Juan Manuel GarciaSR. Penetration Tester
I'm a highly experienced Cybersecurity Professional with over two decades of specialized expertise, focused on penetration testing, red teaming, and security architecture. In my career, I’ve led Red Team engagements, been deeply involved in DevSecOps, and have operated as an expert penetration tester, consistently uncovering critical vulnerabilities across complex environments. My technical proficiency spans offensive security tools and techniques, with hands-on experience in security testing methodologies such as OWASP, OSSTMM, and PTES. I excel in simulating real-world attacks to assess the resilience of systems, networks, and applications, and have a comprehensive understanding of standards like PCI DSS, SOC 2, and ISO 27001. Beyond my technical work, I’ve been a Security Researcher, Conference Speaker, and content creator for industry-recognized security certifications. As an instructor, I provide advanced training on cybersecurity topics, preparing the next generation of security professionals. Additionally, I serve as a University Teacher, specializing in Computer Security and Forensics. I’ve also worked with EC-Council as an Item Writer for the CEH exam and am proud to be the first Certified EC-Council Instructor (CEI) in Argentina. My credentials include a Master’s Degree in Cybersecurity and top certifications such as: CEH: Certified Ethical Hacker GPEN: GIAC Certified Penetration Tester CEI: Certified EC-Council Instructor CHFI: Computer Hacking Forensic Investigator ACE: AccessData Certified Examiner eCPPT: Certified Professional Penetration Tester (currently studying)
Tech stack
Security Testing (22)
IT Security (22)
Application security (22)
Education (16)
Computer Security (6)
Cyber Security (6)
Security (6)
Management (3)
PCI Compliance (3)
AWS Cloud Architecture (3)
Experience
Sr. Security Engineer & vCISOStockpile
03/2023 - Currently

Develop and implement a comprehensive information security strategy aligned with organizational objectives. Provide visionary leadership in managing risks related to information security, data privacy, and cyber threats. Formulate and enforce policies and procedures for data security and compliance, ensuring alignment with legal and regulatory requirements (PCI DSS, SOC2 and FINRA). Conduct regular Penertratation Tests.

AWS Cloud Architecture
PCI Compliance
Security
Application security
Security Testing
Computer Security
Cyber Security
IT Security
Consulting Cybersecurity Services & Training DirectorGREY HAT AND "FUNDACION CIENCIA Y JUSTICIA"
12/2009 - Currently

As a freelance consultant, I oversee the development and delivery of advanced cybersecurity solutions, services, and training initiatives for clients in the USA, Europe, and LATAM. My role involves providing expert advice and tailoring security solutions to meet the specific needs of external clients. This position requires limited time annually, allowing me to offer high-impact guidance and specialized consulting without a full-time commitment.

Education
Security Testing
Application security
IT Security
Head of Offensive Security TeamRed Link
03/2020 - 03/2023

I oversaw a specialized unit focused on identifying and exploiting vulnerabilities in the company's application and networks. My proactive approach to simulating advanced cyber-attacks and ethical hacking techniques allowed us to anticipate emerging threats and strengthen our defenses. I closely coordinated with other security, developers and IT departments to develop effective mitigation strategies and provided ongoing training to the team to ensure proficiency with the latest security tools and techniques. Under my leadership, the team played a crucial role in enhancing the organization's security posture and protecting its critical digital assets.

Management
Security
Security Testing
Application security
Computer Security
Cyber Security
IT Security
Education
Certified Professional Penetration Tester (eCPPT)INE - eLearnSecurity
10/2024 - Currently
Certified AWS Penetration Tester (CPNA)SPARTAN CYBERSECURITY
12/2022 - 12/2022
Executive certificate in Cybersecurity Leadership and StrategyFIU - FLORIDA INTERNATIONAL UNIVERSITY
09/2022 - 09/2022
Expert in Information and Security SystemsEEPE
08/2022 - 08/2022
ISO/IEC 27001 Internal AuditorTUV NORD
07/2022 - 07/2022
Master's Degree in CybersecurityCEUPE
06/2021 - 06/2022
Computer Hacking Forensic Investigator (CHFI)Ec-Council
12/2010 - 12/2010
SANS GIAC Penetration Tester (GPEN)SANS Institute
12/2010 - 12/2010
Certified Ec-Council Instructor (CEI)Ec-Council
02/2010 - 03/2010
Certified Ethical Hacker (CEH)Ec-Council
12/2009 - 12/2009