Vasco Jara Schiappa

Vasco has more than 30 years of experience in auditing and consultancy, acting as a Client Services Partner and Engagement Partner in the area of ​​Risk Advisory & Compliance Services, through the general coordination of work teams and the coordination of work with clients, with intervention in discussion of the most relevant issues and institutional representation. The Risk Advisory & Compliance Services area includes: Internal Auditing (co-sourcing, out-sourcing, IT internal audits), Internal Control (evaluation of the internal control system, Control's testing), Risk Management (ERM, ORM, IRM), Third Party Assurance (TPA – SOC 1, SOC 2, ISAE 3000, ISAE 3402), Compliance management (legal and regulatory compliance at the level of Banco de Portugal/EBA and Notice 3/2020, CMVM/RGA, prevention of corruption , GDPR, etc.), AML/PBCFT, and IT Audits (IT controls' testing, SWIFT CSP assessment, etc.).

He has a degree in Business Organization and Management (ISCTE), is an Official Accountant (ROC),
Certified Information Systems Auditor (CISA), certification by ISACA (USA) and ISO 27001 Lead Auditor, certification (exam) by BSI (UK).

He has more than 30 years of experience in financial auditing, consultancy and information systems auditing, coordinating and executing work that covers a wide range of activity sectors, including: Technology, Media and Telecommunications (TMT); Banking and Finance (investment funds); Health; Tourism and hospitality; Automotive Industry and Commerce; Education, Distribution, Public Sector; Non-profit entities, among others.

He is registered with the Order of Official Auditors (OROC), ROC member no. 1564; at the Securities Market Commission (CMVM), ROC member no. 20161174, at the Information Systems Audit and Control Association (ISACA, USA), member no. 621972 and is a member of the ISACA Lisbon Chapter (Portugal)
IPAI/IIA.

Integrates BDO Internacional Working Groups in the technical areas: Third Party Assurance, Internal Audit, IS Audit and IDEA.