Professional Experience
Passionate about INFORMATION SECURITY. Always learning and teaching about Information Security through different aspects: application, malware, vulnerabilities, awareness, auditing, infrastructure, standards and certifications (ISO 27001, ISO 22301, OWASP Top 10, NIST, PCI DSS, ...) etc.
Supervising Associate, Application Security Coordinator
jul. 2018 / Up to date - Argentina.
Governance, Risk and Compliance. InfoSec, Application Security, Vulnerability Management, ISO 27.001, etc.
WORK EXPERIENCE
Tech Specialist, Information Security
abr. 2016 / jun. 2018 - Argentina.
Providing support to International AT&T Company in Security & Compliance field.
Reporting to Global Team.Information Security support for MAC Apple OS X.
Third teacher for the “Software Eng.” Course for the Informatics Engineer area
mar. 2015 / mar. 2016 - Argentina.
In Charge of the exercises of the course and occasionally giving the classes.
Information Security Responsible
abr. 2015 / feb. 2016 - Argentina.
In Charge of the Implementation of ISO/IEC 27001, providing SME knowledge and support to the whole organization. My daily activities are:
*Creation and updates of the Information Security Policy and standards related.
*On going education to all the employees about Information Security.
*Metrics.
*Incidents Management.
*ISO 27001 implementation: creating a remediation plan with the actions that will resolve the GAPs found in a short, medium and long place.
Business Continuity Management Team LeadBusiness Continuity Management Team Lead
mar. 2012 / abr. 2015 - Argentina.
In Charge of the Argentina Business Continuity Management and Information Security Team, working with lots of contracts performing audits through assessments from many Customers ensuring that they are compliance with the Business Continuity Management and Information Security requirements in a regular basis. The main objective of BCM is that projects have their Business Continuity Plans created, they have performed the training required to understand the BCM methodology and they test their BCPs with minimum once per year or following major changes. And the main objective of Information Security is to achieve ISO/IEC 27001 and ISO/IEC 22301 requirements.
Information Technology Consultant
ene. 2011 / feb. 2012 - Argentina.
I worked for different clients, performing different job roles.
Job Role: SAP Retail Consultant
Job Role Description: Data Migration implementing SAP RETAIL in a Retail company.
2011/12 - 2012/02.
-------------------------------
Job Role: Strategy Consultant
Job Role Description:
Strategy tasks for the implementation of the project and selection of IT solutions, which includes analysis, design and creation of Organization Charts and the development of Jobs Descriptions with the objective of restructuring the areas with dependence of the Systems department.
2011/07 - 2011/11.
-------------------------------
Job Role: Security Consultant
Job Role Description:
Security Tasks for the implementation of Oracle CC&B system, which includes:
* Execute and document the evidence regarding security developments.
* Design the security of the cases defined by the functional team.
* Analysis, design and construction of task roles.
* Design and construction of audit trails.
* Make the passages to the various configuration settings.
2011/01 - 2011/07.
Project Manager for Integrated Technology Delivery, Geo Service Delivery, in support of Novartis
mar. 2010 / dic. 2010 - Argentina.
Administration and execution of projects. And Focal Point responsible for all Project Management area to obtain ISO 20000 and e-SCM-SP Level 5.
This role had 3 core activities. The first involved the overall management of
Continuous Improvement and Defect Prevention Management. The second core activity was conducting weekly/bi-weekly meetings with Team Leaders and Managers to review the defects, the proposed improvement plans, and team performance on implementations of improvements.
The third core activity was the representation in various audits and internal control processes, to the Vice President of Global Services, Patt Cronin. This last activity was the most important, because to achieve a successful audit we had to obtain all the processes in a correct way of the entire group of Unix and Wintel for which i provided support as QA Leader. This included all processes in an unified, correct and updated form for about 15 Unix and Wintel teams, of 30 technicians each team. And to do this i had daily meetings with a technical representative from
each team to develop, control and monitoring of all processes. On the other hand i performed regular training sessions, for all members of all groups to prepare them for audits.
Unix Administrator - Second level Server Support for American ExpressUnix Administrator - Second level Server Support for American ExpressRunning deployments which include the migration of JVMs (Java Virtual Machines), with the main purpose of creating new Web Applications. Job Role Description: ----------------------------- Running deployments which include the migration of JVMs (Java Virtual Machines), with the main purpose of creating new Web Applications.
Creation/deletions and modifications of user accounts in Unix operating system under AIX, Solaris and Linux platforms. Accounts and user access troubleshooting such as: problems of access, home directories and group assignments, etc. The service provided was 24 X 7, for which i performed daily or weekly guards.
IT Standards Coordinator InternshipIT Standards Coordinator Internship
oct. 2005 / dic. 2005 - Argentina
Coordination of meetings for the analysis, translation and production of IT standards such as ISO 17.799, ISO 27.001, etc.. with representatives of different IT companies. I have provided support to the development of the standard ISO 17.551 - Risk management systems:
http://www.adara.org.ar/pdf/iram_17551.pdf (search my name in this page)
