Carl Cheung Email and Phone Number

Security Compliance at @ Binance

Carl Cheung's Location

Hong Kong SAR, United States

Carl Cheung's Contact Details

Carl Cheung work email

Carl Cheung personal email

n/a

Carl Cheung phone numbers

About Carl Cheung

Carl Cheung is a Security Compliance at Binance. He possess expertise in auditing, policy, internal audit, quality assurance, iso and 23 more skills. He is proficient in Cantonese. Colleagues describe him as "I worked with Carl during my time at The Listening Company, I found him a very dilligent person when it came to his work and he performs his job with little fuss and drama, he is also very well liked throughout the business and is respected for the job he does.", "I have worked with Carl on a number of projects since joining the Compliance and Business Assurance team and have always found the process an enjoyable one. Carl combines extensive knowledge in his field with a personable nature making him not only a pleasure to work with but also a great source of information. Carl has worked tirelessly to ensure the business has gained and retained ISO:9001 accreditation, and I would happily recommend his work within this role and for any future role.", and "Carl is a meticulous and methodical thinker who approaches compliance in a friendly and collaborative manner. This means that the business benefits from compliance processes and practices which are sustainable and realistic, enabling the business to meet accreditations and standards. Carl is a great member of the team; he is reliable and shows a willingness to learn and understand new standards and accreditations. I would highly recommend him."

Carl Cheung's Current Company Details

Binance

View

Security Compliance

Carl Cheung Work Experience Details

Security Governance Manager

Binance Mar 2022 - Present

Everywhere, Oo

Key responsibilities include:• Project Managing security implementations for regulated Binance entities/portfolio companies or ones seeking assurance from regulators for digital asset and crypto trading.• Successfully passed SOC2 Type 1 and Type 2 assessments for Binance entities/portfolio companies through conducting a readiness assessment to evidence review and gathering prior to fieldwork and controls testing.• Successfully gained certification to ISO 27001 and ISO 27701 for Binance entities/portfolio companies within three months, from gap analysis to leading the Stage 2 certification assessment.• Worked closely with global and regional security teams to understand security gaps and implement best practice and enhance the security posture of existing controls• Reviewed the global suite of security documentation following translation from Chinese to English• Undergo the gap analysis of additional entities and portfolio companies against international security standards

View
Senior Security Compliance Analyst

Bitmex Sep 2021 - Jan 2022

Eden Island, Mahé, Sc

Key responsibilities include:• Leads the planning, execution, and reporting of security Controls Self Assessment (CSA) at BitMEX• Ensures accurate identification, communication, and mitigation of risks, processes, and internal control gaps with potential adverse operational, financial, strategic and compliance risk implications• Engages with business and control owners, internal & external auditors, as well as BitMEX leadership on new and ongoing compliance initiatives and business transformation projects• Facilitates the execution of external audits over BitMEX’s products and internal controls in accordance with, but not limited to: SOC 2, ISO 27001 etc.• Leads audit walkthroughs and drives the process of audit evidence collection and review for internal and external audit engagements• Assists in the design of automation to enable scalability of the compliance programs• Assists in GRC tool implementation and day to day management• Own the follow up process on management action plans to ensure appropriate and timely mitigation of identified controls failure

View
Technical Compliance Quality Security Analyst

Mdgroup Aug 2020 - Apr 2021

Bracknell, Berkshire, Gb

Key responsibilities include:• Management of security, compliance and quality processes, documentation and best practice for the Technology Team, in accordance with ISO 27001 and ISO 9001 requirements• Working with the software development and test teams in developing a Software Development Lifecycle framework adopting an agile approach, including developing a Secure Development Policy• Review and align IT policies and processes in accordance to industry best practice• Managing security incident, risk management, change management and privacy impact assessments for the technologies and IT team• Supporting the Commercial and Account Management teams in responses to RFIs and security questionnaires• Supporting the Legal team reviewing Master Services Agreements and contractual agreements ensuring the Company is safeguarded against security clauses• Understanding of industry wide regulations, such as GxP, 21 CFR Part 11 validation and the drug development process

View
Compliance Manager

Visit By Ges Sep 2018 - Aug 2020

Elstree, Herts, Gb

Solely responsible for the implementation and certification of ISO 27001 for GESKey responsibilities include:• Creating a suite of security related policies, ensuring relevant department reviews and approval by the Managing Director• Creating a high-level structure to monitor the effectiveness of the Management System• Developing a risk framework and coordinating a quarterly risk workshops to review key risk associated with the business, where applicable, ensuring risk treatment plans and targets are on track and met• Providing monthly updates to the Leadership Team on developments and changes to the Management System• Supporting the Commercial team in RFP, tender and client questionnaires• Leading the certification of PCI-DSS for one of the software platforms

View
Compliance Manager

Advanced Oct 2016 - Aug 2018

Birmingham, Gb

A key member of the Security and Compliance department, the main function of the role is to maintain existing ISO certifications. Key responsibilities include:• Review the ISO 9001, ISO 14001, ISO 27001 management systems in their entirety, by streamlining existing procedures, identify improvement areas and develop procedures and processes where there is a gap• Undertake significant reviews where leadership have identified a gap or require an independent assessment, such as licencing, asset management and procurement. Communicating findings and initiating improvement projects, working with stakeholders to bridge the gaps and opportunities for improvement• Establish an integrated internal audit schedule and conduct internal audits in adherence to schedule. Where appropriate merging audits to ensure efficient and risk-based auditing• Capture security risks according to agreed methodology, establishing the risk treatment plan for each risk identified• Conducting ISO awareness training for all new starters and on-going training for existing employees

View
Compliance Operations Manager

Rackspace, The #1 Managed Cloud Company Oct 2015 - Oct 2016

San Antonio, Texas, Us

Working within the Corporate Compliance department, the key responsibilities for this role were managing Rackspace’s International Compliance Management System which included, but not limited to: ISO 9001, ISO 14001, ISO 27001, ISO 45001, PCI-DSS, ISAE 3402 and managing Rackspace's International Region Compliance Customer Assurance Programme.Duties included:• Line manage a team of Compliance & Assurance Specialists, including professional development• Liaising with US HQ on the global PCI-DSS programme and project managed any process improvements as required• Control of customer assurance programme (includes customer questionnaires and customer audits), including management escalation-point for any exceptions• Development of customer assurance controls, documentation and collateral• Plan and conducting internal management system compliance audits, chairing follow-up meetings and preparing reports and best-practice recommendations• Lead and facilitate external assessments of the management system including maintaining the relationship between Rackspace and their external assessors• Manage the overall Compliance Management System through day-to-day improvement initiatives• Project manage the transition of ISO 9001 and ISO 14001 to the 2015 versions, including gap analysis, internal audits and certification• Project manage any identified or assigned process improvements

View
Project Manager - Business Excellence Uk

Hinduja Global Solutions Jun 2014 - Oct 2015

Chicago, Il , Us

Working in a key function within the Organisation, I am responsible for change and transition management, compliance and audit (specifically ISO 9001 and 27001) and broader initiatives in line with the HGS Business Excellence Framework. Responsibilities include:• Managing new project implementations using the HGS Transition Methodology from planning phase through to post implementation health checks, including the creation of project plans and deliverables; status report creation and distribution; managing project budget; communication to project stakeholders and identification of risks and issues• Managing and supporting preparation for and completion of internal and external audits, including the completion of corrective actions post audit• Drive use of HGS Operations and Continual Improvement Methodologies• Support Business Excellence initiatives e.g. CSAT, Internal Customer’s Satisfaction (ICSAT), Operations Self Assessments (Health checks), Best Practices (SPARK), Benchmarking• Proactively drive Quality Management and Information Security performance by engaging with teams to address issues and potential risks, identifying and recommending changes through to closure• Train personnel to conduct risk assessments and track department progress against identified actionsKey achievements• Successful recommendation for continued certification to ISO 9001 and ISO 27001• Qualified in PRINCE2 Foundation and Practitioner

View
Management Systems Coordinator

Gemserv Mar 2014 - Jun 2014

London, England, Gb

A temporary role, reporting to the Head of Management Standards, I was responsible for the strategic review of their ISO 9001 and ISO 27001 certifications. Responsibilities included:• Assisting the development of the Quality and audit plan, communicating this with key stakeholders and within the wider business• Co-ordinate and facilitate the external ISO 27001 surveillance visit, closing out 8 non-conformances prior to the audit• Pro-actively liaising with internal and external stakeholders on matters which relate to new or existing work and ensure changes in policies/procedures are aligned to Gemserv’s Quality Management and Information Security systems and standards• Pro-actively engage (via face-to-face meetings and dialogue) with Line Managers and Department Heads to promote, address and resolve key Management System issues and potential risks• Analyse Quality Management and Information Security performance by liaising closely with all teams, addressing issues and potential risks and identifying and recommending changes• Compile recommendations for the Integrated Management Standards Committee on requirements for wider change(s) identified through observations and audits• Continuously promote good practice and awareness of both the Quality Management and Information Security Systems

View
Iso Project Assistant

Hinduja Global Solutions Feb 2014 - Mar 2014

Chicago, Il , Us

Working alongside the ISO 9001 and 27001 Programme Implementation Manager, I was responsible for ensuring all gaps stemming from the gap analysis conducted by Group for 9001 and 27001 are addressed for all three UK sites. • Reviewing and assisting all Operational contracts with the documentation of Operational Manuals and accompanying documentation. Signing-off completed Operational Manuals• Supporting all departments: Operations, HR, Finance, Admin (including Facilities) and Recruitment in the documentation of procedures and processes and record keeping requirements• Managing the development of the company BCP working with the UK General Manager and Director of Corporate Business Excellence to ensure the BCP document and all its associated forms are up to dateKey achievements:• Successful initial audit and recommendation to ISO 9001 and ISO 27001

View
Field Auditor

The British Assessment Bureau Jul 2013 - Nov 2013

West Malling, Kent, Gb

Reporting to the Director of Compliance, I am responsible for auditing businesses against the ISO standards. This role requires the maintenance of an allocated audit schedule with daily travel to client sites to execute audits• Undertaking management process audits, principally ISO 9001 and 14001 on clients premises. Evaluating and analysing business processes to ensure objectives and targets are quantifiable to achieve continual improvement.• Conducting stage one, gap analysis; stage two, initial certification and annual surveillance visits and making recommendations for certification including a written detailed report regarding any non-conformances, opportunities for improvements and observations• Regular visits to prospective clients to provide support and advice on possible routes to ISO certification• Providing a high-level of customer service with an objective and pragmatic approach• Covering a variety of industries, ranging from construction to contact centre and manufacturing to service based industries such as recruitment consultants and non-profit organisations

View
Contract Pci Project Assistant

Williams Lea Nov 2012 - Mar 2013

5 month contract assisting with the implementation of the Payment Card Industry Data Security Standard (PCI DSS) • Conducting gap analysis on current process and procedures against all PCI requirements• Communicating details of gap analysis with all stakeholders and organising weekly meetings on status updates regarding gap in documentation and requirements• Assisting with the facilitation of the Initial Assessment and liaising with the Qualified Security Assessor in regards to audit schedule
Compliance Executive

Serco Nov 2010 - Oct 2012

Hook, Hampshire, Gb

Focussing on the contact centre industry, responsibilities include the implementation and monitoring of Serco’s compliance strategy in relation to clients and governing bodies. Duties included:• Providing Compliance support to regional offices in regards to DPA 1998, Ofcom, ISO 9001:2008 and CCA Global Standard queries• Assessing business areas against contractual, certification and internal policy/procedural requirements in line with the internal audit monitoring programme• Producing comprehensive and effective high level reporting in relation to internal audit activity and client monitoring plans• Acting as an independent review and evaluation body to ensure that compliance issues and concerns within Serco are being appropriately evaluated, investigated and resolved.• Conduct gap analysis against contracts and other functions and acts as a conduit with the roll out of any new compliance initiatives• Assisting in establishing and implementing a communication strategy, for the improvement and awareness of security, quality & compliance issues across campaigns and the Company as a whole• Leading and facilitating external audits including certification audits and client auditsKey achievements• Successful recommendation to ISO 9001 and CCA following a 13-day recertification audit• Gained 3rd party supplier status for a key client after implementation of the client's Supplier Security Schedule, based on ISO 27001

View
Quality And Environmental Officer

Colin Buchanan Jul 2007 - Aug 2010

London, Greater London, Gb

Solely responsible for developing and maintaining the company’s internal quality and environmental management systems and support them through training, communications and liaising with external auditors. Duties included:• Maintaining the company’s QMS, accredited to ISO 9001:2008, through internal auditing of project management and non-project procedures. Training and supporting 12 internal auditors. Supporting 10 regional offices on quality issues and increasing certification to all offices• Developing and implementing the company’s EMS accreditation to international standard ISO:14001:2004, through writing policies, procedures and manual• Development and maintenance of the company’s intranet and collating information for the monthly internal newsletter• Monitoring and updating the company’s project management database, ensuring all information was up to date and training and supporting staff in the use of the database• Monthly visits to regional offices providing support, conducting internal audits and identifying any actions required• First port of call for Project Management database queriesKey achievements• Successful transition from ISO 9001:2000 to ISO 9001:2008• Gained certification to ISO 14001:2004 following implementation of the standard

View
Client Administrator

British Standards Institute Bsi-Ksa Dec 2006 - May 2007

Provided high quality administrative support in the Management Systems Division. Dealing with country offices from Continental Europe, Middle-East and Africa (CEMEA). Duties included:• Issuing certificates to clients registered for Quality Management Systems, and Food Safety Systems, within a two week deadline• Updating and cleansing a master database (SAP) and the website PointGlobal, synchronised to coincide with SAP• Providing invoice and operational support for local offices including Benelux, Italy, Turkey, Russia, Middle-East and Africa• Administering all CEMEA Strategic Accounts, ensuring a high level of customer service was maintained• Certificated on a BSI Understanding ISO 9001 course

View
Administrative Assistant

Home Office Oct 2004 - Aug 2006

London, Gb

Working in the Presenting Officers Unit (POU) for the Immigration and Nationality Directorate (IND) gave me a strong insight into asylum and immigration issues. Within the Home Office there is a strong emphasis on precision and the efficient completion of daily tasks and projects. Duties included:• Working to and achieving tight deadlines• Ensuring Home Office files are located in the correct location ready for hearings at the Immigration Appellate Authority

View

Carl Cheung Skills

Auditing Policy Internal Audit Quality Assurance Iso Change Management Iso 14001 Management Project Management Security Training Process Improvement Service Delivery Compliance Performance Management Team Management Business Process Quality System System Administration Crm Outsourcing Administration Iso 27001 Team Leadership Software Documentation Quality Systems Leadership Strategy

Carl Cheung Education Details

University Of Westminster

Industrial Systems And Business Management
Richmond Upon Thames College

Levels; Pure Mathematics And Statistics; Information Technology
Teddington School

Frequently Asked Questions about Carl Cheung

What company does Carl Cheung work for?

Carl Cheung works for Binance

What is Carl Cheung's role at the current company?

Carl Cheung's current role is Security Compliance.

What is Carl Cheung's email address?

Carl Cheung's email address is ca****@****ace.com

What is Carl Cheung's direct phone number?

Carl Cheung's direct phone number is +1 800 961*****

What schools did Carl Cheung attend?

Carl Cheung attended University Of Westminster, Richmond Upon Thames College, Teddington School.

What skills is Carl Cheung known for?

Carl Cheung has skills like Auditing, Policy, Internal Audit, Quality Assurance, Iso, Change Management, Iso 14001, Management, Project Management, Security, Training, Process Improvement.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles

Get direct phone numbers & mobile contacts

Access company data & employee information

Works directly on LinkedIn - no copy/paste needed

Get Chrome Extension - Free

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.