Download PDF

Work History

NetRefer

April 2017

Head of Governance, Risk & Compliance and Data Protection Officer (DPO)

The mandate of this position is to align the processes, organisational structures and company culture to conform with the principals, policies and frameworks as mandated by senior management, using resources such as information, services, infrastructure and applications, people, skills and competencies, all while ensuring business continuity without excessive bloat and waste.

Through the design of processes the GRC department introduces a level of governance across the business following ITIL principles. The risk introduction or mitigation is identified and tracked across all processes whilst compliance is ensured via internal audits of the same processes. 

Governance is also applied by sitting in on the various boards and groups within the company, to ensure that all products, changes and initiatives are in line with the company strategy and to safeguard the business. 

Complimentary responsibilities include chairing the company security board, participating in product council, mentoring, training and leading compliance projects such as GDPR (General Data Protection Regulation). 

Within this position and in conjunction to leading the GDPR compliance project, I have also taken on the role of Data Protection Officer (DPO) for NetRefer. The risk based approach as mandated within the Regulation fits perfectly into the GRC portfolio, ensuring that all processes, technologies and other resources including human have in place a privacy framework cross company that provides guidance as well as support. 

Duties within this role include but are not limited to: 

  • Business process design and re-engineering
  • Risk identification, quantification and mitigation
  • Internal audits in relation to compliance to internal processes and policies
  • Translating legal regulations or directives into processes as well as technical requirements for system compliance for consumption by the product owners and developers. 
  • Conducting due diligence on 3rd parties to ensure suitability.
  • reviewing and providing input to the organisations' legal documents. 
  • Participation in incidents, to manage risk and provide guidance accordingly. 
  • Monitor the industry for any developments that might impact the risk exposure of the company. 
  • Introducing controls across the company through the various processes, internal systems and workflows to reduce risk, promote quality and security as well as ensure compliance. 

 NetRefer 2017                   Smart Studios 2018

2017

Malta Innovation Summit - Conference co-ordinator

As a side project within NetRefer, I was responsible for the organisation of the Malta Innovation Summit. A national scale conference targeting over 300 people with the aim of bringing all innovation stakeholder in Malta under one roof, to discuss and learn about innovation and innovation management. 

www.maltainnovationsummit.com 

NetRefer

Aug 2015March 2017

Head of Programme Management

Heading the Program management department I oversaw the coordination and administration of all aspects of an ongoing programmes including planning, organizing, and controlling programme activities. The programme mandate is drafted by senior management and is then handed over to the programme manager for execution and to ensure that there are no conflicts with other company programmes or initiatives. 

Programmes are company wide initiatives that involve management over a number of teams. The programme management department is also in charge of all processes company-wide, both when drawing them up and their enforcement together with the relevant departments heads and managers. To this effect Problem Analysis and identification is a major part of Programme Management to ensure that problems be it of a technical or operational level are tackled and controlled via set processes and procedures. 

Programme management also leads and promotes security initiatives and heads the company's Security Board. In this role I was also responsible to the maintenance, setup & configuration of the Atlassian Suite of products used by the company namely JIRA, Confluence, CROWD and JIRA Service Desk. 

NetRefer

Apr 2014Aug 2015

Senior Project Manager

In this role I managed internal and operational projects, conducted operational analysis and implemented company wide changes to improve the operational processes and ensure that our operations are cost effective. I worked closely with the COO and act as his right hand to deliver analysis and suggestions for changes and tweaks in the workflows, company policies, general procedures and security procedures. I was also head the security board which was also formed upon my suggestion to ensure that security is taken seriously and with a holistic outlook.

Within this role at NetRefer, I also handled release deployments in order to assign resources and ensure that there are no conflicts with other duties and projects on-going at the time. 

RS2 Software Plc

Jun 2011Mar 2014

Project Manager

Prior to NetRefer I worked for 6 years at RS2 Software where I have worked on various projects over the world. My largest client was First Data Brazil, for whom I handled change management and client relationship. In addition I have worked with large service providers in the Middle East, Nordic banks and consulted on several other projects. 

At RS2 I have gained experience in various areas of the Payments business such as dealing with Card Schemes such as VISA, MasterCard and JCB, working with startups, going through online certifications and implementing local card scheme products amongst others. I have been fortunate enough to work on projects both on the acquiring side and on the issuing side. 

RS2 Software Plc

Jul 2008Jun 2011

Business/Systems Analyst

As a business systems analyst at RS2 I was in constant communication with our clients, gathering requirements and designing solutions to fit those requirements within RS2's product, BankWorks. 

At RS2 I was also the expert on their BankWorks General Ledger module and provided set-ups, customizations and training to clients around the world. 

Education

Certifications

The International Association of Privacy Professionals

20182020

Certified Information Privacy Manager (CIPM)

The International Association of Privacy Professionals

20182020

Certified Information Privacy Professional/Europe (CIPP/E)

License 11572032

Link to online certificate

Castille Institute

20172017

Advanced Operations Risk

Alison - Free Online Learning

20172017

Fundamentals of Corporate Management

International Safety Training College

Apr 2015Apr 2015

Basic Fire Awareness 

License: 27998

Datrix

20092009

PRINCE 2 

Foundation and Practioner

Datrix

20092009

PRINCE 2 

Foundation and Practioner

Portfolio

Skills

Data Protection

Understanding of the latest European data protection regulations with the ability of translating legal documents into functional requirements. 

Organization

State of being efficient or methodical.

Multi tasking

Deal with more than one task at the same time

Change Management

the management of change and development within a business or similar organization.

Business Process Re-engineering

The analysis and redesign of workflows within and between enterprises in order to optimize end-to-end processes and automate non-value-added tasks.

Problem Solving

The process of finding solutions to difficult or complex issues.

Risk Management

(in business) the forecasting and evaluation of risks together with the identification of procedures to avoid or minimize their impact.

Operations Management

The administration of business practices to create the highest level of efficiency possible within an organization.

Business/ Systems Analysis

The analysis of an organization or business and the documentation of   its business or processes or systems, assessing the business model or its integration with technology.

Project Management

The application of processes, methods, knowledge, skills and experience to achieve the project objectives.

Language Portfolio

Client Portfolio