PROFESSIONAL SUMMARY

• Seasoned professional CRM Certified Risk Manager and Project Manager with significant years of project management consulting Sarbanes Oxley SOX Consulting and auditing experience focusing in Governance Risk and Compliance utilizing the LockPath version 2 Keylight Platform GRC tool as well as the RSA Archer Platform GRC tool Fiserv Frontier 5.0 tool Project Management, and Rigorous Program Management. Extensive Senior Project Management in Dual Shore Point experience utilizing Waterfall, Agile, as well as Scrum Software Development methodology.
• Project Management of major SAP ERP implementation projects WITH BUDGET IN EXCESS OF 25 MILLION DOLLARS including SAP Financials FICO SAP CRM and SAP SRM Solutions including SAP HANA SAP Warehouse Management Systems. SOX Compliance Software tools implementation and evaluation.
• Extensive experience in scheduling responsibilities and developing and accurately maintaining integrated master/sub-project schedules, ensuring schedule logic is maintained, coordinating work activities with project team members, progressing schedules and assisting in identifying and resolving schedule conflicts as well as performance of User Acceptance Testing. Extensive experience in Healthcare HIPAA, compliance and development of Standards and Guidelines to adhere to the NIST -800-53, SOX, Dodd Frank Act, HITRUST The Volcker Rules Meaningful Use Act and Sunshine Act requirement and compliance. Extensive experience in Compliance to PCI Standards and implementation and performance of Compliance QSA Auditing.

TECHNICAL EXPERIENCE

Project Manager in SAP ECC 7.0, SAP HANA SAP COTS packages SAP ECC 5.0 Business One and SAP ECC 6.0 R/3 Functional Conversion LockPath Keylight GRC version 2 RSA Archer GRC tool Fiserv Frontier 5.0 tool SAP Archiving ERP SDLC Microsoft-Project 2007 IBM Web-Sphere MQ Series 2003 2002 and 2000 Access Oracle R8 thru R12 Financials SSAE 16 SAS 70 Microsoft SharePoint and Microsoft SQL Server Hyperion Financials JAVA DIBS G/L PRIMAVERA 5.0/8.0/9.1 Vitech V3 Microsoft VISIO Excel Word Power Point Lotus Notes Windows MS-DOS HP PPM RUP Waterfall, Agile, Scrum Software Development methodology EDSNET Win stub Lotus 123 COBOL FORTRAN PL1

PROFESSIONAL EXPERIENCE

Confidential

Project Manager, PCI Compliance and Systems Security Subject Matter Expert

• Functional responsibility was in testing and verification of the PCI Version 2.0 DSS Requirements developed towards reaching the following six 6 milestones:
• Removing sensitive authentication data and limit data retention.
• Protecting the perimeter, internal and wireless networks.
• Securing payment card applications.
• Monitoring and controlling access to IT financial systems.
• Protecting stored cardholder data.
• Finalizing remaining compliance efforts and ensure all controls are in place.
• Directly responsible for implementation team of 6
• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Writing and maintaining process procedures and controls
• Change Management Compliance and Process Implementation
• Consulting in the research, design and implementation of The Dodd Frank Act and The Volcker Rules requirements.

Confidential

Functional responsibility was to assist in the development of Statement of work and/or RFQ to coordinate and test IT corporate policies and procedures to meet Federally Regulated NIST Standards and mandated Systems Security Standards for compliance in NIST -800-53, SOX, SAP PCI Meaningful Use and Sarbanes Oxley. Required enhance Risk Management Certification by obtaining 24 continuing education units CEU's to implement policies and procedures to meet the SOX Compliance SAP Project Management PCI HITRUST Dodd Frank Sarbanes Oxley NIST -800-53 ISO 27002, ISO 27001 SSAE 16 Compliance

Project Manager, Systems Security Implementation

Confidential

• Functional responsibility was to develop, coordinate and test IT corporate policies and procedures to meet Federally Regulated NIST Standards and mandated Systems Security Standards for compliance in SAP HANA environment. Helped to implement policies and procedures to meet the Sarbanes Oxley NIST -800-53 ISO 27002, ISO 27001 SSAE 16 Compliance
• Directly responsible for implementation team of 12
• Dual Shore point responsibility managing the custom built combination of the best local and off-shore talent to bring the client the highest quality
• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Writing and maintaining process procedures and controls
• Change Management Compliance and Process Implementation
• Compliance Monitoring of implementation of the Fiserv Frontier 5.0 tool

Confidential

Project Manager, PCI Security Standards Implementation

• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Directly responsible for implementation team of 16
• Finalizing remaining compliance efforts and ensure all controls are in place.
• Protecting stored cardholder data.
• Monitoring and controlling access to IT financial systems.
• Securing payment card applications.
• Protecting the perimeter, internal and wireless networks.
• Removing sensitive authentication data and limit data retention.
• Additional responsibilities were penetration testing and verification of the PCI Version 2.0 DSS Requirements developed towards reaching the following six 6 milestones:
• Active Directory and Bind view implementation and testing to ensure compliance to meet Federally Regulated NIST Standards NIST -800-53 and mandated SOX Systems Security Standards.
• Change Management Compliance and Process Implementation
• Writing and maintaining process procedures and controls
• Consulting in the research, design and implementation of The Dodd Frank Act and The Volcker Rules requirements.

Confidential

Business Analysis

• where I analyzed documented and published a corporate report on the KMF which focused on issues involving the management of cryptographic keys: their generation, use, and eventual destruction. The final report included related topics, such as algorithm selection and appropriate key size and cryptographic module selection.
• Directly responsible for implementation team of 10
• Oracle R12 Implementation Analysis
• Compliance to NIST -800-53
• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Writing and maintaining process procedures and controls
• Change Management Compliance and Process Implementation
• SSAE 16 Compliance

Confidential

Project Manager, Security Standards Implementation

• Responsibilities were penetration testing and verification of the PCI Version 1.0 DSS Requirements developed towards reaching the following six 6 milestones:
• Removing sensitive authentication data and limit data retention.
• Protecting the perimeter, internal and wireless networks.
• Securing payment card applications.
• Monitoring and controlling access to IT financial systems.
• Protecting stored cardholder data.
• Finalizing remaining compliance efforts and ensure all controls are in place.
• Directly responsible for implementation team of 18
• Consulting in the research, design and implementation of SOX and The Dodd Frank Act and The Volcker Rules requirements.
• Change Management Compliance and Process Implementation
• Writing and maintaining process procedures and controls
• Compliance Monitoring of implementation of the Fiserv Frontier 5.0 tool

Project Manager, IT Corporate SOX Compliance

Confidential

• Writing and maintaining process procedures and controls
• Change Management Compliance and Process Implementation
• Project Manager SOX Compliance and Senior SAP Subject Matter Expert responsible for the IT System transition from E-Synergy to the COTS package SAP ECC 6.0 R/3 6 million dollar budget . Responsible for the successful planning and execution of the SAP Archiving, conversion and implementation project including defining project approach and gaining client, client engagement manager and project team member's buy-in for 28 Solutions including SAP Financials FICO SAP CRM and SRM Solutions including SAP HANA environment.
• Dual Shore point responsibility managing the custom built combination of the best local and off-shore talent to bring the client the highest quality
• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Using Rigorous Program Management/RPM led and directed implementation team of 23 contracted consultants and employees, responsible for the successful implementation of the Business Suite Module. Communicated project status, milestones and issues to project owners.

Confidential

Position: Project Manager, IT and SOX Systems Compliance and Testing

• Directly responsible for implementation team of 15 responsible for the Business Suite Module.
• Compliance Monitoring of implementation of the LockPath Keylight version 2 Platform GRC tool
• Dual Shore point responsibility managing the custom built combination of the best local and off-shore talent to bring the client the highest quality
• Senior SOX Project Manager, SAP Project Manager and Subject Matter Expert responsible for the ERP transition from MAS 500 to SAP COTS package SAP ECC 5.0 Business One 8 million dollar budget . Direct implementation responsibility for the Business Suite Module. SAP Business Suite provided the company with industry-specific applications. Overall responsibility for the successful planning and execution of the SAP project for 24 Solutions including SAP Financials FICO SAP CRM and SRM Solutions in the SAP HANA environment.
• Change Management Compliance and Process Implementation
• Writing and maintaining process procedures and controls
• Communicated project status, milestones and issues to project owners.

Confidential

Project Manager, Systems IT Testing and Compliance

• SAP Customer Relationship Management SRM ECC 4.0 specialist with the functional responsibility to develop, coordinate and test IT corporate policies and procedures to meet Federal mandates for Sarbanes-Oxley compliance. Developed a fifteen 15 step audit approach to address the Information systems assessment. Performed User Acceptance Testing for 28 Solutions including SAP Financials FICO SAP CRM and SRM Solutions.
• Writing and maintaining process procedures and controls

Confidential

Project Manager Sarbanes-Oxley Testing and Compliance

• Overall responsibility for the successful planning and execution of the Year 2 SOX testing.
• Overall responsibility for the Year 2 SOX testing and Compliance in Oracle 11i and Hyperion Financials SAP CRM and SRM Module.
• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Directly responsible for implementation team of 10, responsible for the Year 2 SOX testing.
• Communicated project status, milestones and issues to project owners.
• Writing and maintaining process procedures and controls
• Applied project management methodologies and control techniques to project.
• Change Management Compliance and Process Implementation
• Tracked and reported progress relative to time, budget and demonstrated results.
• Worked independently and with Project Team members to ensure task-level plans were completed and executed on track for the Year 2 testing.

Senior Project Manager, SOX Compliance and Testing

Confidential

• Performed Sarbanes-Oxley testing and documentation based on project plan and to ensure year two testing and SOX compliance was achieved.
• Overall responsibility for the Year 2 SOX testing and Compliance in Oracle R8 and Hyperion Financials SAP CRM and SRM Module.
• Developed and Audited requirement for Type 1 and Type 2 SAS70
• Communicated and interpreted the status for potential schedule impacts and communicate said impacts to control account/program manager and Integrated Product Team Leads as well as issued remediation to the external auditors, members of Senior Management and the Audit Committee.
• Maintained regular dialogue with Board of Directors members through monthly/bi-monthly/weekly meetings.

Confidential

Senior Executive Consultant/Subject Matter Expert

• Project Manager with oversight responsibility for the performance of Sarbanes-Oxley testing and documentation based on project plan and to ensure year two 2 testing and SOX compliance was achieved.
• Developed and Audited requirement for Type 1 and Type 2 SAS70
• Overall responsibility for the Year 2 SOX testing and Compliance in Oracle 11i and Hyperion Financials SAP CRM and SRM Module.
• Compliance Monitoring of implementation of RSA Archer Platform GRC tool
• Communicated and interpreted the status for potential schedule impacts and communicate said impacts to control account/program manager and Integrated Product Team Leads as well as issued remediation to the external auditors, members of Senior Management and the Audit Committee.
• Maintained regular dialogue with Board of Directors members through monthly/bi-monthly/weekly meetings.

Senior Executive Sarbanes-Oxley Consultant

Confidential

• Performed Sarbanes-Oxley testing and documentation based on project plan and to ensure year two 2 testing and SOX compliance was achieved.
• Overall responsibility for the Year 2 SOX testing and Compliance in Oracle 8 and Hyperion Financials SAP CRM and SRM Module.
• Developed and Audited requirement for Type 1 and Type 2 SAS70
• Communicated and interpreted the status for potential schedule impacts and communicate said impacts to control account/program manager and Integrated Product Team Leads as well as issued remediation to the external auditors, members of Senior Management and the Audit Committee.
• Maintained regular dialogue with Board of Directors members through monthly/bi-monthly/weekly meetings.