• SOC Management & Security Engineering Projects - Manage ongoing projects, ensuring successful delivery and meeting project goals. - Act as a liaison between Accenture clients and internal security engineering and SOC teams, ensuring clear communication and project progress updates. - Collaborate with Latam Security Engineering team on ongoing and new projects. - Provide technical expertise and guidance for security implementations.

• Leading cybersecurity innovation initiatives powered by AI technology, automation, and cutting-edge technologies to proactively identify and detect cyber threats, streamline security operations and response times, and enhance overall threat intelligence and cyber resilience.• Incident Response Team (Tier 3) Development - Lead the development and implementation of an Incident Response (Tier 3) team. - Define roles and responsibilities for the Tier 3 Incident Response team. - Establish processes and procedures for handling critical security incidents.

• Overseeing global security operations team, ensuring 24x7 delivery of security services.• Managing incident response within SLA guidelines, monitored by Accenture's global SOC team.• Leading event management for various security services, including SIEM, Vulnerability Management, Cloud Security, and Endpoint Protection.• Planning, designing, implementing, and tuning security tools within the managed services suite.Expertise:• Proficient in SIEM Technologies, Endpoint Protection platforms, and Vulnerability Management methodologies.

- Part of the engineering team that builds dLocal's Security Operations Center.- Maintenance and integration of EDR and SIEM tools (Crowdstrike, Wazuh, and Sumo Logic) - Design and implementation of SOC end-to-end use cases.- Vulnerability Management Service Automation (Qualys VMDR 2.0).- Part of the level 3 cyber security operations and incident response team.- Advanced UBA reports development with Sumo Logic and scheduled vulnerabilities reports based on Qualys API.- Development of scheduled AWS Lambda functions to automate:• Qualys vulnerability reports.• Athena table search executions and results exporting.• BlueLiv threat intelligence weekly findings.- Work closely with other teams to provide mitigation recommendations to reduce the overall security risk within the organization.- Implementation of the Sumo Logic Collectors and migration of alerts from Wazuh, as well as custom File Integrity Monitoring (FIM) in support of improving the security posture of dLocal.Responsibilities included:- Evaluating Sumo Logic's capabilities and designing a strategy for its implementation, including custom FIM rules and policies to meet PCI DSS requirements- Coordinating with the DevOps team to integrate the collectors into the Production environment- Develop custom alerts and dashboards to monitor security events- Creating custom FIM rules to monitor file integrity on critical systems and ensure compliance with PCI DSS requirements- Migration of existing Wazuh agents to Sumo Logic Collectors ensuring their continued effectiveness and observability features.

- Monitor, triage, investigate and respond to security threats through detailed security event analysis, validation, and correlation.- Diagnose impact, damage, and mitigation techniques needed to restore business operations and minimize reoccurrence.- Perform security and threat response investigations in cases involving log analysis and forensics.- Develop monitoring use cases and support in building effective threat detection and response programs.- Review cyber intelligence and threat data from internal and external sources and support in developing new capabilities to analyze and respond to security events and incidents.- Develop tools, techniques, and operational processes to continuously monitor environments.- Actively participate in daily triage of SIEM events.- Tuning systems to reduce false positive rates to improve information value.

- Splunk Apps development and customized data integrations using Python, Webhooks, APIs and shell-scripting- SIEM Alerting use cases for prioritization, threat investigation, and orchestration of automated response to incidents using Splunk scripted inputs.

- Monitoring security incidents and unauthorized disclosures of confidential information- Continuous improvement of the monitoring capabilities

Automation Engineer / SOC Lead tasks- Automate repeated tasks in SOC team- Integrate dis-separate systems to make them work together- Develop automations and data integration scripts- Installing, updating and upgrading SIEM solution- On-boarding log sources and working on log source issues- Create and fine-tune content in SIEM - Correlation Rules, Dashboards, Reports, Knowledge Objects- Interact with SIEM vendor TAC to fix any issues- Install, Manage and build content for SIEM- Assist in analysis that requires involvement of multiple teams- Evaluate new solutions for SOC team

Responsabilities:- Identify, design, and implement internal process improvements: automating manual processes, optimizing data delivery, conducting data quality check, etc.- Analyze large dataset to extract actionable insights for internal and external audiences and leverage data visualization best practices to drive engagement- Collaborate with Product Development and Technology to identify and establish metrics that drive current and future results- Play the role of data owner; Discover, create and maintain data and attributes from Equifax’s rich data assets- Participate in the development of strategies, standards and best practices in the areas of data access and data integration within Equifax's new big data analytical platforms- Analyze internal and external data assets in consultation with internal stakeholders with moderate complexity and which have a moderate impact on customers business.- Collaborate extensively with Data Analytics, and Technology leads to ensure the seamless consumption of insights generated from Equifax's various data sources- Conduct independent validation projects with no or limited guidance.Main Project: Telco's customer data integration and modeling for advanced analytics & data visualization applications, including designing data models that best support business reporting and craft appropriate business data requirements. Our client needed to perform an ETL from different raw datasources to perform data aggregation for business intelligence. As I deal with different data platforms, I've set up different tools for each stage by separating the queries and scripts according to the process type.Toolset: Apache Hive / Impala, Apache Spark and Jupyter Hub within Cloudera Hadoop Environment / Unix Shell Scripting, SPLUNK Enterprise.

Improving real-time analytics system to predict Anomalies through different Cloud resources and products. This system leverages technologies like Azure Databricks and Microsoft Cognitive Services.Responsible for providing subject matter expertise in relation to cloud technologies, engineering of new solutions that enhance the existing offerings and building of new automation around IaaS, PaaS, and Network-As-A-Service in support of our clients.Working within the Smart Service Management team, assisting in the engineering and integration of existing and leading-edge technologies, collaborating across the organization with multiple internal and sometimes external teams.Applying Big Data principles to IT operational data, extracting, indexing and analyzing information across multiple sources.

Main Responsabilities:-Create and configure management reports and dashboards.-Develop, evaluate and document specific metrics for management purpose.-Analyze security based events, risks and reporting instances.-Manage and maintaine use cases into correlation systems.-Design, develop and implement system engineering plans and technical support services.-Develop Splunk infrastructure and related solutions as per automation toolsets.-Develop Splunk custom applications based on business requirements using Python and TFS.-Provide technical services to projects, user requests and data queries.-Implement forwarder configuration, search heads and indexing within Splunk clustered environments.-Support data source configurations and change management processes.-Analyze and monitor incident management and incident resolution problems.-Resolve configuration based issues in coordination with infrastructure support teams.-Maintain and manage assigned systems, Splunk related issues and administrators.

Service support & Delivery. Security Information and Event Management consultant.Planning, implementing and deploying BIG DATA solutions including integration of log sources (supported and non-supported):- Custom content (use cases) - Creation and custom parser development with SIEM (Splunk / RSA Security Analytics / RSA enVision)- Capturing requirements for security use cases under various categories Experienced with deployment and operation of Splunk and RSA Security Analytics.Experienced integrating Log sources with Splunk, RSA Security Analytics and RSA enVision.SPLUNK ProjectsI've worked integrating and deploying Splunk versions 6.3, 6.4 and 6.5 on several local Financial companies with MS SQL Server DB for data enrichment and DB Inputs, Database integration through Splunk DB connect 2.0 app, Access control management (LDAP) (providing role access into Splunk), Setting up the scheduled jobs for real-time alerts and email reports.-Installing and configuring Splunk AddOns such as DB connect 2.0, OPSEC Lea for Checkpoint based on the business requirements-Performing the log pattern analysis and applying field based extractions (regex) to ease the development work and filtering unwanted events in Linux, AIX, Windows and File monitoring among others.-Designing custom Splunk dashboards using advanced XML-Setting up custom configurations at various types of endpoints (A Search Head, up to 6 Indexers and 2 Heavy Forwarders and several Splunk Universal Forwarders)-Implementation and integration of several appliances and devices for Splunk IT Service Intelligence, which is a monitoring solution that offers an innovative, machine-data driven approach for analytics driven IT.

Offering quantitative and qualitative analytical abilities and proven track record aligning technical solutions with business needs. Adept at cultivating relationships with key stakeholders, executives, and business users across all business areas to determine high-level requirements; accurately distill information for technical teams. Experienced in full life-cycle system development processes; business process documentation and analysis; and delivering enterprise solutions to support the business. Demonstrated success working with federal agencies, private corporations, and contractors/subcontractors to support system integration, development, and implementation projects to capitalize on cutting-edge technologies. Consistently maintains the highest security and confidentiality standards.Operations and Management Strengths:• Business Process Modeling • Effective Change Management • System Development Life Cycle• Risk Assessment / Mitigation• Stakeholder Communication• Quality Assurance /Testing / Bug Tracking / Resolution• Web-based Applications / Intranets / Extranets• Technical / Project Documentation• Operational and Functional Alignment • Data Quality / Standardization

I've gave consulting and knowledge for all L3 short and long-term strategic actions by:- Worked with cross-functional teams to develop and evaluate commercial and strategic options and recommendations- Well documented User Stories, data analyses and related research.- Advancing long-term strategic planning by coordinating relevant future scenario data and assumptions from internal and external sources to support modeling efforts- Compiling and distilling financial analysis, market and competitive intelligence, quantitative analysis and technical understanding to buttress strategy- Preparing whitepapers and presentations for functional leaders and key executives - Leading work streams and initiatives by developing work plans and establishing cross-functional teams and coordinating meetings to discuss inputs and results.

Design and code superior technical solutionsCreate efficient and logical databases for clientsCreate and execute project work plans, revising as necessary to meet changing needs and requirementsCommunicate and enforce best practice coding standardsConsistently deliver high-quality services to clients on scheduleCommunicate complex information effectively to team and clientsAbility to scale the solution to the client’s goals and budget

Coordination and Analysis with Software Factory team for Business Test Cases preparation for upcoming work-flow releases. Design and Evaluation of Functional and Technical Solutions for Trade Finance (Universal Client).Santander Group deployed a new suit of software called BankTrade, TradeStats and Client Trade.

ACE Insurance Project: As a member and Leader of the ACE Insurance team, I’m responsible for the manteinance, testing and deploying of ACE Marine software and ACE SME Portal.

Tenaris Team Coordinator in charge of technician analysis and management, including architecture, task and resources administration, interaction and coordination with other support and provider groups, definition of development, testing and deployment strategy. Involved Technologies: Visual Basic 6, ASP 3.0, C#, ASP.Net, Oracle 9, SQL 2000/2005, MS Project, UML

Technical Analyst with participation in the entire life cycle, Design, analysis, development and deployment in many projects of the Organization.Involved Technologies: Visual Basic 6, ASP 3.0 and Oracle 8

In charge with Analyst, development and deployment of the Prudential Data Privacy System (DPS).Technology Involved: .Net , C#, MS SQL Server 2000, AJAX.

In charge of “NEXTEL Location” Project, development and manteinancE.Involved Technologies: Visual Basic 6, ASP 3.0, SQL Server 2000 and Oracle 8.

Software factory.