Information Security Professional

Cybersecurity management leader; actively challenging established practices with proven and practical alternatives. Over 15 years experience in management of information security, I am the lead author of the Information Security Management Standard O-ISM3, published by The Open Group in 2011 (updated version to be published in 2017). My unique skills are:

  • Making information security understandable for everyone, including the business stakeholders.
  • Translating business needs into security requirements.
  • Integration of information security with other IT practices (infrastructure, software development, outsourced services)
  • Designing and leveraging Information security metrics.

I have been long involved in the development of my profession: former President of the Spanish chapter of the Information Security Systems Association; former President of the First Information Security Testing Conferences. Member of the Security Forum Steering Committee of The Open Group; ISMS Forum Member, ISACA member.

My articles have been published in ISACA's Control, the ISSA Journal, SC Magazine Online, Pentest Magazine, ENISA Quarterly, Revista SIC, Red/Seguridad.