IAN R.

WOOD
ianrwood1@yahoo.com - 773-875-5131

www.linkedin.com/in/ianrwood

PROFESSIONAL SUMMARY
Internationally mobile, experienced (17 years) operational risk and internal control professional with a strong track
record in building and leading first and second line of defense risk and control oversight teams. Accustomed to
working in highly regulated environments with the proven ability to develop and maintain effective working
relationships with internal and external stakeholders. Consistently applies advanced risk and control subject matter
expertise in the development and implementation of pragmatic solutions which enhance organizations control
environments while meeting regulatory requirements. Holds British and US citizenship.
Specialties:
Design and implementation of operational risk frameworks and operational risk databases
Operational risk identification, assessment, mitigation and monitoring
Sarbanes-Oxley (SOX) / COSO 2013
Stakeholder management and executive level reporting
Internal audit (planning, fieldwork, reporting, and supervision of staff auditors)
Information risk management, including end user computing application and model risk management
Change risk management (risk consultancy and project assurance)
Business continuity planning
Policy development and implementation
Team leadership / recruitment / performance management / managing virtual teams

__________________________________________________________________________
EXPERIENCE PROFILE
HSBC Holdings plc, London, United Kingdom

2014 2015

Chief Control Officer - Global Finance

This role was a secondment to HSBC's Group Headquarters with responsibility for all aspects of operational risk and
internal control oversight within the Global Finance function, including oversight of HSBCs global SOX framework.
Key accountabilities included managing and enhancing the operational risk framework implementation across Global
Finance; setting strategy and policy to ensure SOX 404 requirements are met; and providing strong governance and
control oversight through the management and enhancement of the Global Finance Site Review Program.
Notable Achievements
Developed a road map for streamlining and enhancement of the Global Controls function within 3 months of
hire. Identified opportunities included strengthened central oversight of SOX activities; centralization and
offshoring of risk reporting, quality control and attribute testing; and global process standardization.
Led successful implementation of annual entity level control design and operating effectiveness assessment in
preparation for full COSO 2013 implementation in 2015.
Rebuilt Group SOX oversight capability by recruiting high quality resources following significant turnover in 2014.
Developed Finance Control function operating model proposal which recommended globalized second line of
defense functions to achieve economies of scale and promote consistency, while leveraging regional talent.
Led the SOX 2014 year-end assessment process for the Group, including review and reporting of significant
deficiencies to Group Disclosure Committee and Group Audit Committee.

IAN R. WOOD
Reduced departmental budget by $1 million within 1 month of hire and prudently managed the budget leading to
a c. $500k favorable variance.

HSBC - North America, Mettawa, IL

SVP - Head of Business Risk Control Management

2012 2014

Led the US Finance Business Risk Control Management (BRCM) team in the execution of an effective operational risk
and internal control management program. Managed a team of risk and control professionals covering all aspects of
operational risk management including risk assessments; control monitoring; Sarbanes-Oxley; business information
risk; third party risk management; regulatory compliance; business continuity planning; and reconciliation oversight.
Notable Achievements
Established and managed the BRCM function from inception to maturity. Function was considered best in class
within Global Finance and received a satisfactory rating from the Office of the Comptroller of Currency (OCC).
Embedded risk management into the Finance function by devising and implementing a new operating model
which cross trained BRCM staff and aligned them with Finance teams such as Chief Accounting Office and Tax.
Significantly enhanced Finance managements awareness of risk and control issues by redesigning the monthly
risk and control reporting pack. The new reporting pack received positive feedback from the Banks regulators.
Achieved operational synergies through expansion of the SOX test plan to include all key operational controls and
implemented a key indicator monitoring program to provide management with additional assurance.
Proactively supported risk management of a key change initiative by devising engagement approach and
overseeing a pilot for the Banks CCAR project.

VP - Business Risk Control Management

2010 - 2012

Established a first line of defense risk and internal control oversight function for Finance function. Initial
responsibilities for operational risk management, issue tracking/remediation, and risk and control reporting were
expanded in November 2010 to include business information risk, vendor risk management and business continuity
planning. Also served as Chief Information Risk Officer for Finance function.
Notable Achievements
Provided management with a consolidated view of operational risk by merging legacy risk databases within 7
months of hire, realigning risks and controls with the Finance Target Operating Model.
Led the successful implementation of new risk and control assessment methodology across the Finance function
which covered all key processes.
Facilitated a 75% reduction in control issues and timely remediation of high risk audit issues by developing and
implementing a control issue database which assigned individual accountability for issue remediation.
Strengthened the control environment by designing and implementing a process to capture, assess and track
remediation of management self-identified control issues which led to satisfactory audit ratings.
Increased managements accountability for risk and control issues by implementing a risk and control heat map,
which was the catalyst for a significant reduction in the number of control findings.

VP - Asset Securitization

2005 - 2010

Initial responsibilities of this role included implementation and enhancement of controls; remediation of internal
audit findings; reengineering of key processes; business information risk management; and business continuity
planning for HSBC Finance Corporations asset securitization program. Responsibilities were expanded in 2008 to
include oversight of all aspects of operational risk within the Treasury function.

IAN R. WOOD
Notable Achievements
Strengthened controls over securitization asset pricing models ensuring internal and external requirements were
met. The implemented improvements also remediated several open Internal Audit findings.
Developed new procedures and improved existing procedures in preparation for re-launch of securitization
funding program.
Quickly developed a full understanding of 40 Treasury audit findings and worked effectively with management
across the department to remediate all issues within 9 months. Effective remediation and ongoing monitoring
subsequently led to satisfactory audit ratings.
Managed implementation of end user computing assessments and coordinated deficiency remediation.
Received Finance Key Contributor Award for Finance Model Policy development and implementation.

CIB Marine Bancshares Inc., Chicago, IL

AVP - Corporate Risk Manager

2003 - 2005

Established the Banks operational risk function which entailed development of a Risk Committee Charter and
Operational Risk Management Policy, design and implementation of an Operational Risk Management Framework,
and implementation of an operational risk system. Responsibilities of the role also included management of the
Banks SOX 404 implementation project.
Notable Achievements
Supported aggressive ramp-up of Banks operational risk capability by developing a business case to secure IT
Board approval for operational risk system within 90 days of hire, and fully implementing system within 9 months.
Implemented Operational Risk Management Framework within 12 months of hire.
Collaborated effectively with management to identify, assess, document, and mitigate operational risks.
_______________________________________________________________________________________________

ADDITIONAL EXPERIENCE
CIB Marine Bancshares, Inc., Chicago, IL - Internal Audit Officer

2000 - 2003

Post Office Group, Bristol, United Kingdom Senior Auditor

1998 - 2000

Sun Life Assurance Society, Bristol, United Kingdom Assistant Accountant

1991 - 1997

_______________________________________________________________________________________________

EDUCATION
Foundation in Accounting - Sheffield Hallam University
ACCA Certificate - Association of Chartered Certified Accountants (ACCA)
Currently studying for the final 3 papers of the ACCA professional accounting qualification.