tools I design with. It's home-lab scale rather than enterprise-production, but the engineering disciplines are the same, and it's where ideas get pressure-tested before they reach a client estate.

  • Proxmox
  • Ansible
  • Step-CA PKI
  • HashiCorp Vault
  • Wazuh SIEM
  • Prometheus / Grafana
  • Cloudflare Zero Trust
  • Gitea
  • TrueNAS
  • Ollama

Selected projects

  • Self-hosted GenAI threat-intelligence pipeline

    A multi-tier local LLM platform — Apple Silicon plus a dedicated NVIDIA GPU host — running open models behind an authenticated gateway, with an A/B harness for routing decisions and a custom MCP server wrapping the runtime. Threat-modelled against STRIDE and the OWASP LLM Top 10.

  • Two-tier private PKI & secrets management

    A Step-CA certificate authority with an offline, hardware-key-protected root and ACME-automated issuance across the fleet, paired with HashiCorp Vault for secrets storage and service-to-service authentication.

  • SIEM, monitoring & detection

    Wazuh for log analytics and detection, with decoders and rules written from first principles, alongside Prometheus, Grafana and Blackbox probes for fleet-wide metrics, alerting and uptime monitoring.

  • Segmented zero-trust network

    A default-deny, multi-VLAN network with per-service firewall rules and IDS/IPS, and Cloudflare Zero Trust for identity-aware remote access — hardware-key MFA with a documented break-glass path.

  • Infrastructure as code & self-hosted CI/CD

    The whole estate is version-controlled and Ansible-managed with idempotent roles, provisioned via cloud-init, and built and tested through self-hosted Gitea with an Actions CI runner.

  • Virtualisation, storage & services

    Proxmox virtualisation with GPU passthrough for local inference, TrueNAS for storage, internal DNS via Technitium, and runZero for continuous network asset discovery.

Focus areas

  • Security architecture
  • Identity & access (IAM / IGA / PAM)
  • Network & cloud security
  • OT / critical infrastructure
  • Zero trust
  • Incident response

Credentials

  • CISSP — ISC2
  • SABSA Chartered Security Architect (Foundation)
  • MSc Information System Security
  • Azure & Oracle Cloud fundamentals
  • Member — ISACA, AISA

Contact

Get in touch

Drop me a line and I'll get back to you. No address to harvest — just the form.

Prefer LinkedIn? Connect with me there.