Rodrigo Enrique Romero Rodríguez Consulting Lead Partner
Consulting Lead Partner
Expertise on the following sectors: financial, retail, manufacturing,consumer, healthcare, telecommunications, public
Professional Experience
With over 21 years’ experience in audit, control, security and IT process, and privacy projects. Enrique is responsible for Risk Management (technology and consulting) services.
He has developed a strong experience in internal control of technology, privacy, as well as IT elements of different SOX, JSOX, CNBV (CUB and CUACP) regulations and related control frameworks such as COSO, Cobit, ITIL, ISO27001.
He has extensive professional experience in services related to the design, implementation and evaluation of controls during processes of change and implementation of ERP applications; he also has experience in security, software asset management, software licensing reviews, software licensing reviews to third parties, business continuity planning & disaster Recovery plan, IT asset management, Vendor Management, Service Level Management, and control of information technologies.
Education
B.S. Computer Systems by ITESM
Memberships and registers
CRISC Certification (Certified Risk Information Systems and Controls) by ISACA
CGEIT Certification (Certified in Governance of Enterprise of IT) by ISACA
ITIL Foundation Certificate in IT Service Management
PECB Certified ISO 22301 Lead Auditor
Certified Data Privacy Solutions Engineer by ISACA
Member of ISACA
Member of ITAM
Want to know more?
Pages associated to Rodrigo Enrique Romero Rodríguez
Industries
Services
- IT Consulting Services
- Evaluation of Corporate Governance
- Implementation of technology-based Entrepreneurial Architecture (EA) and GRC solutions
- Operational risk management (ISO 31000, COSO ERM)
- Internal control system (COSO)
- Management and process improvement
- Regulatory compliance: SOX, Solvency II, SSAE18-ISAE3402, local regulations (CNSF, CNBV, LFPDPPP)
- Strategic business management
- Documentation of policies and performance indicators
- Process reengineering
- Audit of general IT controls
- Consulting for Technology-based GRC Solutions (SAP / ORACLE)
- IT Asset Management and Control (ITAM)
- SAMaaS / Licensing Assurance
- Implementation of SAM / HAM service
- Supplier management
- Supplier management
- Service level management
- Implementation and compliance for SGSI, PCI DSS, SPID y SPEI
- PenTesting
- Customer Relations Management (CRM)
- CISA preparation course
- COBIT 2019 preparation course
- ISO 27032 preparation course
- ISO 37001 preparation course
- SAM Cloud Assessment
- Software Asset Management (SAM) Course
- PCI – DSS course
- Microsoft Licensing course
- Contractual risk management
- Internal Audit Foundations
- Risk Management Foundations with ISO 31000
- ISO 370001 Foundations certified
- ISO 37001, Lead Implementer certified
- ISO 37001, Leader Auditor certified
- ISO 37001, Internal Audit certified
- Compliance program preparation
- The reshape crisis recovery program
- Management consulting
- Business continuity planning
- Business function strategy & excellence
- Organisational design
- Cyber security & data protection
- Enterprise risk management
- Governance
- Internal audit
- Internal control
- Regulatory compliance
- Third party risk management & assurance
- Technology and digital consulting
- Data analytics solutions
- Enterprise solution transformation
- Aseguramiento y revisiones independientes
- Sistema y organización de los reportes de control (SOC)
- Operational Strategy and Efficiency
- Specialized IT Consulting Services
- IT Internal Control
- Strategic Alliances
- Business resiliency
- Preparation and certification courses
- Digital
- PCI Compliance Service Offerings
- System and Organisation Controls (SOC) Reporting
- System and Organisation Controls (SOC)
- Consulting
- Change management
- Management by competencies
- Risk consulting
- IT assurance & advisory
- Process automation and digitalisation
- Robotic Process Automation (RPA)
- Operations and Compliance Internal Audit
- Forvis Marzars and SoftExpert sign strategic alliance
- Forvis Mazars and Aspera sign alliance
- Forvis Mazars and DSTI Mexico sign alliance
- Licensing Assurance and Forvis Mazars sign alliance
- SafePaaS
- Privately owned business services
- Business Management Services
- Strategy
Insights
- Smarter, better, faster: RPA at work
- The pharmaceutical sector’s important role in global health – using RPA to work smarter, better and faster
- Meeting food delivery demand with RPA
- Finding finance savings through RPA in telecoms
- Next generation ecommerce driven by RPA
- The robotic software revolution and mobility
- Nuevo SAS 70
- Internal Audit during and beyond the Covid-19 crisis
- How RPA can facilitate digital transformation in financial services
- From crisis to innovation – an opportunity for RPA in transportation
- Driving public sector efficiency with RPA
- Subcontracting in Mexico - How to ensure compliance?
- Not if, but when. Strengthening the safety net to improve cyber resilience
- PCI DSS Update 4.0
- PCI DSS Compliance