Claudio Mac-Donald Da Rocha

Experience

• 

  EBS

  Jan 2008 - Jan 2009

  IT Consultant and ERP Implementer

  EBS (Electronic business systems an EOH Company) is an organization focused on development and implementation of ERP solutions and support for Middle and Large Enterprises in the implementation of the best tools for running business.My involved in the following projects/activities:PHC Enterprise ERP Implementation- Accounting and Management Modules Installation, Configuration e Customization- PHC Enterprise Database Server Management- TrainingSAP R/3 upgrade- Reporting Module Configuration and Implementation- Legacy System Migration Workbench templates DesignSAP Business One- ERP System Training, in Implementation, Customization and Module and Business Rules development and integration Show less

• 

  Jembi Health Systems

  Jun 2009 - Mar 2014

  Software Programmer and Health Information System Developer

  Jembi Mozambique, (former MOASIS) is an NGO focused on the development and implementation of Health Information Solutions, working primarily with the Ministry of Health and partners.Working since 2008 being involved in:Systems Engineering:o Requirements gatheringo Project planningo Designo Programmingo Testingo Deploymento SupportProject Managemento Project Planning – identification of key activities, main stakeholders, and management of deadlineso Coordination of Stakeholders meetingso Evaluate third party consultants activities and resultsMain Projects: SIS-ROH: National health information system for hospital data registration. Activities included system design, development and implementation. Role: Project Director and Lead Programmer. SIS-AEMOC: design of an Enterprise Architecture to the Health Information System of Mozambique. Activities includes: Project definition (methodology, activities, and deliverables), Data collection, Business Process Reengineering.Role: Project Director SIS-HCM Health ERP for Central Hospital: Development of the Terms of reference for a Medical ERP System. Activities included: technical review.Role: Technical Committee Consultant. MM – Meals Management: Development of kitchen management software including nutritional and stock components.Role: System Analyst and Lead Programmer Show less

• 

  KPMG

  Apr 2014 - Oct 2023

  Advisory Department's Manager position, being responsible for the Management Consulting and Information Technology service line. As a Manager, I played a pivotal role in leading teams and delivering innovative solutions to our clients across various industries.Key Responsibilities:Client Engagement: Lead client engagements, build strong relationships with key stakeholders, and serve as a trusted advisor on management consulting and information technology matters. Understand client objectives, challenges, and opportunities to develop tailored solutions that drive business value.Project Management: Oversee the end-to-end delivery of consulting projects, ensuring adherence to timelines, budgets, and quality standards. Lead project planning, execution, and monitoring activities, while effectively managing resources and mitigating risks.Team Leadership: Provide leadership and mentorship to a team of consultants, fostering a collaborative and high-performance culture. Coach team members, delegate responsibilities, and empower them to excel in their roles.Solution Development: Collaborate with cross-functional teams to develop innovative strategies, frameworks, and methodologies that address complex business and technology challenges. Drive the design and implementation of transformative solutions that drive operational excellence and competitive advantage.Thought Leadership: Stay abreast of industry trends, emerging technologies, and best practices in management consulting and information technology. Share insights, thought leadership, and expertise internally and externally to drive KPMG's reputation as a trusted advisor and industry leader.Business Development: Identify new business opportunities, cultivate client relationships, and contribute to business development efforts. Participate in proposal development, client presentations, and sales pursuits to expand KPMG's footprint and grow client base. Show less At KPMG Claudio integrates the team of IT Consulting as Senior Consultant, which supports and lead technological nature works. Main projects in which has been involved include:Audit and Information Risk ManagementPerform General IT Controls and Application controls tests. Audit IT for business based on the standard frameworks like COBIT 5. Information System Redesign and Implementation SupportInformation System Restructuring, workflow redesign, process documentation and design of implementation master plan.Risk ManagementIdentification and evaluation of strategic and operation risk, classification of risk appetite.Design and Implementation of Project Management ToolDesign a Project Management tool to allow the tracking of clean energy implementation projects.Accounting Processes Improvement and Data Quality of banking system dataIdentification and documentation of main accounting processes, Gap Analysis and system data quality tests.Other Projects:Process Optimization – Financial Management SystemIdentification and documentation of main accounting processes, Gup analysis, system data quality tests and implementation of business intelligence tools.Strategic and Operational Risk Assessment and support for the implementation of risk management office.Inventory of Infrastructure and Health Services. Definition of information subsystem for the Master Facility List (MFL) and terms of reference for the creation of a support tool to the MFL.Design the Master Facility Information System to manage information about the Health infrastructures in the country. The project consisted on the identification of health requirements, design the information system and tools.IT AuditsAudit Information Systems, IT mechanisms and other computer systems. Review of general IT controls in the following areas:Data ProcessingAccess to Programs and DataDevelopmentComputational operations Show less

  • LoB Manager | IT Governance | Cybersecurity and InfoSec | IT Strategic Consultant | Project Manager

    Apr 2019 - Oct 2023

  • IT Senior Consultant

    Apr 2014 - Oct 2023
• 

  Deutsche Gesellschaft für Internationale Zusammenarbeit (GIZ) GmbH

  Oct 2023 - now

  Country Information Security Officer

  As the Country Level ISO, I am responsible for overseeing the organization's information security strategy, policies, and initiatives to ensure the confidentiality, integrity, and availability of our critical information assets.Key Responsibilities:Information Security Strategy: Develop and implement a comprehensive information security strategy aligned with organizational goals, regulatory requirements, and international best practices. Define and prioritize security objectives, initiatives, and investments to mitigate cyber risks and protect sensitive information.Governance and Compliance: Establish and maintain effective governance structures, policies, and procedures to ensure compliance with relevant laws, regulations, and standards related to information security. Oversee internal audits, risk assessments, and compliance reviews to identify gaps and drive continuous improvement.Risk Management: Lead the organization's risk management efforts by identifying, assessing, and prioritizing information security risks. Develop risk mitigation strategies and controls to protect against cyber threats, data breaches, and other security incidents.Incident Response and Crisis Management: Develop and maintain an incident response plan and coordinate the organization's response to security incidents and data breaches. Lead crisis management efforts to mitigate reputational damage and restore stakeholder confidence in the event of a security incident.Security Awareness and Training: Promote a culture of security awareness and compliance across the organization through training programs, awareness campaigns, and regular communication. Educate employees, contractors, and partners on security best practices, policies, and procedures to reduce human error and minimize security risks.Collaboration and Partnerships: Collaborate with internal stakeholders, external partners to enhance information sharing, threat intelligence, and cybersecurity collaboration. Show less