Skip navigation

João Rodolfo Vieira da Silva

Angestellt, Cyber Security Architect, Sogeti
Abschluss: General English, CEC – Cork English College
Dublin, Ireland

Skills

Cybersecurity
Information Security
IT Architecture
IT Security Architecture
Encryption
PAM
Data Privacy
SAML
OAuth
Risk Analysis
MDM
vulnerability
vulnerability management
Risk Committee
Audit Committee
strategies
policies
controls
incident response
SOC
Security Operation Center
Disaster Recovery
Disaster management
security standards
IT Baseline Protection
endpoint protection
container orchestration
API
GDPR
LGPD
Security IoT Connected Car
CISCO JASPER
SOX
PCI-DSS
PCI
TOP20 SANS
BCP
Antispam
SSL Certificates
PKI
HSM
SIEM
IDM
Identity & Access Management
NIST
IPS
HIPS
Trend Deep security
SSL/TLS inspection
IT infrastructure projects
IT-Security
IT Project Management
gap analysis
Firewall
Fraud Investigations
Risk Assessments
vulnerability assessments
linux
Windows
Mac OS
Mac OS X
DNS
TCP / IP protocol
Network Protocol
MFA
VPN
Zero-Trust
Key storage
NG Firewalls
Content Inspection
layer encryption
ISO27001
FCA
AWS
AZURE
Cloud
Cloud Security Alliance
CSA
Technical Solution
CBCP
OWASP
CompTIA Security+
Security Plus
Portuguese Language
English Language

Timeline

Professional experience for João Rodolfo Vieira da Silva

  • Current 5 years, since May 2020

    Cyber Security Architect

    Sogeti

  • 1 year and 3 months, Mar 2019 - May 2020

    Cyber/Info Security Independent Consultant

    Security Independent Consultant

    Designed security architecture and solutions (encryption, connectivity, DB, CLOUD, data transfer, APIs, AAA, Key Manager, HSM, PAM, privacy, logs, SAML, OAuth) Provided risk and threat modeling as a focus on information security (processes, vulnerability, and IT risk) Developed information security strategies and cyber incident response planning Defined security standards (baseline) for operating systems, endpoint protection, container orchestration, public and private APIs, data privacy controls

  • 1 year and 1 month, Mar 2018 - Mar 2019

    Cyber / Security Information Specialist (senior consultant)

    Telefonica

    Designed information security architecture in projects and solutions (encryption, connectivity, DB, CLOUD, data transfer, APIs, A.A.A., PAM, MDM, privacy, logs, RPA, SAML, OAuth). Provided risk analysis and threat modelling as a focus on information security (processes, vulnerability management, and IT risk). Supported IT and SOC teams in Information security Incident Response. Defined security standards (baseline), data privacy controls to attend GDPR.

  • 1 year and 9 months, Jul 2016 - Mar 2018

    Cyber / Security Information Specialist (senior consultant)

    America Movil

    Attended, as required, Board or Audit and Risk Committee Cyber Incident Response teams. Designed info sec architecture or solutions (encryption, connectivity, DB, CLOUD, data transfer, APIs, authentication, privacy, logs, SMSCUG, PGW, CDRs, CISCO JASPER). Led in major IoT and Connect Car projects of Latin América. Designed, tested, and reported security controls in IT and LTE networks. Project with international cooperation between Claro operations in Latin America and client from the US.

  • 4 years and 4 months, Apr 2012 - Jul 2016

    Senior Information Security Analyst

    Abril Comunicações S/A (Editora Abril)

    Managed security services of MSS SOC Symantec, Sonda IT; DCX/HPE Data Center; AWS; Azure. Provided gap analysis and remediation strategy development for IT security (TOP20 SANS/CIS), PCI-DSS and BCP Standards. Managment tools: Endpoint (SEP Symantec), Antispam (Brightmail/SMG Symantec) and SSL Certificates, PKI, HSM, SIEM (Symantec SSIM), VMware MDM, Oracle IDM Solution, Trend Deep security, Approved, Audited, and reviewed firewall rules. Vulnerability Management (CCSVM,; Rapid7; Qualys, Truskeeper).

  • 2 years and 1 month, Mar 2010 - Mar 2012

    Information Security Analyst

    FIS Global

    PCI-DSS, design, and deploy security solution that met credit card industry standard. Coordinated Disaster Recovery Plan and Tests Plans of Intel/X86, Sun Solaris, and mainframe platforms used in credit cards processor for Visa Vale/Alelo e Bradesco Bank process. Provided fraud investigation and support Incident Response teams. Developed and maintained KPI with focus on IT security. Provided gap analysis, developed and implemented strategic of security to improvement BCP process: risk analysis, BIA, DRP

  • 1 year and 1 month, Mar 2009 - Mar 2010

    Information Security Consulting

    Conviso Application Security

    Provided vulnerability assessments at applications web (application security test) and infrastructure (penetration test). Developed information security baselines to use in DB, application server, web server, Linux, and windows. Developed and deployed firewall and VPN solutions. PCI-DSS: Deploy of SIEM (AlienVault OSSIM) and policies, controls, and cyber incident response planning.

  • 1 year and 6 months, Oct 2007 - Mar 2009

    Information Security and Business Continuity Consulting

    DARYUS

    Deployed overall Business Continuity program. Deployed and Developed BIA (business impact analysis), Crisis Management Plan, Communication Plan, Test and exercises Plan, Business Continuity Policy, and Audit program of Plans. Gap analysis and remediation strategy development for Business Continuity and Disaster Recovery using ISO22301, ISO27001. COBIT framework and best practices: ITIL, DRII, BCI. Process mapping and modelling.

  • 11 months, Dec 2006 - Oct 2007

    System and Network Administration

    Plugweb

    Administered system, linux, windows server, networking and Telecom systems. Deployed and Managed Control panel solutions (Plesk Solution - Parallels group). Developed information security baselines to use in DB, application server, web server, linux, and windows.

  • 4 years, Feb 2003 - Jan 2007

    3º Sergeant of Communication Army

    Brazilian Army

    Administered system, linux, windows server, networking and telecom systems Deployed and Managed Open Source LDAP, PROXY, Web Server, MySQL, Postgres, Backup, DNS, LTSP (Linux Terminal Service) Technical leadership in Open Source project, migrated from Windows platform to Linux Debian 3.2 (sarge) Stage in the communication solution in contingency C2 "combat" Basic stage of survival in the jungle Developed the Physical Risk Analysis Update process Managed security and guard the battalion and facilities

Educational background for João Rodolfo Vieira da Silva

  • Current 6 years and 2 months, since Mar 2019

    General English

    CEC – Cork English College

    General English course.

  • 1 year and 5 months, Mar 2019 - Jul 2020

    CYBER SECURITY (Offensive and Defensive security)

    University Impacta Tecnologia

    Post graduation in CYBER SECURITY (Offensive and Defensive security)

  • 2 years and 5 months, Mar 2013 - Jul 2015

    Network Systems Administration

    University Impacta Tecnologia

    Bachelor degree in Network Systems Administration Final project: Automated Malware Analysis using Cuckoo Sandbox

Languages

  • English

    Fluent

  • Portuguese

    First language

XING – The jobs network

  • Over 1 million jobs

    Find just the right job for you on XING.

  • Job offers just for you

    Get found by employers and over 20,000 recruiters.

  • 22 million members

    Connect with new people and gather inspiration to boost your working life.

  • Free membership

    Basic membership is free, but the opportunities are priceless.

Browse over 21 million XING members