I am a highly skilled and dedicated professional with 10+ years of experience in IT, internal audit, internal control, and risk management. Throughout my career, I have developed a strong expertise in leveraging technology to mitigate risks, optimize business operations, and drive process improvements. Here are some key highlights about my background and capabilities:
- Proven track record of conducting thorough risk assessments and successfully leading projects.
- Experienced in effectively managing geographically dispersed teams and fostering cross-functional partnerships.
- Skilled in analyzing data using Python, SQL, BigQuery, Tableau, and Power BI to extract valuable insights.
- Specialized knowledge in areas such as Machine Learning, Change Management, SDLC, CI/CD, DevOps, Cloud Management (GCP, AWS), and Security (Authentication/Authorization).
- Knowledgeable on ITGCs for on-premises (e.g. SAP), SaaS, and internally developed systems.
Danone
Amsterdam, Netherlands
Head of Internal Control
Sep 2023 - Present
Bringing health through food to as many people as possible! Member of the finance department accountable for the Danone entities within the Benelux cluster.
Helping safeguard our organization's objectives by minimizing risks and protecting assets, ensuring records' accuracy, promoting operational efficiency, and encouraging adherence to policies, rules, regulations, and laws.
Manager, Internal Control (IT)
May 2020 - Jan 2022
Bringing health through food to as many people as possible! Member of the finance department accountable for the Danone entities within the Benelux cluster.
Responsibilities:
- Managed projects aimed at implementing new systems, tools, and process improvements.
- Facilitated workshops to gather requirements and define strategic approaches.
- Developed scripts and dashboards using Python, SQL, SAP, and PowerBI to monitor the effectiveness of internal controls.
- Conducted risk evaluations on Cyber Crime & Security, Availability of Information Technology Services, and Data Confidentiality & Integrity.
- Performed segregation of duties (SoD) analysis in SAP and identified mitigating controls.
- Evaluated ITGCs to determine their effectiveness, identify gaps, and implement remediation plans.
Impact:
- Streamlined the SoD analysis process in SAP within our cluster, reducing complexity and time spent by 40% (over 300 hours saved in one year).
- Created multiple dashboards in Power BI using SAP and Asana data, improving internal task tracking and reducing administrative time by 10%.
Manager, Internal Audit (Technology Risk)
Spotify
Feb 2022 - Sep 2023
Amsterdam, Netherlands
Helping unlock the potential of human creativity. Member of Spotify's global internal audit team focused on the product and technology areas.
Responsibilities:
- Conducting risk assessments and internal audit projects covering a range of topics including Machine Learning, Change Management in Software Engineering, SDLC, CI/CD, DevOps, DevSecOps, Cloud Management (GCP, AWS), and Security (Authentication/Authorization).
- Leading a team of 4-5 internal auditors across various projects.
- Developing scripts and visualizations using Python, SQL, BigQuery, Tableau, and Looker for data analysis on specific business processes and controls.
- Assisting in defining and testing internal controls.
- Performing SOX testing with a focus on ITGCs for on-premises, SaaS, and internally developed systems.
Impact:
- Implemented risk mitigation strategies and controls based on the findings from risk assessments, ensuring a robust and secure technology infrastructure for Spotify's operations.
- Streamlined the Machine Learning development process, resulting in faster model deployment and improved efficiency, ultimately enhancing the user experience.
- Enhanced security measures by implementing best practices for authentication and authorization, safeguarding Spotify's systems and user data from potential threats.
- Implemented efficient Change Management processes in software engineering, enabling seamless deployment of software updates and minimizing disruption to Spotify's services.
IT Solutions Lead
Electrolux
Nov 2017 - May 2020
Stockholm, Sweden
Creating amazing consumer experiences by being responsible for the CRM solutions within the consumer and customer services department of our EU markets.
Conducting:
- Roll-out and continuous improvement strategies.
- Management of product backlog.
- Integrations design (CTI, SAP ERP, SAP C4C, SAP Hybris Marketing, SAP Hybris Commerce, Microservices)
- Facilitation of workshops and other forums.
- Process mapping.
- Requirements gathering.
- Data analysis.
- Communication with stakeholders about needs and solutions.
- Creation of functional specifications.
- Configuration (fine-tuning, business roles, workflow rules, extension fields, code mapping, etc).
- Preparation of procedure and training manuals.
- Software unit testing, integrated testing (SIT) and user acceptance testing (UAT).
Accomplishments:
- Contributed to the successful design, build, test and go-live of our CRM solution in three of our EU markets.
- Managed the continuous improvement stream responsible for delivering more than 70+ new functionalities for our existing applications.
IT Audit Specialist
Neoenergia
Oct 2015 - Oct 2017
Brazil
Providing constant insights through data analysis.
Conducting:
- Process mapping.
- Requirements gathering.
- Data analysis through scripts developed in ACL Analytics using ACLScript/Python/R.
- Development and monitoring of KPIs using ACL Analytics and ACL GRC Results Manager.
- Audit in several internal systems including SAP ERP (MM, FI, CO and HR modules) and SAP IS-U / CCS, aiming to adapt to internal and market standards.
- Audit in different internal processes of: supplies, financial, legal and aspects related to the legislation inherent to the electric power supply (ANEEL).
- Preparation of reports and abstracts.
Accomplishments:
- Developed 10+ scripts for ACL Analytics, that helped to reduce the time spent on data analysis by 50% compared to the normal time spent during an audit.
- Developed 5+ KPIs of different processes, monitored by the internal audit team, focusing on creating a synergy between the internal audit department and the areas audited.
- Helped in the creation of the continuous auditing strategy of the group.
- Participated in 15+ audits as team member, supporter and/or leader in which helped in its completion on time and with positive results in terms of process improvements and return on capital.
IT Business Analyst
Enseada
Mar 2014 - Aug 2015
Brazil
Conducting:
- Requirements gathering.
- Development and implementation of functional specifications on SAP MM Area (creation of new reports, procedures, and processes).
- Unit and integrated testing of new features.
- Monitoring of the purchasing process in the SAP ERP MM module (Purchase Requisition, Quotation, Contract, Purchase Order, Service Entry Sheet, Migo, Miro, Physical Inventory, etc.).
- Maintenance of ITGC audit compliance.
- Continuous Improvement of SAP ERP tax codes (TAXBRA).
- Troubleshooting and data analysis with the intent to identify and resolve problems related to SAP ERP MM module.
Accomplishments:
- Created 18+ functional specifications of new reports, procedures and processes later implemented in SAP ERP.
- Performed vast improvements in purchase order forms (better tax viewing payable) and in the Release Strategy of Documents, reducing the time spent on its approval in SAP ERP.
- Helped in specifying, testing and validating a new external processing procedure performed between subsidiaries of the company.
- Created and conducted 12+ customized training to meet the diversified workforce.
IT Business Consultant / Risk Analyst
EY
Jan 2013 - Feb 2014
Brazil
Member of the IT Risk and Assurance department helping our customers leverage their technology to achieve competitive advantage, advising them to optimize their IT systems and mitigate related risks.
Conducting:
- Requirements gathering.
- Implementation and maintenance of ERP (SAP, ORACLE) systems.
- IT general controls audit.
- Consulting on ITIL, COBIT and different IT business standards.
Accomplishments:
- Participated as team member or leader in 6+ ITGC audits on company's from different areas in which the findings helped to define the controls testing strategies for the financial audit team.
- Participated as team member in a full SAP ERP implementation focusing on the MM module, performing: Requirements gathering, Process Mapping, BBPs elaboration, Unit/Integrated Testing and Training Preparation.
System Analyst
Capgemini
Jan 2011 - Dec 2012
Brazil
Conducting:
- Analysis of software requirements;
- Creation of test cases based on software requirements;
- Execution of functional and regression tests;
- Creation and tracking of error occurrences,
- Participation in processes of quality improvement, utilizing tools for : Life cycle testing / defect tracking (HP Quality Center), Change and requirements definition (PQL, ClearQuest), Testing Life Cycle (TestLink), Defect Tracking (Mantis).
Accomplishments:
- Participated in 4+ projects (2 of banking companies) as team member, being the one who executed more tests.
- Led two projects from start to finish, finalizing on time and within expectations.
Fundação Getulio Vargas
Master of Business Administration (M.B.A.)
Business Management
2013 - 2015
The course presents and discusses concepts, methods and relevant administrative instruments and above all, seeks to motivate students to be entrepreneurial leaders, both in the environment of the organizations for which they work, as in the development of own business.
Universidade Salvador
Bachelor’s Degree
Computer Science
2008 - 2011
Certified ScrumMaster (CSM)
Scrum Alliance
Issued Sep 2019 Expires Sep 2021
Credential ID 1074145
Certified Tester, Foundation Level (CTFL)
BSTQB - Brazilian Software Testing Qualifications Board
Issued Dec 2012
Credential ID 12-CTFL-02122-BR
Portuguese
Native or bilingual proficiency
English
Full professional proficiency
Spanish
Elementary proficiency