Security Auditor Program Manager

Wilson Address: Heredia, Costa Rica

Murillo

Program Manager

Introduction

Dedicated Program Manager Specialist with 10+ years of experience in Shared Services and Multinational companies. Recognized for my ability to communicate with customers and Stakeholders, provide exceptional service, and adaptable to changes. I have worked for FinTech, IT and Pharmaceutical companies managing and identifying all kinds of risks, with people from America, Europe and Asia. I can work as an individual and as teammate and very open to learn new skills

Education

Universidad Federada de Costa Rica (2006–2010) - Journalism - Bachelor

Frameworks: ITIL - Project Management - CISA - CRISC - CISM - Comptya Security + - PCI DSS – CISO - SOx – FedRamp – HIPAA – Cybersecurity Mature Model CMMC - HIPAA

Other: Power BI – Azure DevOps – Jira – SalesForce –- Archer – Sharepoint – Office Suite – Google Docs

Work Experience

Citrix Digital Risk Analyst May 2021– present

•To Assist with Digital Risk Governance, by changing environment to support enterprise data governance initiatives, as system discovery, digital risk assessment and validation, digital risk management, data retention, and data classification.

•To coordinate in collaborative, iterative meetings with subject matter experts to support, build and manage enterprise data governance initiatives efficiently.

•Created a new tool to centralize all sensitive data such as Changes, tickets and storage system to facilitate Confidentiality, Availability and Integrity of highly sensitive data.

Pfizer Senior IT Auditor, May 2020–November 2020

•Conducted independent evaluations of Pfizer’s Information Systems and compliance control processes worldwide to ensure Pfizer’s risks are managed based on IT General Controls for worldwide units.

•Actively improved on departmental and/or cross-functional teams addressing internal and external issues that support the department’s operations and strategy. Updating our audit approach for ensuring compliance with the FCPA, Healthcare Compliance and Sarbanes-Oxley rules and regulations

Fiserv Information Security Auditor, August 2019-May2020

•Lead different audits cycle on PCI, SOC, SOX, FBA processes and respective remediation.

•Promoted compliance by monitoring and auditing the organization’ practices (trainings with new best practices in a yearly base)

DXC Technology IT Risk & Compliance Program Manager, August 2016-August 2019

•Lead, Managed and conducted audit/compliance/risk management/maturity activities and respective remediation based on IT General Controls (ITGC) and control inventory. Acted as Point of Contact on PCI, SOC, SOX Audit processes.

•Preparation and consolidation, reporting for KPIs Dashboards for different accounts and I developed communication strategy to Senior Management and Stakeholders on a weekly basis included hot topics and trends.

•Scope,Design, Implementation and development for new controls to achieve KPIs (training & released 15% of time consumed to resources in charge) RACI Assignations for all Sensitive cases and new projects requested due to opportunities arise.

•Implemented a new Risk Assessment strategy based on quantify all potential risks related to each internal system, reducing number of controls required in 25%.

Citibank AML Risk Analyst May 2011-July 2015

•Lead Contracts analysis for Citi Corporate Clients according to global compliance and local financial regulations. (LATAM with specific local regulations and requirements)

•Analysed, reviewed and raised red flags about discrepancies from compliance, control, risk, AML and reputational perspective based on Global Bank procedures and international AML laws

Email: ******.*******.*******@*******.***

Wilson Murillo Estrada LinkedIn

Phone Number: 506-******** ******.*******.*******@*******.***

Contact this candidate