As an ISO 27001 practice lead consultant, I´ve implemented ISO 27001 systems in more than 50 organizations around the world that were certified, leveraging a methodology and system that I´ve created, which was already certified by some of the best-recognized registrars in Europe and US like BSI, BVC, and NQA.My streamlined system reduces time and money for organizations that want to get certified, saving thousands of dollars and always delivering on time.As an ISO 27001 Qualified Lead Auditor, I´ve performed many certification, surveillance, and recertification audits in Europe and the US, working for BSI and BVC. Some companies I´ve audited were Microsoft, Fidelity, Toshiba, Volvo, Mitsubishi, Baker & Hughes, Foxconn, Bankinter, Caja Madrid, and several other organizations in different industries.

As an ISO 27001 Qualified Lead Auditor, and working for several Certification Bodies and Registrars like BSI, Bureau Veritas and NQA, I've audited several companies in US, Spain, Portugal and South America for ISO 27001 certification processes within banking, services, loteries and consultancy markets.As an independent Auditor I've also performed ISO 27001 pre-assessment and assessment audits in Portugal, UK and US.

As a BSI ISO27001 qualified tutor I'm certified to teach all ISO27001 official courses.As an independent qualified tutor, I also develop ISO27001, BS25999 and other information security related courses according with costumer requirements.

As a specialist consultant, I have great experience implementing ISO 27001 systems in companies in Portugal and US.

Business Continuity Management Consultant

As a BCM Trainer I´ve prepared customized BCM courses.

From 2005 to 2006 I was manager of all central systems, managing a team of 45 technicians distributed by Windows, Unix, Mainframe and Storage/Backup systems.During 2006 I was nominated Project/Service Manager where I was responsible for managing projects and delivering service to Clients as EDP and others.Since 2006 I was nominated Security Manager where I was responsible for the logic and physical security in Logica Iberia, including the development and implementation of the ISMS (Information Security Management System) according to ISO 17799:2005, to assist in external and internal auditing, to develop and implement the Awareness Program, to manage all physical and logical accesses, to develop the Business Continuity Plan and other tasks.

Gosecure was a Security Consultancy company where I was responsible for the management of a business area, the corporative security, as the company’s daily management, development of the Business and Financial Plans, strategy development, Clients prospects and contacts, suppliers and commercial proposals. In the corporative security area I was in charge of some projects like the development of the ISMS in Sonaecom, one of the biggest groups in Portugal and the development of the operation procedures for Portugal Telecom datacenters, the biggest telecommunications company in Portugal.

Nexenter was a Vodafone company to run Vodafone datacenters in Portugal. I was responsible to manage logical and physical security and quality areas, including the development of the security strategy, Security Policy and awereness program. I was also responsible for the ISO 9001:2000 Quality certification program.

To manage the access control to all applications and corporative network and to implement the Global Security Project in Oni. I was also responsible for all change requests and systems configuration processes.