GRC Senior Consultant

• Apr 2022 - Present

Specialist consultant in the continuous improvement of information security management and regulatory compliance. Implementation and improvement of information security management systems and other regulatory frameworks (ISO27001, ENS, etc...). Regulatory development of information security. Risk management according to methodologies such as MAGERIT, ISO27005, etc... Consulting and auditing in Industrial Cybersecurity (OT-IEC62443). Specialist consultant in the continuous improvement of information security management and regulatory compliance. Implementation and improvement of information security management systems and other regulatory frameworks (ISO27001, ENS, etc...). Regulatory development of information security. Risk management according to methodologies such as MAGERIT, ISO27005, etc... Consulting and auditing in Industrial Cybersecurity (OT-IEC62443).

Cybersesecurity Consultant

• Oct 2021 - Apr 2022

Management and monitoring of projects aimed at governance of information technologies and compliance with regulations or good practices [ ISO 27001, LOPD, ... ]. Management and monitoring of projects aimed at governance of information technologies and compliance with regulations or good practices [ ISO 27001, LOPD, ... ].

CyberSecurity Consultant

• Mar 2021 - Jan 2022

Cyber Security Consultant

• Nov 2020 - Mar 2021

Main responsabilities: - Collaborate in the identification of the cybersecurity regulatory needs applicable to the organization in all its scope - Lead the risk assessment and asset control of the organization's information and implement preventive measures based on the assets identified and valued in the matrix in order to mitigate the risks detected. - Increase the maturity of the organization's information security based on the collection of KPI's - Support in the design, implementation and operation of cyber defense architectures and services for IT / OT infrastructures. Show less

Product Manager

• Feb 2020 - Nov 2020

Main responsabilities, - Plan, control and manage the development, implementation, and enhancement of the organization’s complete line of hardware products in. - Define, promote and deliver the intended benefits of the hardware products, working with our domestic and international operations staff. - Product planning and execution throughout the product lifecycle, including: Gathering and prioritizing product and customer requirements, defining the product vision, and working closely with engineering, sales, marketing and support to ensure revenue and customer satisfaction goals are met. - Ensure that the product supports the company's overall strategy and goals. - Define the product strategy and roadmap - Work with external third parties to assess partnerships and licensing opportunities. - Run beta and pilot programs with early-stage products and samples. - .... Show less

Product Security Leader

• Jan 2019 - Jan 2020

- Main responsibilities: Supervise throughout the product development cycle, that is: - Security requirements definition, design, implementation, integration, test, verification and compliance. - Main tasks: -Perform risk assesment -Define the security requirements to mitigate the the security risks. -Supervise the design of the security architectures to mitigate the security risks. -Perform the implementation and integration of the security measures to guarantee the confidentiality, integrity and availability of the product in all the lifecycle. -Define and execute the procedures and test activities -Perform security audits. -Guarantee the security compliance of the product according to the corresponding regulations in each case. Show less

Industrial Cybersecurity & Automation Engineer

• Aug 2017 - Dec 2018

- Main responsibilities, Supervise throughout the product development cycle, that is: - Security requirements definition, design, implementation, integration, test, verification and compliance. - Main responsibilities, Supervise throughout the product development cycle, that is: - Security requirements definition, design, implementation, integration, test, verification and compliance.

Site Security Manager

• Sep 2015 - Jul 2017

Responsibilities: • Provide strategic vision to protect critical assets from the possible risks.• Development, maintenance and communication of the organizations Information Security Plan• Overall responsibility for the operations and management of the Information Security Program• Advisor to organization regarding information security topics•Ensure and meet customer delivery dates• Develop strong collaborative relationships with the client Security team, • Good understanding of governance, risk and compliance• Knowledge in information security best practices Show less

NGDM POD Yellow Team

• Jun 2014 - Sep 2015

Responsibilities:· Administration of Microsoft environments· Management of VMWARE virtualization solutions· Management of clustered environments and high availability architecture· Scripting in Windows environments· Power shell in Windows environments· Equipment monitoring and remote control tools· Preparation of technical operating instructions

Research & Development engineer - Intership period at ArcelorMittal R&D

• Jun 2013 - Jun 2014

Main tasks: -Support in automation for high accurate vision system, for tin plate defects inspection. -Micro controllers programming support and interface development for automatic drilling system to be applied in refractory applications. -Communication protocol development for special wireless sensors, working inside high temperature furnaces. -Human geopositioning in industrial environment and risky scenarios. With the target to improve the safety at work helped by RFID applications Show less

Automation Engineer- Intership period at Rysel Automatización y control

• Mar 2012 - May 2013

Main tasks; -Implementation of a monitoring and control system for material removal machine with a SCADA (Digivis) and PLCs (ABB) for the goldmine of Kinbauri, Belmonte. -Migration of 12 RTUs of the main water supply network of Asturias with wireless technology and integration of a new protocol of communications between the LOGITEK RTUs and the existing SCADA (Factory Link) for the CADASA company. -Development projects connected to PLCs programming and SCADAS design. Main tasks; -Implementation of a monitoring and control system for material removal machine with a SCADA (Digivis) and PLCs (ABB) for the goldmine of Kinbauri, Belmonte. -Migration of 12 RTUs of the main water supply network of Asturias with wireless technology and integration of a new protocol of communications between the LOGITEK RTUs and the existing SCADA (Factory Link) for the CADASA company. -Development projects connected to PLCs programming and SCADAS design.