Alan Woodhouse

Experience

• 

  Coventry Building Society

  Jun 1994 - Nov 2001

  Production Services Manager

  As Production Services Manager I was responsible for all non-development IT staff, including Technical and Network Support, Service Desk, System Test and Computer Operations (50+ staff).Joined as a Unix System Administrator during an migration programme from a Bull mainframe to Unix core systems, and became Production Services Manager post-migration.

• 

  Accenture

  Nov 2001 - Aug 2017

  Information Security Risk Manager and Compliance Lead

  From 2001 to 2017 I was a Risk Manager and Certification Lead within the Information Security team under the CISO:- Responsible for maintaining the Enterprise global ISO 27001 certificate, which at more than 400,000 employees is one of the largest, if not the largest in the world. My team is the primary point of contact with the British Standards Institute for organizing external audits around the globe.- Starting in 2016, I have led a programme of work to certify Accenture Private Cloud infrastructure services to the Cloud Security Alliance's STAR standard. Four locations in Europe and the US have so far been gold maturity certified.- Regularly produce metric, breach analysis and legal development reports for C-suite.- Prime point of contact within Information Security for the global Legal team to help them establish the impact of new legal developments around the globe, such as the EU's General Data Protection Regulation. I have a range of Data Privacy certifications with the IAPP.From 2006 to 2011 I was an Information Security Manager within the North Europe Infrastructure Outsourcing Delivery Centre:- Responsible for ISO 27001 deployment and ongoing certification for locations in the UK and Germany.- Delivery of Information Security services to clients in Government, Construction and Travel industries.From 2001 to 2006 I was a Technical Support Manager within the North Europe Infrastructure Outsourcing Delivery Centre:- Led a team of 30+ Unix, Sybase and Oracle technical support staff.- Managed infrastructure to deliver services to a number of clients spanning the Government, Retail, and Logistics industries. Show less

• 

  National Grid

  Oct 2017 - Jun 2020

  IT Risk Management Lead

  Managing a small team and responsible for identification, assessment, response, monitoring and executive reporting of information and cyber security risks.Since 2019, working with external KPMG consultants to establish a new risk and control framework which is focusing the team more on control assessments in the 2nd line of the Three Lines of Defence model.

• 

  Retired

  Jun 2020 - now

  Retired and not actively looking for work.