← Back to work
Case Study01 / 05
ClientDeutsche Bank — Chief Data Office
RoleSenior Product Owner
TenureJul 2021 — Apr 2026
ScopeMulti-year transformation
Enterprise Data Platform

Running a bank's legacy data estate and a modern GCP build — in parallel, without breaking either.

The brief

Deutsche Bank's Chief Data Office runs the bank's enterprise data platform — the source of truth for everything from BCBS 239 risk reporting to GDPR data subject rights. When I joined in 2021, the platform was a fragmented landscape of on-premise systems with mounting regulatory and operational debt. The mandate: define the strategy and product lifecycle to modernise to GCP without taking the legacy platform offline. Six client divisions. Multiple scrum teams. No room for delivery risk.

The context

The Chief Data Office serves six global divisions — CDO, Risk, Finance, Treasury, Corporate Bank, Private Bank, and Compliance. Each has its own regulatory exposure, its own appetite for change, and its own definition of "good data". The legacy platform was running BCBS 239 submissions live in production; the GCP build had to land alongside it, not after it.

Adding to the complexity: multiple development and operations partners, scrum teams distributed across three continents, and a regulator that does not accept "we were mid-migration" as an answer. The product role here is less about feature shipping and more about sequencing — what to build, in what order, with what risk, and against which divisional priority.

What I did

  • Defined the data product strategy across the entire platform — balancing transformation investment (cloud, catalog, lineage) with legacy stability and regulatory obligations. Strategy grounded in business value, risk, and delivery feasibility — not technology preference.
  • Owned end-to-end product lifecycle — roadmap, backlog prioritisation, acceptance criteria, release governance, and decommission planning — across BigQuery, Dataplex, Cloud Composer, Vertex AI, and the legacy on-premise estate.
  • Embedded regulatory expectations into the product itself. BCBS 239 lineage requirements became platform acceptance criteria; GDPR controls became default capabilities, not downstream checks. This single shift removed an entire category of late-cycle audit findings.
  • Ran demand management across six divisions — translating divisional priorities into a single platform backlog, brokering trade-offs between Risk and Finance, between Corporate Bank and Private Bank, between regulatory deadlines and architectural soundness.
  • Led product capability uplift — coached BAs and POs into a unified product-owner discipline; introduced shared acceptance frameworks, dependency mapping, and quarterly OKR governance.
  • Reported quarterly to executive stakeholders — defined and tracked KPIs for data product health, adoption, quality, and divisional satisfaction. Built the cadence that the executive committee now uses to govern the programme.

The approach

The instinct in a programme this size is to draw a target architecture and march toward it. That doesn't survive contact with six divisional roadmaps and an active regulator. So I worked from the other direction: start with the smallest unit of business value the platform can deliver, and sequence the architecture around it.

Practically, that meant treating each data product as a vertical slice — a divisional use case, a regulatory obligation, or a measurable cost reduction — and building the legacy and cloud capabilities only as far as the slice required. Migration happened in increments tied to outcomes, not big-bang cutovers tied to dates. The cloud architecture grew in the shape of the demand that paid for it.

Fig 01 · Dual-track delivery model Deutsche Bank · CDO Data Platform
SIX GLOBAL DIVISIONS CDO Risk Finance Treasury Corporate Bank Private Bank / Compliance UNIFIED PRODUCT LAYER single roadmap · embedded compliance · vertical slices by use case BACKLOG · ACCEPTANCE CRITERIA · OKR GOVERNANCE · KPI REPORTING LEGACY TRACK · STABILITY On-prem data estate — Live BCBS 239 submissions — GDPR data subject rights — Audit trail integrity preserved stable until decommissioned by outcome CLOUD TRACK · GROWTH GCP modern architecture — BigQuery · Dataplex · Composer — Vertex AI · workflow automation — Catalog · lineage · stewardship grown in the shape of the demand

Each vertical slice — a divisional use case or regulatory obligation — built capabilities in both tracks only as far as the slice required. No big-bang cutovers; no architectural orphans.

It's a slower-looking strategy on a slide. In delivery, it's the only one that doesn't break the bank's reporting on a Monday morning.

The outcomes

The platform now serves six divisions on a hybrid architecture, with regulatory submissions, executive reporting, and divisional use cases all running against a single product roadmap.

Measured impact
90% Regulatory submission accuracy on BCBS 239 and GDPR across six divisions.
70% Growth in active platform users across the divisional client base.
80% Reduction in workflow completion time for core data operations.
8 / 10 Customer satisfaction across the six divisional client groups, tracked quarterly.

Beyond the numbers, the work changed how the bank governs data products. Compliance is now an acceptance criterion, not an audit. Migration is treated as a sequence of business outcomes, not an IT project. And six divisions read the same roadmap.

Next case study

How Generative AI replaced 80% of manual data stewardship.