Open to opportunities

Dan Michael Madrid

@danmichaelmadrid

Message

GRC and cybersecurity risk professional specializing in ISO 27001 and TPRM.

Philippines

Message

What I'm looking for

I’m looking for European-facing cybersecurity consulting and risk management work—where I can apply ISO 27001, NIST CSF, and TPRM expertise to improve security governance, third-party oversight, and operational resilience through practical, audit-ready controls.

I’m a GRC and cybersecurity risk professional with over fifteen years across global enterprises, where regulatory compliance, data security, and third-party oversight were part of day-to-day operations. I’m an ISO 27001 Lead Auditor with hands-on ISMS development, NIST CSF assessment experience, and practical TPRM work, supported by ISO 27001 and SOC 2 aligned control assurance activities.

In recent roles, I strengthened vendor governance and third-party oversight, validated compliance documentation, and supported control testing and evidence reviews with audit-ready accuracy. I’ve also built applied GRC deliverables—like an ISMS from scratch, an end-to-end cybersecurity maturity assessment, and a third-party risk assessment—alongside process risk management through root-cause analysis and security policy/asset-management workflow design.

Experience

Work history, roles, and key accomplishments

Outbound Ops & Vendor Mgmt

BHP (Broken Hill Proprietary)

Jan 2020 - Mar 2026 (6 years 2 months)

Strengthened vendor governance and third-party oversight by validating documentation and supporting control testing/evidence reviews aligned to ISO 27001 and SOC 2. Managed vendor and shipping documentation and escalated operational/vendor risks through structured GRC workflows.

ISO 27001 SOC Vendor Governance Controls Testing Incident Coordination Validation

Trade Compliance & Vendor Governance

Maersk Global Service Centre

Jan 2018 - Jan 2020 (2 years)

Managed cross-border trade compliance and documentation for high-volume international trade workflows, supporting regulatory and contractual adherence. Coordinated remediation of documentation gaps and performed root-cause analysis to improve processes and reduce operational risk across shipment and vendor lifecycles.

Trade Compliance Vendor Governance Cross Border Documentation Root Cause Analysis Operational Risk Management

Bilingual Export Customer Service Analyst

Accenture

Mar 2015 - May 2018 (3 years 2 months)

Processed end-to-end export orders in SAP for North American export operations while ensuring compliance with order types, sourcing requirements, and customer profiles. Participated in BCM reviews and delivered automation and process improvements to streamline order processing and logistics operations.

Process Compliance Automation Revenue Recognition Technology Point Of Contact (POC)Operational Excellence

Spanish Editorial Back Office Analyst

Arvato (Bertelsmann Group)

Sep 2011 - Mar 2015 (3 years 6 months)

Evaluated search engine advertisements for quality and compliance against platform standards and editorial best practices. Supported SEO and digital marketing workstreams by helping clients optimize ad performance within defined governance and compliance parameters.

Ad Quality Assurance Digital Marketing Compliance Platform Governance Content Standards client support

Customer Care Specialist

IBM

Jul 2009 - Jul 2011 (2 years)

Resolved customer technical and billing issues while following strict data security and compliance protocols to maintain service continuity. Processed client payments and handled billing inquiries with accuracy while protecting confidential information.

Customer Support Technical Troubleshooting Data Compliance Payment Processing