TCS’ Gavin McPaul discusses how he got started in cyber and the benefits of working in attractive Donegal.
“Since I was young, I have always been fascinated by technology, phones, laptops, and any new gadgets really,” explains Gavin McPaul, head of enterprise risk management, Tata Consultancy Services (TCS).
His family soon recognized his talent in the IT field and he became a go-to person for all things related to technology. “And I still am, unfortunately,” he joked. “By the end of high school, I knew I wanted to work in IT.”
Although, like many young people at this stage of their life, she was unsure of the academic direction she wanted to take, especially as her research showed how big the IT sector was and the sheer volume of courses available at her chosen college, ATU Letterkenny.
He said, “One course jumped out at me right away because of its topic Computing with Computer Security and Digital Forensics. It sounded incredibly interesting, and I’m really glad I made that choice. It wasn’t until the end of my degree that I realized I wanted to specialize in penetration testing.”
How did you advance in your career as quickly as you did?
I believe my rapid progression comes down to curiosity. I have always been motivated to learn new things, take on more responsibility, question the status quo to find better ways of working and am passionate about helping other people.
When I started at TCS, we had a big team, but most of the work was individual projects. I make an effort to talk to everyone, understand how they do their job. I quickly realized that everyone has their own ways. This has enabled me to create a central collaborative environment where ideas can be shared, benefiting the entire team and new joiners alike. My curiosity and fresh perspective right out of college meant that within my first five months, I had the opportunity to develop one of our applications. This was a significant career development, showing my skills and knowledge. It got me noticed by senior leadership and opened doors for new projects.
What aspects of the TCS culture do you believe make it an attractive place to start a career?
What I really appreciate about TCS is the amazing team environment. An office environment that is truly collaborative and where you can learn from team members is invaluable, especially early in your career. No one at TCS wants to see you fail. There is a strong support system ready to guide you in the right direction. As a large consulting firm, our primary objective at TCS is to support clients on their technology transformation journey. Working with many clients in a variety of sectors means they always have the opportunity to explore and specialize in your areas of interest. Our clients often make big changes, actively seek new ideas and solutions and really value the insight and solutions we bring.
What does a typical day look like for you?
The most exciting aspect of cyber security and penetration testing is that no two days are the same, you never know what challenges may arise. I have the privilege of working with one of our financial services clients in the US, working with an excellent team spread across the US, Ireland and India. As a leader within their offensive security team, I am currently helping them transform their entire penetration testing system. As the technical lead for our teams in Ireland and India, I provide advice, guidance, and support on all aspects of penetration testing. Our client’s primary goal is to protect their applications and data from external threats. Other than that, my work is diverse and includes meeting new clients, building new skills, developing internal training programs, negotiating and onboarding new resources, and helping manage our 10-person team, which we are looking to grow by six more.
What do you enjoy most about living and working in the northwest?
I love the beauty and tranquility of living in Donegal. We are fortunate to have several large organizations here, which is great for our region. This provides great opportunities for people living in the area, especially with a local university like ATU Letterkenny feeding into places like TCS. I feel very fortunate to have found a cybersecurity career in Donegal, I have been working here since college and am still being offered opportunities to further my career with TCS, even after six years.
What advice would you give to someone looking to start a career in cybersecurity or penetration testing?
We all come out of college with the same degree after four years, but what really sets you apart from other people? Many students haven’t thought about this question, so they usually don’t have an immediate answer. When I’m interviewing graduates, I’m really looking for a real passion and interest in cybersecurity. Usually, this stands out from what they have done outside of their standard. Here are a few things I always recommend to students.
Sign up for any IT or cybersecurity organizations in your college. If it doesn’t exist, take the initiative to start it. Attend conferences like BSides, IRISSCON, or local OWASP chapters. Participate in Capture the Flag competitions, such as the Zero Days CTF or many free online options. These are great for work experience and networking with other students and industry professionals. You can even prepare by using your college community.
Create a LinkedIn account. It’s a great way to connect with like-minded people, and employers are always on the lookout for that. During the summer, contact companies about internship programs. They provide valuable insight and practical experience in the industry. If you can, follow the certifications. In Ireland, anyone can access industry-recognized certifications such as CompTIA Security+ or Pentest+ for free, sponsored by the Irish government. Research areas of interest, read blogs, follow experts, or start a personal project. If you are interested in application penetration testing, know OWASP, it will be your best friend in this field.
TCS is currently recruiting for application penetration testing roles. Click here to apply.
Don’t miss out on the information you need to succeed. Sign up for Daily BriefSilicon Republic’s digest of must-know sci-tech news.
