• Support a large-scale Security Development Lifecycle (SDL) program that spans thousands of engineering teams building cloud services used globally across mission‑critical industries. • Conduct audits of technical security controls, validating secure development practices, and developing automation that improves security oversight. • Ensure engineering teams meet required SDL milestones, KPIs, and SLAs. • Develop automation, durable controls, and process improvements to support the security auditing function and the broader SDL program.

• Translate business and compliance requirements into practical security architecture designs • Develop, document, and maintain consistent secure architectural patterns • Implement threat-informed design principles, integrating zero trust architectures • Maintain alignment between security policies, enterprise architecture principles, and client expectations • Conduct comprehensive risk assessments and threat modeling • Provide actionable mitigation strategies informed by a risk-based approach • Act as a trusted advisor to clients • Collaborate cross-functionally with development, operations, and engineering teams • Deliver technical insights in presentations and workshops • Engage in audits, assessments, and reviews

• Work closely with Engineering, Product and DevOps teams to ensure security is embedded into products, platforms, and operational processes from early design stages through delivery and release cycles • Participate in product discovery, architecture discussions, sprint planning, change management, and release processes to ensure security requirements are addressed early and do not become delivery blockers • Collaborate with Compliance and Legal teams to align local regulatory requirements with product and engineering roadmaps • Implement and maintain controls required by CNBV, PCI DSS, and other applicable local regulatory obligations, ensuring continuous compliance • Implement central information security policies and develop country-specific procedures and controls in coordination with local compliance stakeholders • Integrate secure development practices into the SDLC, including architecture reviews, threat modeling, vulnerability management, and security checkpoints within delivery pipelines • Improve security monitoring capabilities and SOC coverage for the local IT environment, including configuring monitoring rules and defining incident escalation procedures • Lead incident response activities, coordinate investigations with engineering and product teams, conduct root cause analysis, and organize post-incident awareness sessions • Manage and operate local Data Loss Prevention (DLP) solutions and related processes • Develop, maintain, and test Disaster Recovery Plans (DRP), including organizing annual recovery exercises • Establish and operate vulnerability management processes, including regular scanning, prioritization of findings, and tracking remediation efforts • Define and deliver regular security reporting and metrics to local business leadership and the central CISO organization • Organize and coordinate annual assessments of the cybersecurity management system and support remediation planning

• Design and implement comprehensive BCP/DR programs aligned with industry frameworks (ISO 22301, NIST SP 800-34, ISO 27001) • Conduct Business Impact Analyses (BIA) to identify critical business functions, dependencies, and recovery priorities • Define and maintain Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for all critical systems and services • Develop and maintain disaster recovery playbooks and runbooks for various incident scenarios • Create and manage crisis communication frameworks for security incidents and business disruptions • Lead tabletop exercises and disaster recovery drills to validate recovery procedures • Design and implement backup and recovery solutions for AWS cloud infrastructure (primary focus) • Build automated backup workflows for databases, storage systems, applications, and configurations • Implement immutable backup strategies and offsite replication for ransomware resilience • Monitor backup operations, validate recovery procedures, and maintain backup integrity • Optimize backup windows, retention policies, and storage costs across cloud environments • Implement Infrastructure as Code (IaC) for DR environment provisioning and configuration management • Develop automated failover and failback procedures for critical services • Design and maintain hot/warm/cold standby environments based on business requirements • Conduct regular disaster recovery testing and document test results with improvement recommendations • Build monitoring and alerting systems for backup health, replication lag, and recovery readiness • Maintain detailed recovery documentation including network diagrams, dependency maps, and configuration details • Coordinate with application teams to ensure application-consistent backups and recovery procedures • Ensure BCP/DR programs meet regulatory requirements and customer commitments • Maintain comprehensive documentation of recovery procedures, test results, and capability assessments • Track and report on key resilience metrics including RTO/RPO achievement, test success rates, and recovery drills • Coordinate with internal audit and compliance teams during assessments • Participate in vendor risk assessments for third-party backup and recovery solutions