Cybersecurity Director | CSO

• May 2020 - Present

Head of Cybersecurity Practice

• Oct 2017 - Present

Management and technical leadership of cybersecurity unit, in charge of business development, sales strategy, technical presales, people management, design of new projects, portfolio improvement, and RFP response in LATAM level. Engage and direct customers and partners consistently in the sales and pre-sales process. Respond to technical and commercial proposals according to customer's request and specifications. Prospecting and developing new clients, aligned with the cybersecurity strategy. Reporting directly to company CEO. Show less

Cybersecurity Presales Manager

• Dec 2015 - Sep 2017

Working as technical presales to enable cybersecurity business growth in Latin America. Acting as interface between the customer and his operational requirements, the solution architects, program managers, and translating the operational requirements into technical requirements in order to develop offers. Owning the technical part of the sales process, executing technical presentations & field trials (POCs) for customers, participating at conferences. Supporting solutions as managed services, SOC, vulnerability management, penetration testing, security advisory services and mobile security. Show less

Senior Consultant and Technical Coordinator in Information Security

• Nov 2008 - Nov 2015

Coordination, leadership and execution of projects in the following areas: mobile security, IS assessment for electronic locks (safe), penetration test for smart meters devices, smart grid security, security designing for software defined radio, security certification for cryptographic software, penetrating testing for pay TV (set-top boxes), information security audit, risk analysis and vulnerability assessment, security for environments payment card (PCI-DSS), critical infrastructure protection in telecommunications, protection of user privacy. Show less

Professor of post-graduation in Information Security

• Jul 2008 - Dec 2009

Researcher of ITA (Technological Institute of Aeronautics). Acting as an advisor of student's thesis and participating in the evaluation committee for final approval. Researcher of ITA (Technological Institute of Aeronautics). Acting as an advisor of student's thesis and participating in the evaluation committee for final approval.

Information Security Consultant

• Mar 2007 - Nov 2008

Audit and analysis of Lottery Processing System under information security perspective. Vulnerabilities and threats identification, risk assessment, definition of security controls for the processes analyzed. Working on the following sub-projects: (1) security analysis of application authentication and integrity process; (2) security of cryptographic key management process; (3) recommendations in the IT risk management process; (4) analysis and recommendations on the security incident response process. Show less

Information Security Consultant

• Nov 2005 - Feb 2007

Implementation of Business Continuity Plan (BCP), development of security policies, mapping business processes. Defining continuity strategies and disaster recovery strategies, Business Impact Analysis (BIA). Acting as Security Officer. Risk assessment in outsourcing of the help desk, development of information security corporative manual, follow-up in management meetings and information security advices. Implementation of Business Continuity Plan (BCP), development of security policies, mapping business processes. Defining continuity strategies and disaster recovery strategies, Business Impact Analysis (BIA). Acting as Security Officer. Risk assessment in outsourcing of the help desk, development of information security corporative manual, follow-up in management meetings and information security advices.

Information Security Analyst

• Jan 2004 - Oct 2005

Development of an open and auditable encryption platform for the Root Certification Authority in Brazilian PKI. Cryptographic key management, secure programming, strong authentication, digital certification. Participating in the SGB Project (Brazilian Geostationary Satellite). Definition of security policies, secure communication between the ground station and the satellite, cryptographic algorithms implementation, development of access control policies. Development of an open and auditable encryption platform for the Root Certification Authority in Brazilian PKI. Cryptographic key management, secure programming, strong authentication, digital certification. Participating in the SGB Project (Brazilian Geostationary Satellite). Definition of security policies, secure communication between the ground station and the satellite, cryptographic algorithms implementation, development of access control policies.