Roland Arthur-Kingsley

Roland Arthur-Kingsley

Information Security Auditor/Manager

Hey There 👋🏿

I'm a seasoned Information Security Executive with 10+ years of experience designing and leading security programmes to mitigate risk, ensure compliance, and enhance enterprise resilience across global organisations. My expertise spans IT Audit, PCI DSS compliance, and Governance, Risk & Compliance (GRC), with a particular focus on developing robust governance frameworks and managing third-party risks.

  • Leading security assessments and implementing effective compliance frameworks
  • Developing robust governance frameworks and managing third-party risks
  • Facilitating technical growth through mentoring, documentation, and knowledge sharing
  • Driving innovation while maintaining operational excellence and security compliance

Key Achievements

Security Leadership

Successfully led and implemented PCI DSS assessment projects, managing compliance readiness, gap analysis, and remediation planning. Developed client-specific compliance roadmaps for risk management and sustained security maturity.

Technical Excellence

Instituted TPRM programme to strengthen supplier risk identification and mitigation strategies. Established KRIs and KPIs to boost visibility into third-party security performance and compliance trends.

Professional Experience

Information Security Auditor/Consultant

Current

Eretmis Inc., Gerard Avenue, New York, NY, USA • 2021 - Present

  • Led PCI DSS assessment projects, managing compliance readiness, gap analysis, and remediation planning.
  • Created and maintained detailed PCI project plans, tracking tasks, responsibilities, and deadlines.
  • Collaborated with IT, security, and engineering teams to mitigate security risks and ensure compliance.

Third-Party Risk & Compliance Manager

Tia Cloud Ltd., London, UK • 2018 - 2021

  • Prioritised supplier reviews using a tiered risk model, resulting in a 30% increase in assessment efficiency.
  • Instituted TPRM programme to strengthen supplier risk identification and mitigation strategies.
  • Conducted assessments of vendor controls, improving data protection alignment with industry regulations.

Featured Projects

Enterprise PCI DSS Compliance Framework

Developed a comprehensive PCI DSS compliance framework for a major financial services company, reducing audit scope by 40% through effective network segmentation.

Third-Party Risk Management Program

Designed and implemented a scalable TPRM program for a global healthcare organization, standardizing vendor risk assessment processes and improving compliance visibility.