A CISO’s Perspective on Improving SecOps Effectiveness

Thursday, September 28, 2023

8:00 - 9:00 AM PDT

60 minutes, including Q&A

Digital transformation plays a fundamental role in meeting Repsol’s goal of being a net-zero emissions company by 2050. But this increased reliance on technology also brings additional risk due to a significant increase in the attack surface, both in the cloud and in physical facilities.

Combined with the continuously-evolving threat landscape, global geopolitical tensions, and the scarcity of cybersecurity talent, this requires a strategic focus on maximizing the effectiveness of security operations. The goal is to scale the organization’s detection and response capabilities in order to provide operational cyber-resilience and minimize the risk of an attack that can have a material impact on the business.

In this webinar, Javier García Quintela, Global CISO of Repsol, a Global 2000 multi-energy company with 24,000 employees, will discuss how his organization is:

  • Using automation, analytics, and threat intelligence to reduce the risk of ransomware, data breaches, and insider threats.
  • Implementing both on-premises and cloud-native SIEMs, combined with multiple data lakes to collect and analyze telemetry from diverse sources including endpoint, network, email, identity, cloud, and OT security monitoring solutions.
  • Leveraging CardinalOps’ detection posture management platform to continuously assess its MITRE ATT&CK coverage and eliminate gaps caused by missing or misconfigured detections for the latest threats and APT groups most relevant to the organization.

Michael Mumcuoglu, CEO & Co-Founder of CardinalOps, will discuss:

  • Why he founded CardinalOps to address the triple challenge of security tool complexity, rapid and constant change in adversary techniques, and hiring and retaining skilled SecOps personnel.
  • How Gartner recently recognized CardinalOps as a Sample Vendor for Automated Security Controls Assessment (ASCA) in the 2023 Gartner® Hype Cycle™ Report for Security Operations1.
  • Insights from the company’s Third Annual Report on the State of SIEM Detection Risk. Based on a data-driven analysis of more than 4,000 rules across diverse SIEM platforms in production environments — including Splunk, Microsoft Sentinel, IBM QRadar, and Sumo Logic — the report provides some interesting benchmark data about typical data ingestion metrics, MITRE ATT&CK coverage, and rule health in enterprise SOCs.

Sponsored by:



Javier García Quintela

Global Chief Information Security Officer (CISO)


As the Global CISO for Repsol, a global multi-energy company ranked #290 in the Global 2000, Javier drives IT and OT cybersecurity strategy and leads the global cybersecurity organization. His forward-looking vision is to securely enable Repsol’s digitalization and energy transition initiatives by transforming cybersecurity towards a cyber-resilience approach. Javier also serves as Vice Chair of the Cybersecurity Forum in the World Petroleum Congress and has contributed significantly to the World Economic Forum’s initiative for Cyber Resilience in Oil & Gas. Prior to becoming CISO, Javier held a number of Director-level positions at Repsol including being responsible for IT Global Services & Operations, IT Architecture, IT Strategic Planning, and IT Purchasing. He previously worked in the IT consulting division at Arthur Andersen. Javier holds a degree in Communications Engineering with additional studies at IESE Business School and Harvard (Cybersecurity: Managing Risks in the Information Age).

Michael Mumcuoglu

CEO & Co-Founder


Michael is the CEO and Co-Founder of CardinalOps, the detection posture management company. He is a serial entrepreneur who is passionate about technology, cybersecurity, and leadership. Prior to CardinalOps, Michael co-founded LightCyber, a pioneer in behavioral attack detection acquired by Palo Alto Networks (NYSE: PANW) in 2017, where he served as Vice President of Engineering for the Cortex XDR platform. Prior to founding his three startups, Michael served in various cybersecurity roles in an elite intelligence division of the Israel Defense Forces. He holds a B.Sc. in Physics and Mathematics from The Hebrew University of Jerusalem.

Terry Sweeney


Black Hat

Terry Sweeney is a Los Angeles-based writer and editor who's covered business technology for three decades. He's written about cyber security for more than 15 years and was one of the founding editors of Dark Reading. Sweeney has covered enterprise networking extensively, as well as its supporting technologies like storage, wireless, cloud-based apps and the emerging Internet of Things. He's been a contributing editor to The Washington Post, Crain’s New York Business, Red Herring, Information Week, Network World, SearchAWS.com, and Stadium Tech Report.

Sustaining Partners