CV

Michael (Mikhail) Naruta

London +44 7401 286 010 • michael.naruta@gmail.com • linkedin.com/in/narutmic

Cyber Security Architect / Consultant

Cyber Security Architect with over 20 years of consultancy experience in cyber security solutions and architecture, IT service management, clouds, networks, stakeholder and teams management, business growth and development.

Experienced in organizational transformation, compliance enhancement, and risk reduction through strategic initiatives and technology solutions.

Certified in Microsoft, AWS, ISC2, ITSM, VMware, and HPE.

Endorsed as an UK Exceptional Talent by the UK Government. STEM ambassador. ICU Professional Coach.

WORK EXPERIENCE

CACI Network Service (UK) limited

11/2024 - Present • Senior Cyber Security Architect • Full-time • London, United Kingdom · Hybrid

• Spearhead £1.2M infrastructure modernization program for operational technology environments serving critical government systems.
• Architected Zero Trust security models for data centre migrations affecting 15,000+ endpoints across multiple facilities.
• As a Cyber Security Architect, I designed disaster recovery and business continuity solutions with 1-hour RPO/RTO targets ensuring OT mission-critical systems uptime.
• Led cross-functional teams delivering cloud/DC migration projects while maintaining Network Rail security compliance standards.
• Pre-sales and business growth support.

Narmico Consulting Services

11/2023 - 11/2024 Cyber Security Architect / interim Chief Technology Officer • London, United Kingdom · Hybrid

• I led multiple transformation projects for public sector and financial organizations, helped to shape strategies, develop roadmaps and future estate architectures, effectively collaborating with stakeholders and vendors.
• Led strategic initiatives to implement Zero Trust methodology based on Microsoft products and services, showcasing experience in securing SaaS environments.
• Designed multi-cloud architecture (AWS, Azure) and blueprints to reduce single vendor lock-in related business risks, ensuring industry best and standards are met.
• Collaborated and engaged with cross-functional teams and C-suite stakeholders to automate Zero Trust Landing Zone deployment in Azure for new clients, meeting PCI-DSS requirements and reducing deployment time by 30%.
• Enhanced AWS infra design to improve personal data (PII) protection, aligning with NCSC secure cloud principles and GDPR standard, ensuring compliance and customer trust.
• Led ransomware protection project to mitigate risks of critical data loss by utilizing Microsoft Defender EDR/XDR capabilities, endpoint protection and hybrid backups approach.
• Served as the subject-matter expert (SME) for Microsoft security suite, specializing in Azure Entra ID protection, leading to a 26% decrease in false positive incidents creation.
• Analysed threat landscape and industry trends, recommended Cloud Security Strategy enhancements, ensuring compliance with PCI-DSS and GDPR is met. Developed and road map for the next 3 years.
• Collaborated with client development teams to automate Zero Trust Landing Zone deployment in Azure, using MS blueprints and accelerators with CI/CD pipelines to streamline deployments and enhance compliance.
• Designed and implemented infrastructure as code (IaaC) solutions using ARM templates, ensuring consistent and reproducible infrastructure deployments for SaaS / PaaS platforms.

Charities Aid Foundation Bank (CAF bank)

05/2023 - 11/2023 Cyber Security Architect / Technical Architect • London, England, United Kingdom · Hybrid

• Provided technical expertise for a new multi-vendor / multi-supplier core banking system replacing program, reviewed non-functional requirements specifications and conducted assessment against bank and industry standards, policies, and business strategy.
• Developed cloud adoption strategy ensuring bank standards and compliance are met.
• Led the development of a comprehensive EA capabilities model to support CAF bank IT strategy for the next 5Y period.
• As a Cyber Security Architect, I Provided technical and non-technical guidelines based on cloud operational expenses (OPEX) proactive assessment.
• Led strategic alignment of technology to business goals resulting in a collaboratively developed architecture and roadmap, resulted a projected 29% increase in operational efficiency of the IT architecture function.
• Led proof of concept (PoC) projects to validate business value and technical feasibility, and ensuring compliance with cyber security and data protection standards for banking systems.
• Worked with multiple stakeholders and 3rd parties presenting new ideas to meet strategic and tactical goals for the “Modern workspace / remote work” program.
• Technologies/products/frameworks in use: Microsoft Azure, M365, VMware,

Temenos, VMware, generic infra services, multiple 3rd party products, Sentinel, Zscaler, DLP, ITIL, ISO27000, Waterfall, Agile, TOGAF, OWASP, Zero Trust.

• Reviewed and maintained BICEP/ARM scripts to automate the provisioning and configuration of cloud resources, aligning with best practices and client requirements.

Deloitte UK

12/2021 - 05/2023 Solutions Architect • London, England, United Kingdom • Remote Work

• Led the migration planning of the Corporate Lotus Domino (EOL) platform to Microsoft Power Apps PaaS / SaaS platform, resulting in a 30% increase in system efficiency and a seamless transition to modern technology.
• Developed migration roadmap for internal legacy information systems providing associated products End-Of-Life risks mitigation.
• Designed technical solution to integrate data from third-party HR management system with Deloitte M365 services ensuring Deloitte data security standards are met.
• As a Solutions Architect I led the development of security design artifacts for UK IT projects, ensuring effective security measures, resulting in increased system resilience and compliance with legislation and standards.
• Acted as a decision maker for security technology selection by capturing business and technical requirements for RFIs, RFPs, procurement options.
• Developed project documentation (High-Level Design (HLD), Low-Level Design (LLD), road maps, business cases, etc.) and documentation templates supporting corporate standards for project artifacts.
• Worked closely with diverse stakeholders and 3rd party entities to support reference architecture and architecture framework development, resulting in the successful implementation of enterprise security technologies and processes, enhancing Confidentiality, Integrity and Availability (CIA) triad security practices.
• Led knowledge sharing sessions on emerging AI technologies for informed decision-making to senior stakeholders (directors). Provided guidance on technology selection options for AI platforms, aligning with strategic goals.
• Technologies/products/frameworks in use: Microsoft Azure, M365/O365, Power Apps, Power BI, VMware, generic infra services, multiple 3rd party products, Tableau, MuleSoft, ITIL, ISO27000, Waterfall, Agile, TOGAF, OWASP.
• Led the development and implementation of CI/CD pipelines for various client projects, improving deployment efficiency and reducing time-to-market.
• Utilized ARM templates, Terraform and BICEP to create scalable and maintainable Landing Zones for cloud adoption projects, ensuring robust and compliant deployments.

Cloudreach UK

09/2019 - 12/2021 Cloud Solutions Architect (Security) • London, England, United Kingdom

• I joined the company as a Cloud Solutions Architect to lead cloud adoption projects for several local government clients. In this role, I work both as a team member and on my own providing end-to-end technical project delivery and supervision starting from cloud adoption road map planning and requirements capturing stage.
• My cloud adoption approach is based on industry best practices and CSPs cloud adoption frameworks. I focus on security, governance, and designing a solution that is fit for purpose. I prefer to work with Azure public cloud, but quite vendor agnostic. I was accountable for technical delivery for such clients as London Borough of Kensington and Chelsea (migration to Azure), Unilever (initial pre-migration assessment and CSPs costs comparison), Schindler (EU data centre migration to Azure), Merlin Entertainment.
• Supported client development teams in the adoption of DevSecOps practices using Azure DevOps, resulting in a 30% increase in deployment efficiency.

Enfield Council

05/2017 - 04/2019 Cloud Solutions Architect / Security Consultant • London, England, United Kingdom

I joined Enfield Council to participate in challenging transformation project in public sector government organisation as an IT Consultant providing architecture design / project delivery management and consultancy services during organisation journey to cloud.

I led several critical streams like migration of company IT services to the Cloud, development of AI based application (digital reception), Dell VxRail adoption, unified communications, implementing BI solution and data processing platforms used for information provision to public.

Main focus was done on operational costs optimisation and information security (GDPR, PCI-DSS, ISO27000).

I was responsible for:
• 3rd parties architecture designs review and evaluations
• SME for Microsoft Azure/ O365 cloud services
• SME for projects related with Artificial Intelligence (AI), Machine Learning (ML), Internet of Things (IoT) technologies
• Dell VxRail hyperconverged infra deployment and support
• SME for Amazon Web Services (AWS)
• Managing 3rd parties project delivery
• Full project cycle delivery and supervision (requirements/HLD/DLD/PoC/implementation/handover/support)
• Projects TCO / OPEX / CAPEX estimation and costs ownership
• Solutions architectures defence on architecture review boards
• CxO level and senior stakeholders negotiations and engagement
• HLD / LLD / PoC / etc project documentation preparation
• Cloud migration strategy creation based on company vision and business needs
• Tenders document preparation and reviews
• ITIL / ITSM processes updates and optimisation

Skills: Cybersecurity · Microsoft MCSE · ITSM · Cloud Adoption Framework (CAF) · ISO27001 · Office 365 · Data Migration · VMware.

OTHER EMPLOYMENTS

Neartú Consulting Limited • United Kingdom • 04/2016 - 05/2017 Enterprise Architect

EPAM Systems • New York, USA / Minsk, Belarus • 01/2014 - 03/2016 Solution Architect/IT Consultant/Project Coordinator

Tieto • Belarus, Minsk / Helsinki, Finland • 02/2010 - 02/2014 IT Architect

life:) Mobile Services Network Provider • Belarus, Minsk • 02/2005 - 02/2010 IT Infrastructure Services Department Manager

EDUCATION

• Bachelor’s in computer science and systems engineering • Belarusian State University, Minsk, Belarus • 01/2000 - 12/2005
• Certificate in Small Business Leadership Program • Kingston University

CERTIFICATIONS

• CISSP (in progress, ETA Nov 2025)
• TOGAF (in progress, ETA Dec 2025)
• Microsoft Certified: Cybersecurity Architect Expert
• (ISC)2 CC (Certified in Cybersecurity)
• Microsoft Certified: Azure AI Fundamentals
• Microsoft Certified: Security, Compliance, and Identity Fundamentals
• Microsoft Certified: Azure Data Fundamentals
• Amazon Web Services (AWS) Certified Solutions Architect
• Microsoft Certified: Azure Solutions Architect Expert
• Microsoft Certified Solutions Expert: Cloud Platform and
• Infrastructure Certification
• ITIL v3 foundation
• VMware VCP
• HPE MASE (Master Accredited Systems Engineer)

AWARDS & SCHOLARSHIPS

• UK Exceptional Talent (Government Endorsement) • 08/2019
• ICU professional coach certification
• Official UK STEM Ambassador