Ben (Basilio vieira) West
Compliance – InfoSec Associate
Experience
Dec 2022 - Present
2 years 7 monthsCompliance – InfoSec Associate
Virtus Data Centres
- Guided the organization through regulatory audits, ensuring full compliance with industry standards including GDPR, ISO 27001, PCI-DSS, and SOC2 Type 2 audits.
- Achieved nearly a 50% reduction in external auditing costs while enhancing and broadening the scope of the process.
- Conducted comprehensive risk assessments and audits to identify vulnerabilities and mitigate potential threats, resulting in an estimated 15% reduction in security incidents.
- Collaborated cross-functionally with IT teams to enhance security protocols and deploy advanced monitoring tools, bolstering the company's defense against cyber threats.
- Provided training and awareness programs to staff members, fostering a culture of security and business continuity consciousness and promoting best practices across the organization.
Jul 2018 - Dec 2022
4 years 6 monthsLead Auditor
Bureau Veritas
- Delivered audits on ISO 27001 - Information Security, ISO 22301 - Business Continuity, BV Data Protection Scheme (GDPR), ISO 37001 – Anti-Bribery, ISO 55001 – Asset Management, ISO 20000 – IT Service Management, PCI-DSS, and ISO 9001 Quality Management Systems.
Nov 2017 - Jul 2018
9 monthsDeveloper
Blind Veterans UK
- Created a mobile app to bring thousands of members closer, retrieve medical study results, and provide emergency contacts while maintaining data privacy.
Sep 2016 - Mar 2019
2 years 7 monthsDeveloper
Bespoke Builders Services
- Achieved 112-man hours/month (70%) savings on energy rating assessments preparation by back-office through automation of information extraction from building models.
- Freed assessors from a manual and error-prone process.
Feb 2016 - Aug 2016
7 monthsHybrid
Information Security Consultant
Methods Digital
- Helped clients design privacy and information security-oriented infrastructure (hybrid, public, and private).
Jun 2012 - Dec 2019
6 years 7 monthsIT Consultant
Various Organisations
- Increased sales of Transport Management Solution by 1,200% through a bespoke mobile application with full end-to-end integration.
- Allowed online paperless processes for delivery/transport tracking and cost management.
- Developed and supported the implementation of IT strategy and processes for multiple organizations, including disaster recovery strategies, resulting in improved SLAs to best practice levels.
- Worked with major telecoms: SAPO (Portugal's biggest Internet Service Provider) as a project mentor and Vodafone Portugal on router testing.
Mar 2009 - Jul 2010
1 year 5 monthsConsultant and Auditor
Santos Costa Solucoes Empresariais
- Performed gap analysis and internal audits to help small and medium enterprises fully and properly manage their information security and data protection risks towards ISO 27001 certification.
- Defined customer-facing interfaces and improved internal processes to support strategic business relations.
Feb 1998 - May 2012
14 years 4 monthsIT Manager / Information Security Manager
JMDO Despachantes
- Defined and implemented ISO 27001-oriented policies and controls, progressing toward ISO certification.
- Enabled cost reductions that allowed competitive bids and won long-term clients like Mercedes-Benz and Mitsubishi.
- Automated the motor vehicle registration process in Portugal.
- Defined the IT systems and strategy for the company, managed the IT support team, continuously improving service levels and always guaranteeing the ability to recover from disasters.
- Improved communication inside the company with an intranet portal including document management systems to support Quality and Information Security System Management Systems (ISO 9001 and ISO 27001).
Lorem ipsum dolor sit amet
Escola Secundaria Ferreira Dias – Cacem
Major in Electrical Engineering
Lorem ipsum dolor sit amet
Escola Secundaria Santa Maria - Sintra
Lorem ipsum dolor sit amet
Universidade Autonoma de Lisboa
BSc Information Technology Management for Business - First year
Summary
Compliance Specialist with 15+ years of experience in ISO standards (ISO 27001, ISO 22301, ISO 20000), privacy, and risk management. Proven record in reducing audit costs and enhancing compliance program scope, with SC Clearance through 2027. Expert in privacy, regulatory audits, and operational resilience, with experience managing compliance across IT and business operations. Strong communicator with a keen ability to liaise between technical and executive teams to drive compliance and continuous improvement.
Originating from a developer background evolving to architect comprehensive IT strategies and leading teams to execute them effectively. My journey reflects a commitment to continuous learning and professional development, underscored by my experience as ISO 27001 Lead Auditor, and ISO 22301. As a subject matter expert in privacy, risk management, and GDPR, I'm also pursuing the CISA certification to stay at the forefront of compliance and information security standards in 2024.
Languages
Portuguese
Native
English
Intermediate
French
Intermediate
Spanish
Intermediate
Education
Universidade Autonoma de Lisboa
BSc · Information Technology Management for Business · Lisbon, Portugal
Escola Secundaria Santa Maria
Portugal
Escola Secundaria Ferreira Dias
Electrical Engineering · Agualva-Cacém, Portugal
Certifications & licenses
Sc Clearance
Amazon Aws Certified Developer Associate
Bv Data Protection Scheme (Gdpr) - Lead Auditor certification
Iso 20000 – It Service Management Lead Auditor certification
Iso 22301 – Business Continuity Ms Lead Auditor certification
Iso 27001 – Information Security Ms - Lead Auditor certification
Iso 37001 – Anti-Bribery Ms Lead Auditor certification
Iso 55001 – Asset Ms Lead Auditor certification
Iso 9001 – Quality Ms Lead Auditor certification
Tisax Assessment / Enx Association - Auditor certification
Similar Freelancers
Discover other experts with similar qualifications and experience