Chairman of the board

• Apr 2021 - Present

Board Member

• Feb 2019 - Apr 2021

Team Leader GRC

• Sep 2015 - Present

Governance, Risk & Compliance (GRC) consultant

• May 2013 - Present

Working in the Governance, Risk and Compliance group as outsourced Chief Information Security Officer (CISO) and other security management roles as compliance manager.

Senior SIEM Consultant

• Oct 2008 - Apr 2013

mnemonic is one of the leading information and IT-security service companies in the Nordic region. Since the company was founded in 2000 it has achieved a solid market share in the Nordic region and is today the largest specialized information and IT-security services company in the region. From the beginning the goal has been to support the largest and most important companies in the region, including both the public and private sector.Presales, project management, design, installation, administration and exploitation of SIEM solutions based on ArcSight ESM/Express/Logger, RSA enVision , IBM QRadar and McAfee Nitro Security being involved in the complete lifecycle of the project from the initial business requirements gathering to the final knowledge transfer. Integration of different log sources with SIEM solutions. Including creation of custom parsers and content for customer specific applications. SIEM solutions training courses for costumers. Sales engineering role across the Nordics for mnemonic’s log analysis products and services holding customer presentations and answering RFI/RFPs among other tasks.

Security/Networking Core QA

• Oct 2007 - Sep 2008

Vulnerability research and exploitation techniques in the different Opera Browsers (for Desktop -Windows, *nix and Mac-, Devices and TV). Quality assurance of the security and networking modules: -Testsuites creation for testing the new features. -Analyse the new bugs reported by the users and create the proper test cases if it is necesary to reproduce the problem in-house. Vulnerability research and exploitation techniques in the different Opera Browsers (for Desktop -Windows, *nix and Mac-, Devices and TV). Quality assurance of the security and networking modules: -Testsuites creation for testing the new features. -Analyse the new bugs reported by the users and create the proper test cases if it is necesary to reproduce the problem in-house.

Security Consultant (Team Leader)

• Jul 2006 - Sep 2007

Sia is a company which offers outsorcing consultant services in many different areas, as security, software development, mobility and storage. My position was Security Consultant and I'm used to deliver on time, to work independently and to make general software engineering tasks. I worked as team leader in an engineering group offering Managed Security Service to big accounts like Telefonica, Endesa and so on. I have experience in Pre-sales tasks as offer-preparation for public administration and private companies and in client relationships with meetings, presentations and imparted courses to them.Network security: TCP/IP networks attack and defense (IPsec, SSL, VLAN, VPN). Sniffers. Security topologies. IDS/IPS. Firewalls. Proxies.

Malware Analyst

• May 2005 - Jun 2006

First 5 months working with reverse engineering of malware samples within the 24x7 virus laboratory in order to be added to the new antivirus signature files.After these first months, I become team leader of the most, in average, productive malware detection team in the Panda Security Lab. I also took responsibility for training of new analysts.Malware analysis: Reverse engineering (debuggers, packers, process monitors), protocols analyzers, virtual machines (VMWARE), Windows registry, vulnerabilities analysis.

Academy University Teacher

• Jul 2002 - Apr 2005

Private class for university student’s groups in different subjects as “Computers Design”, “Assembler programming” or "Computational logic” in a local academy. Private class for university student’s groups in different subjects as “Computers Design”, “Assembler programming” or "Computational logic” in a local academy.