As an independent Information Security consultant/auditor, I'm implementing projects for big companies in Portugal and abroad. The last project was in the Education Ministry in Portugal as an advisory body.
As an independent auditor, I’ve performed some pre-assessment and assessment audits in Portugal and UK.
In the training area, I’ve developed and presented training courses according with clients requirements in ISO 27001, Risk Management and Business Continuity Management.
As a BSI ISO 27001 Qualified Auditor, I've audited various companies in Spain and Portugal within ISO 27001 certifications like: Caja Madrid, Bankinter, Accenture, Colt, ONCE and SCML.
As a BSI ISO 27001 tutor I've been training all BSI ISO 27001 courses.

Logica is one of the biggest IT services company in the world with more than 39.000 employees in 36 countries. The Outsourcing Contract with EDP, the Portuguese power company, is, by far, Logica biggest outsourcing services contract, with a dedicated business unit to manage it, which includes all EDP IT systems and services.
From 2005 to 2006 I managed all central systems, with a team of 45 technicians distributed by Windows, Unix, Mainframe and Storage/Backup systems.
During 2006 I was nominated Project/Service Manager where I was responsible for managing projects and delivering service to Clients as EDP and others.
Since 2006 I was nominated Security Manager where I was responsible for the logic and physical security in Logica Iberia, including the development and implementation of the ISMS (Information Security Management System) according to ISO 17799:2005, to assist in external and internal auditing, to develop and implement the Awareness Program, to manage all physical and logical accesses, to develop the Business Continuity Plan and other tasks.

Gosecure was a Security Consultancy company where I was responsible for the management of a business area, the corporative security, as the company’s daily management, development of the Business and Financial Plans, strategy development, Clients prospects and contacts, suppliers, commercial proposals, etc.. In the corporative security area I was in charge of some projects like the development of the ISMS in Sonaecom, one of the biggest groups in Portugal and the development of the operation procedures for Portugal Telecom datacenters, the biggest telecommunications company in Portugal.

Nexenter was a Vodafone company to run Vodafone datacenters in Portugal where I managed a team of 3 people. I was responsible to manage logical and physical security and quality areas, including the development of the security strategy, Security Policy and awereness program. I was also responsible for the ISO 9001:2000 Quality certification program.
To manage the access control to all applications and corporative network and to implement the Global Security Project in Oni. I was also responsible for all change requests and systems configuration processes.

Banco Espírito Santo is one of the largest banks in Portugal. I was responsible to audit data in the bank main data bases by developing auditing programs in COBOL (batch & cics) in an MVS/DB2 environment to extract the information, to follow the first netbanking project in Portugal, the BESNET, in a security perspective, and to audit various systems and applications.

Degree of licentiate in Computer Science.
Certified ISO 2000 Consultant (itSMF); CISA; CISM; CBCI; ISO 27001 LA; ISO 27001 LI; BSI Qualified ISO 27001 auditor

ISACA; itSMF