Jesús C.

Jesús C.

Professional Summary

Jesús has 9+ Years of experience with IT Compliance, Actively doing work for Risk, Audit, Compliance and Governance for IT, 5+years of experience with GRC (Governance, risk and compliance) with tools like Service Now and other internally developed tools. Expert with Excel Using this tool for various tasks everyday and reports, processing of information. Experience doing high level reports for upper management, clients and auditors. Project Manager for audit activities related to information security standards (ISO 27001, PCI DSS, COBIT, ITIL) like document revisions, process analysis, implementation of security controls and follow up actions related to international client’s accounts Certified in: ISO/IEC 27001 Lead Auditor International Standard Certification (RABQSA, BSI) ISO 14001 Lead Auditor International Standard Certification (EY).

Skills

GRC

IT Compliance and Security Technology

COBIT

Technology vendor assessments

ITIL

Service NOW

Expertise

Security

Professional Experience

POSITION (ROLE)

IT Compliance Analyst

 

ACCOMPLISHMENTS & ACTIVITIES

  • IT Vendor Assessments. -In charge of managing security questionnaires for multiple accounts and clients.
  • Reviewing official documentation from clients and vendors such as SOC1 and SOC2, ISO certifications, IT security policies, Attestation of Compliance, PCI.
  • Creation of documentation to keep track of Vendor assessment progress and traceability.
  • Learning Platform Manager for IT white hat ethical hacking.
  • Perform on-going tracking of identified risks and issues on a platform database.

 

TOOLS & FRAMEWORKS

  • Libraries & Frameworks: ISO 9001, 14001, 20000, 27001; COBIT, ITIL
  • Analytics & Reporting Tools: Service NOW
  • Lead/Management Skills: ISO 14001,27001 Lead Auditor Certified

 

EDUCATION

  • Master of Business Administration, Universidad del Valle de Mexico, 2012 – 2014
  • Industrial and Systems Engineering, Universidad del Valle de Mexico, 2006 – 2010

 

TRAINING & CERTIFICATIONS

  • ISO/IEC 27001 Lead Auditor International Standard Certification (RABQSA, BSI)
  • ISO 14001 Lead Auditor International Standard Certification (EY)