Paul O'Neill

Experience

• 

  Local Government and Social Care Ombudsman

  Apr 2002 - Nov 2011

  Investigator

  Investigating complaints of alleged maladministration received against local authorities across North England. Gathering and evaluating evidence before making decisions on whether to uphold complaints, assess injustice caused by maladministration and recommending remedies to the complainants. Providing training on complaint handling and dispute resolution to local authority staff. Training and mentoring less experienced members of the Ombudsman team. Making presentations to relevant stakeholders (eg, CAB, Planning Board for England) on the work of the Ombudsman and leading scouting parties to other Ombudsman services to share good practice and ideas. Show less

• 

  Aberdeenshire Council

  Jan 2012 - Jan 2014

  Internal Auditor

  Planning, performing and reporting on portfolio of internal audit assignments for public sector organisation. Drafting of internal audit reports and working with all levels of management to agree and implement audit recommendations. Completing internal investigations as and when required. Training and mentoring less experienced members of the audit team.

• 

  CHC Helicopter

  Jan 2014 - Sept 2016

  Senior Internal Auditor

  Planning, performing and reporting on SOX, Operational and Base audits across EMEA region for aviation company. Completion of audit reports, agreeing recommendations with all levels of management and monitoring implementation of agreed recommendations. Recruitment, mentoring and training of internal audit trainees. Supervising and reviewing work performed by out-sourced internal audit providers as well as liaising with external auditors.

• 

  Tesco

  Sept 2016 - Apr 2019

  CEC DPO & Risk Manager

  Risk Manager for Tesco Plc's Customer Contact Centre with lead responsibility for data protection/GDPR compliance, information security, internal fraud/misconduct, business resilience management and legislation/regulatory compliance functions.

• 

  Atos

  Apr 2019 - May 2021

  Data Privacy and Audit Senior Consultant

  Providing consulting advice on data protection, privacy, information security and audit projects to clients. Assessing current policies/procedures, performing gap analysis and making recommendations for improvements. Performing risk assurance work on new projects, including risk identification, assessment and mitigation as well compiling and providing advice on DPIAs. Assisting with sales bids and client engagement work.

• 

  Teamwork IMS

  May 2021 - May 2022

  IMS Consultant

  Leading projects which help clients ensure GDPR compliance and work towards ISO 27001 & 9001 accreditation. Working with clients to create, manage and continuously improve their data protection, information security and quality management systems.

• 

  CALYX

  May 2022 - Jan 2023

  Principal Data Governance & Data Protection
• 

  Barclays

  Jan 2023 - Jul 2024

  VP Senior Date Privacy Advisor
• 

  Uniper

  Jun 2024 - now

  Data Protection Consultant/UK DPO