Gemma Parkes

Staff Security Assurance Analyst

Stevenage, England, United Kingdom

About

Working collaboratively to provide security assurance to Okta's customers, focussing on EMEA region but also supporting our global function. Previous achievements: Selected for the Global Infrastructure Operations 2015 Development Programme Nominee for High Performer award for 2014. Winner of Computacenter's Global Infrastructure Operations division 'Rookie of the Year' award for 2013 (awarded in 2014). CISM ISO27001 Lead Auditor Working knowledge of: DORA, CIS20, Security Policy Framework (SPF) and associated supporting documents - including Government Classification Scheme , ISO27001 Information Security Management System Standard, PCI DSS, Data Protection Act Specialties: CCSK v5 IBITGQ® Certified Cyber Risk Management Practitioner (CCRMP) CISM ITIL Foundation in IT Service Management ISO 27001 Lead Auditor PRINCE2 Foundation & Practitioner qualified BTEC level 2 - 'Contract Security, International Visits and Document Handling' BTEC Level 2 - 'Undertaking Security Vetting in Defence Industry' ISO 27001 - Implementation of the standard & Internal Auditor (BSI course) ISACA Professional Membership Previously Security Cleared & DISA member

Experience

  • Staff Security Assurance Analyst at Okta
    Oct 2022 - Present · 3 yrs 9 mos

    Working collaboratively to provide security assurance to Okta's customers, focussing on EMEA region but also supporting our global function.

  • Costa Coffee (2 yrs 11 mos)
    • Global Risk & Compliance Lead
      Sep 2021 - Oct 2022 · 1 yr 2 mos

    • Information Security Manager
      Dec 2019 - Sep 2021 · 1 yr 10 mos

  • Information Security Manager - Product Assurance at Symantec
    Feb 2019 - Dec 2019 · 11 mos

  • Computacenter (6 yrs 8 mos)
    • Information Security Manager
      Apr 2018 - Feb 2019 · 11 mos

    • Information Security Officer
      Jul 2012 - Feb 2019 · 6 yrs 8 mos

  • Finmeccanica - SELEX Systems Integration (9 yrs 1 mo)
    • Group Security Controller
      Jan 2009 - Jun 2012 · 3 yrs 6 mos

      Responsible for managing all aspects of physical and information security in an international systems integration and technology consulting environment. Working across the business from project managing ISO27001 alignment, writing and implementing company security policies, providing collaborative advice to consultants to advising the Board on risk. Duties Included: Ensuring compliance to SPF requirements along with reporting and presenting directly to the Board; Working with stakeholders across the business to achieve ISO27001 ISMS standard in 2006. Developing new policies and procedures in alignment with ISO27001, inc Business Continuity. Appointed “ISO27001 Project Manager” to ensure audit actions are completed and actionees are supported; Accreditation of internal networks where necessary, working with CLAS consultants in the development of RMADS; Managing effective liaison with external Agencies; Providing input for bids and tenders; Regular internal auditing along with assisting external auditors when necessary; Managing the life cycle of incidents from investigating through to lesson learning; Management of protectively marked assets.

    • Group Security Controller
      Jan 2009 - Jun 2012 · 3 yrs 6 mos

    • Group Security Controller & Facilities Co-ordinator
      Jun 2003 - Jan 2009 · 5 yrs 8 mos