Juan Carlos Díaz

Juan Carlos Díaz

Associate Managing Director

Juan Carlos Díaz is Associate Managing Director in Cyber Risk practice, based in Madrid. With over 20 years of experience, Juan Carlos possesses expertise in both proactive and reactive cybersecurity services.

Juan Carlos has extensive experience in managing, leading and executing a wide range of cybersecurity services, such as Red Team and Purple Team exercises, cyber drills, counterintelligence, security architecture reviews, product evaluations, research and security training, among others. Over the past two years, he has focused on developing cybersecurity services and has helped organizations across various sectors - from governments to top-tier banks and prominent private companies - to develop their cybersecurity strategies.

Before joining Kroll, Juan Carlos worked for a decade at a leading information security company, where he managed areas such as technical audits, incident response and cybersecurity consulting services. He delivered these services across various sectors (e.g., government, healthcare, financial, telecommunications, energy, etc.), including critical infrastructures in Spain. During his tenure, he was appointed Cybersecurity Director for Spain in 2017 and Leader of Counterintelligence Services for the EMEA region in 2019.

Juan Carlos has provided advisory and cybersecurity services to some of the world's leading organizations. He has conducted and led hundreds of penetration tests, Red Team (offensive security) exercises and other cybersecurity activities for international companies operating in the Mediterranean region, Latin America and the Middle East. He also led R&D initiatives focused on creating innovative services to keep pace with the evolving security trends.

Juan Carlos holds a degree in computer engineering from the University of Extremadura and has the following certifications: Certified Information Systems Security Professional (CISSP) by the International Information System Security Certification Consortium (ISC)², Certified Information Systems Auditor (CISA) by the Information Systems Audit and Control Association (ISACA) and Certified Information Security Manager (CISM) by the ISACA. He is a member of the Madrid Chapter of ISACA and (ISC)².

 

 



Cyber and Data Resilience

Incident response, digital forensics, breach notification, security strategy, managed security services, discovery solutions, security transformation.