Open to opportunities

Desirèe Moreno

@desiremoreno

Message

Cybersecurity, Regulatory Affairs and GRC manager with legal and tech expertise.

Spain

Message

What I'm looking for

I seek a role leading GRC and compliance programs where I can drive audits, streamline processes, mentor teams, and deliver regulatory-ready documentation within collaborative, security-focused organizations.

I am a cybersecurity and GRC manager with a background spanning legal studies and technical coursework, focused on delivering regulatory-ready documentation and leading teams through compliance initiatives.

I have hands-on experience executing ISO 27001/20000, ENS and DORA audits, managing risk registers, coordinating SOC handovers, and producing certification and readiness packages for healthcare, financial and public-sector clients.

I prioritize clear client communication, timely remediation tracking, and pragmatic process improvements to streamline compliance workflows and improve security posture under tight deadlines.

Experience

Work history, roles, and key accomplishments

Current

Cybersecurity Project Manager

Current

Capgemini

Sep 2023 - Present (2 years 1 month)

Supported GRC audits and compliance projects for healthcare, financial services and public-sector clients; coordinated SOC handovers, managed risk registers and produced ISO 27001 certification packages and DORA readiness reports.

GRC ISO 27001)DORA SOC Risk Register Compliance Audits Stakeholder Management Audit Reporting

GRC Specialist

SIRT

Mar 2025 - Aug 2025 (5 months)

Delivered ISO 20000/27001 and ENS audits, drafted non-conformity reports and engaged clients to clarify requirements and remedial steps for fixed-term engagements.

ISO 27001)ENS Audit Reporting Client Engagement Gap Analysis