CHRISTOPHER FOX

111-20 75th Ave. * Forest Hills, NY 11375 * 718-793-1272 * cf4eabee@westpost.net

Chief Operational Risk Officer * Risk Management Executive * Global Technology R
isk Officer
PROFILE
Highly accomplished, results-driven Senior Operational and Technology Risk and C
ompliance Executive. Proven ability to facilitate profitability and operational
success through Global Risk & Compliance (GRC) management. Adept at ensuring Bas
el II, SOX, and other global regulatory and industry requirements. Subject matte
r expert in COSO , CobiT, , SOX , GRC, information security, and regulatory supp
ort, among other areas. Experienced at leading global audits and regulatory medi
ation projects in US, Europe, Indonesia, Thailand, Malaysia, and other countries
.
Value Offered
Global Program Governance * Regulatory Compliance * Modernization * Mediation *
Leadership
Standards Development * Process Optimization * Global Leadership * Budget/Cost C
ontrol
Audit Management * Systems Design & Implementation * Problem Solving * * Staff C
oaching

PROFESSIONAL EXPERIENCE
CA INC. (formerly Computer Associates), New York, NY 2008 - 2010
Senior Principal, Governance Risk & Compliance (GRC)
Oversee projects relating to GRC and other compliance areas for global IT manage
ment software company. Refine and develop GRC intellectual property and provide
support for GRC market and services. Author technical and business documents, bl
ogs, and articles. Serve as subject matter expert (SME) on COSO, CobiT 3.0-4.1,
Basel II, and SOX. Evaluate and report on GRC trends. Lead development of requi
rements for future releases of GRC manager software.
* Managed creation of highly successful risk library incorporated into GRC softw
are.
* Improved risk analysis capabilities by including non-financial risk analysis.
* Effectively integrated GRC Manager with Foreign Corrupt Practices legislation.
* Contributed content to CA's book Under Control: Governance Across the Enterpri
se.
* Member of task force that developed OCEG's Red Book on GRC.
EDELTA CONSULTING, New York, NY 2006 - 2008
Director
Managed regulatory and SOX support and IT regulatory review projects for profess
ional services firm providing financial, operational, and IT risk consulting for
Global 2000 corporations and government entities. Coordinated project teams in
US and overseas.
* Aided new broker dealer subsidiary of German Bank in preparing for IT regulato
ry review. Identified potential deficiencies, provided solutions, and conducted
management coaching.
* Assisted a Commodities Exchange with SOX support functions.
* Prepared and led seminar on IT operational risk aspects of Basel II.
PRICEWATERHOUSECOOPERS, New York, NY 1998 - 2006
Director
Planned and led complex projects for internal audit services group at third-larg
est accounting firm in US. Supervised 2 to 15 direct reports and client personne
l per project. Evaluated enterprise risks for clients. Provided ITIL implementat
ion support for clients. Assisted foreign banks with responses to Federal Reserv
e Regulatory Examinations.
(continued)

Christopher Fox * Page 2

(Director, PricewaterhouseCoopers, continued)
* Achieved major cost savings for large bank in Ireland by reviewing SOX strateg
y for IT and providing recommendations for service support and problem managemen
t.
* Aided in development of IT control objectives for COSO small business group.
* Created COSO-based global internal audit manual for major financial services f
irm.
* Principal author of first and second editions of 'Sarbanes-Oxley - IT Control
Objectives' for ISACA/ITGI. Book recently translated into Japanese to support gl
obal SOX efforts.
* Updated control objectives, management guidelines, and control practices for C
OBIT 4th Edition.
* Completed IT external audits for major Wall Street firms and foreign banks.
* Planned and led SOX remediation efforts, SOX implementations, and CobiT implem
entations for healthcare providers, international companies, and financial insti
tutions.
* Created baseline IT policies and procedures for large foreign bank.
AUSTRALIAN STOCK EXCHANGE, Sydney, Australia 1997 - 1998
Manager, Information Systems Architecture
Identified ways to utilize emerging technologies to facilitate business growth.
Managed information systems security. Conducted security reviews. Served as liai
son during external SAS70 reviews.
CAREER NOTES: Previously held positions of Sr. Information Systems Auditor/Inte
rnal Audit Manager with TRANSFIELD, Sr. Information Systems Audit Manager, Austr
alia, with PRICE WATERHOUSE and Manager, Coopers & Lybrand USA, with COOPERS & L
YBRAND.
ADDITIONAL EXPERIENCE
Consultant, INFORMATION SYSTEMS & AUDIT ASSOCIATION (ISACA), New York, NY 2006 -
2008
Prepared and delivered presentations on IT implications of SOX and CobiT 4.1. Su
pported ISACA and IT Governance Institute (ITGI) research groups.
* One of main contributors for ISACA/ITGI 'IT Control Objectives for Basel II.'
* Prepared reconciliation between CobiT 4.1 and COSO ERM.
* Drafted ISACA and ITGI response to SEC and PCAOB drafts for clarification of S
OX 404 requirements.
* Earned John Lainhart Common Body of Knowledge Award.

EDUCATION
Bachelor of Economics, University of Sydney, Sydney, Australia
CERTIFICATIONS & TRAINING
ITIL Foundation Certification
PROFESSIONAL ORGANIZATIONS
Associate of the Institute of Chartered Accountants in Australia
Member of the Institute of Internal Auditors
Member, New York Chapter of the Information Audit and Control Association (ISACA
)
Associate Member, New York Society of Certified Public Accountants
ADDITIONAL INFORMATION
Nationalities: US Citizen, Australian Citizen, British Citizen
Publications & Presentations: Complete list available on request