• Monitoring and tracking project progress, adjusting as necessary to ensure successful project completation;• Leadership of PCI-DSS and PCI-PIN technical team;• Coordination of consultative support projects in Information Security;• Planning aligned with the company's strategy;• Reporting project status to stakeholders;

• Technical leadership of the GRC, PCI-DSS and Privacy team;• Coordination of audit processes and implementation of ISO27001, ISO27701 and PCI-DSS standards, consultatively supporting clients in the certification process;• Internal Information Security Awareness;• Review of information security policies;

• Responsible for ensuring continuous compliance of information security programs based on the ISO27001/2 standard;• Ability to define, implement and maintain information security controls;• Responsible for following up on action plans with technical teams to mitigate or remedy problems;

• Support in structuring security and privacy controls by reviewing and updating processes and policies based on ISO27001 standards and regulatory requirements;• Management of the vulnerability verification process (black box);• Responsible for carrying out personal data mapping and privacy risk analysis (ROPA);Success Case:•Responsible for carrying out personal data mapping and privacy risk analysis.Speaker:Event: 33 Annual FIRST Conferene [2021, Virtual… Show more • Support in structuring security and privacy controls by reviewing and updating processes and policies based on ISO27001 standards and regulatory requirements;• Management of the vulnerability verification process (black box);• Responsible for carrying out personal data mapping and privacy risk analysis (ROPA);Success Case:•Responsible for carrying out personal data mapping and privacy risk analysis.Speaker:Event: 33 Annual FIRST Conferene [2021, Virtual Edition]Lecture: The CAIS/RNP Experience in Brazilian General Data Protection Law (LGPD) Compliance. Show less

• Responsible for structuring the information security department, providing governance visibility, risk and threat management;• Responsible for managing ITIL processes, as well as developing and implementing policies and procedures based on ISO 20000 standards;• Responsible for leading the data protection committee for technical and administrative assessments in order to comply with the LGPD and GDPR;• License management;• Responsible for carrying out information security… Show more • Responsible for structuring the information security department, providing governance visibility, risk and threat management;• Responsible for managing ITIL processes, as well as developing and implementing policies and procedures based on ISO 20000 standards;• Responsible for leading the data protection committee for technical and administrative assessments in order to comply with the LGPD and GDPR;• License management;• Responsible for carrying out information security training (end users);• Responsible for the internal IT services team;• Experience in the external and internal IT audit process, meeting compliance requirements (ISO27001 and PCI-DSS);Success Case:• Responsible for conducting the company's PCI-DSS certification process. Show less

• Experience with implementing and maintaining standard management systemsISO27001, ISO20000, ISO14001 and PCI-DSS;• Awareness and training of management systems (ISO27001, ISO20000);• Development and maintenance of policies, processes and procedures;• Monitoring of security indicators and notification to the user;• Focal and intermediary point for internal and external audits;