• Partner with data owners and the Data team to identify and inventory critical data assets across the enterprise. • Implement automated and programmatic classification of sensitive data using tools such as Wiz, Microsoft Purview, Varonis and other data security solutions. • Develop and maintain data protection policies aligned with regulatory standards (e.g., HITRUST, HIPAA). • Apply and tune DLP policies across email, cloud, USB, printing, and endpoint channels. • Build dashboards, alerts, and metrics for real-time monitoring of data protection events. • Implement and manage data rights enforcement mechanisms to ensure appropriate access and usage of sensitive data. • Contribute to the deployment and tuning of DSPM tools such as Wiz, Zscaler, Varonis, Imperva and others to enhance visibility and control. • Collaborate with infrastructure teams to ensure backup and recovery strategies align with data protection objectives and support immutable backups. • Integrate DLP and DSPM tools with SIEM for incident response, ticketing, and compliance reporting. • Work closely with CAQH teams to align protection strategies with business operations. Provide training and documentation to business units on data protection best practices.

• Analizar los requerimientos del negocio para diseñar arquitecturas, patrones y soluciones que mitiguen riesgos en los proyectos de transformación • Construir matrices de controles personalizadas según el contexto tecnológico (Nube, Aplicación, APIs, Microservicios) • Verificar la correcta implementación de los controles en todas las capas del software mediante la ejecución de escaneos de línea base y la validación de evidencias técnicas • Realizar el seguimiento, priorización y recomendaciones técnicas para el cierre de vulnerabilidades identificadas durante el ciclo de desarrollo de aplicaciones • Actuar como referente frente a las células de transformación, detallando activos críticos, amenazas y riesgos asociados a la arquitectura • Coordinar la respuesta a requerimientos de auditorías internas/externas y evaluaciones de riesgo • Elaborar informes sobre el estado de seguridad de las iniciativas y comunicar desviaciones de manera oportuna a las partes interesadas

• Collaborate with the Corporate Cyber Security team to define and advance the access identity management and MFA products • Act as a senior technical advisor on IAM architecture, access patterns, and authentication/authorization strategies • Contribute to threat modeling, security reviews, and incident response support as it relates to IAM systems • Design, develop, and maintain full-stack applications and services that enable security capabilities • Configure, customize and maintain authentication services including SSO, MFA, federation, privileged access, cloud security (AWS) and IBM ISVG / Access Management components • Monitor, troubleshoot, and resolve IAM-related incidents and performance issues • Integrate services with enterprise applications, identity providers, and authentication services • Translate business requirements into secure, scalable, and maintainable solutions • Present technical solutions to both technical and non-technical stakeholders • Own and maintain GitLab CI/CD pipelines • Automate deployment and operational tasks using scripting (Python, Bash) • Mentor junior developers, participate in Code Reviews and support team-wide best practices

• Support multiple customer projects at various project stages • Design and develop security architectures for renewable energy power plants • Specify security requirements and support compliance with international/regional security standards and regulations (e.g., IEC 62443, NIS 2) • Perform threat and risk analyses and define countermeasures at system level • Advise technical departments on secure system integration • Support customer projects from concept through implementation • Evaluate and select security technologies and solutions