Summary
Overview
Work History
Education
Skills
Leadership Experience
Certification
Communication Skills
Timeline
Hi, I’m

Ricardo Mercado

Information Security Supervisor
San Mateo,RIZ
Ricardo Mercado

Summary

With over seven years of experience in Information Technology and Security, I am pursuing a senior role where I can leverage my expertise in Information Security, Infrastructure, and Leadership. My focus is on ensuring that services and technology adhere to security standards while effectively supporting your company's objectives.

As a seasoned Supervisor, I have successfully guided teams to complete tasks efficiently and on schedule. I excel in task delegation, employee training, providing constructive feedback, resolving interpersonal conflicts, and implementing company procedures. My strong communication and listening skills, combined with a strategic leadership approach, empower teams to achieve their goals and drive success.

Additionally, I am passionate about sharing my knowledge and experience in this field, offering my expertise to support and enhance industry practices.

Overview

10
years of professional experience
6
Certifications

Work History

Reed Elsevier

GRC Supervisor
04.2023 - Current

Job overview

  • Led and managed a team of Information Security professionals.
  • Produced high-level reports on security metrics.
  • Implemented Centralized Dashboard monitoring systems.
  • Initiated Data Automation projects from application sources.
  • Conducted comprehensive Risk Analysis and Management.
  • Specialized in Governance, Risk, and Compliance activities.
  • Oversaw daily operations of the department, ensuring smooth workflow and timely completion of tasks.
  • Applied strong leadership talents and problem-solving skills to maintain team efficiency and organize workflows.
  • Improved customer satisfaction with timely response to inquiries, addressing concerns, and finding effective solutions.
  • Resolved conflicts among team members promptly, maintaining a harmonious working environment conducive to productivity.
  • Increased team productivity by implementing efficient workflows and setting clear expectations for staff members.
  • Enhanced communication within the team by holding regular meetings and encouraging open dialogue among all members.
  • Mentored junior staff members in their career development, sharing knowledge from years of experience in the field.
  • Collaborated with other departments to achieve organizational goals, fostering teamwork across various functions.
  • Conducted performance evaluations for staff members, identifying areas of improvement and guiding professional development plans.
  • Identified operational inefficiencies and implemented corrective measures to increase effectiveness.
  • Developed staff skills through targeted training programs, resulting in improved performance and career growth opportunities.
  • Boosted team morale and performance, organizing regular training sessions and motivational meetings.
  • Implemented rewards and recognition program that significantly increased employee engagement and satisfaction.
  • Pioneered adoption of new technologies that streamlined tasks and enhanced productivity across team.
  • Enhanced operational workflow, identifying and eliminating bottlenecks in daily procedures.
  • Facilitated seamless communication between departments, ensuring that all teams were aligned with company goals.
  • Fostered culture of continuous improvement, encouraging team to suggest and implement process enhancements.
  • Developed comprehensive training program for new hires, significantly reducing learning curve and integrating them into team quickly.
  • Implemented cost-saving measures, significantly reducing operational expenses.
  • Led successful project completions under tight deadlines, coordinating effectively across multiple teams.
  • Oversaw compliance with industry regulations and company policies, ensuring safe and legal operational environment.
  • Generated reports detailing findings and recommendations.
  • Evaluated customer needs and feedback to drive product and service improvements.
  • Evaluated staff performance and provided coaching to address inefficiencies.
  • Provided reporting for forecast analysis and ad-hoc reporting in support of decision-making.

Reed Elsevier

Information Security Team Lead
01.2022 - Current

Job overview

  • Ensured compliance with ISO27001, SOC2, and COBIT standards.
  • Led Threat Modeling efforts using PASTA and STRIDE methodologies.
  • Evaluated performance metrics of team members regularly, providing constructive feedback for continuous improvement in their roles as security professionals.
  • Reduced security incidents by conducting thorough risk assessments and addressing vulnerabilities.
  • Developed customized training programs to meet specific needs of individual team members, fostering professional growth and expertise.
  • Established a strong foundation in cybersecurity principles among team members by incorporating relevant training modules into the ongoing learning curriculum.
  • Spearheaded a culture of vigilance among employees across all departments through informative presentations on workplace safety practices.
  • Mentored junior security staff, resulting in increased professionalism and skill development.
  • Oversaw access control systems, effectively preventing unauthorized entry into secure areas.
  • Collaborated with cross-functional teams to develop comprehensive emergency response plans.
  • Developed and enforced security policies for improved safety throughout the organization.
  • Supervised and evaluated security staff performance to determine compliance with safety regulations.
  • Prepared and submitted reports to keep management informed of security activities and developments.
  • Collaborated with management to develop security policies and procedures.
  • Developed and implemented security policies and procedures to establish clear guidelines for operations and maintain quality standards.

Reed Elsevier

Information Security Analyst
01.2021 - Current

Job overview

  • Conducted security audits to identify vulnerabilities.
  • Streamlined threat monitoring processes for quicker identification of potential risks.
  • Collaborated with IT teams to ensure seamless integration of security measures into existing infrastructure.
  • Strengthened network security by conducting regular risk assessments and implementing appropriate countermeasures.
  • Managed relationships with third-party vendors to ensure timely delivery of essential security products and services.
  • Improved incident response times by creating and maintaining detailed incident response procedures.
  • Mitigated risks associated with remote access by implementing strict access controls for external users.
  • Performed risk analyses to identify appropriate security countermeasures.
  • Recommend improvements in security systems and procedures.
  • Developed plans to safeguard computer files against modification, destruction, or disclosure.

VST-ECS (MSI-ECS)

Systems Solution Engineer
08.2016 - 01.2021

Job overview

  • Improved customer satisfaction by designing and implementing tailored solution engineering strategies.
  • Led post-implementation reviews to ensure ongoing alignment between client needs and delivered solutions, fostering long-term partnerships built on trust and mutual benefits.
  • Provided expert guidance during the pre-sales process, helping drive sales success by demonstrating the value of proposed solutions to prospective clients.
  • Conducted process improvement meetings to solicit, clarify and document business technical requirements.
  • Optimized system performance through thorough testing, troubleshooting, and continuous improvement initiatives.
  • Delivered comprehensive technical support to customers, ensuring prompt resolution of issues and increased client satisfaction levels.
  • Identified opportunities for business growth by analyzing market trends and competitor offerings, leading to strategic decision-making efforts.
  • Collaborated with sales teams to identify customer needs, resulting in better-targeted solutions and higher revenue.
  • Acted as a trusted advisor to both internal teams and external clients, leveraging extensive industry knowledge to provide valuable insights and recommendations that guided decision-making processes.
  • Spearheaded technology-driven initiatives that resulted in improved operational efficiencies and cost savings for the organization.
  • Installed and configured computer hardware, software and peripheral packages.
  • Managed multiple high-priority projects simultaneously, consistently meeting deadlines while maintaining a focus on quality control throughout all stages of delivery.
  • Documented software development methodologies in technical manuals to be used by IT personnel in future projects.
  • Translated technical concepts and information into terms parties could easily comprehend.

TPG Telecoms

Technical Support Engineer
09.2015 - 01.2016

Job overview

  • Provided remote assistance to clients, ensuring timely resolution of software and hardware concerns.
  • Served as an escalation point for challenging technical inquiries, demonstrating expertise in product knowledge and problem-solving abilities.
  • Conducted root cause analysis of technical issues, implementing preventive measures for future occurrences.

Education

GuideM
Manila, Metro Manila, Philippines

Certified Penetration Tester (CPT) from Cyber Security (Penetration Testing)
05.2001

GK College of Business, Arts, and Technology

IT Security Professional from Computer, and Information Systems Security/Information Assurance
01.2019 - 01.2020

Far Eastern University - Institute of Technology

Bachelor of Science from Electronics and Communications Engineering

Skills

Governance

undefined

Leadership Experience

Within a single year, I progressed from an L1 Associate to the role of L2 Team Leader Security Compliance Analyst. Presently, I serve as the GRC Supervisor, entrusted with direct reporting responsibilities to both the GRC Director and CISO. Additionally, I effectively manage a team comprising 8 members.

Certification

eLearnSecurity Junior Penetration Tester

Communication Skills

In my capacity as a Systems Solution Engineer, proficient presentation abilities and adept communication proved indispensable. I conducted a multitude of solution presentations catering to varied audiences. These competencies have proven invaluable in my present position, where I engage in collaborative endeavors with teams spanning the US, EU, and APAC regions, deliberating on information security controls for both on-premises and cloud infrastructure. Good English communication is required in facilitating effective interactions, serving as the primary language for conveying complex concepts and fostering seamless collaboration.

Timeline

GRC Supervisor

Reed Elsevier
04.2023 - Current

Information Security Team Lead

Reed Elsevier
01.2022 - Current

Information Security Analyst

Reed Elsevier
01.2021 - Current

GK College of Business, Arts, and Technology

IT Security Professional from Computer, and Information Systems Security/Information Assurance
01.2019 - 01.2020

Systems Solution Engineer

VST-ECS (MSI-ECS)
08.2016 - 01.2021

Technical Support Engineer

TPG Telecoms
09.2015 - 01.2016

GuideM

Certified Penetration Tester (CPT) from Cyber Security (Penetration Testing)
05.2001

Far Eastern University - Institute of Technology

Bachelor of Science from Electronics and Communications Engineering

Similar Profiles

CREATE PROFILE
Ricardo MercadoInformation Security Supervisor