Sergio Torróntegui
Chief Information Security Officer | Cyber Security Strategist | Transformation Leader
Mexico City
Summary
Sergio is a passionate security and risk management executive with a track record of 20 years of tailoring and delivery of Enterprise Security Programs.
Dedicated to help Global organizations to understand and manage risk within complex technical and business environments in tightly regulated industries such as Financial Services, Manufacturing, Critical Infrastructure Engineering, and Telecom.
Matured and flexed leadership style to build high performing teams in three continents.
Recognized Subject Matter Expert in the fields of Cyber Security Strategy, Governance Risk and Compliance (GRC), Cyber Security Architecture, Identity & Access Management, Data Security and Application Security.
Overview
10
10
years of professional experience
3
3
Languages
8
8
years of post-secondary education
2
2
Certificates
Work History
Head, Cybersecurity Arch and Data
BANORTE
Mexico City
04.2019 - 04.2023
- Champion cyber security services operation.
- Developed cyber security technical strategy for 22 capabilities, +100 technologies.
- Spearhead cyber security transformation programme and executed transformation of critical capabilities such as identity & access management, vulnerability management, application security.
- Lead operations for identity and access management and data security.
- Pioneered consolidated data model to service engineering, software development and internal control teams.
- Mentor 6 top-talents
- Established cyber security architecture practice to provide solution design and engineering services for 5 business units, 900 business applications, 105 cyber security technologies and +500 projects p/year.
Head of Governance, Risk & Compliance
BARCLAYS Africa
Capetown
08.2017 - 12.2018
- Transformed Operational Risk Management practice by converging 5 security key risks. Standardized terms of reference, content, attendees and reporting. In one year reduced 16x time and materials to report.
- Pioneered first-ever Enterprise Security Risk report to Board and Risk Committee. It conveyed convergence of physical security, fraud, technology, information and cybersecurity risks.
- Negotiated and governed enterprise-wide "road to green" plans to step-down material control Issues tracked by Board, Exec and Risk Committees.
- Spearheaded transformation of engineering risk's operation model.
- Established practice of assurance services: vulnerability management, consulting, application security.
- Executed "road to green" plans for data security and identity and access management.
Head of Cybersecurity Strategy and Governance
SIEMENS AG
Munich
08.2014 - 07.2017
- Spearheaded development of global cyber security strategy to adopt risk-based approach.
- Lead strategy and governance workstream of information security transformation programme.
- Negotiated and rolled-out governance and operational models for Information Security Organization with main stakeholders (+200 FTEs, 10 business divisions, 4 industry sectors, operations in 192 countries).
- Rationalized cyber security policy framework, standardized assurance, compliance and risk management practice. Reduced 6x number of controls (from ~1200 to 180).
- Established global practice for identification and protection of critical assets and rolled it out on global scale (North America, Latin America, Europe, Middle East, Asia, Africa and South Pacific)
Business Information Security Officer
Unilever
Mexico City
05.2023 - Current
- Designed and rolled-out a global customer-centric, risk-led, threat informed BISO Operational Model.
- Partnered with HR to develop a talent pipeline to built-up a cyber security hub in Mexico City to support "follow the sun" cyber operations.
- Led the deployment and operationalization of technical and people cyber capabilities to enhance the security posture of 48 factories in the Americas reducing cyber risk for 5 business groups.
- Championed the transformation of cyber security into a service orientated organization.
- Transformed the global Cyber Secure by Design practice to enable agility and cyber resilience of business innovation funnels.
- Spearheaded the design of Table-top Exercise (TTX) practice and delivery to Business, Tech Operations and Factory Operations leadership teams.
Education
Digital Executive Program - Digital Transformation
ISDI
Virtual 05.2022 - Current
Top Management Program - Business Management
IPADE Business School
Mexico City 09.2020 - 07.2021
Bachelor of Science - Computer Science
ITESM
Monterrey 08.1998 - 05.2003
Certification
SABSA Chartered Architect
Timeline
Business Information Security Officer
Unilever
05.2023 - Current
Digital Executive Program - Digital Transformation
ISDI
05.2022 - Current
SABSA Chartered Architect
08-2021
Top Management Program - Business Management
IPADE Business School
09.2020 - 07.2021
Head, Cybersecurity Arch and Data
BANORTE
04.2019 - 04.2023
Head of Governance, Risk & Compliance
BARCLAYS Africa
08.2017 - 12.2018
Head of Cybersecurity Strategy and Governance
SIEMENS AG
08.2014 - 07.2017
ISO 27001 LA
04-2012
Bachelor of Science - Computer Science
ITESM
08.1998 - 05.2003
Skills
- Curious about how things work. Ability to analyze the inner structure of the subject at hand and the bigger structures it forms part of.
- Extreme ownership of problems and the solutions to solve them.
- Change agent, constantly challenge status-quo and envision transformation journeys.
- Sensitive of complex organizational dynamics and situations to manage and influence key stakeholders
- Ability to tailor verbal and written communication for executive boards, management committees, and technical teams.
- Trusting and empowering leader with ability to attract senior talent and develop high performing teams.
- Global citizen, sensitive to nuances of language and culture in working with international teams.
Similar Profiles
MONICA ALEJANDRA SANCHEZ LOPEZMONICA ALEJANDRA SANCHEZ LOPEZ
Ejecutivo de Atención al Cliente at BANORTEEjecutivo de Atención al Cliente at BANORTE
ILEANA RUIZ ENCINASILEANA RUIZ ENCINAS
Executive in Business Development at BanorteExecutive in Business Development at Banorte
Miguel Angel Martinez SienraMiguel Angel Martinez Sienra
Director General Adjunto at Banorte (Grupo Financiero Banorte)Director General Adjunto at Banorte (Grupo Financiero Banorte)