# Diego Martinez Heerens

> Cybersecurity Consultant & SME | Engineering & Advisory | CRISC, CISM

Location: London, England, United Kingdom
Profile: https://flows.cv/diegomartinezheerens

Overseeing security controls and related services and solutions, my focus is on fortifying infrastructure against sophisticated threats. My expertise in Cloud and Network Security, OT + IoT Security, Risk Management, IAM, PAM, Malware Detection and DevSecOps, to name but a few layers of defence, plays a pivotal role in safeguarding the delicate data landscape across many sectors. With deep roots in Information and IT Security, I've successfully steered multiple global projects and teams through complex security initiatives. All whilst delivering significant value and enhancing defensive posture for years to come.

The values of diligence and strategic risk management guide our industries efforts to align security measures with the overarching goals of the business. Holding esteemed CRISC and CISM credentials, my leadership and capabilities extend beyond technical acumen to encompass strong stakeholder engagement and a commitment to driving security practices. To ensure they are both resilient and compliant within the dynamic world of Cyber Security.

## Work Experience
### Resident Engineer at Morgan Stanley @ Armis
Jan 2025 – Present | London Area, United Kingdom
Currently based at Morgan Stanley known for global investment banking, wealth management and institutional securities. Contributing to a global cross-functional team delivering and improving a worldwide OT/IoT and Network Security initiative aimed at achieving comprehensive asset visibility and risk mitigation across critical infrastructure.

### Senior Cybersecurity Manager @ Daiwa Capital Markets Europe Ltd
Jan 2024 – Jan 2025 | City Of London, England, United Kingdom

### Director Security Controls Services @ LSEG (London Stock Exchange Group)
Jan 2022 – Jan 2024 | London Area, United Kingdom

### Senior Manager Enterprise Security Services @ LSEG (London Stock Exchange Group)
Jan 2021 – Jan 2022 | London, England, United Kingdom

### Global Infrastructure Security Engineering Manager @ LSEG (London Stock Exchange Group)
Jan 2019 – Jan 2021 | London, United Kingdom

### Global Lead Security Engineer @ LSEG (London Stock Exchange Group)
Jan 2019 – Jan 2019 | London, United Kingdom

### Senior Information Security Consultant / Information Security Lead @ Direct Line Group
Jan 2017 – Jan 2019 | London, United Kingdom
As  a  Senior  Security  Consultant/Infosec Lead  at  Direct  Line  Group  I  played  a  key  role  in  defining,  maintaining  and  ensuring  the  integrity  and  consistency  of  end  to  end  Information  Security  Solutions  in  order  to  satisfy  project  and/or  change  programme  requirements.  My  role  ensured  alignment  to  the  Information  Security  reference  and  governance  frameworks,  enterprise  security  architecture,  relevant  regulatory  requirements  and  best  practice.

### Technical Security Manager (Principal) @ EBRD
Jan 2012 – Jan 2017 | London, United Kingdom
Since joining the EBRD my role evolved to meet the increased security demands of the Bank and industry as a whole. I worked very closely with the Head of IT Security & Business Continuity, often deputising and taking on full responsibility for the delivery of delegated projects and tasks. 
Responsibilities included but not limited to:
• Analysing requirements and providing expertise in order to define, select, implement and maintain IT Security related controls to the IT Dept
• Designing and implementing numerous security solutions to ensure IT compliance with the Bank’s Internal Control Framework 
• Involved in defining minimum IT Security requirements for projects and operations
• Day to day liaison and relationship management of the IT Security service providers, vendors and consultants
• Assisting in the production of regular control reporting for senior management
• Regularly liaising with teams across the business to provide guidance regarding IT security
• Troubleshooting and resolving 2nd and 3rd line security software support issues
• Implementing recommendations arising from annual vulnerability assessment and penetration testing
Achievements included:
• Acted as the liaison between the IT department and 3rd party vendors, conducting the annual Penetration Tests also involved in the vendor selection process 
• Designed, implemented and delivered a Digital Password Vault 
• Security Architecture around multiple Storage and Virtualisation Projects
• Spearheaded and delivered the security configuration and change assessment project 
• Introduced Enterprise FDE laptop encryption 
• Completed Next Gen Firewall project to ensure secure multi layered protection
• Completed SIEM project to provide intelligent log management and correlation
• Delivered a Network Threat Prevention Platform to combat APT's and cyber attacks

### IT Security and Change Control Administrator @ EBRD
Jan 2004 – Jan 2012
Provided an administration security function to assist the IT Security & Change Control Manager in the day to day requirements

Key Responsibilities and Deliverables included yet not limited to:
•	To perform the daily, weekly and monthly IT Security information reconciliations and reports for IT management and to meet the Internal Control requirements.
•	Contribute to the administration, support and reporting of the Bank’s IT Change Control process.
•	Provide cover for the IT Security & Change Control Administration function when needs arise, i.e. though sickness, holiday and peaks in workload
•	Perform other tasks as directed by management

### Senior Information Technology Security Analyst @ Symantec
Jan 2002 – Jan 2004
• Provided expert consultancy and support for Symantec Enterprise Security Software across the EMEA region in multiple languages.  
• Troubleshot network and software issues in diverse environments, ensuring seamless integration of Symantec products.  
• Managed a test lab for enterprise solutions, enhancing team capabilities in antivirus protection and security management.

### Senior Netserver Technician @ Hewlett Packard
Jan 2001 – Jan 2002
• Served as an HP Server Subject Matter Expert (SME) for multi-platform support across large accounts.  
• Provided troubleshooting for enterprise server and network issues, ensuring compliance with Service Level Agreements.  
• Coordinated weekly Technical Talks to address pressing enterprise customer concerns, enhancing team knowledge.

### Network Peripherals Technician @ Hewlett Packard
Jan 2000 – Jan 2001


## Contact & Social
- LinkedIn: https://linkedin.com/in/dmartinezheerens
- Website: http://securitywizardry.com/radar.htm
- Website: http://www.rootsecure.net/?p=news_feeds_console
- Website: http://security.nl/frontpage

---
Source: https://flows.cv/diegomartinezheerens
JSON Resume: https://flows.cv/diegomartinezheerens/resume.json
Last updated: 2026-04-05