Rodrigo Enrique Romero Rodríguez Consulting Lead Partner
Consulting Lead Partner
Expertise on the following sectors: financial, retail, manufacturing,consumer, healthcare, telecommunications, public
Professional Experience
With over 21 years’ experience in audit, control, security and IT process, and privacy projects. Enrique is responsible for Risk Management (technology and consulting) services.
He has developed a strong experience in internal control of technology, privacy, as well as IT elements of different SOX, JSOX, CNBV (CUB and CUACP) regulations and related control frameworks such as COSO, Cobit, ITIL, ISO27001.
He has extensive professional experience in services related to the design, implementation and evaluation of controls during processes of change and implementation of ERP applications; he also has experience in security, software asset management, software licensing reviews, software licensing reviews to third parties, business continuity planning & disaster Recovery plan, IT asset management, Vendor Management, Service Level Management, and control of information technologies.
Education
B.S. Computer Systems by ITESM
Memberships and registers
CRISC Certification (Certified Risk Information Systems and Controls) by ISACA
CGEIT Certification (Certified in Governance of Enterprise of IT) by ISACA
ITIL Foundation Certificate in IT Service Management
PECB Certified ISO 22301 Lead Auditor
Certified Data Privacy Solutions Engineer by ISACA
Member of ISACA
Member of ITAM
Want to know more?
Pages associated to Rodrigo Enrique Romero Rodríguez
Your business
Services
- Consulting
- IT Consulting Services
- Operational Strategy and Efficiency
- Specialized IT Consulting Services
- Evaluation of Corporate Governance
- Implementation of technology-based Entrepreneurial Architecture (EA) and GRC solutions
- Operational risk management (ISO 31000, COSO ERM)
- Internal control system (COSO)
- Management and process improvement
- Regulatory compliance: SOX, Solvency II, SSAE18-ISAE3402, local regulations (CNSF, CNBV, LFPDPPP)
- Strategic business management
- IT Internal Control
- Documentation of policies and performance indicators
- Process reengineering
- Operations and Compliance Internal Audit
- Audit of general IT controls
- Consulting for Technology-based GRC Solutions (SAP / ORACLE)
- IT Asset Management and Control (ITAM)
- SAMaaS / Licensing Assurance
- Implementation of SAM / HAM service
- Supplier management
- Supplier management
- Service level management
- Implementation and compliance for SGSI, PCI DSS, SPID y SPEI
- PenTesting
- Customer Relations Management (CRM)
- Management by competencies
- Strategic Alliances
- Licensing Assurance and Mazars sign alliance
- Business resiliency
- Preparation and certification courses
- CISA preparation course
- COBIT 2019 preparation course
- ISO 27032 preparation course
- ISO 37001 preparation course
- SafePaaS
- SAM Cloud Assessment
- Software Asset Management (SAM) Course
- PCI – DSS course
- Microsoft Licensing course
- Robotic Process Automation (RPA)
- Mazars and DSTI Mexico sign alliance
- Mazars and Aspera sign alliance
- Marzars and SoftExpert sign strategic alliance
- Contractual risk management
- Internal Audit Foundations
- Risk Management Foundations with ISO 31000
- ISO 370001 Foundations certified
- ISO 37001, Lead Implementer certified
- ISO 37001, Leader Auditor certified
- ISO 37001, Internal Audit certified
- Compliance program preparation
- Privately owned business services
- Business Management Services
- Strategy
- Digital
- The reshape crisis recovery program
- Management consulting
- Business continuity planning
- Change management
- Business function strategy & excellence
- Organisational design
- Risk consulting
- Cyber security & data protection
- Enterprise risk management
- Governance
- Internal audit
- Internal control
- IT assurance & advisory
- Regulatory compliance
- Third party risk management & assurance
- Technology and digital consulting
- Data analytics solutions
- Enterprise solution transformation
- Process automation and digitalisation
- PCI Compliance Service Offerings
- System and Organisation Controls (SOC) Reporting
- Aseguramiento y revisiones independientes
- Sistema y organización de los reportes de control (SOC)
- System and Organisation Controls (SOC)
Industries
Insights
- Nuevo SAS 70
- Internal Audit during and beyond the Covid-19 crisis
- Smarter, better, faster: RPA at work
- How RPA can facilitate digital transformation in financial services
- The pharmaceutical sector’s important role in global health – using RPA to work smarter, better and faster
- Meeting food delivery demand with RPA
- Finding finance savings through RPA in telecoms
- Next generation ecommerce driven by RPA
- From crisis to innovation – an opportunity for RPA in transportation
- Driving public sector efficiency with RPA
- The robotic software revolution and mobility
- Subcontracting in Mexico - How to ensure compliance?
- Not if, but when. Strengthening the safety net to improve cyber resilience
- PCI DSS Update 4.0
- PCI DSS Compliance