Leading the Developer Security Operations (DevSecOps) team for FelixPago- Deployed and management of a GKE based Kubernetes cluster to run gRPC and Python based microservices in Pods and Nodes across multiple zones. Using Terraform to maintain cluster states, and ansible for deploying applications.- Defined and put in place a Continuous Integration and Continuous Deployment pipelines (CI/CD) using GitHub, GitHub Actions, Google Cloud Build, Artifact registry along with a testing suite (PyTest) and vulnerability scanning.- Identified gaps in Incident Response process and put in place an Incident Response Plan that includes runbooks and automations leveraging PagerDuty.- Defined with Product and Egineering the different Service Level Indicators (SLI), Service Level Objectives (SLOs) and Service Level Agreements (SLAs) to which all services are measured by, leveraging New Relic for a lot of the telemetry.- Deployed a MDM solution based on Rippling and SentinelOne as Endpoint security. Hardened the offboarding/onboarding process for new employees.

- Led the strategic evolution of the Security Program Management Organization (PMO) for Dropbox products and services, leveraging my security technical acumen to eliminate ambiguity in goals, establish new directions, and meticulously track objectives and key results.- Managed and directed a high-performing team of Security Technical Program Managers and Program Managers, fostering collaboration across all organizational levels. Provided expert guidance, removed operational blockers, and delegated key initiatives for execution. Conducted performance reviews, led promotion committees, and facilitated calibration meetings. Additionally, played a pivotal role in conducting numerous interviews for various roles.- Championed and executed a Code Yellow initiative in preparation for a critical product launch. Successfully coordinated efforts across multiple organizational units to address security findings, engaged external providers for assessments, achieved SOC2 certification, defined CISO Security Requirements, and formulated post-launch roadmaps. The culmination of these efforts resulted in the successful launch of a new AI product with enhanced security guarantees.- Initiated a comprehensive overhaul of Dropbox's secrets management system, collaborating with external stakeholders on Request for Proposals (RFPs), orchestrating a thorough evaluation of different solutions, and navigating procurement and legal processes. Effectively onboarded a new Secrets Platform capable of handling thousands of cryptographic requests.- Conducted meticulous audits of hundreds of incidents (SEVs), identifying common root causes, estimating potential impact and severity, and analyzing viable solutions incorporated into our overarching Security Strategy.- Pioneered the inception of a new Identity Provider program, aimed at replacing and deprecating an internal identity management solution. Addressed scalability challenges and management complexities across multiple products.

Executing big scale technical security programs for Stripe, with expertise in big scale technical security mitigation rollouts covering thousands of endpoints, employees, interns, vendors and contractors:- Kubernetes, Orchestration, Container security. - Secure Infrastructure Operations & Debugging for SREs and Engineers. - Threat Detection, Insider Risk, Security Engineering.- Access Controls, Data Classification and Access at scale.- Threat modeling, Risk prioritization, OKR definition and tracking.- Milestone tracking, KPI management, leadership reporting.

Managing Insider Risk & Threats to Google's production security infrastructure, covering cryptographic systems, access controls, beyondcorp and other solutions to protect Google and Google Cloud's infrastructure.

I'm the lead Technical Program Manager in Google's Security and Privacy SRE organization overseeing the teams that provide infrastructure (i.e BeyondCorp, Zero Trust) that Googlers use to access resources anywhere, anytime at any scale. Insider Risk, User Data Protection: I designed and lead the deployment of security controls that prevent user data across Google from being exfiltrated. From YouTube, Photos, Geo (Maps), Search, Ads, Chrome, Android to Cloud and all other Product Areas in Google that store and broker access to User Data I coordinate, measure and track the deployment of security controls on all front-ends and back-ends.

I oversaw the technical and data security programs within customer service, taking on challenges to decrease risk in ways that also provided a delightful experience for our thousands of associates and million customers. I also analyzed threats and designed security software to address them, whether that was securing endpoints for all Amazon Customer Service Representatives, Identity management, providing real time actionable security intelligence, integrating technologies to provide a holistic view of risks and running an incident response program. In short, I designed technical solutions to complex security problems driving those using technology from inception to launch. Encryption, Threat Modeling, Trusted Platform Modules, Blockchains, Chrome, Chromium OS, Social Engineering, Identity and Access Management, PKI, Incident Response...

Led a team of engineers who integrated and automated the vulnerability scanner Nexpose (now InsightVM) with other IT/Security Solutions:Vulnerability Management with* Ticketing: ServiceNow, JIRA, Remedy. * Firewalls/IDS: SourceFire, Palo Alto (PAN). * Credential Management: Thycotic, CyberArk, Lieberman. * SIEM: ArcSight, Splunk.* Pen Testing: Metasploit.And many more...Java, Ruby, Splunk, SPRING, Eclipse, mercurial, agile/scrum, RESTful, APIs, XML, Javascript.

Building the next super powered version of award winning vulnerability scanner: Nexpose.Java, Spring, Eclipse, mercurial, agile/scrum, RESTful, APIs, XML, javascript, VMware.

Solve security issues. Afraid you'll get hacked? need to be compliant with PCI-DSS/HIPAA/SOX? Architecture of security measures, deployment of continuous (automated!) vulnerability assessment with Nexpose, chaining automated exploits against a broad arrange of systems and networks. Validating risk present on something as small as a device or as big as a whole ecosystem of networks.

Led the development of new Chapters around the world including other NGOs in Spain, Argentina, the Netherlands, Canada, and Taiwan.I coordinated volunteers around the world to promote Wikimedia Foundation projects including Wikipedia.Performed research on social trends in the world that affect WMF development and health through Chapters. Publishing a paper in influence of social media in the electoral and democratic process of Venezuela in 2012 at Wikimania D.C.

• Responsible for managing all IT Security related projects, including penetration tests, wireless networking auditing and other IT Security procedures • EMV CHiP&PIN Credit Card Security Implementation and deployment to over 4 million of Credit Cards.• Cryptography, key issuance and management, using Hardware Security Modules (Atalla)• Localization of security tools and systems, GNUPG, Active Directory, Webscarab, Nessus, et al.• Code auditing and black box testing of web applications.

Part time professor of computer science subjects such as:* Databases* Open Source* Distributed operating systems* Management of IT projects.* Info Security.

Solaris 10 / Linux administratorInformation Security SpecialistPCI-DSS Compliance

J2EE Programmer