• Develop and maintain automated systems for large-scale malware processing, unpacking, and indicator extraction. • Identify and solve problems and areas of improvement in analysis workflows, processes, and automated systems. • Plan and execute development of frontend and backend systems in the context of cyber security, cyber threat intelligence, and large-scale malware processing while balancing pragmatic short-term solutions with long-term strategies and vision.

• Support a large-scale Security Development Lifecycle (SDL) program that spans thousands of engineering teams building cloud services used globally across mission‑critical industries. • Conduct audits of technical security controls, validating secure development practices, and developing automation that improves security oversight. • Ensure engineering teams meet required SDL milestones, KPIs, and SLAs. • Develop automation, durable controls, and process improvements to support the security auditing function and the broader SDL program.

• Translate business and compliance requirements into practical security architecture designs • Develop, document, and maintain consistent secure architectural patterns • Implement threat-informed design principles, integrating zero trust architectures • Maintain alignment between security policies, enterprise architecture principles, and client expectations • Conduct comprehensive risk assessments and threat modeling • Provide actionable mitigation strategies informed by a risk-based approach • Act as a trusted advisor to clients • Collaborate cross-functionally with development, operations, and engineering teams • Deliver technical insights in presentations and workshops • Engage in audits, assessments, and reviews

• Work closely with Engineering, Product and DevOps teams to ensure security is embedded into products, platforms, and operational processes from early design stages through delivery and release cycles • Participate in product discovery, architecture discussions, sprint planning, change management, and release processes to ensure security requirements are addressed early and do not become delivery blockers • Collaborate with Compliance and Legal teams to align local regulatory requirements with product and engineering roadmaps • Implement and maintain controls required by CNBV, PCI DSS, and other applicable local regulatory obligations, ensuring continuous compliance • Implement central information security policies and develop country-specific procedures and controls in coordination with local compliance stakeholders • Integrate secure development practices into the SDLC, including architecture reviews, threat modeling, vulnerability management, and security checkpoints within delivery pipelines • Improve security monitoring capabilities and SOC coverage for the local IT environment, including configuring monitoring rules and defining incident escalation procedures • Lead incident response activities, coordinate investigations with engineering and product teams, conduct root cause analysis, and organize post-incident awareness sessions • Manage and operate local Data Loss Prevention (DLP) solutions and related processes • Develop, maintain, and test Disaster Recovery Plans (DRP), including organizing annual recovery exercises • Establish and operate vulnerability management processes, including regular scanning, prioritization of findings, and tracking remediation efforts • Define and deliver regular security reporting and metrics to local business leadership and the central CISO organization • Organize and coordinate annual assessments of the cybersecurity management system and support remediation planning