I have more than 30 years audit experience in public and private sector organisations including NHS, local authority and financial services clients. My experience includes general specialist IT audits, as well as fraud investigations, regulatory compliance audits, risk management reviews, forensic computing assignments and project management reviews.
Recent work has included conducting an Information Security review for a US owned company seeking to enter the financial services sector in the UK, performing a review of IT risk management for a FTSE100 financial services organisation and completing an IT Governance audit for a major real estate company based in Qatar.
My most significant achievement to date has been establishing a whistle-blowing facility within a large public sector organisation, which, shortly after being set up for internal staff, was further extended as a one-stop reporting mechanism for the public. This included establishing policies and processes, obtaining management and political approval as well as organising publicity material and press information.
I am currently a member of the ISACA Scotland Chapter committee with responsibility for the maintenance of the Chapter website, which helps to promote information security news and events to members across the whole of Scotland.