CISO at Grupo Moura

Experienced financial and cybersecurity professional with a proven track record on the Audit and Risk Committee (ARC). Committed to ensuring financial integrity, risk mitigation, and digital asset protection. Proficient in financial reporting, risk management, compliance, and cybersecurity, with a strong dedication to ethical governance.

Responsible for the areas of Risk Management, Internal Audit and Compliance at Grupo Moura company. Moura acting in the segment of batteries accumulators. Brazilian energy used by the world’s largest automobile manufacturers.Currently implementing the Continuous Audit and Continuous Monitoring project, with the intent of generating efficient and high performance reports. Identifying exceptions faster than traditional audits, in time to remedy preventively.

Operations in various business segments of Brookfield Group in South America (BPG - Brookfield Property Group, BISA - Brookfield Incorporações SA, BER - Brookfield Energia Renováveis, Brookfield Agrícola); Focus on internal audit;Continuous Audit development, unit tests development in ACL (Audit Command Language);Experience with relational databases and SQL for data science and analysis;Converting data into business intelligence;Knowledge of Microsoft PowerBI and Qlikview BI tools;Providing high level strategic, analytical direction and vision;Forense Examination: use of digital research tools for hard disk/ e-mail scanning to gather information, process and analyze documents, graphics and images, retrieve files, create filters to manage relevant evidence, among other features that allow a quick and efficient analysis. (Eg.: FTK, Enterprise Vault, Exchange Online).

Risk Management- Assistance to group managers for implementing the action plans proposed by the internal audit.- Coordinating the development of scripts for continuous audit, from data analytics and data mining tools such as ACL.Business Audit- Coordination of internal audit processes, improve internal controls and mitigate risks. Process: Commercial, Incorporation, Service Management, Supply, Human Resources, Information Technology etc.Construction Audit- Coordination audit focused on the company's business in order to identify specific failures of this environment. The staff of this front is formed by civil engineer and auditor.

RISK MANAGEMENT AND STRUCTURE OF INTERNAL CONTROLS- Study and evaluation of risks and controls at strategic nivel, operational nivel and decision-making.- Control structure Establishment considering:- COSO methodology.- Practices and control procedures.- Systematic controls.- Access to Information Model.SYSTEM AUDIT- Logic Security review, involving all processing environment and information systems, including:. Identification and classification of information assets.. Definition of Software Implementation Plan of access control. . Audit databases.. Definition of policies and information security strategies.. Security Review information technology environments.. Review and definition of integrated software controls (Oracle, SAP R / 3, Microsiga etc).. COBIT methodology.. Separation of duties (SoD).INTERNAL AUDIT- Coordination team the implementation of internal audit projects involving all business processes, involving concepts of business risk, comprising: . Identification, assessment and prioritization of risks.. Identification and evaluation of the structure of internal controls (manual and systems).- Internal Audit teams training under the risk management approach. Promoted training data analytics and data mining tools such as ACL.SARBANES OXLEY-Enforcement of adherence to the Sarbanes Oxley projects involving:. preparing for the process of certifying by the external auditors, covering: risk assessment, controls documentation and remediation plan identified GAPs. . execution and documentation control tests in accordance with the criteria of the law.FRAUD INVESTIGATION - Execution of fraud research projects involving the application of techniques for identification:. the extent of the fraud.. the amounts involved.. control of vulnerabilities that enabled the occurrence.. the key players.

MOTOROLA'S BTC (BRAZIL TEST CENTER) - TEST AUTOMATION PROJECTDEVELOPMENTDevelopment and improvements for a Test Automation Framework, designed for testing P2K, LinuxJava and Symbian Motorola cell phones. (Eclipse + Java SE).TESTERTest case automation for Motorola's mobile phones, using both proprietary scripting tool and a proprietary Java based test automation framework. (Java)