Experience

Canada Life Workplace

• United Kingdom
• Insurance
• 1 - 100 Employee

• Head of IT Risk Management and Oversight, Europe

  • Feb 2018 - Present

  The European IT Risk Management and Oversight team is a global team responsible for the 2nd line of defence for IT Operational Risk , Disaster Recovery and Regulatory Compliance Risk. The responsibilities of ITRMO include - - Creation, sharing and maintenance of standards and guidelines - Designing the IT risk framework, methods and tools - Overseeing effective use of risk processes and controls - Monitoring compliance with regulations across Europe. - Producing aggregated risk reports for Executive Management and Board committees Show less



BSI

• United Kingdom
• International Trade and Development
• 700 & Above Employee

• Senior Manager - Information Governance

  • Mar 2017 - Jan 2018

  Senior Manager in BSI's Cyber Security & Information Resilience division, responsible for primarily responsible for Cyber Security and Data Protection & Privacy. Senior Manager in BSI's Cyber Security & Information Resilience division, responsible for primarily responsible for Cyber Security and Data Protection & Privacy.



Espion - A BSI Professional Services Company

• Ireland
• Computer and Network Security
• 1 - 100 Employee

• Senior manager - Information Governance

  • Mar 2015 - Mar 2017

  Manager within BSI Espion’s information security consultancy division. Responsible for team and project management for services provided by Espion’s professional services unit. Responsible for 3rd Party relationship management and internal SLA resource management. Responsible for driving new business / interacting with existing and potential clients to identify requirements and provide solutions. Head of emerging service line providing external IT audit support services to accountancy / financial audit firms. Providing consultancy and audit in the following areas: • Web Application Security / Penetration Testing / Vulnerability Assessment • Secure Coding • Data Protection & FOI Compliance • Application specific training (Corepay, SAP, Oracle, Clearwell) • Oracle Financials • SAS 70 / SSAE 16 / SOC2 • Business Continuity / Disaster recovery • Etc. Show less



Global Payments Inc.

• United States
• Financial Services
• 700 & Above Employee

• Head of Risk & Audit

  • Apr 2013 - Mar 2015

  Responsible for monitoring and reporting of risk. As the Risk & Audit manager, Gavin is responsible for providing a proactive risk function to the business by implementing a value driven, structured and centralised Risk & Audit function. Responsible for monitoring and reporting of risk. As the Risk & Audit manager, Gavin is responsible for providing a proactive risk function to the business by implementing a value driven, structured and centralised Risk & Audit function.



Espion - A BSI Professional Services Company

• Ireland
• Computer and Network Security
• 1 - 100 Employee

• Consultancy Team Leader

  • Aug 2012 - Mar 2013

  Manager within Espion’s information security consultancy division with Espion. Responsible for team and project management for services provided by Espion’s professional services unit.Responsible for 3rd Party relationship management and internal SLA resource management.Responsible for driving new business / interacting with existing and potential clients to identify requirements and provide solutions.Head of emerging service line providing external IT audit support services to accountancy / financial audit firms.Responsible for delivery of both internal and external training on courses including• ISO Lead Auditor (to certification level)• ISO 27001 / 27002 (to certification level)• ISO 27005 (to certification level)• CISA, CISM, CISSP• Web Application Security / Penetration Testing / Vulnerability Assessment• Secure Coding• Data Protection & FOI Compliance• Application specific training (Corepay, SAP, Oracle, Clearwell)• Oracle Financials• SAS 70• Business Continuity / Disaster recovery• Etc. Show less

• Service Delivery Manager – eDiscovery & Forensics

  • Sep 2011 - Aug 2012

  Gavin project managed engagements for a range of Espion’s e-Discovery & Digital Investigations clients in Ireland, the UK and Europe, under the direction of the Technical Director at Espion Ltd in the following areas: • Information Security Consulting• Digital Forensics• Electronic DiscoveryService delivery and project management for Espion's eDiscovery and Forensics, focusing on:Digital Investigations - employment of computer forensic procedures, methodologies and tools to successfully resolve such issues. Electronic Discovery - efficiently managing discovery requests from clients involving Electronically Stored Information (ESI).http://www.espiongroup.com/forensics-ediscovery/services Show less

• Senior IT Security Consultant & Head of IT Audit Services

  • Jul 2010 - Jan 2012



Mazars

• France
• Accounting
• 700 & Above Employee

• IT Audit Manager

  • Jul 2003 - Jul 2010

  Gavin previously worked with Mazars Consulting, in the position of IT Audit Manager. Gavin has significant experience in the areas of IT Security audit, risk management and compliance in both an internal and external audit context for both the public and private sector in Ireland and the UK. Gavin previously worked with Mazars Consulting, in the position of IT Audit Manager. Gavin has significant experience in the areas of IT Security audit, risk management and compliance in both an internal and external audit context for both the public and private sector in Ireland and the UK.