As the Chief Information Security Officer (CISO) at Grupo Energisa, I lead information and cybersecurity efforts across various business units, ranging from fintech startups to insurance brokers, as well as our core business of energy distribution, transmission, distributed generation, and free market operations. My role extends beyond technical protection, focusing on aligning cybersecurity with the organization’s strategic objectives.My primary responsibility is to develop and implement a unified and robust cybersecurity strategy, tailored to the specific challenges of each sector we operate in. This includes managing third-party risks, ensuring that key business partners and suppliers meet stringent security standards. Under my leadership, the Security Operations Centers (SOCs) for both IT and OT are continuously monitored, ensuring operational resilience and rapid incident response. Additionally, cloud security plays a central role in our strategy, optimizing the secure and managed adoption of cloud solutions.With a business-driven approach, I work closely with leaders from various departments to align cybersecurity with corporate priorities, fostering a culture of innovation and sustainable growth. I am also responsible for regulatory and sectoral compliance, ensuring that we adhere to the latest standards and regulations, mitigating legal and compliance risks.Simultaneously, I lead initiatives to combat digital fraud and coordinate external audits to validate our cybersecurity practices, always with a focus on delivering results that strengthen Grupo Energisa’s resilience and competitiveness. Threat intelligence is a key pillar in my management approach, allowing us to anticipate risks and swiftly adapt our defenses, ensuring business continuity and evolution in an ever-changing cyber landscape.

https://www.eccouncil.org/global-advisory-board-for-ecih/

As the Information Security Director at Prudential Financial, overseeing the LATAM and Africa regions within the Prudential International Information Security Office, my responsibilities extend to collaborating closely with our own business units, joint ventures, and startups. I provide strategic leadership in Information Security and Cybersecurity, offering support to diverse entities across Latin American countries, each with unique strategies, channels, products, languages, and cultures. My role includes managing a multinational and multicultural team. Our primary focus is on standardizing and enhancing our cybersecurity posture, thereby enabling secure technology development and innovative business processes.Additionally, I actively engage with our own business units to ensure that our information security strategies align seamlessly with their goals. In joint ventures and startup initiatives, I play a crucial role in integrating robust security measures from the inception, safeguarding against emerging threats and ensuring regulatory compliance. I also hold significant roles as a member of the International Privacy Council and the Global Inside Threat Program, contributing to Prudential's overarching efforts in privacy and threat management across these diverse business entities. This holistic approach to information security underscores our commitment to protecting sensitive data and adapting proactively to security challenges in various operational contexts.

As the Business Information Security Officer (BISO) at Prudential do Brasil, my role was pivotal in supporting innovative strategies and ensuring the secure digital transformation of the business. This involved strengthening the organization's cybersecurity posture, primarily through the restructuring and continuous enhancement of a robust cybersecurity operation. Additionally, I played a key role in ensuring strict normative-regulatory compliance related to Information Security and Data Protection.My responsibilities extended to active participation in relevant M&A processes, where I assessed and integrated security measures to protect sensitive data during transitions. I also oversaw the compliance processes within PCI DSS and ISO 27001, ensuring that our security measures met internationally recognized standards.Furthermore, I was instrumental in facilitating the successful launch of new digital products and the establishment of new business units. My focus was on embedding security practices into these initiatives from inception, safeguarding the integrity and confidentiality of data while enabling business growth. This comprehensive approach ensured that Prudential do Brasil embraced digital innovations with confidence and remained compliant with industry regulations.

As the Chief Information Officer (CIO) at JLT, my primary mission was to ensure consistent performance and availability of our operations. I achieved this by overseeing a comprehensive reshaping of our IT infrastructure and services, aligning them with the organization's strategic objectives. One of the cornerstones of this transformation was the establishment of a new management strategy, centered on outsourcing key IT functions to providers who shared our vision.This strategic shift enabled us to swiftly adapt to the evolving corporate and market demands, as well as meet the pressing need for automation and computational agility in provisioning. While driving this transformation, I confronted significant challenges, notably the constraints of time and budget. Successfully navigating these hurdles required a strategic budgetary shift, carefully balancing feasibility with the demands of the ever-changing business landscape. This approach ensured the organization's success in meeting its objectives, even in the face of intense market dynamics.

As the Chief Information Security Officer (CISO) for Future Security, my pivotal role involved a comprehensive restructuring of the Security Managed Services (MSS/MSSP). I led a dedicated team operating on a 24/7/365 shift basis.My strategic focus extended to fostering robust partnerships with technology manufacturers and, crucially, regaining the trust and credibility of key customers. These customers operated within diverse and complex IT environments across various industries, including government electricity and power distribution, government data processing, media and TV, and education. Beyond security and trust-building, I was instrumental in achieving the financial break-even point for our business and subsequently ensuring satisfactory profitability. This multifaceted approach not only strengthened our MSS offerings but also solidified Future Security's position as a trusted partner in safeguarding critical assets across diverse sectors.

As the Chief Information Security Officer (CISO) at Contax, I led a dynamic team managing services for customers spanning various segments, including Financial, Retail, Telecommunications, and the Public Sector. These customers had diverse levels of maturity and compliance in Information Security, making our role all the more challenging and critical.My leadership extended across a national team operating in 8 states in Brazil and a broader responsibility encompassing Latin America, particularly Argentina. One of our significant achievements was the establishment of a state-of-the-art Security Operations and Fraud Prevention Center, a pivotal asset in enhancing the organization's cybersecurity posture.Moreover, my role included implementing a robust normative-regulatory compliance process, ensuring that Contax remained in adherence to evolving industry standards and regulations. Additionally, we developed sophisticated Threat Intelligence research processes, with a focus on understanding the internal ecosystem. This proactive approach was instrumental in containing losses from fraud and mitigating customer fines, reinforcing Contax's commitment to excellence in information security and risk management.