Brian Nagle
Bathgate,West Lothian
Summary
A highly skilled Information and cybersecurity professional with CNSS and CISMP certifications, currently advancing towards CISM and CISA. Extensive expertise in applying and assuring cybersecurity controls across all domains, with a strong grasp of emerging threats, regulations, and best practices in third-party security. Proven management capabilities in risk assessment, threat modelling, and risk mitigation strategy development and am meticulous in reviewing security protocols to identify weaknesses and recommend improvements. Possessing strong communication skills with significant experience in customer relationship management and influencing stakeholders.
Overview
16
16
years of professional experience
Work history
Security Strategy & Consultancy Manager
Lloyds Banking Group
Edinburgh
10.2017 - Current
- Assessing supplier’s technical, operational and management control effectiveness and ensuring compliance with LBG’s and regulatory and broader international standards.
- Generating exceptions, creating, and articulating control weaknesses and/or gaps to support risk reporting through governance.
- Acting as subject matter expert across all aspects of information and cyber security, resilience, technology, data and supply chain.
- Providing advice and guidance to more junior team members in relation to SME knowledge and process improvement.
- Effectively and confidently managing relationships with internal and external customers, working collaboratively.
- Using current market and industry connections and knowledge to find ways to enhance risk management at LBG
- Working across divisions to build and mature LBGs supplier assurance framework, focussing on advances to cyber security risk framework.
- Proactively helping LBG manage its current and future risk landscape.
- Identifying shortcomings and opportunities: suggesting and implementing improvements.
- Leading LBGs Education and Awareness framework to enhance knowledge and understanding of risk within supply chain
Fraud and risk analyst
Lloyds Banking Group
Edinburgh
01.2013 - 10.2017
- Investigations and resolution of account/card fraud claims along with additional types of reported fraud. Including managing the full review, remediation and reporting required aligned to the product and regulatory association
- Ensuring timeliness with reporting standards and regulatory requirements
- Efficiently manage caseload conducting timely outreach to clients and conducting interviews to understand the fact pattern where necessary
- Proactively identify recovery efforts from reported fraud transactions to recuperate losses
- Collaborate with Fraud Strategy on re-occurring fraud themes and assist on proposed decisions and action to be taken as a result of any fraud investigation
- Ability to describe basic fraud and case resolution decisions in clear and understandable language to internal clients
- Build and maintain strong working relationships with internal and external clients and act as a liaison in a professional manner with internal business units
- Identified fraudulent behaviour through careful examination of account activities.
- Analysed transaction patterns to identify potential risks.
- Formulated strategic plans addressing company-wide vulnerabilities, resulting in strengthened defences against fraud and risk incidents.
- Mitigated potential threats by conducting comprehensive threat assessments.
- Examined risk information and produced standard and ad hoc risk reporting for board, committees and management.
- Prepare and document review findings in a concise, understandable manner for written communication to the appropriate parties
Financial fraud investigator
Intelligent Finance
Livingston
03.2010 - 01.2013
- Analysed complex data sets to identify patterns consistent with fraudulent activity.
- Interviewed witnesses, suspects and victims to gather valuable information during investigations.
- Stayed abreast of emerging trends in financial crime through continuous professional development.
- Maintained detailed records of all investigative actions taken, ensuring transparency and accountability.
- Reviewed customer accounts for signs of fraudulent activity, safeguarding client interests and company reputation.
- Conducted in-depth investigations for uncovering inconsistencies or irregularities in financial documents.
- Cooperated with law enforcement agencies, aiding in apprehension of individuals involved in fraudulent activities.
- Handled highly sensitive information confidentially throughout investigation process; ensured compliance with data protection laws.
- Met needs of multiple investigations at differing paces, facilitating dynamic environment in line with legislation and investigation standards.
- Assessed accounts and accounting systems in cases of alleged criminal activity.
- Identified emerging trends in criminal activity by analysing patterns in investigations.
- Built case files to communicate investigation progress and findings.
Skills
- CNSS certified
- CISMP certified
- Working towards CISM and CISA
- Highly experienced in application and assurance of cyber security controls across all domains
- Strong understanding of emerging threats, regulations, and best practice in relation to 3rd party security
- Management - effective risk assessment, threat modelling, and risk mitigation strategist
- Diligence: able to meticulously review security protocols, identify weaknesses, and recommend improvements
- Strong communication skills with significant customer relationship management and influencing skills
Timeline
Security Strategy & Consultancy Manager
Lloyds Banking Group
10.2017 - Current
Fraud and risk analyst
Lloyds Banking Group
01.2013 - 10.2017
Financial fraud investigator
Intelligent Finance
03.2010 - 01.2013