IT Governance, Risk & Control (Bemol Lojas)
April 2017 – Present
Responsible for development of the organization’s strategic roadmap for data governance, digital rights management, cybersecurity, and business continuity management. Provide advisory services to the Chief Information Officer, the Manager of Infrastructure Services, and the Manager of Information Security. Deliver ongoing assurance of the adequacy and effectiveness of the business’ control framework.
Cybersecurity Capacity Development (European Union)
July 2017 – Present
Responsible for leading consultancies performing national-level ICT / cybersecurity assessments and developing strategic ICT and cybersecurity roadmaps for emerging economies and industrialized nations. This work largely involves evaluating existing systems and processes, identifying control weaknesses, and recommending key improvements to deliver robust, scalable, and resilient IT and related services.
Project Governance & PCI-DSS Assessment (First Global Bank)
May 2017 – August 2017
Delivered an end-to-end project governance assessment to determine how well the Bank’s projects are adhering to best practices. The assessment was conducted in conformance with the International Standards for the Professional Practice of Internal Auditing as established by the International Audit and Assurance Standards Board (IIASB) and the Project Management Body of Knowledge (PMBOK) as dispensed by the Project Management Institute (PMI). Additionally, a review was performed on the organization’s vendors to see if they met all the requirements of the Payment Card Industry Data Security Standard (PCI-DSS).
Infrastructure Transformation (Bermuda Commercial Bank)
January 2016 – May 2016
Responsible for delivery of the following infrastructure projects:
» QuoVadis Datacenter Relocation
» Certified SWIFT Bureau Migration (SaaS)
» Core Network Implementation
» Data Backup and Recovery Solution
» Disaster Recovery Plan
» Optical WAN Redundancy
Core Business Applications Transformation (Bermuda Commercial Bank)
January 2015 – November 2015
Oversaw the deployment of key applications to support the organization’s strategic business objectives. These are as follows:
» Temenos T24 Core Banking
» Temenos Anti-Money Laundering (AML)
» Temenos Insight Business Intelligence & Data Warehouse
» NETinfo NETteller Internet Banking
» Corona Securities Management
» EFS Customer Output Management
» Microsoft Dynamics Great Plains
Internet Regulation & Policy Capacity Building (Government of Barbados)
March 2015 – November 2015
» Delivered a moderated online course in Internet Regulation & Policy to the Fair Trading Commission and Telecoms Unit (course modules included Internet Policy Principles, Regulatory Frameworks, Legal Aspects of Internet Governance, Cybersecurity, and others)
» Provided advice to the Fair Trading Commission on regulating Wholesale Pricing in the telecoms sector
IT Governance, Risk & Control Programme (Bermuda Commercial Bank)
November 2014 – November 2015
Led the overall development of the IT-related GRC activities for the organization:
» Initiated the IT Steering Committee tasked with determining prioritization of IT-enabled investment programmes in line with the Bank’s business strategy and overall priorities.
» Completed a consolidated risk assessment of all IT platforms to drive the tactical programmatic approach for the next 12-18 months, to meet compliance requirements for PCI-DSS, and to align the IT department’s work with the Operational Risk and Internal Audit functions.
» Developed key policies and procedures: IT Governance Standards, IT Security Policy, Change Management Policy, Change Management Process, Information Classification Standards, IT Security Incident Response Procedures, IT Service Level Agreement, Network Code of Connection, etc.
» Led the deployment of critical platforms to enhance cybersecurity response capabilities: Managed Security Service (MSS), Security Event and Information Monitoring (SEIM), Privileged Account Management, File Integrity Checking, Vulnerability Management, and Penetration Testing.
» Implemented an enterprise wide Information Security Awareness programme, including annual attestation, social engineering and phishing campaigns, posters, and daily / weekly tips.
Online Course Development (Internet Society)
September 2012 – Present
Oversaw the development of a number of online course titles in the area of Internet governance, policy, and development. Work with key partners to deliver self-paced, moderated and blended online courses for capacity building in Asia-Pacific, Africa, Europe, Latin America and the Caribbean. Key online courses included:
» Building Wireless Community Networks
Learning Management System Project (Internet Society)
September 2012 – May 2013
Managed the end-to-end project lifecycle to deliver online learning capabilities and multi-lingual content to the organization. Developed business cases, financials and request for proposals (RFPs) for hosted LMS services and content development. Completed vendor evaluations and cost negotiations and led the work packages for the SaaS (hosted LMS) parameterization, SCORM content development and training. Integrated leading edge visual and instructional design, as well as online testing into the new content.
Unified Communications Contact Center Deployment (CIBC FirstCaribbean International Bank)
February 2011 – March 2012
To mitigate high operational and financial risks, and improve productivity and customer service, led the migration of the organization’s legacy, standalone, multi-site Nortel Meridian / Symposium installations to a fully integrated VOIP and Unified Communications contact center solution delivering intelligent contact routing, call treatment, network-to-desktop computer telephony integration (CTI), and multichannel contact management over the existing IP infrastructure. The solution also included Workforce Management, Quality Management, Telecoms Expense Management and a DTMF-driven Telephone Banking platform.
Data Center Core & Distribution Network Upgrade (CIBC FirstCaribbean International Bank)
March 2011 – December 2011
Led the testing and deployment of the new data center core and distribution architecture to improve application performance, fault tolerance, scalability and network security. Installed fiber and copper trays to align the build to the TIA-942 Standard. Deployed clustered Cisco Catalyst 6500 layer 3 switches for fast core switching (Supervisor engines with 32 Gb backplanes), network segmentation (Virtual firewall blades with capacity for 200 virtual firewalls) and increased network performance (1 Gb and 10 Gb Ethernet ports). Migrated the core routing protocol to Border Gateway Protocol (BGP).
802.1x Port-Based Authentication Project (CIBC FirstCaribbean International Bank)
January 2011 – September 2011
Led the successful deployment of a Windows-based 802.1x infrastructure utilizing Internet Authentication Service (IAS) clustered servers (fault tolerance), Remote Authentication Dial-In User Service (RADIUS) and Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) with support for smart cards, Kerberos, public key, one time passwords, and other authentication schemes.
Enhanced Point-of-Sale Authentication Platform (CIBC FirstCaribbean International Bank)
March 2010 – October 2012
Reduced annual operating expenses by 35% (approximately USD$450K) by leading the architecture, development, deployment and commercialization of the Bank’s enhanced point-of-sale platform. The team reverse engineered Cisco AS5400 universal access gateways to deliver secure, high performance transaction and authentication capabilities (Visa credit, Visa debit and traditional inter-bank debit).
Enterprise Unified Communications Rollout (CIBC FirstCaribbean International Bank)
January 2009 – September 2011
Reduced annual operating expenses by 35% (approximately USD$750K per annum) through the implementation of a comprehensive forklift upgrade and capabilities enhancement project. Replaced the existing Nortel PBX systems across the Bank’s operations with Cisco Unified Communications Manager Enterprise clusters and Cisco Unified Communication Manager Express systems. Deployed 2000+ client devices utilizing a combination of hard phones and soft phones. Implemented telepresence systems connecting key locations, including CIBC headquarters in Toronto. Other capabilities deployed included unified messaging, Outlook integration, IM and presence, SIP trunks and automated site failover.
MPLS and Metro-Ethernet Network Upgrade (CIBC FirstCaribbean International Bank)
February 2009 – May 2010
Reduced annual expenses by 60% (approximately USD$650K per annum) and dramatically improved network performance and quality of service (QoS) through the implementation of Multi-Protocol Label Switching (MPLS) and Metro-Ethernet services whereby the company’s international and local Wide Area Network was upgraded from legacy frame relay and T1 circuits. Delivered a converged network (data, voice and video) across 17 countries, with traffic prioritization for differentiated Quality of Service (QoS) and secure transport using GetVPN tunnels with 2048-bit encryption.
Enterprise Information Security Audit (CIBC FirstCaribbean International Bank)
April 2007 – February 2008
Led the end-to-end audit engagement which was aimed at reviewing the control framework governing the organization’s information security programme. Project lead responsible for audit planning and preparation (resources, budget, timeline, etc.), establishing of audit objectives, development of the audit program and internal control questionnaires (ICQs), performing the fieldwork and issuing the final report. This particular scope of work was awarded a Captain’s Choice Award for “Most Outstanding Audit Based on Impact at the Board and Audit Committee Level”. The final report was used as the basis for the organization’s 2008-2011 Information Security Programme.
2005 GSM Network Optimization Project (AT&T Wireless)
January 2005 – December 2005
Delivered the optimization of the AT&T Wireless GSM network in Barbados. The project was geared towards optimizing the existing network to increase overall performance and reduce the need for capital investment in additional pico or macro cells. Activities included network modelling, antenna sweep tests, azimuth changes, antenna down tilts and competitive drive testing.
2004 GSM Network Expansion Project (AT&T Wireless)
January 2004 – December 2004
Delivered the upgrade and expansion of the AT&T Wireless GSM network in Barbados. The project enhanced service coverage, capacity and quality for the GSM network to cope with customer demand. Activities included network modelling, site acquisition, construction management, installation, testing and integration of six (6) new 900 Mhz and 1900 Mhz sectorized sites.
Jack Henry Core Director Banking System (Grenada Cooperative Bank Limited)
February 2003 – June 2003
Completed the deployment of a Jack Henry Core Director solution across six (6) branches, providing retail and business banking capabilities to the only indigenous bank in Grenada. Installed HP Proliant Servers running Microsoft Windows Server and Microsoft Terminal Services in the application and database server tier. Configured a Wide Area Network (WAN) of Cisco routers and frame relay circuits to deliver high-speed connectivity from remote offices.