about

Sarah Cortes

Sarah is a senior technology manager with extensive experience in all aspects of Information Technology for financial services, as well as biotechnology, government and higher education. PMP and CISA-certified, she has a broad background in developing and implementing major application systems, financial and technology operations, client services and risk management. Sarah's areas of expertise include equity and fixed income trading and analytics systems, risk management, compliance, accounting, and performance analytics systems. She has significant experience in data center management on a wide variety of platforms and technologies, including expertise in data security, disaster recovery and high availability, risk management, control policy and program/project implementation.

Sarah is a member of the AIM Advisory Board on Data Privacy Laws to the Massachusetts Legislature

Read InmanTechnologyIT's Massachusetts Senate Testimony on Data Privacy Laws and Security

  • As head of Disaster Recovery at Putnam Investments, Sarah ran Putnam's recovery during 9/11 when parent company Marsh McLennan failed over to Boston from the World Trade Center 99th floor data center
  • As head of IT Audit, she coordinated over 65 audits per year, including those with the SEC, FDIC, Massachusetts Bank Examiners, SAS-70s and General Controls
  • As SVP in charge of Security, Disaster Recovery, Information Technology Audit, and some Data Center Operations, Sarah implemented state-of-the art solutions in high-volume, high complexity environments
  • As SVP, Applications Development for Trading/Analytics Systems, she implemented dozens of major and medium-sized applications into production
  • As SVP, non-mainframe Data Center Operations, and SVP, Mutual Fund Systems Applications Development at The Boston Company, a subsidiary of Shearson/American Express, she developed and delivered multiple state-of-the-art IT solutions.

Sarah is a member of the AIM Advisory Board on Data Privacy Laws to the Massachusetts Legislature, as well as numerous other leading technology organizations, including:

  • NE Technical Professionals Group
  • Massachusetts Technology Leadership Council
  • ISACA New England - Board of Directors
  • PMI - Project Management Institute

Sarah is a graduate of Harvard University where she studied Applied Mathematics and Romance Languages and Literatures. She holds numerous professional certifications and designations, including:

PMP certified CISA certified

Sarah works with a variety of partners on solutions, depending on requirements

back to top

Clients

  • ARTiculate
    Web Application development
    Environment: OS Commerce, php, MySql, Linux

  • Palmer Digital Media
    Web Application development
    Environment: Javascript, Scala, Ruby, Netbeans IDE, Flash, Flex IDE, PixelBender,C++, LibEvent, SpiderMonkey, Rhino, Adobe CS3, CSS, salesforce.com, wordpress, php, MySql

  • BeBOP MUSIC & MEDIA, INC.
    Program Management and Strategy consulting, implementing a web-based media application
    Environment: Javascript, Scala, Ruby, Netbeans IDE, Flash, Flex IDE, PixelBender,C++, LibEvent, SpiderMonkey, Rhino, Adobe CS3, CSS

  • HARVARD LAW SCHOOL
    Consultant to Information Technology Services
    Full lifecycle Project Management for various phases of application development and implementation:
    • Faculty information and support system
    • Web calendar package application implementation, all phases from project charter through implementation
    • Identify stakeholders, interview professors, deans, administrative and IT staff
    • Develop project charter/project plan/project documentation
    • Identify/cost options, recommend a solution
    • Implement solution managing application, network, infrastructure, operations and business staff resources
    Environment: HTML, CSS, PHP, Java, Perl, JSP (Tomcat) Web services (REST and SOAP), xml-based messaging and integration, Open LDAP, Rhythmyx CMS, MySql, Sql Server, Apache Web Server, Sun Identity Management Suite, Peoplesoft

  • FIDELITY MANAGEMENT & RESEARCH CO.
    Trading & Analytics Systems Security
    Project management for a variety of FMRCo risk and security system implementations
    • Implemented automated, integrated application and database authentication and authorization
    • Assessed compliance with 41 security and control policies, including platform configuration, network security, change control, cryptography, firewalls, information architecture, application and database security development
    • Implemented database logging, transmission encryption
    • Reviewed outstanding audit issues, implemented tools/programs to ensure closure
    • Implemented a variety of network policies and controls
    Environment: Windows, Unix, Linux, AS/400, Oracle, Sybase, MS-Sql, LDAP, Sharepoint, Summit-D, Custom ACL, Sungard, Agile SDM, RUP, Fortify, Segue Silktest

  • BIOGEN IDEC, INC.
    Disaster Recovery, High Availability Architecture, Recoverable Configuration
    • Analyzed technical and network architecture of business, biotech applications and systems resources
    • Developed technical alternatives for high availability or redundant architecture
    • Presented capital expenditure to Capital Investment Committee
    • Worked with vendors to implement recoverable application configurations
    Environment: Windows, Unix, Oracle 11i, Siebel CRM, C++, LDAP, Documentum, Lotus Domino Server, iNet CMS, Sungard, Oracle Financials, Access

  • PUTNAM INVESTMENTS
    Environment: Windows XP, Windows AD, Unix, Solaris, Linux, VMS, MVS, Oracle 11i, DB/2, Sybase, Siebel CRM, C++, LDAP, Documentum, Lotus Domino Server, iNet CMS, Sungard, Thomsen Financial, Reuters, Bloomberg, OaSys, Peoplesoft, SOA, Agile SDM, RUP, MQ, CICS, Access, EMC SDLC

back to top


Technologies

Implementations in the following environments or technologies:

Operating Systems: Solaris, Windows, Unix, Linux, OS/400, VMS, MVS

Databases: Oracle, Sybase, MS-Sql, DB/2, Access

Messaging: MQ, CICS, Outlook-Exchange Server, Notes-Lotus Domino

Application-related: Flex, Netbeans IDE, Flash, xml, html, javascript, Ruby, PHP, C++, SQL, MySQL, Scala, PixelBender, LibEvent, SpiderMonkey, Rhino, java, j2ee, ;CSS, Sql Server, asp.net, perl, Weblogic/Websphere, RSS, JSP, SharePoint, Documentum, Peoplesoft, SAP, Siebel CRM, Charles River Trading, EzeCastle, Thomson Financial, Reuters, WebEvents, Trumba, Bloomberg, OaSys, Reuters

Web-related: REST, SOAP, CORBA, Apache Tomcat, Apache http web server. CMS-Rhythmyx-Percussion, CMS-iNet, Dreamweaver, Adobe CS3

Security: Fortify, Sun Identity Management Suite, ACF2, RACF, Custom ACL, pgp

Disaster Recovery: Sungard, Comdisco, IBM, Iron Mountain

System Development Lifecycle Methodologies: Agile, RUP, SCRUM, Summit-D

Regulatory Domain Expertise (IT-related): Sarbanes-Oxley, COBIT, Securities Act of 1933, Securities Act of 1940, SEC, FDIC, ISEE, Mass Division of Banks, Massachusetts General Privacy laws, Massachusetts Data Breach Law

back to top


TEACHING

Guest Lecturer, Suffolk University Sawyer School of Business
Instructor, Project Management, PMI PMP Prep classes

back to top