Johana Rodrigues

Johana Rodrigues

OT Cybersecurity Program and Strategy Project in a National Oil & Gas Company –  Middle East Region

  • Developed the Cybersecurity strategy for OT Cybersecurity Operations, OT Governance and Compliance, and the Cybersecurity Infrastructure based on business requirements, OT assessment, and created the initiatives and roadmap including benchmarking and Accenture Global SME inputs
  • Designed the OT SOC operating model across people, process, and technologies, including capabilities definition, business requirements, Roles and Responsibilities, technology blueprints and capabilities charters
  • Developed Monitoring and Response procedures related to incident response, detection use cases, playbooks, OT threat intelligence, OT threat hunting, KPIs, OT security monitoring and analytics
  • Played a key role in PMO, managing large-scale client engagements, program management, and team management.

Major Global Cybersecurity Program in an Energy Company – Across 11 countries

  • Designed and implemented robust security solutions for OT Architecture in the Energy sector, including network segmentation, access control, intrusion detection and prevention systems (IDS/IPS), Access and Identification Management Control, Backup and Restoration, and new-generation firewall configurations across +42 sites.
  • Designed and configured tools for privileged remote access to OT environments.
  • Configured and deployed perimeter/segmentation firewalls in various OT environments and control centers, ensuring seamless communication between them.
  • Deployed and configured Backup and Antivirus systems in power generation plants.
  • Collaborated with stakeholders to build relationships and help them understand how to successfully address security findings.
  • Conducted thorough testing initiatives to validate the effectiveness of security measures within both OT and IT environments.
  • Engaged in training and awareness sessions.

IACS Cybersecurity Program in an Energy and Water Utilities – Middle East Region

  • Engaged in the development of the Cybersecurity program for a groundbreaking project in the region, contributing to the definition and design of both centralized and local architectures featuring robust security OT solutions.
  • Conducted analysis, design, and implementation of solutions encompassing network visualization, asset inventory management, anomaly and threat detection, as well as vulnerability assessment, ensuring comprehensive protection for critical infrastructure assets.
Event Search