ROBERTO VALLEJO

Supported the development, execution and continuous improvement of the Third-Party Risk Management program (TPRM) and Framework. I was responsible for implementing TPRM policies, performing oversight and challenge of third-party risk activities and risk assessments, maintaining reporting and analytics on a monthly basis, and supporting program maturity across the TPRM Roadmap.

• Performed second-line oversight and challenge of third-party assessments and risk ratings.
• Maintained third party risk inventory, dashboards, and performance metrics, processing 25 risk assessments per month.
• Supported integration of TPRM processes with Sourcing, IT, Privacy and Legal.
• Supported tool configuration and monitoring automation.
• Lead training and awareness efforts across the organization

• Responsible for establishing risk and compliance standards and Third Party Risk Management programs, as well as implementing policies and procedures related to Vendor/Supplier Management.
• Collaborated across business units to identify vendor risk solutions and cybersecurity strategies to help protect confidential data (customer)
• Coordinated internal investigations to detect and prevent Fraud committed by Third Parties.
• Implemented and developed operational standards, policies and procedures for TPRM and Inter-affiliate vendor management, processing 20 ICSAs per month.
• Held monthly meetings to create business plans and workshops to drive successful business in TPRM programs
• Led cross-functional teams to achieve project milestones and deliver high-quality results.

• Conducted Internal Audit reviews in Consumer Banking, Credit Cards, Technology, Insurance, and Technology Areas, focused on Compliance to TPRM – Outsourcing - for Mexico Regulator and the OCC in USA. Provided valuable insights to senior management on potential business risks identified during audits including Information Technology, Third Party Supplier Management, Fraud, Data Privacy or Contract Management.
• Audit Lead for Mexican Regulator CNBV for Third Party Risk Management.
• Conducted onsite reviews to Third Parties in Mexico and South America, reviewing Information Security processes, Data Management and Technology controls.
• Facilitated internal audits (5 audits per year) and prepared detailed reports on findings.
• Managed a team of auditors, ensuring accurate and timely completion of audit projects.
• Improved client relations by maintaining open lines of communication and addressing concerns promptly.

• System support and Information Technology services for Clients in EEUU in Mainframe Z series
• Responsible for Operating System support and Disaster Recovery Exercises, with Continuity of Business strategy
• I supported critical Mainframe issues during systems operation, helping companies to reduce troubleshooting.
• Collaborated with IT team members to develop and implement strategic plans for technology upgrades.
• Streamlined processes for better workflow management through implementing new software solutions.
• Improved system performance by identifying and resolving technical issues in a timely manner.