Profiles search

Christopher B.

Information Security | Privacy | Assurance | GRC | ESG | Risk Management | Capital Market | ISO | Auditing | Consultancy
New York, NY, United States

Details

Education: MicroMasters

Cybersecurity

Rochester Institute of Technology

2020 : 2021

Professional Certificate

Essentials of Cybersecurity

University of Washington



Bachelor of Science

Business Administration

University of California, Berkeley - Walter A. Haas School of Business
Experience: • Executed comprehensive audit cycles for ISO 9001, 27001, 27017, 27018, and 27701 across a wide spectrum of industries.

• Conducted audits within sectors such as defense contractors, financial services, medical equipment, industrial manufacturing, and professional services.

• Conducted thorough on-site facility assessments to validate client adherence to applicable standards, regulations, and laws.

• Assessed and analyzed evidence provided by external clients, meticulously evaluating policies and controls against stringent audit criteria.

2023 : Present

BSI

Auditor - Information Security, Digital Trust Assurance

* Worked closely with the account manager, business development managers, and regional practice directors to scope solutions and proposals around client requirements on penetration testing and cyber risk advisory projects

* Pre-qualify/qualify opportunities to ensure that they meet predefined and relevant criteria and standards

* Support the regional practice directors on drafting and reviewing new proposals and statements of work (SoW) that meet client requirements, ensure solution design is captured and documented to agreed standards, and submit within specified timescales

* Maintain the BSI standards and other agreed Standard Operating Procedures demonstrating attention to detail in ensuring the quality and accuracy of the information throughout the presales process

2022 : 2022

BSI

Solutions Architect, DTC Presales Bids and Tenders Management

* Collaborator on project focused on digital trustworthiness for a major global telecommunication manufacturer by providing controls mapping and security advice based on various security assurance and risk management frameworks

* Review privacy policy for a major EdTech company to comply with various data protection and privacy laws and regulations such as GDPR, EU Data Act, EU Date Governance Act, CCPA, and CPRA

* Conduct ISO 27701 Privacy Information Management System assessment on EdTech company

* Support senior consultants on ISO 27001 internal audit review by performing evidence collection, collaborating with client on policy remediation, communicating with client’s external auditor, and delivering risk assessment register and risk remediation plan for any identified vulnerabilities to client

* Create PowerPoint presentation for project’s summary as part of the project’s deliverables

* Maintain, modify, and update internal risk assessment and risk register templates

2022 : 2022

BSI

Cyber Security Consultant, Digital Trust Consulting (DTC)

2022 : 2022

BSI

Cyber Security Consultant, CSIR, Cyber, Risk & Advisory

* Perform detailed KYC (Know Your Client), Risk, GeoComply, and AML (Anti Money Laundering) checks analysis of all aspects of client’s accounts for fraud mitigation and loss prevention

* Investigate and research client’s accounts raised by ongoing risk procedures initiated by Risk Alerts and Fraud Reports, escalate to Fraud team, report and document any suspicious activity to the internal Daily Fraud Report case management system

* Conduct client’s identity verification, review documents and financial instruments authentication including debit and credit cards in order to comply with BSA (Bank Secrecy Act)/AML, Title 31 of CFR, regulatory compliance and internal controls

* Perform daily review and approval on client’s financial transactions in ACH, eCheck, Debit/Credit Card, PayPal and other various payments channels to detect, prevent and mitigate any fraudulent or suspicious activity

* Deliver quality and timely client service and resolve client’s complaints and issues in relation to risk and fraud matters

2021 : 2021

BetMGM

Risk & Fraud Associate
Company: BSI
Years of Experience: 14
Spoken Language: Cantonese Chinese, English, Japanese, Mandarin Chinese

Skills

Auditing, Audit Managment, Bloomberg, Burp, Capital Markets, Client Prospecting, Compliance, Cybersecurity, Data Governance, Data Privacy, Data Protection , Data Subject Rights Management, Digital Forensics, Enterprise Policy Management, Environmental, Social, and Governance, Equities, Equity Research, ESG, Financial Analysis, Financial Modeling, FreeBSD, Global Reporting Initative , GRC, Incident Management, internal aud, Internal Audit, Internal Audits, Investments, ISO 27001, ISO Standards, IT Governance, IT Risk Management, Network Security, OSSEC, OWASP ZAP, Personal Data Protection, Privacy, Proposal Writing, Python (Programming Language), Splunk , SQL, Sustainability Metrics, Sustainability Reporting, SWOT analysis, Third Party Risk Management (TPRM), Time Management, Valuation, Windows 10 , Wireshark

About

Professional cybersecurity consultant, capable of providing effective and actionable deliverables in a timely matter. Demonstrated ability to communicate innovative products and complex solutions with external clients and internal stakeholders in plain English. Technologically inclined and passionate about the Information Security, Blockchain and Capital Market sectors. Strong interest on the latest trend and news of Information Security, Risk, ESG and expert knowledge on Hong Kong and China.



Highlights include:



Analytical Skills, Project Management, Critical Thinking, Interpersonal Skills, Presentations, Collaboration, Problem Solving, Time Management