Jorge Lopez - CISO, Seed Security

Feedback from Jorge’s ex-colleagues

Let me see

Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app

Work Background

Digital@FEMSAChief Technology Security Officer

May. 2023 - Mar. 2024Monterrey, Nuevo León, Mexico · HybridLeader of Information Security and Cybersecurity Strategy at Digital@Femsa: As the information security and cybersecurity strategy leader at Digital@Femsa, I have spearheaded the implementation of robust security models across various business units. This initiative has involved meticulous control over tools and a continuous improvement approach to configurations, extending from perimeter controls to the overall integrity systems strategy and monitoring mechanisms. Notably, I have been instrumental in the development, control, and response efforts during inspections by Banxico and CNBV. Our focus has been ensuring seamless operations while diligently meeting the stringent security requirements for our continued and secure functioning. Key Goals Achieved: 1. **Multifaceted Project Support:** Successfully contributed to multiple projects aligned with Digital@Femsa's technology and business strategy. 2. **Security Service Construction:** Led the construction of various security services, reinforcing the organization's overall cybersecurity posture. 3. **SecurityTower Model Implementation:** Successfully implemented the SecurityTower Model, overseeing the operation of the information security and cybersecurity operation center and managing the response team effectively. 4. **Reference Model for Fintech Structures:** Our efforts have positioned Digital@Femsa as a reference model for numerous fintech structures in Latin America and Europe. 5. **Oxxo Security Model Approval:** Received approval from CNBV and Banxico for the Spin By Oxxo Security Model, a testament to our commitment to meeting and surpassing regulatory standards in the financial sector. These achievements underscore our dedication to establishing and maintaining cutting-edge cybersecurity practices, making Digital@Femsa a trailblazer in the industry. I look forward to continuing to contribute to our organization's success in information security and cybersecurity.

Digital@FEMSAChief Information Security Officer @ Spin by Oxxo

Jul. 2020 - May. 2023Monterrey, Nuevo León, MexicoDeveloped, implemented, and monitored a strategic, comprehensive enterprise information security and IT risk management program, working directly with the business units to facilitate risk assessment and risk management processes. Develop and enhance an information security management framework with the understanding and interaction with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services Provide leadership to the enterprise's information security organization and business stakeholders to raise awareness of risk management concerns. Assistance with the overall business technology planning, providing a current knowledge and future vision of technology and systems Goals: Design the master security plan Implementation of the needed technology to fulfill an intelligent and robust security infrastructure Training and security culture evangelist of the SPIN by the OXXO team Implementing the CSF (vigilance, safe, controlled) methodology within the business Unit follows the best practices in the financial services baseline model. Attention to regulatory compliance, financial audits, and internal group cyber security and infosec requirements to fulfill the annual program.

COP22Cybersecurity Expert

Sep. 2016 - Dec. 2016Marrakesh-Safi, MoroccoA distinguished member of the expert team overseeing cybersecurity for the United Nations Climate Change event, COP22. Goals: 1. **Optimal Security for Attendees:** Tasked with determining the optimal levels of security for both general attendees and specifically for political profiles participating in the event. The aim is to ensure a secure environment for all participants. 2. **Digital Perimeter Security:** Holding the responsibility for digital perimeter security, both in the lead-up to the event and during the exhibitions involving political profiles. This involves safeguarding digital boundaries to prevent any potential security threats and breaches.

BWSCybersecurity Director

Feb. 2016 - Jul. 2020Mexico City Metropolitan AreaFounder of the firm and Director of the Cybersecurity Division, responsible for orchestrating projects tailored to the security needs of diverse clients across their specific markets. Renowned as a speaker at cybersecurity forums across North America, Europe, Asia, and South America, I bring expertise to the security domain and play a pivotal role in developing new business ventures and expanding the organization's commercial channels. Beyond my role in cybersecurity, I serve as a Digital Forensics Investigator and computer expert for law enforcement agencies in Mexico and the United States. This dual responsibility positions me at the forefront of digital investigations, contributing to ensuring cybercrime mitigation and resolution. Key Goals: 1. **Opening International Commercial Channels:** Focused on expanding the firm's reach, I am dedicated to opening international commercial channels and establishing a global presence for our cybersecurity solutions. 2. **Cybersecurity Advisor for Government Agencies:** As a cybersecurity advisor, I aim to provide strategic guidance to various government agencies in Mexico and South America, assisting them in fortifying their digital defenses. 3. **Active Consulting for French Intelligence:** As an active consulting member, I aim to contribute my expertise to the French intelligence department, fostering collaboration and knowledge exchange in cybersecurity. 4. **Development of International Digital Businesses:** Dedicated to fostering the growth of digital businesses internationally, my focus is on creating a lasting presence and impact in the global digital landscape. 5. **Law Enforcement Computer Expertise:** As a law enforcement computer expert, I work hand-in-hand with legal authorities, utilizing digital forensics and computer expertise to aid investigations and ensure adherence to legal standards.

Risk Management GroupCyber Security Consultant

Apr. 2011 - Aug. 2016Mexico City Metropolitan AreaMember of the penetration testing and digital forensics team, responsible for conducting active tests tailored to the specific needs of diverse clients. Additionally, serves as a trainer for leading cybersecurity curricula in the market and acts as an active auditor, aligning with market standards and regulatory requirements in Mexico. Goals: 1. **Optimize Test Execution:** Aim to enhance the efficiency of test execution, ensuring valuable results that meet or exceed client expectations. 2. **Evolve Test Execution Levels:** Strive for continuous improvement in test execution, aligning it with evolving business needs to deliver heightened business value. 3. **Active Learning of Security:** Engage in ongoing learning initiatives, staying abreast of the latest security regulations, techniques, tools, and strategies to maintain a cutting-edge approach. 4. **Effective Project Management:** Focus on efficient project management to ensure the seamless execution of penetration testing and digital forensics initiatives, optimizing overall project outcomes.