I possess a proven track record in providing framework design and implementation advisory, independent review, challenge, and assurance over cyber, technology, and data risk management practices. My expertise lies in translating complex risk landscapes into actionable strategies, driving secure digital transformation, and ensuring robust regulatory compliance within highly regulated sectors like financial services. As a proven thought leader and trusted advisor to C-suite and Board-level stakeholders, I excel at establishing frameworks, influencing adherence, and building high-performing teams to enhance operational resilience and mature risk management capabilities.
- Cyber & Data Transformation: Global Cyber Strategy, NIST Cyber Security Framework, ISO 27001, ISO 42001, Essential 8, ISO 20000, DCAM, Incident Response and Digital Identity.
- Enterprise Risk & Resilience: ISO 22301, AI/IoT Risk Management, Third-Party Risk, Regulatory Compliance (APRA CPS 234, CPG 235, SOCI Act. EU AI Act, GDPR, Privacy Act 1988, PSPF, VPDSS, IPART, MAS TPRM Requirements, PDPA Singapore).