Open to opportunities

Lee User

@leeuser3

Message

Dynamic Director with expertise in governance, risk, and compliance.

Saudi Arabia

Message

What I'm looking for

I seek a role that allows me to leverage my governance and compliance expertise while fostering a culture of continuous improvement and stakeholder engagement.

I am a dynamic Director with over 20 years of experience in governance, risk, and compliance. My career has been marked by a proven ability to lead strategic initiatives and manage compliance frameworks effectively. I successfully spearheaded the ISO27001 certification process and developed robust security policies that enhanced organizational efficiency by 30%. My strong ability to partner with stakeholders ensures that compliance is maintained within complex regulatory environments, aligning with business objectives.

Currently, I serve as the Sector Planning & Performance Manager at the Royal Commission for Alula, where I orchestrate all facets of sector development, including strategy and planning, performance management, and stakeholder engagement. My previous roles have included Governance and Controls Manager and VP of Divisional Controller for Technology Risk & Security, where I oversaw compliance initiatives and proposed innovative security strategies. I am ready to leverage my unique skills to support and elevate governance strategies within any forward-thinking organization.

Experience

Work history, roles, and key accomplishments

Current

Director of Governance Risk and Compliance

Current

Alula

Oct 2023 - Present (1 year 8 months)

Dynamic Director with over 20 years of experience in governance, risk, and compliance. Proven expertise in leading strategic initiatives, managing compliance frameworks, and risk mitigation processes. Successfully spearheaded ISO27001 certification and developed robust security policies, enhancing organizational efficiency by 30%.

Governance Risk Management Compliance ISO 27001 Strategic Planning Stakeholder Engagement Cybersecurity Policy Development Performance Management Risk Mitigation

Current

Sector Planning & Performance Manager

Current

Royal Commission for Alula (RCU)

Oct 2023 - Present (1 year 8 months)

Orchestrated all facets of sector development, encompassing strategy and planning, performance management, regulations, licensing and permits, and stakeholder engagement. Devised, planned, and managed sector strategies, operating models, objectives, and key performance indicators.

Sector Development Strategy Planning Performance Management Stakeholder Engagement Regulatory Compliance Licensing Key Performance Indicators Operational Management Project Management

Sector Planning Director (Acting)

Royal Commission for Alula (RCU)

Aug 2022 - Sep 2023 (1 year 1 month)

Championed the development and execution of sector strategies to facilitate the transition of authorities from local government entities.

Transitions Stakeholder Engagement Regulatory Compliance Project Management Leadership Strategic Planning Performance Metrics

Governance and Controls Manager

Royal Commission for Alula (RCU)

Aug 2021 - Aug 2022 (1 year)

Diagnosed and managed controls deficiencies, collaborating with business management to mitigate risk exposures. Oversaw daily operational activities associated with sector tasks to ensure seamless function across departments.

Governance Risk Management Operational Management Risk Mitigation Compliance Performance Monitoring

Consultant

Gulf Bank

Apr 2020 - Jun 2021 (1 year 2 months)

Managed the ISO27001 ISMS Certification Project, implementing the CBK Cyber Security Framework controls. Formulated Information Security and Cyber Security policies and procedures.

ISO 27001 Information Security Policy Development Risk Management Project Management

Global Security Project Manager

Deutsche Bank

Aug 2001 - Feb 2002 (6 months)

Oversaw the Global Security Monitoring Programme for the implementation of the Network Intrusion Detection Security Project.

Project Management Security Monitoring Intrusion Detection Risk Management Compliance Stakeholder Engagement Team Leadership

VP - Divisional Controller - Technology Risk & Security

Riyad Bank

Sep 2015 - Apr 2020 (4 years 7 months)

Oversaw compliance initiatives related to information security and technology risk management. Partnered with senior management teams to propose innovative security strategies and implement impactful security projects.

Compliance Management Information Security Strategic Partnerships Information Security Strategy Implementation Risk Assessment Leadership

AVP - Senior Project Manager

Riyad Bank

Aug 2010 - Sep 2015 (5 years 1 month)

Project managed multiple large and medium-scale projects, including the re-engineering of business processes and the rollout of electronic document management systems.

Project Management Document Management Stakeholder Engagement Team Leadership Strategic Planning Risk Management

AVP – Information Security Governance Manager

Riyad Bank

Mar 2008 - Aug 2010 (2 years 5 months)

Established and maintained comprehensive information security policies aligned with business objectives. Engineered a systematic, analytical, and continuous risk management process.

Information Security Policy Development Risk Management Governance Compliance Analytical Skills Continuous Improvement

Senior Manager, Security Technology Solutions

Ernst & Young LLP

Aug 2000 - Aug 2001 (1 year)

Delivered security consulting services to clients, including extensive security assessments.

Security Consulting Risk Assessment Client Engagement Compliance Project Management Stakeholder Management Analytical Skills

Senior Manager, Security Projects

Ernst & Young

Jul 1998 - Aug 2000 (2 years 1 month)

Managed security projects aimed at evaluating existing data security arrangements and implementing recommended enhancements.

Project Management Data Security Risk Assessment Compliance Stakeholder Engagement Analytical Skills Leadership

Manager - Security Enterprise Server Environments

NEDCOR BANK

Jul 1996 - Jul 1998 (2 years)

Instituted security solutions to enhance system security and minimize risks.

Security Systems Risk Management System Security Compliance Project Management Stakeholder Engagement Analytical Skills Leadership

Senior Information Systems Auditor

NEDCOR BANK

Mar 1996 - Jul 1996 (4 months)

Performed comprehensive control reviews on operational areas and executed full systems integrity audits.

Auditing Control Reviews Risk Management Compliance Analytical Skills Reporting Stakeholder Engagement

Education

Degrees, certifications, and relevant coursework

Arden University

MSc, Information Security Management

2019 -

Currently enrolled in the MSc programme in Information Security Management, focusing on advanced topics in information security and risk management.

University of Witwatersrand

HDIP Comp Aud., Computer Systems Auditing

1995 - 1997

Completed a 2-year degree programme in Computer Systems Auditing, focusing on the principles and practices of auditing computer systems and information technology.