Cyber Careers #15 - CISO

Now presenting Cyber Careers Number 15 as we continue our series exploring a variety of Cyber positions. Today's post takes us to Mexico and the FinTech (Financial/Technology). The idea with this project is to give you a broad sampling of cybersecurity options. If you're new to the cyber community it might help you decide which direction you'd like to go in your career. If you're already working in security you might want to align your path with another's, or decide you want to move towards a different path based on what you see here. The whole point of this project is to provide information for you to use the way it works best for you.

Name? Orlando Medina

Where are you located? San Pedro Garza García, Nuevo León, México

JOB

Who do you work for? A holding group focused in Fintech

Your job title? CISO - Chief Information Security Officer

How many years have you worked in cybersecurity? For about 10 years

What do you do in your job? Security strategy, planning, internal security assessments, regulatory and compliance with government authorities regarding Mexican fintech and banking in security.

On a daily basis I attend meetings, mostly with tech, finance, legal, product and businesses chiefs of their areas to help them create and develop new projects with a security perspective, Usually product/business present a new solution/product in a meeting and I assist with the security aspect, so that we, as a team, can achieve our company’s goals.

What do you like most about your job? Working with top talented security consultants, listening and sharing war stories about attacks, breaches. I think if cybercrime it organized, we as community should be organized too.

Least? Dealing with non-cooperative organizations and agencies that do not share any kind of information regarding their security strategy, best practices, etc. 

What work did you do prior to this position? I was CTO and Technical Leader in a payment processing company.

What do you see as your next step? I would like to make some time for studying for a masters degree in cybersecurity, I hope I can do it in 2020.

Salary range for your position? $25-35K USD

EDUCATION & GROWTH

Degree or no degree? Degree in Computer Science

Certifications held? Working on Risk, Compliance and Security certifications

What do you do to stay up-to-date or grow in cyber? Daily reading, trying to go to all the related events near me

Favorite cyber news source and/or podcast? Several in Spotify: Cybersecurity 101 PodCast, NakedSecurity from Sophos, KrebsOnSecurity, HackerCombat, The Cyber Security Hub, CISOBeat, HackerNews.

ANYTHING ELSE/OTHER COMMENTS

Best regards from México