Raidee Kottiech

Experience

• 

  Hewlett Packard Co

  May 2000 - Jul 2006

  Sales Compensation IT Program Manager

  • Team Lead for Sales Compensation Americas Region • Lead multiple projects for IT transformation as well as business innovation with a budget exceeding $5M to reach the goal of reducing costs and increased operational efficiencies • Managed programs that impact the capability area utilizing the project life cycle leading to the end state goal of meeting business needs by increasing operational excellence• Data feed management – analyzed and data conversion• Tested complex systems to ensure compliance with specs and communicated results to all levels and areas • IT consultation and support for implemented solutions• Provided technical expertise to the business and applied IT standards to proposed business processes and tools. Closely engaged with business alignment representatives from a regional and global perspective• Designed and maintained a complex e-business infrastructure for an e-portal web site for channel partners• Liaison to the e-business and Partner Operations business team. Consulting and IT implementation program lead for channel partner programs including process improvements and training. • Initiated a comprehensive program of teleconferences, action item logs and delegated follow up procedures• Escalation management for our business partners Show less

• 

  Hewlett Packard Enterprise

  Aug 2000 - Sept 2006

  IT Program Manager

  • Team Lead for Sales Compensation Americas Region • Lead multiple projects for IT transformation as well as business innovation with a budget exceeding $5M to reach the goal of reducing costs and increased operational efficiencies • Managed programs that impact the capability area utilizing the project life cycle leading to the end state goal of meeting business needs by increasing operational excellence• Data feed management – analyzed and data conversion• Tested complex systems to ensure compliance with specs and communicated results to all levels and areas • IT consultation and support for implemented solutions• Provided technical expertise to the business and applied IT standards to proposed business processes and tools. Closely engaged with business alignment representatives from a regional and global perspective• Designed and maintained a complex e-business infrastructure for an e-portal web site for channel partners• Liaison to the e-business and Partner Operations business team. Consulting and IT implementation program lead for channel partner programs including process improvements and training. • Initiated a comprehensive program of teleconferences, action item logs and delegated follow up procedures• Escalation management for our business partners Show less

• 

  Royal Caribbean Group

  Mar 2007 - Apr 2016

  •Develop, implement, manage and own the IT SOX and PCI Program•Develop, lead and execute risk-based audit programs, procedures, and techniques for auditable activities•Communicate audit information (i.e. audit notification, status updates, audit results, etc.) to Sr Management, Management and system owners owners in a clear, concise, and timely fashion •Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls•Liaise with Internal / External Audit and IT to ensure Audits are performed and completed on time and deliverables are met•Effectively collaboration among the Information Security Team, Internal / External Audit, HR, and Legal management teams•Manage the SOX and PCI compliance requests that include monthly internal reviews, quarterly self-testing, semi-annual internal audits and annual external audits•Partner with Internal Audit, QSA and IT Leadership to implement, manage, control, perform, audit activities related to SOX regulations and PCI requirements•Lead SOX compliance reviews with internal and external audit•Evaluate global ITGC’s to determine effectiveness of controls, identify gaps and implement plan of action to remediate gapsDrive the remediation of security vulnerabilities and risks found from Security Pen Text and assessments•Influence stakeholders to implement necessary process modifications to meet regulatory needs•Review and communicate all related IT compliance requirements (i.e., user access, privacy, data integrity, etc.) associated with PCI, SOX, Privacy, HIPPA and information security policy and standards •Drive and manage he IT compliance control monitoring and testing activities to determine the effectiveness of the controls.•Create and manage budget in own operating group and/or projects under their supervision•Review work flows and diagram to determine the data classification and risk based on the company standards and regulation Show less Lead the Payment Card Industry (PCI) Program Define and communicate PCI requirements and updates Ensure that Royal Caribbean follows PCI requirements and compliance guidelines.Ensure that appropriate and adequate internal controls exist within all systems or IT areas of responsibility for PCI, HIPPA and Data PrivacyProvide guidelines, support and advice to the IT community regarding complianceCreate and refine processes for performing the PCI and PA DSS compliance assessment, testing and verification Direct the planning and implementation of enterprise IT system, business operation and facility defenses against security and vulnerability issuesEnsure proper security processes are followed and documentation is properly maintainedCreate, develop, implement and maintain the Patch Management process in order to ensure communication, progress, coordination and metrics are in place Liaison to the IT and Internal Audit teamsDevelop and execute the process for several areas within Compliance to establish a common baselinePerform the compliance and security assessment to ensure new security vulnerabilities and compliance risks are not introduce to the environmentReview Security Scans and ensure remediation were in placeReview work flows and diagram to determine the data classification and risk based on the company standards and regulationCreate the Data retention classification to provide guidelines and direction to high risk projectsProvide strategic direction and implement improvements on the go-forward processes for the Compliance across the companyDevelop, implement and maintain enforcement of policies, procedures and standards Recommend and implement changes in process, policies, standards and practices in accordance with changes in local or federal lawsDefine and communicate plans, procedures, policies and standards for the organization for acquiring, implementing and operating new security systems, equipment, software and other technologies Show less

  • IT Compliance, Manager

    Mar 2011 - Apr 2016

  • IT Senior Compliance Analyst

    Mar 2007 - Mar 2011
• 

  Carnival Corporation

  Apr 2016 - now

  • PCI Program Director

    Mar 2017 - now

  • PCI program Manager

    Apr 2016 - now
• 

  AEG

  Mar 2022 - now

  VP, Business Secueiry Officer & GRC