Kirsty Dunlop
Rosyth,Fife
Summary
Versatile professional with expertise in risk management, compliance, and information security. Demonstrated success in developing information security awareness strategies and implementing risk frameworks that meet GDPR and anti-greenwashing standards. Experienced in operational management within serviced offices, emphasizing customer service excellence. Leadership capabilities strengthened through experience as a sector commander in the RAF Air Cadets, focusing on training delivery and team development, supported by certifications in regulatory compliance and Lean Six Sigma.
Overview
14
14
years of professional experience
1
1
year of post-secondary education
Work history
Information Security Education & Awareness Manager
Standard Life
Edinburgh, Edinburgh
2025.09 - 2026.08
- Define and implement information security awareness strategy for business and regulatory needs.
- Develop and maintain annual education and awareness plan with campaigns, training, communications.
- Support and advise project teams and BAU workstreams on security communications.
- Continuously improve programme using feedback and emerging threat insights.
- Design, deliver, and maintain mandatory CBTs with role-based and targeted learning sessions.
- Create and deliver multi-channel campaigns using intranet, Viva Engage, and newsletters.
- Translate complex security concepts into clear, business-friendly messaging for wider understanding.
- Support phishing simulations and targeted training delivery across teams.
- Drive measurable reductions in human risk through behaviour-focused change.
- Analyse and report effectiveness of awareness initiatives to stakeholders.
- Manage cross-business stakeholders to embed a strong security awareness culture.
Marketing Risk Manager
The Phoenix Group
Edinburgh
2023.06 - 2025.09
- Facilitated employee training on risk awareness, enhancing overall organisational safety culture.
- Streamlined internal procedures with development of robust risk controls.
- Prepared detailed reports on potential threats, informing corporate decision-making processes effectively.
- Spearheaded data protection initiatives, safeguarding customer information and preventing breaches.
- Established, monitored and reported on risk management metrics to assist with decision-making.
- Supported compliance with GDPR, UK Data Protection Act 2018 and other relevant data protection laws.
- Supported in implementation of local frameworks in support of Consumer Duty including delivery of training.
- Worked with stakeholders to develop anti-greenwashing support and guidance for colleagues.
Compliance Manager
Azure Global
Dunfermline
2020.01 - 2025.05
- Promoted proper regulatory knowledge throughout daily work.
- Compiled relevant legal and administrative documents relating to inspections.
- Regularly interpreted legislation to advise teams on necessary implementation advice.
- Reviewed internal policy, procedure and guidance documents and implemented changes in line with industry & legal requirements.
- Proactively identified and solved complex problems related to employee training, management and business direction.
- Adapted session delivery to meet specific needs of professional learners within different environments.
Registrations Manager
Pico Business Solutions Ltd t/a Red Ark
Dunfermline, Fife
2016.08 - 2020.01
- Developed strong teams by skilfully recruiting, orienting and training loyal, hard-working employees.
- Supervised and trained customer service team members to provide exceptional client care and account management.
- Facilitated on-site staff training, developing processes and procedures to increase operational accuracy.
- Aided senior leadership by recommending corrective actions and improvements to company operations.
- Employed outstanding communication and conflict-resolution abilities to deftly resolve customer complaints.
Business Centre Manager
Liberty Business Centres
Rosyth, Fife
2013.02 - 2016.08
- Directed and supervised front-of-house operations, upholding company standards.
- Actioned customer feedback to promote continued service improvement.
- Implemented innovative ideas for improvement of centre's services and facilities.
- Facilitated client meetings to secure new business opportunities.
- Managed office supplies, ensuring smooth operations.
Education
International Advanced Certificate - Regulatory Compliance
International Compliance Association
United Kingdom 2022.11 - 2023.03
Professional Certificate - Management
The Open University
United KingdomYellow Belt - Process Improvement
Lean Six Sigma
United KingdomLevel 3 - Education & Training
City & Guilds
Scotland 2025.06 - 2025.09
Certificate - GDPR
Data & Marketing Association
United KingdomMicrocredential - Risk Management
The Open University
United KingdomSkills
- Operational risk knowledge
- Risk Assessments
- Process Improvement
- Excel proficiency
- Data analysis
- Regulatory risk
- Microsoft Office Suite
- Decision making
- Training delivery experience
- Virtual training delivery
- Information security comprehension
- Internal communications experience
- Stakeholder management competency
Timeline
Information Security Education & Awareness Manager
Standard Life
2025.09 - 2026.08
Level 3 - Education & Training
City & Guilds
2025.06 - 2025.09
Marketing Risk Manager
The Phoenix Group
2023.06 - 2025.09
International Advanced Certificate - Regulatory Compliance
International Compliance Association
2022.11 - 2023.03
Compliance Manager
Azure Global
2020.01 - 2025.05
Registrations Manager
Pico Business Solutions Ltd t/a Red Ark
2016.08 - 2020.01
Business Centre Manager
Liberty Business Centres
2013.02 - 2016.08
Professional Certificate - Management
The Open University
Yellow Belt - Process Improvement
Lean Six Sigma
Certificate - GDPR
Data & Marketing Association
Microcredential - Risk Management
The Open University
Additional Information
2024-01