$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Governance SME, GDPR/NIST/SOX/ISO/FSA
David Howells
,
Redhill, United Kingdom
Experience
Other titles
Skills
I'm offering
I am a skilled and experienced resource with a wide range of experience business and IT projects & industries. With experienced Analyst of Regulation & compliance control Frameworks (FCA), Banking, Regulation Reporting Programmes, Data Gathering & Analysis, and deploying change business solutions, TOM business change, business process reengineering, full life cycle development and deployment of software, hardware and business process.
I deploy change globally with IT and audit/compliance teams and the business not as irritant but as a change for the better in the business.
I follow and work with several methodologies Prince2, Agile, waterfall, SDLC, Six Sigma
Experience of client facing work, comfortable at CXO level & the most technical of resource.
level for in industries diverse as, FinTech, Global Management, Regulation, Consulting, Banking, Betting, Trading, Financial Services, online business, and Insurance.
Kind Regards
David Howells
** ** ** ** 99 34
I deploy change globally with IT and audit/compliance teams and the business not as irritant but as a change for the better in the business.
I follow and work with several methodologies Prince2, Agile, waterfall, SDLC, Six Sigma
Experience of client facing work, comfortable at CXO level & the most technical of resource.
level for in industries diverse as, FinTech, Global Management, Regulation, Consulting, Banking, Betting, Trading, Financial Services, online business, and Insurance.
Kind Regards
David Howells
** ** ** ** 99 34
Markets
United Kingdom
Industries
Language
English
Fluently
Ready for
Larger project
Ongoing relation / part-time
Full time contractor
Available
My experience
2020 - 2020
job
Head of Governance
On Going, Dataswift.
• Start-up Personal Data Management Company. With backing from 10 years of academic research from Cambridge & Warwick Universities
• Venture capital investment of 10 million.
• The company is liable for its personal data management decisions in the same way that an accounting firm is liable for its audit Advice. This one of the unique selling points.
Role Goals
• Set up product and company policies, Controls and process and procedures in order to deploy product quickly.
• Manage Risk management for clients and Dataswift
• Own the risk profile and strategy, identify risks and controls. Agree action plans with the business areas to address weaknesses
• Oversee and manage all product deployment as Governance management
• Reports to the CEO and Board of directors and has seats on Ethical committee and Regulation oversight boards.
• Venture capital investment of 10 million.
• The company is liable for its personal data management decisions in the same way that an accounting firm is liable for its audit Advice. This one of the unique selling points.
Role Goals
• Set up product and company policies, Controls and process and procedures in order to deploy product quickly.
• Manage Risk management for clients and Dataswift
• Own the risk profile and strategy, identify risks and controls. Agree action plans with the business areas to address weaknesses
• Oversee and manage all product deployment as Governance management
• Reports to the CEO and Board of directors and has seats on Ethical committee and Regulation oversight boards.
Research, Audit, Deployment, Data management, Risk Management, Management, Ceo, Audit, UP
2019 - 2020
job
Director (GRC) Governance, Risk & Compliance
Omnicom Group.
Role Goals:
• Working as part of the Global Omnicom Global GRC Team
• Design and implement of a Risk and Information Security Framework
• Oversee the Delivery all business contingency planning (BCP)
• Deliver Data GRC (Governance Risk & Compliance), Data Risk Management all vendor 3rd party providers ensuring full oversight and due diligence of the integrity of their frameworks and delivery of service
• Develop, design & implementation Global Risk & Audit ability (Service now)
• Develop, design & deploy Global data identification and management policy
Responsible & Accountable:
• Accountable for the design and delivery of Key Risk Indicators & Reporting of Cyber and Information Security strategy and governance frameworks
• Accountable for ensuring the delivery of security protocols delivered by the business divisions and third-party providers
• Responsible for working with IT and the business to deploy solutions, standards and policies of the cyber team
• Manage 3rd Party accounts to ensure that security SLA's are being met and that all requirements are fully scoped and delivered in line with agreements
• Responsible for managing relationships across the business and ensuring that key messages are delivered and managed
• Responsible for developing and managing Governance framework and information management programme, including the maintenance of existing policies, standards and guidelines and the introduction of new policies and controls
• Develop and manage the information classification and information risk acceptance processes
• Responsible for cyber security training and training phishing campaigns, then advise and report to business managers and technical personnel as to the implementation of the information security and governance programme in their respective areas
• Responsible for consulting with senior management and members of the executive in times of a Cyber or information security issues to ensure that the crisis is managed properly, both internally and externally
• Oversight for local security incidents and events, including management of communication of these events
Regulations (Standards Covered)
• KYC, AML, GDPR,CCPA, ISO22301,ISO27001, SOC2, NIST, SOX, PCI - DSS, TISAX,
• Working as part of the Global Omnicom Global GRC Team
• Design and implement of a Risk and Information Security Framework
• Oversee the Delivery all business contingency planning (BCP)
• Deliver Data GRC (Governance Risk & Compliance), Data Risk Management all vendor 3rd party providers ensuring full oversight and due diligence of the integrity of their frameworks and delivery of service
• Develop, design & implementation Global Risk & Audit ability (Service now)
• Develop, design & deploy Global data identification and management policy
Responsible & Accountable:
• Accountable for the design and delivery of Key Risk Indicators & Reporting of Cyber and Information Security strategy and governance frameworks
• Accountable for ensuring the delivery of security protocols delivered by the business divisions and third-party providers
• Responsible for working with IT and the business to deploy solutions, standards and policies of the cyber team
• Manage 3rd Party accounts to ensure that security SLA's are being met and that all requirements are fully scoped and delivered in line with agreements
• Responsible for managing relationships across the business and ensuring that key messages are delivered and managed
• Responsible for developing and managing Governance framework and information management programme, including the maintenance of existing policies, standards and guidelines and the introduction of new policies and controls
• Develop and manage the information classification and information risk acceptance processes
• Responsible for cyber security training and training phishing campaigns, then advise and report to business managers and technical personnel as to the implementation of the information security and governance programme in their respective areas
• Responsible for consulting with senior management and members of the executive in times of a Cyber or information security issues to ensure that the crisis is managed properly, both internally and externally
• Oversight for local security incidents and events, including management of communication of these events
Regulations (Standards Covered)
• KYC, AML, GDPR,CCPA, ISO22301,ISO27001, SOC2, NIST, SOX, PCI - DSS, TISAX,
Compliance, Processes, Framework, KYC, Audit, Information Management, Implementation, It, ISO27001, Security, Design, Service, Consulting, Management, Due Diligence, GDpr, Risk Management, Information Security, Training, Audit
2017 - 2018
job
UK EU Regulation & Compliance Business Change Manager
Page Group PLC.
(Data Governance & Data Management Processes owner, Operational Business Change, GDPR)
Role Goals
• Set up, Build, Deploy & Manage Operational Business Change to Front & Back office operations & supporting data management process across UK & EU.
• Ensuring that the changes to the business model continues to be profitable, workable and legal
Management of:
• GDPR SME for the EU & UK Providing Regulation & Compliance management to UK & EU Operations
• A point of liaison & relationship manager between Regulation & Compliance, Business Operations & IT Operational teams to Guide data managers to best data governance & quality practice
• Management of a team of project managers & business analysts to ensure that Regulation change is delivered in line with its legal requirements
• User Profiles management for data management & data retirement
• DPO assist in data management architecture, development, testing for approval for EU wide websites and system changes and deployments
Main responsibilities:
• GDPR SME for EU & UK, making business decisions, setting company policies, process & procedures, ensuring good Risk, Governance & Quality Controls are deployed
• UK & EU are well managed with timely & appropriate escalation of events and issues
• Lead a team of project managers, business analysts' resources & administrators to ensure that any European Operations run projects and programmes are effectively governed and controlled
• Investigating, solving & regulatory reporting any data breach & working with ICO
• Guidance for data management & data privacy for legal contracts
• Set up Data Governance & Classification of business data & Security Information Event Management (SIEM)
• Managing multiple 3rd party suppliers in a regulated environment
Role Goals
• Set up, Build, Deploy & Manage Operational Business Change to Front & Back office operations & supporting data management process across UK & EU.
• Ensuring that the changes to the business model continues to be profitable, workable and legal
Management of:
• GDPR SME for the EU & UK Providing Regulation & Compliance management to UK & EU Operations
• A point of liaison & relationship manager between Regulation & Compliance, Business Operations & IT Operational teams to Guide data managers to best data governance & quality practice
• Management of a team of project managers & business analysts to ensure that Regulation change is delivered in line with its legal requirements
• User Profiles management for data management & data retirement
• DPO assist in data management architecture, development, testing for approval for EU wide websites and system changes and deployments
Main responsibilities:
• GDPR SME for EU & UK, making business decisions, setting company policies, process & procedures, ensuring good Risk, Governance & Quality Controls are deployed
• UK & EU are well managed with timely & appropriate escalation of events and issues
• Lead a team of project managers, business analysts' resources & administrators to ensure that any European Operations run projects and programmes are effectively governed and controlled
• Investigating, solving & regulatory reporting any data breach & working with ICO
• Guidance for data management & data privacy for legal contracts
• Set up Data Governance & Classification of business data & Security Information Event Management (SIEM)
• Managing multiple 3rd party suppliers in a regulated environment
It, Manager, UP, Processes, Contracts, DPO, Guide, Office, Development, Regulatory, Testing, Operations, Security, Compliance, Architecture, Management, Event, GDpr, Data management, Websites, Contracts
2015 - 2016
job
Management Consultant
Risk & Regulation (Consultancy) MiFiD2.
developing a structured framework approach to how regulation business changes should be deployed and support the banking, trading & asset management business
• Working with industry SME's and CXO stakeholders throughout the customer life cycle & Journey
• Working with Banks, Wealth Managers for Change projects that Collaborate Business Executives, Compliance, Legal, IT & front office define new solutions & implementation plans to a (TOM) Target Operating Model
• Developed digital business solution to new regulation, with data gap analysis between the current state and future state, Business Information Modelling documentation & planning improvements & efficiencies to current , policy's, processes & procedures
• Co-ordinate, Risk, Control & Governance (GRC) projects to assure end-to-end solutions that can be deployed into current banking operations to meet Legal, Compliance and regulatory obligations
Example Projects
• Bank of America Merrill Lynch, Global Senior Management Regime Reporting (SMCR / BCBS239 / Risk Control Framework (GRC))
• Pictet asset management / Asset / Wealth Manager MiFID2 Reporting Engine
• Deutsche Bank and, RBS (Royal Bank of Scotland), Trade and Transaction Reporting (TTR) Engine & MiFiD2 Reports
• Marketing for Business working groups & forums,
◦ Data Governance, GDPR Security
◦ Risk Management Framework
◦ Banking Ring Fence
◦ Business Digitisation
◦ Data Management for Senior Management Regime
Regulations covered
◦ BCBS239
◦ SMCR Certificated Persons & Senior Management Regime
◦ GDPR
◦ Trade & Transaction Reporting
◦ MiFiD2
• Working with industry SME's and CXO stakeholders throughout the customer life cycle & Journey
• Working with Banks, Wealth Managers for Change projects that Collaborate Business Executives, Compliance, Legal, IT & front office define new solutions & implementation plans to a (TOM) Target Operating Model
• Developed digital business solution to new regulation, with data gap analysis between the current state and future state, Business Information Modelling documentation & planning improvements & efficiencies to current , policy's, processes & procedures
• Co-ordinate, Risk, Control & Governance (GRC) projects to assure end-to-end solutions that can be deployed into current banking operations to meet Legal, Compliance and regulatory obligations
Example Projects
• Bank of America Merrill Lynch, Global Senior Management Regime Reporting (SMCR / BCBS239 / Risk Control Framework (GRC))
• Pictet asset management / Asset / Wealth Manager MiFID2 Reporting Engine
• Deutsche Bank and, RBS (Royal Bank of Scotland), Trade and Transaction Reporting (TTR) Engine & MiFiD2 Reports
• Marketing for Business working groups & forums,
◦ Data Governance, GDPR Security
◦ Risk Management Framework
◦ Banking Ring Fence
◦ Business Digitisation
◦ Data Management for Senior Management Regime
Regulations covered
◦ BCBS239
◦ SMCR Certificated Persons & Senior Management Regime
◦ GDPR
◦ Trade & Transaction Reporting
◦ MiFiD2
It, Manager, Processes, Framework, Planning, Office, Regulatory, Management Consultant, Support, Implementation, Marketing, Banking, Security, Compliance, Asset Management, Management, GDpr, Risk Management, Data management, Operations
2013 - 2014
job
Manager
Lombard (RBS).
working on FCA regulation projects
• CCA Remediation Project Manager & Business Analyst for circa 1000 customers / £5m-£7m compensation when CCA regulations were not correctly deployed.
• Deploy live application change to ensure regulations are kept for tight deadlines, with zero customer impact
• Reporting to the Head of Change and Head of Risk & Compliance, Head of Legal, CTO
Regulations covered
• FCA hand book, MAR,MCOB,CASS,CONC,FUND,PROF,
TECHNICAL
Software: Very Strong Excel, Word, Project, PowerPoint, Outlook Strong G-Suite
• CCA Remediation Project Manager & Business Analyst for circa 1000 customers / £5m-£7m compensation when CCA regulations were not correctly deployed.
• Deploy live application change to ensure regulations are kept for tight deadlines, with zero customer impact
• Reporting to the Head of Change and Head of Risk & Compliance, Head of Legal, CTO
Regulations covered
• FCA hand book, MAR,MCOB,CASS,CONC,FUND,PROF,
TECHNICAL
Software: Very Strong Excel, Word, Project, PowerPoint, Outlook Strong G-Suite
Excel, Project Manager, Powerpoint, Word, Compliance, Cto, Analyst, Software, Manager
My education
University of Warwick
MSc, Management Engineering
MSc, Management Engineering
University of Warwick
Bachelors, Mechanical Engineering
Bachelors, Mechanical Engineering
David's reviews
David has not received any reviews on Worksome.
Contact David Howells
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to David directly in Worksome.
38100+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark