Chris Cottrell Mason
About Chris Cottrell Mason
Chris Cottrell Mason is a Senior Technology Risk Analyst at Onfido, holding qualifications as ACA, CISA, and CIPM. He has a strong background in technology risk management, data protection, and vendor risk management, with experience at EY and a notable academic history from institutions such as the University of Cambridge and ICAEW.
Work at Onfido
Chris Cottrell Mason has been employed at Onfido as a Senior Technology Risk Analyst since 2019. In this role, he manages ISAE 3402 / SOC1 and SOC2 reports as part of vendor risk management. He leads the delivery and client interaction across a portfolio of external IT general and application controls audits. His responsibilities also include overseeing IT implementation projects and risk engagements, ensuring that ERP implementations and IT transformations align with leading practices.
Education and Expertise
Chris Cottrell Mason studied at the University of Cambridge, where he earned a BA Hons (Cantab) in History from 2012 to 2015. He also attended The Leys School from 2007 to 2012, achieving the status of Academic Scholar and receiving the Harvard Book Prize. He furthered his education at the Institute of Chartered Accountants in England and Wales, obtaining the Chartered Accountant (ACA) designation from 2015 to 2018. He holds additional certifications including CISA and CIPM.
Professional Background
Before joining Onfido, Chris worked at EY as a Senior Consultant in Technology Risk from 2015 to 2019. During his tenure, he performed multiple Data Protection Impact Assessments (DPIAs) for the internal EY Data Protection Officer. He initially joined EY as a Consulting Intern for two months in 2014. His experience spans various industries, including Property Management, Logistics, Payroll, and SaaS.
Achievements in Data Protection
Chris delivered a GDPR review at a FTSE 250 media company, which received commendation from both the Audit Committee and the external auditor. He has also led training, awareness, and Data Subject Access Request (DSAR) implementation at a Fortune 500 FMCG business. Additionally, he managed the drafting and operationalizing of data protection policies at one of the largest utilities in Asia.
Risk Management Experience
Chris Cottrell Mason has extensive experience in managing supply chain risks, focusing on GDPR compliance, Information Security, and financial risks. His work encompasses various sectors, demonstrating his ability to navigate complex regulatory environments and implement effective risk management strategies.