Summary
Overview
Work History
Education
Skills
Accomplishments
Languages
Timeline
Generic

Sandra Fernandez

Summary

Senior Vice President of Operational Compliance, Risk Management, and Data Privacy with over 16 years of leadership in maturing global compliance programs. Expertise in embedding a culture of compliance, reducing risk exposure, and implementing strategies that align with organizational goals. Proven success in managing regulatory requirements across healthcare, fintech, and other highly regulated verticals while fostering trust, ethical practices, and operational excellence.

Overview

17
17
years of professional experience

Work History

Senior Vice President, Compliance & Risk Management and Data Privacy Officer

Ibex
01.2017 - Current
  • Spearheaded the development and global implementation of a mature risk model that mitigates exposure and drives compliance across 30 sites and over 25,000 employees
  • Directed a team of 6 senior leaders and 100+ compliance professionals to ensure adherence to data privacy regulations, including GDPR, HIPAA, and CCPA
  • Created an Enterprise Governance and Oversight Review Board, aligning executive decision-making with risk mitigation strategies for HIPAA, GDPR, and CFPB
  • Enhanced company compliance culture through tailored training programs and proactive identification of fraud and regulatory risks
  • Achieved a 700% reduction in financial damages within the first year, with continued improvements annually
  • Introduced advanced GRC tools and fraud detection systems, modernizing compliance monitoring processes and increasing organizational resilience
  • Oversaw the whistleblower program and upheld corporate governance, ensuring ethical operations and regulatory alignment

Corporate Compliance Manager – Risks and Controls

Alorica, Inc.
02.2008 - 01.2017
  • Designed the Compliance Risk Management Program (CRMP), ensuring regulatory adherence for multiple financial services clients
  • Conducted and managed internal audits and third-party certifications (PCI DSS Level 1, SOC I & II)
  • Partnered with legal and operations teams to revise policies, implement improvements, and align with emerging regulatory standards
  • Delivered recommendations to optimize security and compliance processes, reducing client and organizational risk exposure

Education

Certificate Program - Psychology

Middlesex County College
Edison, NJ

Skills

  • Strategic Risk Management and Mitigation
  • Regulatory Compliance Expertise (HIPAA, GDPR, CCPA, PCI DSS)
  • Data Privacy and Cybersecurity Leadership
  • Governance, Risk, and Compliance (GRC) Tools Implementation
  • Stakeholder Communication and Reporting
  • Team Leadership and Development
  • Strategic leadership
  • Policies and procedures
  • Operational excellence
  • Process improvements
  • Strategic planning
  • Regulatory compliance

Accomplishments

  • Transformed ibex's compliance program into a globally recognized model, enabling successful expansion into new verticals.
  • Led the design and implementation of comprehensive data protection measures, safeguarding consumer data and meeting strict regulatory standards.
  • Enhanced risk management processes to monitor, assess, and mitigate operational risks across the client lifecycle.
  • Recognized by clients and external assessors for exemplary compliance and risk management leadership, earning industry accolades.

Languages

Spanish
Native or Bilingual

Timeline

Senior Vice President, Compliance & Risk Management and Data Privacy Officer

Ibex
01.2017 - Current

Corporate Compliance Manager – Risks and Controls

Alorica, Inc.
02.2008 - 01.2017

Certificate Program - Psychology

Middlesex County College

Similar Profiles

CREATE PROFILE
Sandra Fernandez