Regina Malta Email and Phone Number
Professional with more than 18 years of experience in Controllership, Enterprise Risk Management and Audit, acquired in both national and multinational companies across diverse industries. I have worked different segments such as: in retail (Lojas Riachuelo), in a public institution (Unicamp), in a Big4 (Deloitte), in a privately held family-owned company (Grupo NC), in the pharmaceutical industry(EMS S.A.), in a wind park (ADS Energias Renováveis), in Communication (NSC Comunicações - a Globo Network affiliate), and in real estate development/construction (3Z Realty).Used to working on multidisciplinary projects, exposure with different organizational levels, team management (full time and under the project model). With over 13 years of leadership experience, I have always focused on the individual development of each team member.Management of financial results: P&L, cash flow (direct and indirect), working Capital, budget process cycles, expenses and investments, costs and inventories, business cases in general (support to commercial activities and fiancé transactions), consolidation following international guides (USGAAP and IFRS), reporting local and international, among others.I possess solid practical and methodological knowledge in Corporate Governance, Enterprise Risk Management, Internal Controls (COSO ERM, ISO 31.000 and derivatives, ISO 22631, NIST, SOX, COBIT, COSO, LGPD, GDPR, SoD Matrix, among others), and in Audit (internal and external).I have experience in implementing efficient and necessary internal controls, process restructuring, reducing operational losses and inefficiencies, detecting frauds, and eliminating unnecessary expenses (fines, penalties, redundant processes, etc.), as well as identifying risks that may impact the business operationally, technically, or strategically.I worked in Zero-based budgeting project for all the Company. I was one of the responsable for the project related to evaluate all expense matrix management by analyzing spending packages.I have implemented areas, processes, policies, controles and indicators related to: - Corporate Risk Management: covering various risk typologies (strategic, operational, accounting, ESG, cyber, IT, HSE, HR, finance, insurance, HR, regulatory and legal); - Personal Data Privacy area; - Pillars, strategies, risks, and master plan for ESG; - Building the business continuity plan (processes, people, and technology).I was temporarily responsible for 12 months for the Information Security and Identity and Access Management area.
Diversity On Boards
View-
Membro Do ComitêDiversity On Boards Aug 2024 - PresentSão Paulo, BrasilMembro do Comitê Temático 02 - Finanças, Riscos, controles internos e auditoria da Diversity On Boards
-
Conselheira FiscalInstituto De Pesquisas Eldorado Aug 2024 - PresentCampinas, São Paulo, BrasilConselheira fiscal -
Membro Do Comitê Consultivo - Governance OfficerProjelmec Ventilação Industrial Ltda Aug 2024 - PresentPorto Alegre E RegiãoMembro do COMITÊ de EMPRESA PROJELMEC VENTILAÇÃO INDUSTRIAL no 𝐈𝐌𝐄𝐗 - Imersão Executiva para Lideranças, programa realizado pelo 𝐈𝐄𝐋-𝐑𝐒, e edição 2024 em parceria com a Governança Orgânica. Com um foco especial em Governança Responsiva e Estratégias Resilientes, o programa oferece uma vivência única em comitês individuais para cada empresa participante, contando com a expertise de conselheiros certificados, além de networking e atualização em temas estratégicos. O programa tem… Show more Membro do COMITÊ de EMPRESA PROJELMEC VENTILAÇÃO INDUSTRIAL no 𝐈𝐌𝐄𝐗 - Imersão Executiva para Lideranças, programa realizado pelo 𝐈𝐄𝐋-𝐑𝐒, e edição 2024 em parceria com a Governança Orgânica. Com um foco especial em Governança Responsiva e Estratégias Resilientes, o programa oferece uma vivência única em comitês individuais para cada empresa participante, contando com a expertise de conselheiros certificados, além de networking e atualização em temas estratégicos. O programa tem a duração de 12 semanas (de setembro a dezembro) e carga horária de 35 horas. Maiores detalhes em: https://conteudo.ielrs.org.br/imex-imersao-executiva-para-liderancas Show less -
Fundadora/Ceo/Executiva Gestão De Riscos Corporativos, Esg, Governança, Compliance E AuditoriaGrc-4U Jan 2024 - PresentBrasilExecutiva especializada em Gestão de Riscos Corporativos (operacionais, estratégicos, cibersegurança, ESG e técnicos). Atendendo empresas no interior de São Paulo, revendo ou criando programas de Gestão de Riscos, Auditoria e Compliance. -
Conselheira FiscalFundacao Centro Medico De Campinas Jul 2023 - PresentCampinas, São Paulo, BrasilConselheira fiscal. -
Ibgc Associated MemberIbgc - Brazilian Corporate Governance Institute Apr 2023 - PresentSão Paulo, BrazilI am investing in my development as an independent Board Member, contributing to other businesses with Risk Management, Data Loss Prevention, Cybersecurity, ESG, Business Strategy, Financial Analysis, Ethics and Governance. Skills: Risk Team Leadership · Start-ups · Communication · Analytical Skills · Leadership -
Risk Management And Data Privacy Deputy DirectorGrupo Nc Feb 2022 - Nov 2023Hortolândia, São Paulo, Brazil- Implementation of the Risk Committee reporting to shareholders and the Board.- Team leader focusing on the individual development of each one.- Construction and monitoring of risk matrix.- Creation and application of Risk Assessment in the Directors and Managers of the NC Group.- Creation and application of Assessment to identify critical operational positions and development of action plans to mitigate risk.- Creation and expansion of the risk integration agenda with… Show more - Implementation of the Risk Committee reporting to shareholders and the Board.- Team leader focusing on the individual development of each one.- Construction and monitoring of risk matrix.- Creation and application of Risk Assessment in the Directors and Managers of the NC Group.- Creation and application of Assessment to identify critical operational positions and development of action plans to mitigate risk.- Creation and expansion of the risk integration agenda with other risk and control areas of the Group such as HSE, Engineering, Maintenance, Insurance and Cyber.- On-site risk inspections at the Group's Units for all segments (Pharmaceuticals, Communication - radio and TV and Wind Farm).- Review of processes with a focus on mapping risks and controls. Drawing flowcharts, creating a risk and control matrix, creating and monitoring action plans.- Construction of the ESG pillars and the risk and opportunity map.- Personal Data Privacy process implementation (tools, controls...).- Strategic thinking and assertive communication.- Reduction of costs and/or possibilities of assessments through the implementation of internal controls (efficient risk response).- Creation and implementation of key controls for mapped risks.- Creation of the process, controls and implementation of tools for Personal Data Privacy.- Creation and review of communication campaigns focused on Information Security, Risk Management, Internal Controls and Personal Data Privacy.- Creation of PodCast for acculturation.- Review of authority levels focusing on reducing bureaucracy and systematizing authority levels.- Acting in crisis committees (Covid, Truckers' Strike and Cyber Incident).- Structuring of controls and risk indicators for the Information Security area.- Construction with KPMG of the information security master plan.- Restructuring of the Group's identity and access management process and the SoD matrix.- Creation and monitoring of phishing campaigns. Show less -
Membro Comitê De Assessoramento Ao Conselho - Gestão De Riscos, Compliance, Auditoria Interna E EsgGrupo Nc Jan 2016 - Nov 2023Hortolândia, São Paulo, Brasil- Membro líder do comitê de assessoramento ao Conselho para a temática Gestão de Riscos Corporativos (integrando riscos de todas as tipologias dentro da Organização).- Membro participante dos comitês de assessoramento ao Conselho para as temáticas: Compliance, Auditoria Interna e ESG.- Membro líder do comitê de assessoramento ao Conselho para a temática Gestão de Riscos Corporativos (integrando riscos de todas as tipologias dentro da Organização). - Membro participante dos comitês de… Show more - Membro líder do comitê de assessoramento ao Conselho para a temática Gestão de Riscos Corporativos (integrando riscos de todas as tipologias dentro da Organização).- Membro participante dos comitês de assessoramento ao Conselho para as temáticas: Compliance, Auditoria Interna e ESG.- Membro líder do comitê de assessoramento ao Conselho para a temática Gestão de Riscos Corporativos (integrando riscos de todas as tipologias dentro da Organização). - Membro participante dos comitês de assessoramento ao Conselho para as temáticas: Compliance, Auditoria Interna e ESG. Show less
-
Executiva Responsável Por Segurança Da Informação E Gestão De Identidades E AcessosGrupo Nc Oct 2021 - Oct 2022Hortolândia, São Paulo, Brasil- Responsável interina pela área de Segurança da Informação e Gestão de Identidades e Acessos com objetivo de reestuturar controles, indicadores, propor orçamento, preparar reportes ao Conselho, gerenciar e acompanhar implementação de projetos de SI. Gerenciar o time de SI e preparar o especialista da área para se tornar o gestor responsável por SI no futuro.- Matriz de riscos de segurança apresentada em Conselho em Nov-2021, utilizando uma linguagem de negócio e não técnica.-… Show more - Responsável interina pela área de Segurança da Informação e Gestão de Identidades e Acessos com objetivo de reestuturar controles, indicadores, propor orçamento, preparar reportes ao Conselho, gerenciar e acompanhar implementação de projetos de SI. Gerenciar o time de SI e preparar o especialista da área para se tornar o gestor responsável por SI no futuro.- Matriz de riscos de segurança apresentada em Conselho em Nov-2021, utilizando uma linguagem de negócio e não técnica.- Enfrentamos um incidente cibernético em Fev-2022 e trabalhamos com um time multidisciplinar na recuperação do ambiente, resset de senhas, etc.- Participamos da forense à respeito do incidente junto com terceiro contratado.- Executamos procedimento de construção de ata notarial à respeito dos dados e equipamentos que foram criptografados.- Implementamos diversas ferramentas e novos processos de segurança cibernética, como PAM, MFA, CD Strike, Threat Hunter entre outras pós incidente.- Desenvolvemos em parceria com um terceiro contratado o plano diretor de segurança da informação para os próximos 3 anos.- Implementamos controles, indicadores e reportes junto ao terceiro contratado para administrar os servidores da empresa.- Revisamos contratos e indicadores.- Implementamos controles, procedimentos, gestão e respostas às cartas de riscos de Tecnologia elaboradas por nossos terceiros parceiros.- Construímos matriz de riscos de segurança baseada no NIST.- Assumimos a área de Gestão de acessos e elaboramos um diagnóstico quanto aos acessos e permissionamentos em todos os sistemas críticos e pastas de rede.- Construímos um plano de trabalho para correção de acessos e permissionamentos nos sistemas críticos e pastas de rede.- Assumimos a gestão dos terceiros que executavam a concessão e remoção de acessos aos sistemas do Grupo.- Criamos um comitê mensal de Segurança junto as áreas de negócios, área de TI e terceiros contratados.- Revisamos políticas e treinamos colaboradores. Show less
-
Risk Management ManagerGrupo Nc Jun 2015 - Jan 2022Hortolândia, São Paulo, Brazil- Team management focused on mapping and mitigating risks for the Organization.- Creation and review of authority levels for all processes and businesses. Including the connection with IT for systemic parameterizations.- Creation and review of Policies/Guidelines.- Creation of the Group's Risk Policy/Guideline.- Creation of the Group's Crisis Management Guideline/Policy.- Creation and application of training and communications on Risks, Controls and Crisis.- Active in… Show more - Team management focused on mapping and mitigating risks for the Organization.- Creation and review of authority levels for all processes and businesses. Including the connection with IT for systemic parameterizations.- Creation and review of Policies/Guidelines.- Creation of the Group's Risk Policy/Guideline.- Creation of the Group's Crisis Management Guideline/Policy.- Creation and application of training and communications on Risks, Controls and Crisis.- Active in Crisis Committees.- Revision of Matrix SoD (segregation of function).- Planning, prioritizing and reviewing the risk identification and analysis work carried out by the team in the current processes and projects. Walktrhoug tests. Evaluated internal controls effectiveness.- Preparation of reports and presentations for the Board and Risk Committees.- Identification/Creation of risk indicators. - Creating a Risk Assessment model and applying it to the Group's executives.- Monitor the evolution of critical and high impact risks in the NC Group, as well as the implementation of action plans to mitigate risks.- Elaboration of the integration agenda with other areas of risk and control (Maintenance, Engineering, Safety and Environment - HSE, Insurance, Legal, Compliance and Information Security) so that everyone acts in the same framework, guaranteeing the proper functioning of the cycle risk management, reporting to Senior Management and the interconnectivity of risks between various subjects.- Preparation of annual work plan and monthly review. Show less
-
Coordenadora De Gestão De RiscoGrupo Nc Mar 2014 - May 2015Hortolândia - Sp
-
Membro Comitê Assessoramento Ao Conselho - Gestão De Riscos, Compliance, Auditoria E EsgEms Jan 2016 - Nov 2023Hortolândia, São Paulo, Brasil- Membro líder do comitê de assessoramento ao Conselho para a temática Gestão de Riscos Corporativos (integrando riscos de todas as tipologias dentro da Organização).- Membro participante dos comitês de assessoramento ao Conselho para as temáticas: Compliance, Auditoria Interna e ESG. -
External Audit - Top SêniorDeloitte Touche Thomatsu Sep 2007 - Mar 2014Campinas, São Paulo, Brazil- Team management, orientation and review of work performed by less experienced assistants.- Audit scope planning (substantive tests and internal controls efficiency tests, including SOX).- Execution of sample selection in ACL.- Preparation of audit report and internal controls including control recommendations.- Audit of controls based on qualitative and quantitative risk analysis. Understanding processes, creating flowcharts, walkthroughs, creating a risk and control matrix… Show more - Team management, orientation and review of work performed by less experienced assistants.- Audit scope planning (substantive tests and internal controls efficiency tests, including SOX).- Execution of sample selection in ACL.- Preparation of audit report and internal controls including control recommendations.- Audit of controls based on qualitative and quantitative risk analysis. Understanding processes, creating flowcharts, walkthroughs, creating a risk and control matrix, planning and executing tests to assess the effectiveness of controls.- Driving alignment with the customer.- Audit of Financial Statements and Controls for IFRS and USAGAAP clients. Pointing out divergences from GAAPs.- Assistance to international auditors (USA | China).- Reports in English (written and spoken).- Preparation of recommendations for more efficient internal controls. Show less -
Internship In The General Board (Liquidation Of Expenses And Commitments)Unicamp Jan 2006 - Aug 2007Campinas, São Paulo, Brazil- Analysis of processes for releasing and scheduling payments (checking quotes, invoices, verification of expense compliance versus the University's expense policy).- Analysis of documentation, checking budgets, invoices and taxes.- Analysis of processes for releasing commitments. -
Senior Credit AnalystLojas Riachuelo S/A Nov 2003 - Dec 2005Campinas, São Paulo, Brazil- Analysis and release of credit for customers (store card and personal loans).- Customer attend.- Team leader.- Sale of financial products.- Coordination of a call center wich purpose was new customer acquisition and sale of financial products.
Regina Malta Education Details
-
Project Management -
Business/Commerce, General
-
IbgcCurso Formacao Conselheiros De Administração Turma 183 -
Liderança Em Esg + Certificação Cpesg -
Brasiliano Interisk24 Horas In Company (Presencial)
-
Certificate Course -
Liderança De Impacto: Conexão E Ação Para Resultados
-
Ciências Econômicas -
CemepInformática
Frequently Asked Questions about Regina Malta
What company does Regina Malta work for?
Regina Malta works for Diversity On Boards
What is Regina Malta's role at the current company?
Regina Malta's current role is Board Member | GRC Executive (Governance | Enterprise Risk Management | Internal Controls - SOX, NIST, COBIT | Compliance) | Internal and External Auditor).
What schools did Regina Malta attend?
Regina Malta attended Fia Business School, Fia Business School, Ibgc, Insper, Mit Xpro, Lec - Legal, Ethics & Compliance, Brasiliano Interisk, Fundação Dom Cabral Fdc, Fundação Dom Cabral, Pontifícia Universidade Católica De Campinas, Cemep.
Not the Regina Malta you were looking for?
-
Sandra Regina Malta Gerbati
São Paulo, Sp -
-
-
Regina Malta
Contagem, Mg
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial