Steve Holt

Partner, Head of EMEIA Financial Services Information Security Practice, EY

Background

  • Partner leading our Financial Services IT Risk and Assurance practice. He has more than 20 years experience in IT audit, IT risk, IT internal audit, information security, IT regulatory and data projects.
  • He is a Chartered Accountant, Certified Information Systems Auditor (CISA), a PRINCE 2 Practitioner, member of the IAPP and holds the ISEB certificate in Data Protection.

Experience

  • Led a number of data privacy and data leakage reviews at financial services clients to assess compliance with the Data Protection Act 1998 and PRA/FCA expectations.
  • Steve has expertise in PRA/FCA IT regulatory requirements over the last 15 years. He has experience of leading technology aspects of S166 Skilled Persons Reviews, completing systems authorisation forms and advising clients on PRA/FCA consultation policies impacting IT (e.g. Cyber questionnaire).
  • Steve leads globally our services around supplier risk management. He has presented to a number of FS clients and regulators on the topic of IT operational risk, data privacy and supplier risk management.
  • Steve has been involved in helping scope and assess the technology and data aspects of client money and payment systems.