Paolo Marquez
Details
Business Administration : Concentration in Accounting
San Francisco State University
2010 : 2013
Liberal Arts
City College of San Francisco
2007 : 2010
Need help with risk assessing your business and IT processes to re-engineer?
What about determining the depth or maturity of your cyber security environment?
• SOC 1/2/3 +
• ITA / IT SOX
• ISO 27k1 / 17/18 / 27701 / 22301
• FedRAMP
• HIPAA / HITRUST
• PCI-DSS (v4 ready)
• CSA STAR
• BSI C5
• TISAX
• CMMC / Cybersecurity Consulting
• IT Risk Assessment or Security Risk Assessment
• Penetration Testing / Web & API PenTest
• Tax Consulting
• Financial Auditing / SOX 404
Call +1 (650) 307-5085 anytime for a FREE 1 hour consultation.
Get your free subscription to Live Events, Webcasts, Alerts, and Articles at https : //www.mossadams.com/subscription-center.
My experience in the past 12+ years are represented by my achievements in the following institutions/companies I've worked for :
• Aptible
• Becker
• Cisco
• City College of San Francisco
• Deloitte and Touché
• Grant Thornton
• Hilliard Management Group
• MUFG Union Bank
• NetApp
• Rivian Automotive
• RSM / McGladrey
• The Cadence Group / Moss Adams
• Verizon Media Group / Yahoo
2011 : Present
Moss Adams
Cybersecurity Risk and Compliance Senior Manager
Skills
Accounting, Analytical Skills, Bookkeeping, Business Process Improvement, Business Strategy, California Consumer Privacy Act (CCPA), Communication, Data Analysis, Event Marketing Strategy, Event Planning, FedRAMP, Finance, Financial Accounting, Financial Services, Forecasting, General Data Protection Regulation (GDPR), Information Security, Internal Audit, Internal Controls, ISO Standards, IT Audit, ITGC, Macroeconomics, Management, Management Consulting, Microsoft Excel, Microsoft Office, Microsoft Word, NIST, Options, Payment Card Industry Data Security Standard (PCI DSS), Policy Analysis, PowerPoint, Project Management, Quality Assurance, QuickBooks, Reporting & Analysis, Risk Assessment, Security, Small Business, SOC 1, SOC 2, SSAE 16, Start-ups, Stocks, Strategic Planning, Strategy, Tax Preparation, Trend Following, U.S. Health Insurance Portability and Accountability Act (HIPAA)
About
Served as a management consultant, auditor, and risk compliance specialist for a variety of clients in different industries within the past ten years while leveraging a combined background in Information Technology/Information Systems, Accounting, and Finance with strong consulting and project management skills.
Paolo's strengths and expertise lie in strategic planning and assessment in order to align cyber security with business goals leading to the deployment of key technologies that allow the business and its employees to be more innovative, productive, and profitable. The breadth and depth of Paolo's experience includes, but is not limited to:
• Understanding complex information security environments to ascertain for gaps and opportunities for improvement in security designs based on industry best practices;
• Translating governance, risk, and compliance requirements into real-world application, and advising on large complex operations;
• Serving as a trusted advisor to senior management and C-Suite executives by providing demonstrated knowledge on risk methodologies, approaches to measuring effectiveness, security technologies as well as multiple compliance and regulatory standards; and
• Designing a risk-based environment with security as an enabler.
Experience: Aptible | Becker | Cisco | City College of San Francisco | Deloitte and Touché | Grant Thornton | Hilliard Management Group | MUFG Union Bank | NetApp | Rivian Automotive | RSM / McGladrey | The Cadence Group / Moss Adams | Verizon Media Group / Yahoo
Specialties: SOC 1, SOC 2, SOC 3, NIST 800-53, NIST 800-171, NIST 800-30, NIST 800-37, FedRAMP, IT SOX, ISO 27001, ISO 27017, ISO 27018, CSA STAR, HIPAA, HITRUST, GDPR, CCPA, and COBIT.
Profile Photo
