Egon Lenz — Director of Engineering

Security Engineering Leader with over 15 years of experience in Information Security, leading enterprise security initiatives and budget ownership across highly regulated, global environments. My work connects deep technical architecture, enterprise risk management, and business strategy, positioning security as a scalable growth enabler and strategic business function. I bring extensive experience across fintechs and high-growth technology companies, leading enterprise-wide initiatives in Zero Trust Architecture, Data Security, Endpoint Security, Network Security, and Governance, Risk & Compliance. Close collaboration with regulatory bodies such as BACEN, CVM, SFC (Colombia), and Banxico (Mexico), as well as implementation and operation of global frameworks including ISO 27001, PCI-DSS, NIST, and LGPD. Throughout my career, I have led high-impact security initiatives, including: 1. Leadership of global Data Protection programs, with the development of internal tooling and scalable DLP microservices; 2. End-to-end leadership of Zero Trust initiatives, from architectural definition and roadmap creation to execution and adoption, strengthening identity-centric access, network segmentation, and least-privilege enforcement across distributed environments; 3. Automation of critical security processes, reducing manual effort, operational failures, and costs; 4. Definition of Endpoint and Network Security strategies and organizational growth, aligning technical resilience with corporate strategy; 5. Delivery of regulatory compliance with zero gaps, working cross-functionally with Engineering, Legal, Privacy, Risk, and executive leadership. Strong background in engineering leadership, organizational design, succession planning, and talent development, with a proven track record of building engaged teams, delivering complex roadmaps, and influencing senior stakeholders and executive forums. Particularly interested in executive-level challenges in Information Security leadership, enterprise risk governance, Zero Trust strategy, and global security transformation initiatives. 📌 Open to conversations about Information Security strategy, enterprise risk, Zero Trust, and cybersecurity leadership in regulated environments.

Stackforce AI infers this person is a Fintech Security Engineering Leader with expertise in Governance, Risk, and Compliance.

Location: Curitiba, Paraná, Brazil

Experience: 14 yrs 6 mos

Skills

Data Security
Information Security Strategy
Zero Trust Architecture
Endpoint Security
Governance, Risk & Compliance
Information Security Management
System Administration

Career Highlights

Led global Data Protection programs with scalable solutions.
Implemented Zero Trust strategy, enhancing security maturity.
Achieved zero audit gaps in regulatory compliance.

Work Experience

Nubank

Security Engineering Manager (1 yr 1 mo)

Global InfoSec Engineering Tech Manager (2 yrs 4 mos)

EBANX

Information Security Manager (6 mos)

Information Security Leader (1 yr 11 mos)

Information Security: Specialist | Coordinator | Senior Analyst (3 yrs 3 mos)

GRPCOM - Grupo Paranaense de Comunicação

System/Security Analyst (5 yrs 4 mos)

SysAdmin - Intern (1 yr)

Permution

Support Analyst - Intern (5 mos)

Education

Master of Business Administration - MBA at FIA Business School

Bachelor of Science - BS at Universidade Federal do Paraná

Network Technician at Serviço Nacional de Aprendizagem Industrial

Egon Lenz

Director of Engineering

Curitiba, Paraná, Brazil14 yrs 6 mos experience

Most Likely To SwitchHighly Stable

Key Highlights

Led global Data Protection programs with scalable solutions.
Implemented Zero Trust strategy, enhancing security maturity.
Achieved zero audit gaps in regulatory compliance.

Stackforce AI infers this person is a Fintech Security Engineering Leader with expertise in Governance, Risk, and Compliance.

Contact

Skills

Core Skills

Data SecurityInformation Security StrategyZero Trust ArchitectureEndpoint SecurityGovernance, Risk & ComplianceInformation Security ManagementSystem Administration

Other Skills

Personal Data ProtectionData ProtectionData Loss Prevention (DLP)Data ClassificationHardeningZero Trust Network Access (ZTNA)Identity-centric accessNetwork SecurityRegulatory ComplianceRisk ManagementGeneral Data Protection Regulation (GDPR)ISO StandardsSecurity AwarenessNIST Cybersecurity FrameworkSecurity Incident Response

About

Experience

Nubank

2 roles

Security Engineering Manager

Feb 2025 – Present · 1 yr 1 mo

Strategic Responsibilities:
1. Definition of the long-term vision and strategy for the global Data Protection program, aligned with the corporate Plan to Win 2028 strategy;
2. Leadership of the Data Security team (M3 level), responsible for developing internal tooling and microservices for data protection in distributed, large-scale environments;
3. Acting as a technical and strategic reference for Data Loss Prevention (DLP), Data Classification, and Insider Threat initiatives;
4. Ongoing partnership with Legal, Privacy, Compliance, DPO, and IT, ensuring strong security without negatively impacting business velocity in regulated markets (Brazil, Mexico, and Colombia).
Results and Impact:
1. Scalable deployment of DLP across thousands of GitHub repositories, structuring a multi-quarter program with progressive enforcement models;
2. 60–80% reduction in alert volume, achieving an approximately 1.5% false positive rate through refined baselines and architectural alert grouping;
3. Acceleration of Engineering teams, reducing security exception approval cycles by 40–60% through unified workflows;
4. Remediation of regulatory findings (Mexico/Colombia) and management of global data- and third-party–related risks;
5. Leadership of 8–12 engineers, achieving 90% engagement (+5 percentage points vs. company average) and delivering 90%+ of the roadmap on time.

Personal Data ProtectionInformation Security StrategyData Security

Global InfoSec Engineering Tech Manager

Oct 2022 – Feb 2025 · 2 yrs 4 mos

Strategic Responsibilities:
1. Leadership of global engineering teams focused on Endpoint Security, Network Security, and Zero Trust Architecture, ensuring architectural consistency in a highly scalable, distributed environment;
2. Definition and execution of the InfoSec Engineering strategic roadmap, serving as a technical blueprint across multiple teams and business units;
3. End-to-end ownership of the Zero Trust strategy, including architectural definition, prioritization, and execution, shifting the organization toward identity-centric access, hardened endpoints, and reduced implicit trust;
4. Driving the long-term vision and hiring plan for Endpoint Security and Network Security, aligning infrastructure resilience with corporate strategy;
5. Performance management, development, and engagement of distributed teams, leading organizational evolution initiatives and complex restructurings;
6. Cross-functional collaboration with Legal, DPO, Platform, Infrastructure, and executive leadership, ensuring visibility, prioritization, and mitigation of strategic risks.
Results and Impact:
1. Design and implementation of Zero Trust controls across endpoint, network, and access layers, reducing risks and increasing overall security maturity;
2. Creation and implementation of NuCerts, an internal certificate automation solution, eliminating systemic failures while reducing manual work and operational costs;
3. Delivery of critical regulatory compliance (BSM) under tight deadlines, applying security controls to approximately 400 users with zero audit gaps;
4. Secure infrastructure migration for 600+ employees in Mexico, replacing legacy assets with hardened, baseline-compliant devices;
5. Definition and scaling of the Endpoint Security and Network Security strategy, addressing previously unknown risks and increasing the organization’s technical depth;
6. Talent development through active mentoring, execution of PIPs, and the growth of high-impact security engineers.

Endpoint SecurityHardeningZero Trust Architecture

Ebanx

3 roles

Information Security Manager

Apr 2022 – Oct 2022 · 6 mos

Strategic Responsibilities:
1. Leadership of Governance, Risk, and Compliance (GRC), Privacy, IAM, and Security Awareness pillars within a fast-growing fintech environment;
2. Acting as a technical and strategic advisor to senior leadership, guiding security investments aligned with business objectives;
3. Definition and tracking of Security KPIs, including executive reporting and active risk management;
3. Ownership of corporate Incident Response, coordinating mitigation of threats and sensitive security events.
Results and Impact:
1. Continuous maintenance of PCI-DSS and ISO 27001, ensuring regulatory stability for global payment operations;
2. Execution of cross-functional security initiatives without formal authority, driving adoption of security-by-design across multiple teams;
3. Risk-based prioritization, balancing strategic and reactive demands in a high-pressure environment.

Information Security ManagementPersonal Data ProtectionGovernance, Risk & Compliance

Information Security Leader

Promoted

May 2020 – Apr 2022 · 1 yr 11 mos

Strategic Responsibilities:
1. Creation and leadership of the Information Security team, structuring career paths, processes, and technical pillars (GRC, IAM, and Privacy);
2. Continuous evolution of the ISMS, ensuring compliance with global legislation and regulatory standards in the context of international expansion;
3. Integration of Security-by-Design and DevSecOps, automating controls in close collaboration with Engineering, Cloud, and Data teams;
4. Leadership of the global Security Awareness program, raising the organization’s overall security maturity.
Results and Impact:
1. Ownership of the roadmap toward ISO 27701, expanding the security scope to Privacy at enterprise scale;
2. Maintenance and evolution of PCI-DSS Level 1 and ISO 27001, achieving zero gaps in external audits;
3. Automation of security controls and metrics, reducing manual effort and human error;
4. Acting as a bridge between technical teams and Legal/Regulatory stakeholders, ensuring secure launches and continuous compliance.

Personal Data ProtectionGeneral Data Protection Regulation (GDPR)Information Security ManagementGovernance, Risk & Compliance

Information Security: Specialist | Coordinator | Senior Analyst

Feb 2017 – May 2020 · 3 yrs 3 mos

1. Technical and strategic contribution to building the foundations of Information Security within a regulated financial environment;
2. Development and implementation of policies, controls, and frameworks based on ISO 27001, NIST SP 800-53, and CIS Controls;
3. Execution of risk assessments, internal and external audits, and technical support for certification processes;
4. Technical leadership in incident response, forensics, and vulnerability management;
5. Ongoing partnership with Engineering, Infrastructure, and Legal teams to ensure security-by-design from the earliest stages of the company’s scaling journey.

NIST Cybersecurity FrameworkPersonal Data ProtectionInformation Security ManagementGovernance, Risk & Compliance

Grpcom - grupo paranaense de comunicação

2 roles

System/Security Analyst

Sep 2011 – Jan 2017 · 5 yrs 4 mos

Project management using best PMBOK practices;
Creating, maintaining and responsibility for information security management processes;
Audit/internal periodic validations of user accounts and passwords, access to network level, operating system (Windows and Unix), database (MySQL and Oracle) and applications;
Project creation, maintenance and awareness of the Security Policy Information based on ISO 27001/27002;
Penetration Tests;
Analysis and vulnerability fixes in the computing environment;
Application updates, patches or configuration changes in the computing environment;
Design, implementation and administration of UTM firewalls (Fortinet);
Design, implementation and administration SSO authentication;
Design, implementation and administration of security policies to be implemented in firewalls;
Management and troubleshooting problems and demands on Firewalls safety equipment, AntiSpam, AntiMalware (Symantec, McAfee), Antivirus (Symantec, McAfee), Application Control, Web Filter / Content, VPN, IPS, DLP;
Analysis of security problems in Microsoft Windows Server and Red Hat Linux servers;
Solutions to technical problems in the systems (CRM, ERP, BI, Web);
Deployment, configuration and administration of Linux environments/Unix/MS Windows Server;
Design, implementation and administration of Microsoft Office 365;
Design, implementation and administration and security of the Microsoft Active Directory based on Windows Server 2012;
Programming in Power Shell and Shell Script;
Design, implementation and administration of OpenSource solutions such as DHCP (ISC), DNS (Bind) Proxy (Squid), Firewall (IPTables), VPN (OpenVPN, IPsec), e-mail (Postfix, Zimbra, Mailman, Spamassassin) Directory Service (openLDAP, Samba), Web (Apache, Nginx, Tomcat, Jboss, IIS), network monitoring (Nagios, Cacti, Zabbix), FTP (Proftpd);
Backup and restore procedure with WD Arkeia, NetBackup and Shell Script;
Administration and support environments in the Amazon AWS.

Security Incident ResponseSystem AdministrationInformation Security Management

SysAdmin - Intern

Sep 2010 – Sep 2011 · 1 yr

As SysAdmin Intern at Grupo Paranaense de Comunicação, I learned and helped the administration of computer network, in conjunction with system administrators, ensuring that services and IT systems become available with the longest time: efficiency, speed and security.
Learned about: TCP/IP Networking, NFS, DNS, LDAP, Email (Exchange/IMAP/Zimbra/Postfix), Firewall (IPTables), Antivirus, Proxy (Squid), Backup (rsync), LDAP, Shell Scripting, Apache, Samba, Security Networks, DHCP, Network Monitoring (Nagios, Zabbix, Dell OpenManage), VPN (OpenVPN, IPSec), Virtualization (VMWare), FTP, Storages Management, Antispam (spamassassin), Distribution Lists (mailman).

System AdministrationHardening