David Storey

David Storey is a highly experienced Chief Information Security Officer (CISO) and Data Protection Officer (DPO) along with being an award winning Programme Manager (MSP). David is a Certified Information Privacy Manager (CIPM) and a qualified General Data Protection Regulation (EU GDPR P) Practitioner. He is a BSI certified Lead Auditor for Information Security Management Systems (ISO27001) and a Personal Information Management Systems (ISO27701 & BS10008) & Legal Admissibility and Evidential Weight (BS10008) specialist. David has extensive programme management, blue chip consulting, audit, governance, risk management, business change, vendor selection and management experience. He has excellent communication and stakeholder management skills and is experienced at working to ‘CxO’ Level. Using his deep understanding of information management, governance, privacy, security and admissibility, he has successfully navigated several complex organisations through their GDPR Readiness journey. Keywords Chief Information Security Officer (CISO), Certified Information Security Manager (CISM), Data Protection Officer (DPO), Lead Auditor, Managing Consultant, Programme Director, Programme Manager, Senior Project Manager. Business Continuity Management, CyberEssentials Plus, Data Loss Prevention (DLP), Data Protection Act (DPA 2018), Data Protection Impact Assessment (DPIA), eDiscovery, General Data Protection Regulation (GDPR P), Governance Risk Management and Compliance (GRC), Information Security Management Systems (ISMS), Payment Card Industry Data Security Standard (PCI DSS), Personal Information Management System (PIMS), Privacy by Design, Privacy Compliance Framework (PCF), Self Assessment Questionnaires (SAQ), Report of Compliance (ROC), Security Policy Framework (SPF). BS10008, BS10012, ISO 9001, ISO 19011, ISO 15489, ISO 22301, ISO 27001, ISO 27701, PAS 1192-2