Project Experience
Resilience & Continuity
Hurricane Rita --- Houston Financial Institution Crisis Management Execution
Design and deployment of a comprehensive framework which aligns Crisis Management, Business Continuity and Technology Recovery
linked closely to an Incident/Problem Management process, increasing
resilience and assuring continuity of the business for the financial
industry. This was done using market standards as the Disaster Recovery
Institute principals, CoBit framework and the National Institute
Standard in Technology (NIST).
Design, development and implementation of a functional Business Impact Assessment
that provides the necessary information to determine Business
requirements and technology dependencies on a continuous basis
considering project changes and business reorganizations.
Development, implementation and validation of Business, Technology and Managements Plans.
Effective Testing and Training Methodology to assure validation and testing of business and technology recovery strategies and employee awareness.
Design and execution of joint Tabletop Exercises between Executive Management, Business Units Technology Services and Logistic Service groups.
Technology Compliance & Risk
Regulatory Alignment of Technology Controls
to achieve compliance with FFIEC, HIPAA, GLBA, COSO/SOX, and PCI for
the financial industry. Consolidation of regulations with one effective
design of controls.
Successfully completed SOX404 Audit and Mitigation for a complex technology model within a Financial Institution.
Development of a Data Classification Structure to assure data confidentiality and provide guidance on the storage, management, transfer and disclosure of information.
Development of a Security Governance Program to establishing governance, standards, controls and risk mitigation.
Design of a Technology Service Catalog
for the financial industry based on the established key configuration
items supporting critical business processes. Focus on the business
expectations on technology support or services.
Design, developed and implementation of an Outsourced Service Provider
methodology and process compliant with established FFIEC and SOX
regulations. Completely based on market standards and regulatory
guidelines.
Technology Governance
Research and usage of IT Governance Domains,
in the financial industry, to align IT strategies, determine IT Value,
implement Risk Management, achieve Resource Management, and establish
Performance Metrics.
Specialized on developing:
![](images/spacer.gif) |
»IT strategic moves, objectives and projects align to the enterprise strategy
»IT Risk Management Program alignment to the Enterprise Risk
Management (ERM) including risk inventory, controls maturity and
definition of performance indicators.
»IT Resource Management alignment of human resources as well as
capital investment across definable service objectives
»Establishing Performance Metrics to mitigate risk and provide comparison with achievable objectives
|
Enterprise Risk Management IT Technology Control Improvements using the Cobit Maturity Model
Project leadership on the development and implementation of a Technology Risk Inventory for the financial industry achieving risk mitigation and incorporating in IT a risk management culture.
Design and implementation of a Technology Documentation Model, providing alignment of policies, standards, procedures and technical documentation.
Design and implementation of technology Change Management Process, including a well defined testing strategy and validation tasks.
Design and implementation of a Technology Risk Assessment process to assess technology risk and effectively remediate and provide necessary documentation.
Project participation on the development of a Quality System based on ISO 9000 for the Manufacturing industry
Project Management for the design, development and implementation of Computer Operations sites in the pharmaceutical and food industry.
Technology Financial Management
Financial Management of a $45MM Technology Budget enabling senior management with forecasting and variance analysis.
Development of IT Performance Metrics providing a comprehensive view of the resources, activities and value statement to the Enterprise.
Design, development and implementation of an IT Capital Projects Tracking System.
Back to top
|