$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Senior
{{ $t($store.state.user.experience_search_name) }}
0
jobs
ISO27001 InfoSec Implementor and Data Protection Officer to ensure your company is protected
Luke Eastwood
,
London, United Kingdom
Experience
Other titles
Skills
I'm offering
Qualified barrister now specialising in delivering tangible results for clients in the fields of privacy and information security.
Delivered ISO27001 from scratch for previous companies, ISO13485 as well as complete Privacy frameworks for GDPR, China and HIPAA (USA).
Available for any project - large or small
Delivered ISO27001 from scratch for previous companies, ISO13485 as well as complete Privacy frameworks for GDPR, China and HIPAA (USA).
Available for any project - large or small
Markets
United Kingdom
Industries
Language
English
Fluently
Ready for
Larger project
Ongoing relation / part-time
Full time contractor
Available
My experience
2018 - ?
job
Data Protection Officer
Huma.
Huma is a Class 1 Medical device primarily focused on remote patient monitoring with operations in the UK, USA, China & Singapore. I am responsible for advising in all matters relating to privacy and the protection of personal data. I monitor & ensure ongoing compliance with GDPR, HIPAA, China Cyber Security Laws and our own internal policies and procedures.
I am the lead implementor for ISO27001 (information security)
Responsibilities included
❖ Establishing policies and procedures to ensure compliance with GDPR, HIPAA, Chinese
cyber security law
❖ Advise business partners on a broad range of privacy, technology, and cybersecurity
matters
❖ Develop and implement policies and procedures to mitigate privacy and security risk
❖ Conduct risk assessments and internal investigations
❖ Draft, negotiate, and advise on data protection agreements, terms of service, privacy
policies, and other contracts and communications
❖ Lead Implementor for ISO27001 (information security), I conducted a full risk analysis and went about implementing the 114 controls necessary to achieve certification.
❖ HIPAA Privacy Official
❖ NHS Data Security Protection Toolkit Lead Implementor
❖ Setting up the business in China, negotiating difficult legal & regulatory landscape,
obtaining appropriate licences & permissions (Med device classification & ICP licence)
❖ Acting as the point of contact for all regulatory and information governance questions
from clients which include over 30 NHS Trusts, NHS X and multiple major Pharmaceutical
organisations
❖ Designed and managed the Medopad Platform Play initiative. A difficult challenge
requiring an innovative regulatory and privacy framework to succeed.
I am the lead implementor for ISO27001 (information security)
Responsibilities included
❖ Establishing policies and procedures to ensure compliance with GDPR, HIPAA, Chinese
cyber security law
❖ Advise business partners on a broad range of privacy, technology, and cybersecurity
matters
❖ Develop and implement policies and procedures to mitigate privacy and security risk
❖ Conduct risk assessments and internal investigations
❖ Draft, negotiate, and advise on data protection agreements, terms of service, privacy
policies, and other contracts and communications
❖ Lead Implementor for ISO27001 (information security), I conducted a full risk analysis and went about implementing the 114 controls necessary to achieve certification.
❖ HIPAA Privacy Official
❖ NHS Data Security Protection Toolkit Lead Implementor
❖ Setting up the business in China, negotiating difficult legal & regulatory landscape,
obtaining appropriate licences & permissions (Med device classification & ICP licence)
❖ Acting as the point of contact for all regulatory and information governance questions
from clients which include over 30 NHS Trusts, NHS X and multiple major Pharmaceutical
organisations
❖ Designed and managed the Medopad Platform Play initiative. A difficult challenge
requiring an innovative regulatory and privacy framework to succeed.
ISO27001, UP, Framework, USA, Data protection officer, Risk analysis, China, Medical device, Regulatory, Monitoring, It, Operations, Medical Devices, Security, Pharmaceutical, Compliance, Data protection, Service, Technology, GDpr, Information Security, Contracts
2015 - 2018
job
Co-Founder & COO, Spacehop
unknown.
Spacehop was a leading workspace marketplace operating throughout the UK. An
innovative e-commerce platform offering over 10,000 workspace destinations to 15k+
members. Spacehop generated revenue in excess of 200k in 2017 and raised finance at a
valuation in excess of £2.5MM. I left my role as COO to pursue other in April 2018
opportunities.
❖ Responsible for successful initiation, planning, execution and ongoing monitoring of projects and initiatives
❖ Secured key clients for the site including Breather, WeWork, Techspace, Marriott Hotels,
The Office Group and many others. Maintaining relationships with these clients thereafter
❖ Featured in BBC News, The Guardian, The Financial Times, The Independent, Channel 4,
The Irish News, The Daily Telegraph, The Sunday Mail and many others
❖ Created a legal framework by which home owners could let out their property for work
purposes such as photoshoots, filming and meeting without it amounting to business use and tax implications. This was entirely innovative at the time and created a format others
will follow for years. Ensuring compliance with applicable data protection regulations
❖ Responsible for hiring and development of employees
innovative e-commerce platform offering over 10,000 workspace destinations to 15k+
members. Spacehop generated revenue in excess of 200k in 2017 and raised finance at a
valuation in excess of £2.5MM. I left my role as COO to pursue other in April 2018
opportunities.
❖ Responsible for successful initiation, planning, execution and ongoing monitoring of projects and initiatives
❖ Secured key clients for the site including Breather, WeWork, Techspace, Marriott Hotels,
The Office Group and many others. Maintaining relationships with these clients thereafter
❖ Featured in BBC News, The Guardian, The Financial Times, The Independent, Channel 4,
The Irish News, The Daily Telegraph, The Sunday Mail and many others
❖ Created a legal framework by which home owners could let out their property for work
purposes such as photoshoots, filming and meeting without it amounting to business use and tax implications. This was entirely innovative at the time and created a format others
will follow for years. Ensuring compliance with applicable data protection regulations
❖ Responsible for hiring and development of employees
E-commerce, Finance, Data protection, Compliance, It, Monitoring, Development, Office, Framework, Founder
2012 - 2015
job
Barrister at Law
Self Employed.
I passed the Northern Ireland Bar examination whilst studying for my undergraduate degree and became the youngest Barrister in Northern Ireland. I practised for several years before
moving to London to pursue startups.
❖ Appearances in Magistrates Court, County Court, High Court and Court of Appeal
❖ Typical duties involve advising clients and solicitors on their options and representation in court
❖ Presenting complex information in a clear and logical way and drafting of legal
documentation
moving to London to pursue startups.
❖ Appearances in Magistrates Court, County Court, High Court and Court of Appeal
❖ Typical duties involve advising clients and solicitors on their options and representation in court
❖ Presenting complex information in a clear and logical way and drafting of legal
documentation
Startups, Presenting
My education
2012
-
2013
NI BAR
Practicing Cert, Law
Practicing Cert, Law
2008
-
2011
Queens University Belfast
Bachelors, LAW
Bachelors, LAW
Luke's reviews
Luke has not received any reviews on Worksome.
Contact Luke Eastwood
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Luke directly in Worksome.
38100+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark