Lesly Colmenares Palafox
Teacher Cybersecurity Master at Universidad La Salle México- Claim this Profile
Click to upgrade to our gold package
for the full feature experience.
-
English -
-
Spanish -
Topline Score
Bio
Alfredo Alvarez Rumilla
I truly recommend Lesly, since she is a very professional person and always give the best of her to get things done.
Ruben Ostria Baltazar
Lesly es una persona responsable y capaz. La recomiendo ampliamente
Alfredo Alvarez Rumilla
I truly recommend Lesly, since she is a very professional person and always give the best of her to get things done.
Ruben Ostria Baltazar
Lesly es una persona responsable y capaz. La recomiendo ampliamente
Alfredo Alvarez Rumilla
I truly recommend Lesly, since she is a very professional person and always give the best of her to get things done.
Ruben Ostria Baltazar
Lesly es una persona responsable y capaz. La recomiendo ampliamente
Alfredo Alvarez Rumilla
I truly recommend Lesly, since she is a very professional person and always give the best of her to get things done.
Ruben Ostria Baltazar
Lesly es una persona responsable y capaz. La recomiendo ampliamente
Credentials
-
Business Intelligence Foundation Professional Certification - BIFPC™
CertiProfJul, 2023- Oct, 2024 -
SCRUM FOUNDATION PROFESSIONAL CERTIFICATE SFPC
CertiProfJul, 2022- Oct, 2024 -
ISO/IEC 27001 Information Security Management - Audit
ISO - International Organization for StandardizationMar, 2022- Oct, 2024 -
ISO/IEC 27001 Information Security Management - Implementation
ISO - International Organization for StandardizationJan, 2022- Oct, 2024 -
ISO/IEC 27001 Information Security Management - Fundamentals
ISO - International Organization for StandardizationNov, 2021- Oct, 2024 -
Certified Data Privacy Solutions Engineer™ (CDPSE™)
ISACANov, 2020- Oct, 2024 -
IBM Agile Explorer
IBMJul, 2020- Oct, 2024 -
IBM Consulting – Leading Initiatives
IBMDec, 2019- Oct, 2024 -
IBM Consulting - Building Teams
IBMNov, 2019- Oct, 2024 -
Six Sigma Yellow Belt Professional
6SIGMAstudy - The global certification body for six sigma certificationsNov, 2019- Oct, 2024 -
IBM Consulting – Delivering Trust
IBMSep, 2019- Oct, 2024 -
IBM Consulting – Delivering Business Value
IBMAug, 2019- Oct, 2024 -
IBM Consulting - Communicating Value
IBMJul, 2019- Oct, 2024 -
IBM Security Services Specialist - Level 1
IBMJan, 2019- Oct, 2024 -
CoBIT v5
ISACANov, 2016- Oct, 2024 -
SAP GRC Business Object Access Control
SAPMay, 2016- Oct, 2024 -
CISA Certified Information Systems Auditor
ISACAJan, 2016- Oct, 2024 -
PMP Project Management Professional
Project Management InstituteApr, 2014- Oct, 2024 -
ITIL Fundamentals 3.0
LoyalistApr, 2010- Oct, 2024
Experience
-
Universidad La Salle, A.C.
-
Higher Education
-
700 & Above Employee
-
Teacher Cybersecurity Master
-
Jan 2023 - Present
Security and cyber risk (ISO 27001 & ISO 31000 & CISM) Security and cyber risk (ISO 27001 & ISO 31000 & CISM)
-
-
-
Kyndryl
-
United States
-
IT Services and IT Consulting
-
700 & Above Employee
-
Global Security & Risk Principal (Director)
-
Mar 2022 - Present
Global Head Management Security Services Provider. Cryptography, Identity & Access Management, Priviledge Account Management, Risk & Compliance, SIEM, Monitoring Security Database, Security Health Checking, FIM, Security Agents, Vulnerability remediation, Security Policy Management, Antivirus Management, Incident Response, GRC, Audit. Main projects delivered in Iberian America (Spain, México, Argentina, Colombia, Perú). Industry: Financial Services Global Head Management Security Services Provider. Cryptography, Identity & Access Management, Priviledge Account Management, Risk & Compliance, SIEM, Monitoring Security Database, Security Health Checking, FIM, Security Agents, Vulnerability remediation, Security Policy Management, Antivirus Management, Incident Response, GRC, Audit. Main projects delivered in Iberian America (Spain, México, Argentina, Colombia, Perú). Industry: Financial Services
-
-
-
Sempra Infrastructure
-
United States
-
Oil and Gas
-
400 - 500 Employee
-
Senior Manager Cybersecurity
-
Jul 2020 - Mar 2022
Head of SAP & Cloud Cybersecurity. Define SMSI strategy, implementation of Cloud Access Security Broker and Cloud Compliance, Delivery SAP vulnerability management. Monitor Third Party Risk Assessment. SAP IDM & GRC access control, process control & risk mamagement. Governance of Cybersecurity policy and process, KRI, KPI. Enabled Data Loss Prevention process and Technology. Manage Cybersecurity Health Checking for SAP and AWS infrastructure. Enable security code process. Main projects delivered in USA and Mexico Industry: Energy Show less
-
-
-
IBM
-
United States
-
IT Services and IT Consulting
-
700 & Above Employee
-
Associate Partner at Security Services
-
Apr 2018 - Jul 2020
Manage Security Services Leader in Latin America for Financial Services. Champion SAP Security Practices Latin America. Main projects delivered in Spain, USA, Costa Rica, Peru, Argentina, Chile, Colombia Industries: Financial Services, Retail Manage Security Services Leader in Latin America for Financial Services. Champion SAP Security Practices Latin America. Main projects delivered in Spain, USA, Costa Rica, Peru, Argentina, Chile, Colombia Industries: Financial Services, Retail
-
-
-
KPMG
-
Canada
-
Accounting
-
700 & Above Employee
-
Senior Manager
-
Sep 2016 - Mar 2018
Head of Cybersecurity governance, risk and compliance services.Some projects delivered in Argentina, Panamá, France, Italy.Industries: Financial Services, Retail, Manufacturing, Government
-
-
Manager
-
Oct 2013 - Sep 2016
Implementation Bussines Object GRC SAP Access Control, Process Control and Risk Management.Design, management and segregation of duties (SoD) of SAP R/3 roles and profiles.Project Management
-
-
Supervising Sr.
-
Aug 2012 - Sep 2013
Implementation Bussines Object GRC SAP Access Control, Process Control and Risk Management.Design, management and segregation of duties (SoD) of SAP R/3 roles and profiles.Audit and compliance about LFPDPPP, SOX, ISO 27000, CoBIT, ITIL, COSO.
-
-
-
-
Manager Jr. Information Security
-
May 2011 - Aug 2012
Development and implementation of security controls and strategies for compliance with federal law data privacy (LFPDPPP) in Mexico. Audit and Risk Management Consulting. Main projects delivered in Spain Industries: Logistic, Financial services, Government Development and implementation of security controls and strategies for compliance with federal law data privacy (LFPDPPP) in Mexico. Audit and Risk Management Consulting. Main projects delivered in Spain Industries: Logistic, Financial services, Government
-
-
-
-
Security & Controls Coordinator
-
Feb 2008 - May 2011
Analyze, configure and implement Identity Management SAP. Development and implementation of security strategies Beverage Industry SAP (transactional, structural and portals security). Analysis and implementation of security controls (perimeter, operating systems, databases). Assessments of compliance inspections and findings (IT internal audits). Implementation and test of CoBIT controls. Definition and implementation of security architecture model in infrastructure. Industries: Beverage, retail, logistic Show less
-
-
-
Grupo Scanda
-
Mexico
-
IT Services and IT Consulting
-
200 - 300 Employee
-
Project Leader
-
Dec 2006 - Jan 2008
Analysis and implementation of security controls (perimeter, operating systems, databases). Controls compliance assessments and findings (internal audits). Implementation of models of security architecture infrastructure. Penetration testing (security perimeter-applications) and mitigation of vulnerabilities. Analysis and implementation of security controls (perimeter, operating systems, databases). Controls compliance assessments and findings (internal audits). Implementation of models of security architecture infrastructure. Penetration testing (security perimeter-applications) and mitigation of vulnerabilities.
-
-
Education
-
Instituto Tecnológico Autónomo de México
Master of Business Administration - MBA, MBA Master in Business Administrator -
Instituto Politécnico Nacional
Ingenieria en Informática, Computer and Information Systems Security/Information Assurance