Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
Elizabeth De La Lanza

Elizabeth De La Lanza

Technical Program Manager
Walnut Creek,CA

Summary

I am a Technical Program Manager and recognized thought leader in the fields of security, privacy, and compliance with 15+years of experience across several industry verticals. I thrive on bridging the gap between complex technology and its real-world applications. My career is defined by my ability to foster meaningful connections with stakeholders, collaborate effectively across teams, and navigate intricate systems to deliver on governance and compliance initiatives.

My approach to complex challenges is a structured and careful review of the systems’ landscape, understanding roles and responsibilities, creating effective channels of communication and a deep understanding of the Organizations’ culture.

Overview

15
15
years of professional experience
7
7

Certifications

Work History

Privacy Implementation Technical Analyst

Meta Contract (Unify Consulting)
08.2022 - Current
  • Evaluate, review and optimize technical controls to ensure data privacy to meet requirements related to Meta's Privacy Program and other compliance frameworks.
  • Partner with legal and compliance teams to design technical standards to apply privacy technologies to data life-cycles.
  • Collaborate with cross-functional and global counterparts across product, engineering, legal, compliance, data science and security teams to drive alignment on requirements to meet privacy expectations
  • Evaluate end-to-end encryption implementation of Meta's messaging apps to create standards of verification
  • Identify and evaluate constantly-changing or new privacy needs and requirements to improve Meta's privacy and security posture, reviewing ~600 risk mitigations per month
  • Created SOPs, process flows and other collateral artifacts to cultivate team alignment and standardize operations to mature privacy programs

Technical Project Manager

Seagen Contract (Unify Consulting)
01.2022 - 08.2022
  • Spearheaded working sessions with IT services end users to document and categorize core business needs
  • Managed ServiceNow Agile implementation while working directly with Business, Product, Engineering and Service Delivery Teams for on-track deployment
  • Partnered with Change Management Office to drive effective change across IT organizations by ensuring messaging, trainings and feedback loops drive continual improvement.
  • Measured and reported program performance and effectiveness to inform program decision-making
  • Created knowledge base articles for ServiceNow self-service portal
  • Lead roll out of new ServiceNow catalog during critical Hypercare phase

Privacy and Security Risk Analyst

Block Contract (Unify Consulting)
11.2021 - 01.2022
  • Performed data privacy and security analysis of third party SaaS applications and services in use by Block employees to identify potential security exposures and to ensure compliance with Company's Security Standards.
  • Reviewed vendors' data privacy policies and other public data intelligence tools to define a risk profile and assign a severity score
  • Provided a comprehensive analysis to help the CISO and their team better understand applications that store sensitive data
  • Developed short-term goals and long-term strategic plans to improve risk control and mitigation.
  • Trained and mentored analysts on vendor assessments and reviews using the NIST framework

Security Analyst - Office of the CISO

World Market Contract (Unify Consulting)
09.2021 - 11.2021
  • Conducted a comprehensive baseline security control assessment across seven Azure cloud service subscriptions, Office 365, Azure Active Directory, virtual networking devices, virtual desktops, and virtual servers
  • Measured technical controls directly and conducted stakeholder interviews to determine adherence to Security Program standards and procedural controls using the Microsoft Azure Security Benchmark controls as reference framework
  • Reviewed Identity & Access Management, Network Infrastructure, Data Protection tools, Incident Response, Logging & Monitoring, Vulnerability Management and Operational Standards
  • Developed short-term goals and long-term strategic plans to improve risk control and mitigation.

Technical Delivery Lead

Rodan + Fields Contract (Slalom Consulting)
03.2020 - 09.2021
  • Delivered new capabilities and 75% platform performance improvements for a web application that hosted its first-ever all-virtual convention
  • Defined technical requirements for Single Sign-On (SSO) integration using SAP authentication solutions
  • Led first-ever pen-testing effort; 60% of vulnerabilities that were reported were mitigated and 40% were addressed with mitigating controls
  • Created system architecture diagrams for new third-party vendors integrated with the event platform
  • Incorporated application security processes such as managing annual third-party penetration testing, orchestrating remediation and mitigating controls, implementing threat modeling and regular web security scans as part of a mandated security modernization initiative
  • Transformed quality assurance practices by developing comprehensive test plans early in the development cycle, conducting rigorous system integration testing, load testing and user acceptance testing.

Sr Business Systems Analyst

Tesla
06.2019 - 01.2020
  • Lead critical billing and invoicing capabilities as part of Tesla’s initiative to replace Salesforce with its proprietary CRM system, Tesla Operating System
  • Initiated business system analysis that support billing and invoicing for used and new vehicle and parts sales on a global scale
  • Enabled new automated billing in New Zealand and Iceland ensuring compliance with local tax and invoicing requirements
  • Architected vertical integration between upstream vehicle configuration services with downstream billing engine and document generation using Tesla Operating System pub/sub layer and replacing the existing Mulesoft capabilities
  • Led new integrations of Electronic Parts Ordering, Solar City and Vehicle Repair services into the Billing Engine

Senior Business Analyst

Envestnet, Yodlee
08.2018 - 06.2019
  • I assisted Enterprise clients in deploying or upgrading Yodlee’s API into their web application and help them customize it for the best user experience
  • Assisted clients with UI design and development, SAML integration, application review and reporting
  • Cross-sold Envestnet suite of financial applications and specific use of aggregated data to develop reports and financial insights.

Staff Quality Assurance Engineer and Team Manager

SS&C Technologies
05.2008 - 08.2018
  • Managed the QA automation team for SS&C’s Award-winning Portfolio Management Solution, Geneva
  • Designed, tested and delivered the first data migration solution of its kind for Geneva clients. This initiative cut down services engagement and reduced costs incurred by the client by 80%
  • Rolled out QA process improvement and training to a team of QA Engineers in Beijing, China
  • Delivered risk assessment of all current automation and regression tools to ensure best QA practices
  • Introduced Agile and Scrum Development methodologies to team dedicated to delivering homegrown QA tools
  • Led cross-functional, geographically dispersed teams through business requirements which resulted in a significantly reduced testing output turnaround time
  • Assisted enterprise clients with data migration efforts and provided them with staging environments for pre-deployment testing and for ensuring data accuracy post-migration.

Education

Bachelor of Arts - Economics

Florida International University
Miami, FL
05.2005

Skills

  • Data Protection & Encryption
  • Access Management Controls
  • Infrastructure Security
  • Privacy Audit and Review
  • Threat Detection & Incident Response
  • Patch Management & Vulnerability Scanning
  • GDPR, CCPA, HIPAA Compliance
  • NIST Framework

Certification

Professional Cloud Security Engineer - Google Cloud

Professional Cloud Architect - Google Cloud

AWS Certified Solutions Architect - Associate

PMI-ACP

Certified Scrum Master

Certified Scrum Product Owner


Timeline

Privacy Implementation Technical Analyst

Meta Contract (Unify Consulting)
08.2022 - Current

Technical Project Manager

Seagen Contract (Unify Consulting)
01.2022 - 08.2022

Privacy and Security Risk Analyst

Block Contract (Unify Consulting)
11.2021 - 01.2022

Security Analyst - Office of the CISO

World Market Contract (Unify Consulting)
09.2021 - 11.2021

Technical Delivery Lead

Rodan + Fields Contract (Slalom Consulting)
03.2020 - 09.2021

Sr Business Systems Analyst

Tesla
06.2019 - 01.2020

Senior Business Analyst

Envestnet, Yodlee
08.2018 - 06.2019

Staff Quality Assurance Engineer and Team Manager

SS&C Technologies
05.2008 - 08.2018

Bachelor of Arts - Economics

Florida International University

Similar Profiles

  • Hannah Hopkins

    Hannah HopkinsHannah Hopkins

    Quality Engineer and DevOps at Unify ConsultingQuality Engineer and DevOps at Unify Consulting

    View Profile
  • Patrick Lockrow

    Patrick LockrowPatrick Lockrow

    Senior Consultant at Unify ConsultingSenior Consultant at Unify Consulting

    View Profile
  • Jasmine McFerren-Gause

    Jasmine McFerren-GauseJasmine McFerren-Gause

    Managing Director, Business Consulting Services at Unify Consulting ServicesManaging Director, Business Consulting Services at Unify Consulting Services

    View Profile
Elizabeth De La LanzaTechnical Program Manager