Profiles search

Anthony Perales

BISO - Commercial Engines & Services at GE Aerospace
Saline, MI, United States

Details

Education: MBA

General Management

University of Michigan-Dearborn



BS

Information Systems

Wayne State University
Experience: 2022 : Present

GE Aviation

Business Information Security Officer (BISO) - Commercial & Services

2019 : 2022

GE Aviation

Sr Staff Risk Advisor

2017 : 2019

GE Capital

Sr Staff Build & Release Engineer

• Responsible for executing the foundational risk and compliance program elements that underpinned GECC Treasury Governance, Risk and Compliance (GRC).

• Led a team responsible for IT risk management, controls assurance, regulatory programs, audit support and the GRC data repository.

• Actively built capacity model within team to execute annual Sarbanes-Oxley, Bank Certification, GECC IT Risk Assessment, and fulfillment of corporate / regulatory information requests.

• Responsible for strategic planning, project management, budgeting, staffing, and operational support.

• Drove maturity of IT risk management program across all IT domains by building both qualitative and quantitative program elements that improved risk articulation and management visibility.

• Partnered with clients, internal systems resources, and external service providers to develop well-integrated risk/compliance solutions.

• Partnered with key stakeholders in operational risk, data privacy, records and information management, and software governance to appropriately embed governance requirements into respective IT processes.

• Built and maintained Treasury GRC data repository which served as the definitive source for IT risk register, controls inventory, controls assurance planning, policy gaps, governance analytics, and compliance reporting.

• Built and executed IT controls assurance framework aligned to GECC policy, Treasury operational risk reduction objectives and regulatory expectations.

• Defined and owned the internal and external audit engagement model with strong emphasis on transparency, key technical resource identification and designed for auditability principles.

2014 : 2017

GE Capital

Sr Manager - IT Compliance

Responsible for the identification of new and emerging risks across Treasury IT, achieved through the following :

• Conducting risk interviews with senior IT leaders

• Analyzing trends in incidents/problems

• Managing the annual GECC IT Application Risk Assessment

• Providing risk consultation services within Treasury IT

• Serving as the regulatory and risk assessment reviewer in the SDLC process

Responsible for determining the residual risk of identified risks, achieved by the following :

• Setting direction and providing oversight for the Control Quality Management program, which coordinates all Treasury IT controls testing for regulation (Sox, Bank) and GE policies/standards

• Forming an overall rating of the effectiveness of Treasury IT’s control environment by incorporating testing results from the Control Quality Management program

• Developing and maintaining Treasury IT’s internal Risk Register

• Recalculating residual risk after risk treatments plans have been completed

Lead risk treatment efforts for identified risks by performing the following :

• Driving ownership of risks

• Providing guidance on available risk treatment options

• Timely review of risk treatment progress

Created the Treasury IT Risk Framework, which establishes the scope, rhythm and desired outcomes of the IT Risk function based on industry standard and peer programs within GE Capital. The Risk Framework also defines the Treasury IT risk rating methodology which is applied to all identified risks.

Articulated Treasury’s IT Risk profile by conducting quarterly risk report outs to the Treasury CIO and provided updates within Treasury IT via All Hands meetings and individual IT teams presentations. Promoted the Risk Program by presenting to non-IT Treasury functions and to other GE businesses.

Led Treasury IT’s software governance initiatives including the migrating of all Treasury locations into the GECC software governance solution and leading software audit remediation efforts.

2012 : 2014

GE Capital

IT Risk Leader - Treasury
Company: GE Aviation
Years of Experience: 22

Skills

Auditing, Business Continuity, Business Process, Business Process Improvement, CISA, Coaching, COBIT, College Recruiting, Communication, cybersecurity risk, Enterprise Risk Management, Facilitation, Governance, Influence Others, Information Security, Information Security Management, Information Technology, Internal Audit, Internal Controls, Interns, Interviewing, it audit, IT Controls, ITGC, IT Governance, IT Recruitment, IT Risk, IT Risk Management, Leadership, Management, Mentoring, Presentation Skills, Process Improvement, Project Management, Public Speaking, Recruiting, Risk Assessment, Risk Management, Sarbanes-Oxley Act, SOX, Strategy

About

I am motivated by an intense desire to find simple and innovative approaches to complex business challenges. I embrace those challenges that are rooted in culture and need high levels of energy to overcome.



I am known for being a great coach and mentor of early career technical talent. I feel honored to be able to both recruit and guide talent along their career paths. It's a special honor to be part of this journey.