César Octavio González Gamboa Consulting Director
Expertise in the following sectors: financial, retail, manufacturing, consumer goods, energy and food and beverage.
Professional Experience
César has more than 10 years of experience in GRC projects, helping clients comply with various regulations such as Sarbanes-Oxley Act (SOX), CNBV (Comisión Nacional de Valores), BANXICO, PCI DSS, ISO standards, among other industry regulations.
He has solid expertise in Internal Control and risk management frameworks such as COSO (Enterprise Risk Management and Control Framework), ISO 31000, COBIT and ITIL. His experience in risk mapping and management, policy definition, process optimisation, organisational structures, technology and information systems has driven improvements in Corporate Governance.
Cesar has provided audit and assurance services including the design, implementation and/or assessment of governance, risk and internal control processes based on global frameworks, standards and principles such as those of the IIA, IAASB, ISACA, PCAOB and ISO 19011.
César is also responsible for Mazars' digital consulting services, which include the selection, documentation, implementation and adoption (change management) of ERP, BPA and intelligent automation solutions for business process improvement.
Education
Computer Engineer from the Instituto Politécnico Nacional (IPN).
Memberships and certifications
ITIL 4 Certificate in IT Service Management
Internal Audit and Control Programme - ITAM ExEd
Seminar in Soft Skills and Management Development - IPN
Herrmann® Digital Certified Practitioner
Member of ISACA
Languages
English
Spanish
Want to know more?
Pages associated to César Octavio González Gamboa
Industries
Services
- System and Organisation Controls (SOC)
- Sistema y organización de los reportes de control (SOC)
- Aseguramiento y revisiones independientes
- System and Organisation Controls (SOC) Reporting
- PCI Compliance Service Offerings
- Process automation and digitalisation
- Enterprise solution transformation
- Data analytics solutions
- Technology and digital consulting
- Third party risk management & assurance
- Regulatory compliance
- IT assurance & advisory
- Internal control
- Internal audit
- Governance
- Enterprise risk management
- Cyber security & data protection
- Risk consulting
- Organisational design
- Business function strategy & excellence
- Change management
- Business continuity planning
- Management consulting
- Contractual risk management
- Robotic Process Automation (RPA)
- SAM Cloud Assessment
- Business resiliency
- Strategic Alliances
- Management by competencies
- Customer Relations Management (CRM)
- PenTesting
- Implementation and compliance for SGSI, PCI DSS, SPID y SPEI
- Service level management
- Supplier management
- Supplier management
- Implementation of SAM / HAM service
- SAMaaS / Licensing Assurance
- IT Asset Management and Control (ITAM)
- Audit of general IT controls
- Process reengineering
- Documentation of policies and performance indicators
- Strategic business management
- Regulatory compliance: SOX, Solvency II, SSAE18-ISAE3402, local regulations (CNSF, CNBV, LFPDPPP)
- Management and process improvement
- Internal control system (COSO)
- Operational risk management (ISO 31000, COSO ERM)
- Implementation of technology-based Entrepreneurial Architecture (EA) and GRC solutions
- Evaluation of Corporate Governance
- Consulting