Desmond Campbell

Lead the enterprise-wide implementation of the Digital Operational Resilience Act (DORA) across AJ Gallagher's EU/EEA entities, ensuring end-to-end compliance with regulatory expectations.

Regulatory Project Delivery Lead (Interim) - AJ Gallagher

(2025-01 - 2025-12)

Lead the enterprise-wide implementation of the Digital Operational Resilience Act (DORA) across AJ Gallagher's EU/EEA entities, ensuring end-to-end compliance with regulatory expectations.

• Steer cross-functional project workstreams to align business outcomes with regulatory priorities and delivery milestones.
• Define and execute the data collection strategy for the DORA-mandated Register of Information, ensuring traceability and audit-readiness.
• Provided dashboard reporting on number of suppliers/contracts reviewed and ROI submission success.
• Conduct comprehensive contract reviews for ICT third-party providers; summarize findings, develop remediation plans, and drive timely resolution of compliance gaps.
• Collaborate with key business and risk stakeholders to design supplier exit strategies aligned to DORA Articles.
• Refine supplier segmentation and materiality assessment models to incorporate DORA-defined risk categories and thresholds.
• Lead the review and update of policies, procedures, and control frameworks to embed DORA governance, monitoring, and risk reporting standards into BAU operations.
• Implemented DORA and EEA SRM Framework into BAU operations and submitted the Register of Information to the Swedish Financial Supervisory Authority and Central Bank of Ireland.

TPRM/SRM Lead (Interim) - Zing by HSBC

(2023-11 - 2024-04)

Directed the design and implementation of a comprehensive risk management and scalable supplier governance framework aligned to global fintech growth and evolving regulatory expectations.

• Spearheaded the rollout of the Supplier Management Framework, embedding scalable governance, supplier oversight, and quarterly business reviews across expanding international operations.
• Formulated and implemented policies, procedures, and governance standards to support rapid fintech growth while aligning with global regulatory requirements.
• Oversaw decentralisation of the SRM model, providing strategic guidance to business owners and enabling scalable supplier governance across multiple jurisdictions.
• Coordinated internal audit activity for exit strategies, operational resilience, and business continuity planning across critical third-party suppliers.
• Directed third-party risk monitoring aligned with HSBC's global programme, strengthening supplier assurance, oversight, and regulatory compliance.
• Oversaw Conduct Risk Outsourcing and Policies across APAC/EMEA/UK regions within a fast-paced international fintech environment.
• Directed RCSAs, compliance breaches, and risk acceptance reviews, ensuring scalable governance and effective risk management controls.
• Oversaw compliance engagement with Procurement and Technology teams, including governance for cloud outsourcing and critical ICT suppliers.
• Represented Compliance at business and regulatory leadership meetings, influencing strategic supplier governance decisions supporting global fintech expansion.
• Directed the implementation of the SRM/TPRM framework and decentralisation of supplier management to business owners.

Compliance Officer – Vice President (Interim) - Barclays Bank

(2022-07 - 2023-09)

Oversaw Conduct Risk Outsourcing and Policy governance across APAC, EMEA, and UK regions, strengthening supplier oversight, operational resilience alignment, and cloud outsourcing governance across critical services.

• Led RCSAs, compliance breaches, issue remediation, and risk acceptance reviews, ensuring effective governance, operational resilience linkage, and executive accountability across third-party supplier portfolios.
• Managed regulatory compliance engagement with Procurement, Technology, Cyber Security, and Legal teams, overseeing governance for cloud outsourcing, critical ICT suppliers, and third-party risk controls.
• Represented Compliance at business, regulatory, and governance leadership forums, delivering Committee reporting, risk insights, and regulatory engagement across outsourcing and supplier risk activities.
• Led annual refresh and enhancement of Compliance governance frameworks, strengthening supplier assurance, operational resilience integration, and enterprise-wide third-party oversight.
• Provided Compliance input into regulatory and industry papers relating to outsourcing, operational resilience, consumer protection, and third-party governance requirements.
• Directed VP-level oversight of Consumer Duty, Conflicts of Interest, Reputation Risk, and DORA.

Programme Lead – Third Party Risk Consultant (Interim) - Vodafone Telecommunications

(2020-08 - 2022-06)

Directed transformation programme for TPRM and Business Resilience tools.

• Led project governance, stakeholder engagement, budgeting, and capability planning.
• Managed effective communication and change through project subcommittees.
• Directed the global implementation of Vodafone TPRM tool and framework agreement.

Global Third-Party Risk Consultant (Interim) - HSBC Group

(2020-03 - 2020-05)

Managed third-party risk oversight across technologies in 3LoD model. Provided strategic risk management guidance alongside Global TPRM Officer.

Global Third-Party Risk Assistant Vice President - Deutsche Bank

(2018-03 - 2019-09)

Directed the implementation of regulator-ready governance frameworks and global outsourcing models across multi-jurisdiction operations, strengthening executive oversight, supplier accountability, and regulatory compliance.

• Led enterprise-wide outsourcing governance and supplier assurance programmes, embedding scalable controls, operational resilience integration, and cloud outsourcing oversight across critical services.
• Delivered Board and Committee reporting, governance MI, and regulatory engagement activities, providing clear oversight of third-party risk, outsourcing compliance, and resilience vulnerabilities.
• Partnered with Procurement, Technology, Cyber Security, Legal, and Risk teams to strengthen outsourcing governance, regulatory readiness, and enterprise-wide supplier risk management capabilities.

Senior Supplier Performance and Assurance Manager Lead - Transport for London / London Underground

(2001-02 - 2017-09)

Led contract commercial management and supplier performance activities for London Underground's £72m PFI commercial oversight and large-scale supplier governance programme.

• Managed operational delivery, assurance and strategic supplier relationship management for major works.
• Managed regulatory and contractual compliance across major works projects.

TPRM Advisory Board Member

(2025-07)

Board of Trustees – Trustee and Director

(2024-03)

Non-Executive Director

(2024-02)

Master of Arts - Latin American Politics and Government

Bachelor of Science - Public Administration and Managerial Studies