Manager Management
Resume:
HOLLY TRAN
CISSP, CISM, MSEE, Six Sigma Black Belt
CONSULTING PROFILE
Enterprise Risk Management ~ GRC Solutions ~ Regulatory Compliance
Seasoned, insightful, strong ethical professional with over 15 years of
hands-on international experience in business, technology, and regulatory
compliance leadership. Strategic executive influencer and trail blazing
business leader with broad technical experience; driven to develop
innovative and holistic solutions. Leverage industry regulatory
experience, organizational, and SEC compliance experience to prioritize
risks and build client-tailored solutions. Expert with PCAOB/AS5,
Sarbanes-Oxley 302/404, SAS 70 and public law issues. Integrate COSO,
COBIT, ITIL, ISO 27001, corporate governance, and audit frameworks across
organizational boundaries. Industry expertise includes high tech,
pharmaceutical, finance, media, and communication service providers with
large-scale infrastructures. Core competencies also include:
( GRC/ERM Strategy ( Process optimization (
Project/Program Management
( Internal Audit Efficiency ( Risk/Change Management (
New Product Introduction Services
SELECTED ACCOMPLISHMENTS
. National speaker at RSA and SAP Business Objects Users Conferences on
global compliance and ERM solutions.
. Instrumental in pioneering west coast compliance practice for Big 5
consulting firm. As Global Director, jump-started Regulatory and Legal
Compliance and Industry Global Competency Center for global consulting
firm (SECUDE).
. Successfully remediated several SOX programs by utilizing effective
problem-solving and by cultivating trust with executive leadership;
earned multiple commendations from C-suite executives, and Big 4 Partner.
. As engagement manager, led 6-member consulting team to consolidate
testing and reduce internal controls over 50% each across 3 different
business entities; client successfully passed year-end compliance audits
with reduced cost.
. Led virtual global teams to manage several multi-million dollar, key
international accounts and to introduce sophisticated optical network
system. 100% executed purchase orders, leading to successful IPO (Kleiner
Perkins). Stock value increased 350%.
. Spearheaded early development of Internet/Web security requirements to
implement first Dynamic Web Service across complex multi-
vendors/platforms network environments with more than 100,000 users.
PROFESSIONAL EXPERIENCE
Senior Compliance Management Advisor
Uptick Strategies, Mountain View, CA 2002 - 2005, 2007 - Present
Provide innovative leadership to help clients address complex business and
technical issues, with focus on governance, compliance, and risk
management. Advise clients on methods to anticipate changing regulatory
and market conditions. Sample engagements include:
. Governance, Risk, and Compliance Solutions: Established holistic risk
management framework for GRC solution design with SAP and Oracle
systems. Identified internal controls and resolved Segregation of
Duties (SOD) issues for safeguarding information assets for reliable
financial reporting.
. Enterprise Risk Management (for BDO Seidman): Guided CFO, Controller,
CIO, and Audit Committee through risk assessments and implications of
regulatory requirements on internal controls. Proposed growth and
compliance strategy; designed and implemented risk mitigation,
governance structure, and audit plan.
. Compliance and Internal Audits: Managed SOX audit project deliverables
with Deloitte, KPMG, PwC, and E&Y. Completed enterprise risk, SOX, and
security assessments for small to Fortune 500 companies. Designed
solutions for deficiencies identified in audits. Prepared gap analysis,
remediation plans, governance/security plans, and evaluations of SOX
404/409 and 802/103 compliance and automation tools.
. Business Processes and Financial Controls: Assessed segregation of
duties, HR/finance processes, and internal controls for ERP
applications and database owners. Developed architectural solutions and
led teams to test and remediate internal controls for large and small
enterprises.
VP of Business Development for Governance, Risk, and Compliance Solutions
2008
SECUDE Global Consulting, Irving, TX
. Developed ERP solution portfolio of target offerings for SAP GRC
services. Jump started global regulatory compliance competency center.
Advised executive management on strategy and new program initiatives.
. Mentored and coached cross functional and 5 global team members. Provided
pre-sales and marketing supports and developed press releases. Presented
GRC success story at major conference. Reviewed publication and white
papers.
HOLLY TRAN Page 2
Compliance Engagement Manager, Commercial Services Practice
BEARINGPOINT, INC., Mountain View, CA 2005 - 2007
Worldwide management and consulting services provider
Led numerous compliance, security, and finance system advisory projects.
Developed and presented proposals, prepared statements of work, assembled
and coached cross-functional teams, managed engagement deliverables and
pricing. Pursued add-on opportunities and built long-term client
relationships.
. Identified and streamlined key business processes and consolidated IT
controls to improve audit efficiency and effectiveness, and to meet
aggressive audit deadlines. Proposed preventative, automated controls.
. As SME, championed compliance and security best practices: facilitated
Center of Excellence Program for AS-IS and TO-BE models, business process
improvements, and advanced integration of software release management
system.
Product Introduction/Program Manager, Optical Networks
ONI SYSTEMS INC., San Jose, CA 2000 - 2001
Acquired by CIENA Corp.
. Managed delivery services to win several key accounts for a successful
Kleiner Perkins funded pre-IPO company.
. Designed, delivered, and managed highly successful international field
trials for state-of-the-art, complex optical network system solution.
Product Development Manager in Network Engineering
@HOME NETWORKS, Redwood City, CA 1997 - 1999
Merged with Excite
Guided product team during explosive growth to bring high-profile @Media
products online, including multi-player games, backup services, and
streaming video/audio. Defined product strategy and roadmap. Negotiated
contracts.
System Architect, Broadband Strategy and Engineering
PACIFIC BELL, San Ramon, CA 1996 - 1997
Acquired by SBC Communications, Inc.
Developed matrix of threats and countermeasures. Formulated web security
policies and wrote security guidelines for Software/Network Engineering,
Operations, and Accounting teams. Drove system architecture development
and implementation to launch cutting-edge Internet/intranet Fastrak Frame
Relay Customer Network Web Services.
Computational Scientist/System Integrator/Program Manager, Network
Infrastructure
SANDIA NATIONAL LABORATORIES, Livermore, CA and Albuquerque, NM 1988 -
1996
Merged with Lockheed and Martin Marietta
Served as Member of Technical Staff for world-renown think-tank to advance
frontiers of energy alternative (ICF) and internet research. Managed
industry collaboration programs with California Research Network
(healthcare, high tech, education, and entertainment) (CalREN) to develop
and implement multiple sites high-speed network applications projects.
Premiered prototype technology at conference. Initiated $2 million WAN
agile manufacturing project.
EDUCATION
UNIVERSITY OF ARIZONA, Tucson, Arizona
Master of Science, Electrical Engineering,
Bachelor of Science, Electrical Engineering
~ Magna Cum Laude
* Harrington Institute
Six Sigma Black Belt, Certified 2006
Six Sigma Green Belt, Certified 2005
* Information Systems Audit and Control Association (ISACA)
Certified Information Security Manager, 2004
* International Information System Security Certification Consortium Inc.
(ISC)2
Certified Information System Security Professional, 2003
* Women's Entrepreneurial Program
Business Management Training
* AT&T Leadership and Management Program
Leadership for the Future
***********@*****.***
Contact this candidate