Julian David Molano Grautoff

Julian David Molano Grautoff

About

Detail

Security Engineering Leader & CISO
Bogotá, D.C., Colombia
Contact Julian regarding: 
work
Full-time jobs
Starting at USD4k/month
Flexible work
Starting at USD110/hour
groups
Networking

Timeline

work
Job
school
Education

Résumé

Jobs verified_user 0% verified
  • B
    CISO
    BATUTA
    Sep 2022 - Current (3 years 10 months)
    As Chief Information Security Officer at Batuta, I am responsible for defining and executing the cybersecurity strategy for our security posture and risk management platform, which serves financial and enterprise clients across Latin America. My role involves leading security architecture, governance, and compliance programs to ensure continuous visibility, control, and risk reduction across endpoints, cloud, and infrastructure environments. Main responsibilities include designing and operating the Batuta security posture and compliance framework, leading vulnerability, exposure, and patch management programs, and defining cyber risk metrics along with executive-level reporting. I align security controls with frameworks such as ISO 27001,
  • DIRECTV Latin America
    Red team, Fraud & Cyber threat intelligence Lead
    DIRECTV Latin America
    Apr 2020 - Sep 2022 (2 years 6 months)
    - As the Red Team, Fraud & Cyber Threat Intelligence Lead at DIRECTV Latin America, I spearheaded penetration testing and vulnerability hunting initiatives, focusing on attack surface analysis and the automation of detection processes. - I led and supervised multidisciplinary security teams responsible for detecting, analyzing, and mitigating cyber threats, fraud campaigns, and infrastructure abuse across large-scale telecom and enterprise environments. - My role necessitated a strong foundation in identity and access management (IAM) and multi-factor authentication (MFA) to ensure robust security measures were in place. - I utilized my expertise in security operations (SecOps) to monitor vulnerabilities and conduct threat hunting activi
  • DIRECTV Latin America
    Red Team Analyst
    DIRECTV Latin America
    Jan 2018 - Mar 2020 (2 years 3 months)
    As a Red Team Analyst, I performed comprehensive penetration tests and vulnerability assessments, generating detailed remediation plans for IT teams to enhance security posture. My responsibilities included threat hunting and reporting findings to management and application owners, ensuring that all vulnerabilities were addressed effectively. I also implemented a robust patch management process and controls to mitigate risks. In addition to these core functions, my role was significantly informed by my background in network engineering and software engineering, as offensive security necessitates a deep understanding of enterprise infrastructures. From a network engineering perspective, I analyzed telecom and enterprise networks to identif
  • DIRECTV Latin America
    Identity and Access Management Analyst
    DIRECTV Latin America
    Jan 2017 - Dec 2017 (1 year)
    As an Identity and Access Management (IAM) Analyst, I designed, implemented, and maintained identity workflows across Active Directory, LDAP, SSO, and access management platforms. This role required a strong foundation in management and security operations (SecOps) to synchronize users, roles, and entitlements across multiple enterprise applications. My work was tightly integrated with software engineering, as identity systems operate through APIs, directories, authentication services, and automated provisioning platforms. I applied software engineering principles to develop and maintain access provisioning logic, approval workflows, and role-based access control models (RBAC), ensuring consistent, auditable, and secure access across the or
  • DIRECTV Latin America
    Security Operations Center Analyst
    DIRECTV Latin America
    May 2013 - Dec 2016 (3 years 8 months)
    As a Security Operations Center (SOC) Analyst, I served as the AV administrator, SIEM administrator, WAF operator, and antispam operator, while also performing vulnerability assessments to ensure robust security measures. My role relied heavily on software engineering principles to process, correlate, and act on large volumes of security telemetry across enterprise and telecom environments. I worked with SIEM, log management, endpoint detection, and network monitoring platforms that ingested millions of events per day. To make these systems operationally useful, I developed and maintained scripts, queries, and automation logic to normalize data, detect attack patterns, and generate actionable alerts. This engineering-driven approach allowed
  • Controles Empresariales
    Analista de seguridad de la informacion
    Controles Empresariales
    Apr 2012 - Apr 2013 (1 year 1 month)
    Analista de seguridad de la información en Directv Colombia
  • Controles Empresariales
    Agente de mesa de ayuda
    Controles Empresariales
    Sep 2010 - Apr 2012 (1 year 8 months)
Education verified_user 0% verified
  • ENEB - Escuela de Negocios Europea de Barcelona
    Master of Business Administration - MBA, Administración y gestión de empresas, general
    ENEB - Escuela de Negocios Europea de Barcelona
    Aug 2022 - Aug 2024 (2 years 1 month)
  • Universidad Autónoma de Occidente
    Especialista en ciberseguridad, Seguridad informática y de sistemas
    Universidad Autónoma de Occidente
    Jan 2022 - Mar 2023 (1 year 3 months)
  • Universidad del CEMA
    Diplomatura analisis forence digital
    Universidad del CEMA
    Jun 2021 - Dec 2021 (7 months)
  • Universidad Antonio Nariño
    Grado en Ingeniería, Ingeniería industrial
    Universidad Antonio Nariño
    Jan 2015 - Jan 2020 (5 years 1 month)