Cynthia Bondoc

Governance Risk Controls Senior Manager, Global manufacturing

New York, NY, United States

Details

Experience:  Drive 1st / 2nd Line of Defense Information Security Risk, Compliance and Operational Risk : lead Technology Policy and Standards Management, Risk Reporting, Business and Enterprise IS/IT Risk & Control Framework design (8 domains, 57 process categories, 300+ sub-categories). Design tool-driven risk metrics, scoring model & quarterly reports on key programs/ underlying controls.

 Strengthen coverage of global security requirements via North America policies and standards : define annual and ad hoc review process with functional SME process owners, determine minimum compliance to support business (product/service) across 11 domains.

 Create reporting visibility on Vulnerability identification Data Privacy, Policy, SDLC programs. Assess critical frameworks, monitor associated controls, infrastructure, applications and services. Drive governance & oversight of cybersecurity risk remediation, regulatory compliance, resiliency, data privacy, vulnerability scans. Determine IT Domain/issue risk ratings with CISO review, compensating controls

 Designed North America operational risk taxonomy and IT SIG model : Designed IT SIG questionnaire to validate business/IT controls. Defined requirements to enhance automated solution, test workflow, master inventory, develop IT scorecard/risk reduction tools.

 Lead strategic planning, define & enhance GRC processes governance, infrastructure, access, data privacy, mobile. Organize advisory activities for IS/IT attestations & platform reviews. Define web-based tools, testing, critical application/infrastructure metadata.

2021 : Present

Sharp Decisions

Senior Manager Information Security

2019 : 2021

Danone

Information Security Risk & Compliance

2018 : 2019

BNY Mellon

Vice President

2018 : 2019

Randstad Technologies US

Risk Management Consultant

2016 : 2018

Robert Half Technology

Risk Management & Audit Consultant

Company: Sharp Decisions

About

 Technology and financial services professional with international audit, risk and outsourcing experience. Proven leader who delivered 70% IT annual cost reduction in 1 month and FS business savings of +25% within 2 months. Thrives under high pressure engagements.

 Creates structure within risk and audit projects. Diverse yet progressive career record in Third Party Assurance Services, business systems and process improvement. Communicates organizational needs with CFO, Operations, IT and Product stakeholders.

 Builds relationships with business and IT units to drive change. Initiates global IT vendor analysis programs. Streamlines processes in trading, operations, accounting, system development and architecture. Develops cross-functional solutions with FASB/COBIT standard.

Specialties:  Reduces global operational costs through risk mitigation and process integration, and enables new revenue streams through alignment of business / IT goals and service delivery.

 Integrates controls, analytical data and key insights into frameworks of service delivery, operations and trade reporting. Analyzes core competencies of on/offshore providers. Named 2005 Multicultural Expert.