Highly motivated professional with 10+ years of experience in leveraging technology to assess risk and strengthen internal controls. Proven ability to lead internal audits, manage geographically dispersed teams, and drive process improvement initiatives with the below key strengths:
- Demonstrated experience in scoping, testing, and reporting on SOX compliance procedures.
- Deep understanding of IT General Controls (ITGCs) across various environments (on-prem, SaaS, internally developed).
- Specialized knowledge in areas such as Machine Learning, Change Management, SDLC, CI/CD, DevOps, Cloud Management (GCP, AWS), and Security (Authentication/Authorization).
- Proficient in data analysis tools (Python, SQL, BigQuery, Tableau, Power BI) to extract insights and inform audit procedures.
- Proven ability to manage and develop teams, fostering collaboration across departments in a global setting.
Danone
Amsterdam, Netherlands
Head of Internal Control
Sep 2023 - Present
Bringing health through food to as many people as possible! Member of the finance department accountable for the Danone entities within the Benelux cluster.
Responsabilities:
- Led a cross-functional team of 7 internal controllers (Managers, Seniors, and Juniors) ensuring quality, timeliness and
completeness of their testing and reporting by using agile methodologies (i.e. Scrum), management tools (e.g. Acuredge,
Asana, Miro) and dashboards (i.e. Power BI).
- Defined strategy, mentored and coached team members, resulting in 2 promotions within the team.
- Conducted and supervised risk assessments in multiple business units and IT processes (e.g. Cybersecurity, Data, IT
Governance).
- Successfully presented risk reports and recommendations to senior management and the board of directors.
- Effectively managed internal and external audits, including coordinating audit activities and remediating findings.
- Increased engagement with Benelux business units management and process owners, through new methods of
communication (e.g. SharePoint, Workplace, Teams) reducing time spent on meetings by 22%.
Manager, Internal Control (IT)
May 2020 - Jan 2022
Responsibilities:
- Managed projects aimed at implementing new systems, tools, and process improvements.
- Facilitated workshops to gather requirements and define strategic approaches.
- Developed scripts and dashboards using Python, SQL, SAP, and PowerBI to monitor the effectiveness of internal controls.
- Conducted risk evaluations on Cyber Crime & Security, Availability of Information Technology Services, and Data Confidentiality & Integrity.
- Performed segregation of duties (SoD) analysis in SAP and identified mitigating controls.
- Evaluated ITGCs to determine their effectiveness, identify gaps, and implement remediation plans.
Impact:
- Streamlined the SoD analysis process in SAP within our cluster, reducing complexity and time spent by 40% (over 300 hours saved in one year).
- Created multiple dashboards in Power BI using SAP and Asana data, improving internal task tracking and reducing administrative time by 10%.
Manager, Internal Audit (Technology Risk)
Spotify
Feb 2022 - Sep 2023
Amsterdam, Netherlands
Helping unlock the potential of human creativity. Member of Spotify's global internal audit team focused on the product and technology areas.
Responsibilities:
- Conducting risk assessments and internal audit projects covering a range of topics including Machine Learning, Change Management in Software Engineering, SDLC, CI/CD, DevOps, DevSecOps, Cloud Management (GCP, AWS), and Security (Authentication/Authorization).
- Leading a team of 4-5 internal auditors across various projects.
- Developing scripts and visualizations using Python, SQL, BigQuery, Tableau, and Looker for data analysis on specific business processes and controls.
- Assisting in defining and testing internal controls.
- Performing SOX testing with a focus on ITGCs for on-premises, SaaS, and internally developed systems.
Impact:
- Implemented risk mitigation strategies and controls based on the findings from risk assessments, ensuring a robust and secure technology infrastructure for Spotify's operations.
- Streamlined the Machine Learning development process, resulting in faster model deployment and improved efficiency, ultimately enhancing the user experience.
- Enhanced security measures by implementing best practices for authentication and authorization, safeguarding Spotify's systems and user data from potential threats.
- Implemented efficient Change Management processes in software engineering, enabling seamless deployment of software updates and minimizing disruption to Spotify's services.
IT Solutions Lead
Electrolux
Nov 2017 - May 2020
Stockholm, Sweden
Creating amazing consumer experiences by being responsible for the CRM solutions within the consumer and customer services department of Electrolux EU markets.
Responsibilities:
- Managed and prioritized the product backlog for CRM applications.
- Simplified the requirements gathering process using tools like Confluence.
- Performed data analysis to support decision-making on feature implementation and bug fixing.
- Designed and implemented integrations between various applications (CTI, SAP ERP, SAP C4C, SAP Hybris Marketing, SAP Hybris Commerce, Microservices).
- Configured and fine-tuned applications by defining business roles, workflow rules, extension fields, and code mapping.
- Led unit, integration, and user acceptance testing phases for projects.
Impact:
- Contributed to the successful design, build, test, and go-live of the CRM system in three EU markets (BE, UK, and IT), reducing customer wait times for service visits by 20%.
- Expanded digital channels for consumers by leading integration projects.
- Managed continuous improvement initiatives, delivering 70+ new functionalities for existing applications.
IT Business Analyst / IT Audit Specialist
Neoenergia
Oct 2015 - Oct 2017
Brazil
Member of the internal audit team responsible for Brazil's internal audit projects.
Responsibilities:
- Developed data analysis using ACL Analytics and Python scripts.
- Conducted IT audits on internal systems, including SAP ERP (MM, FI, CO, and HR modules) and SAP IS-U/CCS, ensuring compliance with internal and market standards.
- Mapped and audited processes related to supply chain, finance, human resources, and legal aspects of the electric power supply market.
- Facilitated workshops and meetings to drive results and design solutions for existing problems.
Impact:
- Developed 10+ ACL Analytics scripts, reducing data analysis time by 50% compared to traditional methods.
- Created 5+ KPIs for process monitoring, fostering synergy between the internal audit department and audited areas.
- Co-created the group's continuous auditing strategy.
- Contributed to 15+ audits, ensuring timely completion and driving process improvements.
Awards:
- Best project within the department in 2017.
IT Business Analyst
Enseada
Mar 2014 - Aug 2015
Brazil
Responsibilities:
- Developed and implemented functional specifications in the SAP MM area, including reports, procedures, and processes.
- Conducted unit and integrated testing for new features.
- Assessed purchasing processes in the SAP ERP MM module, such as Purchase Requisition, Quotation, Contract, Purchase Order, Service Entry Sheet, Migo, Miro, and Physical Inventory.
- Ensured ITGC compliance.
- Continuously improved SAP ERP tax codes (TAXBRA).
- Troubleshot and perform data analysis to identify and resolve issues related to the SAP ERP MM module.
Impact:
- Created 18+ functional specifications for reports, procedures, and processes implemented in SAP ERP.
- Implemented significant improvements in purchase order forms and Release Strategy of Documents, reducing approval time in SAP ERP.
- Specified, tested, and validated a new external processing procedure between company subsidiaries.
- Delivered 12+ customized trainings for stakeholders.
IT Business Consultant / Risk Analyst
EY
Jan 2013 - Feb 2014
Brazil
Member of the IT Risk and Assurance department helping our customers leverage their technology to achieve a competitive advantage, advising them to optimize their IT systems and mitigate related risks.
Responsibilities:
- Led workshops with the aim to gather requirements and define business blueprints for further implementation of systems or processes.
- Implemented and maintained ERP (SAP, ORACLE) systems.
- Conduced IT general controls audit.
- Consulted multiple companies on how to implement ITIL, COBIT, and different IT business standards.
Impact:
- Participated as team member or leader in 6+ ITGC audits on company's from different areas in which the findings helped to define the controls testing strategies for the financial audit team.
- Participated as team member in a full SAP ERP implementation focusing on the MM module, performing: Requirements gathering, Process Mapping, BBPs elaboration, Unit/Integrated Testing and Training Preparation.
System Analyst
Capgemini
Jan 2011 - Dec 2012
Brazil
Responsibilities:
- Analyzed software requirements.
- Developed manual and automated test cases based on requirements.
- Executed functional and regression tests.
- Utilized tools such as HP Quality Center, ClearQuest, TestLink, and Mantis for software quality improvement, lifecycle testing, and defect tracking.
Impact:
- Participated in 4+ projects (including 2 in banking) as a team member, responsible for executing tests.
- Led two projects from start to finish, delivering on time and meeting expectations.
Fundação Getulio Vargas
Master of Business Administration (M.B.A.)
Business Management
2013 - 2015
The course presents and discusses concepts, methods and relevant administrative instruments and above all, seeks to motivate students to be entrepreneurial leaders, both in the environment of the organizations for which they work, as in the development of own business.
Universidade Salvador
Bachelor’s Degree
Computer Science
2008 - 2011
Certified ScrumMaster (CSM)
Scrum Alliance
Issued Sep 2019 Expires Sep 2021
Credential ID 1074145
Certified Tester, Foundation Level (CTFL)
BSTQB - Brazilian Software Testing Qualifications Board
Issued Dec 2012
Credential ID 12-CTFL-02122-BR
Portuguese
Native or bilingual proficiency
English
Full professional proficiency
Spanish
Elementary proficiency