Dipl.-Ing. Federico F. Leefhelm


Düsseldorf, Germany


Vor-Audit for GDPR (EU-DSGVO)
Compliance Services based on GDPR
ISMS according to ISO 27001
GRC - Governance Risk & Compliance
ISO 27001 & ISO 22301
ISO Standards Einführung
ISMS Einführung
Implementation of ISMS
C5 Certification
C5 Cloud Computing Compliance Control Catalogue
IT Governance Beratung & Implementierung
BSI & IT-Grundschutz-Kataloge
IT Strategy
Large & Global Projectmanagement
Business Continuity Management (BCM
Senior IT & Business Consultant
Senior IT & Business Management
Oriented to Problems Resolution
IT Service Management
ITIL Service Management
Outsourcing Management
Business Strategy
Business Process Management
Business Analysis
Software Factory Management
Project Planning
Change Management
Service Delivery Management
Electronic Banking
International Banking Consultant
Risk Management
Entwicklungsmanagement / Development Management


Professional experience for Federico F. Leefhelm

  • Current 2 years and 4 months, since Aug 2019

    Senior Management Consultant Compliance & Information Security

    Leefhelm Compliance Services

    ISO – Information Security Officer for a Public Federal Agency, as Corporate Customer from „Hays”, in Wiesbaden, Germany. Implementing a C5 Certification (Cloud Computing Compliance Control Catalogue), according to the German BSI (Federal Office for Information Security) for a new Cloud Service of this Customer. At the same time, Implementing an ISMS and Baseline Protection Certification according to the German BSI (IT-Grundschutz / IT Security Law) as well.

  • 6 months, Feb 2019 - Jul 2019

    Senior Management Consultant Compliance & Information Security

    Dr. Glinz COVIS GmbH

    Freiberufliche Aufgaben: - ISO - Information & IT Security Officer - Kontinuierliches Verbesserungsprozess (KVP) des ISMS gemäß ISO 27001 Freelancer Activities: - Information & IT Security Officer - Continuous improvement process of the ISMS, according ISO 27001

  • 10 months, Apr 2018 - Jan 2019

    Senior Management Consultant Compliance & Information Security


    SAP SE, Walldorf: International Audit & Compliance Manager in area of Quality Management and Information Security, according to ISO 9001, ISO 27001, ISO 22301, SOC, SOX, C5 & PCI-DSS in Cloud Network Delivery (CND) Area of SAP.

  • 8 months, May 2018 - Dec 2018

    Senior Management Consultant & Lead Auditor Information Security


    Lead Auditor bei TÜV SÜD, München & Mannheim, Germany: - Durchführung von EU-DSGVO Vor-Audit für den TÜV SÜD München und dessen Kunden - Durchführung von Audits in Bereich der Information Security (ISO 27001) and Busines Continuity Management (ISO22301)

  • 2 years and 5 months, Feb 2016 - Jun 2018

    Senior Consultant Compliance Services & Solutions

    Makro Factory GmbH & Co. KG

    Successful implementation of International ISO Certifications for Makro Factory and created a new Service Unit from scratch, to implement GDPR (General Data Protection Regulation), Security and ISO Certifications for the Customers. Succesful implemented an Information Security Management System (ISMS) according to ISO/IEC 27001, plus a Business Continuity Management System (BCMS) according to ISO/IEC 22301. Also implementing EU-DSGVO (GDPR), everything alone and into 14 Months.

  • 2 years and 4 months, Mar 2013 - Jun 2015

    Senior IT, Business, Risk & Compliance Consultant, Chile

    Selbständig, Freiberufler

    Performs IT and Business Consulting to several companies in the financial, retail and other industries. Performing IT Consultancy & Training, works by the Implementation of a corporate ERP for the Chilean Business Unit of a multinational Group, also acting as Translator and Interpreter for Spanish & English. Additionally, he manages different areas for several IT Services companies,

  • 15 years and 5 months, Feb 2000 - Jun 2015

    Dolmetscher und Übersetzer für Spanisch, Deutsch und Englisch, Chile

    Selbständig, Freiberufler

    Für Beratungsprojekte, arbeitet als Dolmetscher und Übersetzer, Hauptsächlich für IT und Geschäftsprojekte. Die Übersetzungen sind von Spanisch auf Deutsch, Spanisch auf Englisch und umgekehrt. Übersetzungen von Dokumente und Dolmetscher für IT bezogene Geschäfte. For Consultancy Projects, act as Interpreter and Translator, mainly for IT & Business translations. Translate from Spanish to German, Spanish to English and vice versa. Translate documentation and Interpreter for business related activities.

  • 2 years and 8 months, Jul 2010 - Feb 2013

    Regional RCP Manager for Latin America, Chile

    Zurich Financial Services

    RCP, Release Configuration and Promotion, part of Growing Market Platform (focused to implement new Core System for LatAm branches), governs change & release management and the whole live cycle of all the applications and platforms for each country, with a Team from 50+ peoples worldwide. He created RCP from scratch and achieved to create and train teams in Chile, Brazil and remotely in India, to execute application release build, packaging, configuration & promotions.

  • 2 years and 1 month, Jul 2008 - Jul 2010

    Senior IT Consultant

    National Statistical Office, INE Chile

    Responsible for advising the IT direction. Managed the IT development area and implemented methodologies and PMO, managing 50+ peoples. His greatest achievement, to propose and implement an IT Department restructuring, complying international standards & norms (ITIL, ISO 27001, CobIT and OECD) to become an IT Subdirectorate, generating institutional IT policies & norms, in force nowa-days.

  • 6 years and 4 months, Mar 2002 - Jun 2008

    CEO and Owner

    Technological Consultancy ATNet Lateinamerika GmbH, Chile

    Elaborated, developed and commercialized IT products and services, managing all the projects and all the hired professionals. Developed an electronic invoicing solution and implemented it at all the highway concessionaires in Santiago (large Companies), also performing the change management projects. His solution was implemented in several small, middle, large and corporate companies.

  • 1 year and 10 months, May 2000 - Feb 2002

    CIO & COO

    ETISA, Smart Cards Company (Banking Branche), Chile

    Created IT and the Electronic Money management platform from scratch. He makes the definition, benchmark, selection, acquisition and implementation of the technological platform to manage the Electronic Wallet, acquired to Mondex International, UK. Develop models and operational procedures for the Electronic Money via Internet between banking and commerce.

  • 7 years and 11 months, Jul 1992 - May 2000

    Manager Technological Channels, Marketing

    Bank BCI, Chile

    Head of remote channels (Web, Mobile Banking, Phone Banking, ATM's, etc..). He designs and manages the development and implementation of: The 1st transactional banking Web page going off from a traditional and just informative Web site; The 1st Mobile Banking; The 1st emission and roll out project of smart cards. His team was 40+ professionals.

  • 1 year, Jul 1991 - Jun 1992

    International Banking Senior Consultant

    Digital Equipment GmbH, Frankfurt, Germany

    He was Senior Consultant in the inland and foreign payment transactions, Financial EDIFACT, eCommerce, Banking Solutions as well as peripheral areas (document business, leasing, etc.). He was also responsible for the implementation, diffusion and the development of eCommerce (SWIFT, EDI, etc.), participating in the different European Inter banking committees, mainly in Frankfurt, Paris and London.

  • 8 years, Jul 1983 - Jun 1991


    Societe Generale, Frankfurt, Germany

    Responsible for Benchmark, definition, implementation and Roll Out of ST400 from SWIFT Terminal Services of Brussels, converting the Société Générale into the first Bank of Germany that introduce that system. Along with the implementation of SWIFT, he performed the Training to all the people involved with the system (Foreign Exchange) at all the Branches of the Bank ... and so much more.

Educational background for Federico F. Leefhelm

  • 5 years and 1 month, Mar 1977 - Mar 1982

    Engineer in Information Technology

    Technische Hochschule (TH), Santiago, Chile

    IT - Information Technology Wirtschaftsinformatiker


  • Spanish

    First language

  • German


  • English


  • French


  • Portuguese


  • Italian



Compliance & Information Security Projekte
Einsatz von ISMS gem. ISO 27001
Neue Projekte in EU-DSGVO
Unternehmen die DSGVO implementeren brauchen
Unternehmen die nach DSGVO prüfen brauchen
CISO / CISA / GRC Manager
am liebsten Unternehmen in Düsseldorf Raum
GRC - Governance Risk & Compliance Manager
Head of Consulting
Large & Global Program / Projectmanagement
Beratung Management
International Banking / Companies
Service Delivery Management


Meine Familie
Die schöne Stimme meiner Tochter
immer wieder Neues zu lernen (Beruflich & Privat)

Group memberships

Browse over 18 million XING members