CRISC, ISO 27001
Mike has thirty years’ experience in risk-based IT assurance in NZ, PNG and Australia. Exceptional IT technical and security skills, sound business and risk management experience, provides the foundation for the identification and management of IT-related business risks.
Significant practical experience in managing compliance standards and regulations including APRA, Basel II, SOX and PCI-DSS.
Effective communication and negotiation skills enabling effective issue resolution where parties have different and conflicting interests. Frequently acts as an informal diplomatic negotiator both at work and in personal life matters.
Sort-after people management and development skills enabling getting the best out of teams. During 3-year contract in PNG, developed and executed the CISA (Certified IS Auditor) training program for ISACA and very proud that three direct reports became the first Papua New Guineans ever to pass the exam.
High level of tenacity, especially when faced with a difficult problem.
Provided assurance services in areas such as IT General Controls, Risk management, Governance, Application Systems, IT Infrastructure, Data Centres, Information Security, Business Continuity, Outsource Management, and Access Control Frameworks.
Active member of ISACA since 1990. Some recent involvements include:
- CISA Test Enhancement Sub-Committee member
- Auckland Chapter President
- PNG Chapter President
- Sydney Chapter President
- 2015 Oceania CACS Committee Chair
- Expert reviewer for ISACA Configuration Management using COBIT 5
- APRA CPS234 Compliance Audits
- Implemented ISO27001 Information Security Management Systems leading to successful certification
- Conducted ISO27001 ISMS Internal Audits
- Developed governance, risk management and information security frameworks
- Conducted IT Governance Audit
- 2012-2012 IT Audit Leader, Suncorp Group, Sydney Australia
- 2009-2012 IT Audit Manager, ING Direct, Sydney Australia
- 2004-2009 IT Audit Manager, Westpac Banking Corporation, Sydney Australia
- 2001-2004 IT Audit Manager, Bank South Pacific, Port Moresby PNG
- 1998-2001 Manager Credit Management Information, ASB Bank, Auckland NZ
- 1994-1998 IS Auditor, ASB Bank, Auckland NZ
- 1989-1994 EDP Audit Manager, National Mutual Life Association, Wellington NZ
- IT Assurance, Governance and Risk Management, Information Security
- Business Continuity and Disaster Recovery, Regulatory Compliance, VISA PIN Security
- IT SOX
- Basel II
CERTIFICATIONS / MEMBERSHIPS:
- CISA, CRISC
- COBIT 5 Foundation,
- COBIT 5 Implementation
- ISO 27001 Lead Auditor