Expertise DescriptionFor more than 10 years, I have been deeply involved with application security, the security development lifecycle, secure coding, cybersecurity, viruses, risk mitigation, risk assessment, responsible disclosure, hacking techniques, applied encryption, denial of service, online banking security, cryptocurrencies (bitcoin), information privacy principles, information privacy technologies, and banking regulations (FFIEC). My career has been focused on application security, Cloud security, identifying, developing and implementing processes across the organization to reduce information and information technology (IT) risks. I have additional expertise in leading security incident response, establishing appropriate standards and controls, defining and managing security technologies, and directing the establishment and implementation of policies and procedures.
Areas of Expertise
My consulting experience includes meetings with bank CISOs and security staff to report and advise on security practices as part of my current job.
My professional experience includes working as a Software Engineer as part of an advanced technology team and enterprise management team, a Principal Software Engineer for an enterprise antivirus team, a Sr. Manager of Global Product Security, a Security Business Partner, and a Principal Information Security Leader.
|M.B.A.||University of Southern California (USC)|
|M.S.||Software Engineering||Santa Clara University (SCU)|
|B.S.||Computer Science||Pontificia Universidade Católica do Rio Grande do Sul (PUC-RS)|
Secure Software Lifecycle Professional (CSSLP), (ISC)
Certified Cloud Security Professional (CCSP), (ISC)
Certified Information Privacy Professional (CIPP/US), IAPP
Certified Information Privacy Technologist (CIPT), IAPP
Certified Bitcoin Professional (CBP), Crypto Currency Certification Consortium
Awards & Affiliation
Web Application Security of Person of the Year (WASPY).
Americas Information Security Leadership (ISLA).
(ISC)2’s Stemmy Awards, For being among the Top Ten (ISC)2’s CSSLP certification contributors with the highest number of questions accepted.
Cyberwar Games 2012 – finalist One of the top 10 teams (#4) that advanced to the Championship of CyberWar Games, making the top 10% of the 600 participants (and 33 countries) in phase one of this Symantec “capture the flag” internal competition.