Selected Work

Leading IT SOX & control compliance across global operations

Vodafone · IT Platforms SOX Manager

Owned IT SOX compliance across Global IT Operations, coordinating multiple teams to ensure IT General Controls were designed, implemented, and operating effectively.

Impact: reduced audit friction, clearer ownership of controls, and improved confidence for senior stakeholders.

Embedding security & controls into a large scale cloud migration

Vodafone · Stream Lead (ITGC & Security)

Led the ITGC and Security workstream for a Google Cloud Platform migration, embedding access, change management, and data security controls early rather than retrofitting later.

Impact: enabled regulatory confidence while allowing delivery teams to move at pace.

Turning technical risk into decision ready insight

Vodafone · SME to Corporate IT & DevSecOps

Subject matter expert across new and legacy systems, integrations, improvements and platform upgrades translating technical risk into clear, actionable information for non specialist stakeholders.

Impact: better informed decisions, fewer late stage surprises, and more pragmatic control design.

Linking technology architecture to real-world risk

EY · Vodafone · MSc Software Engineering

Built a practical understanding of how IT infrastructure, cloud services, software components, and data flows interact and how design and delivery decisions translate directly into operational, security, and compliance risk.

This perspective was developed through formal study in software engineering and reinforced through audit leadership and IT operations compliance work, allowing me to engage credibly with engineers, architects, and delivery teams.

Working alongside Agile delivery teams, adapting assurance and control thinking to fit iterative delivery models rather than forcing traditional, linear governance approaches.

Impact: stronger risk assessments grounded in technical reality, fewer gaps between design intent and control implementation, and more constructive conversations between audit, IT, and delivery teams.

Modernising IT audit using data analytics

Reckitt · Internal Audit Manager (IT & Data Analytics)

Planned and delivered IT audits that combined financial, technical, and data analytics elements, helping embed analytics into the global internal audit function.

Impact: deeper insight into control effectiveness and more targeted, useful audit outcomes.

Delivering multiple high-pressure programmes in technology risk

EY · Senior Consultant, Technology Risk

Planned and delivered technology audits that integrated financial, technical, and data analytics, moving the audit approach from sample based testing to risk driven analysis across larger data sets. Worked closely with global technology and business teams to embed analytics into the internal audit methodology, improving visibility of control effectiveness, identifying patterns and outliers, and enabling more targeted, decision useful audit outcomes.

Impact: Improved assurance quality, clearer insight into technology and operational risks, and audit findings that were more relevant, actionable, and aligned to business priorities.