Strategic and operational experience in Security Information Systems and Cybersecurity, with a background of over 24 years to date.
Since completing his degree, all work has been directed towards the scope of information security, encompassing various strategic & operational areas: DevSecOps; Creation of PKI structures; SGSI; Governance and Risk Compliance; Vulnerability Analysis/Pentesting; Incident Response; Threat Intel and Hunting; Malware and Forensic and COMPUSEC and Engineering.

His professional experience includes projects in the following areas:

• ISO27001/ISMS & Security Consultancy: Finantial Institucions (Portugal, Cape Verde and Angola)
• ISO27001/ISMS, ISO27005 and ISO22301: Government institutions (Portugal, Cape Verde and Angola)
• ISO 27037 / Handling of Digital Evidences: Finantial and Government Institucions (Portugal, Cape Verde and Angola)
• Governance and Risk Compliance: Finantial and insurance Institutions (Portugal)
  
• Pentest and DevSecOps: Finantial and insurance Institutions (Portugal, Cape Verde and Angola)
• Cyber Threat Intelligence, Forensic and Malware Analysis: EUSPA (European Union Agency for the Space Programme) (France)
• Consultancy & CIS Security: NCIA/NATO (Portugal)
  
• ISO 27035 / Security Incident Management: Health, Finantial Institutions (Portugal, Cape verde and Angola)
• NIST SP 800-82 / Industrial Control Systems Security: Industry (Defense-in-Depth architecture alignment) (Portugal)
• Management of operations, projects, teams and activities/tasks in CyberOps context. 
  

Education and Professional Certifications

• Graduated in Telecommunications and Network Engineering
• ISO27001, Lead Implementer
• Cisco Certified Network Associate Routing & Switching
• Cyber Defence NATO CIS Security Officer, INFOSEC
• EC-Council, CHFI (Computer Hacking Forensic Investigator)
  
• EC-Council, CEH (Computer Ethical Hacking)
  
• NATO - Network Vulnerability Assessment & Risk Mitigation