Marlon Costa

Chief Technology Officer | Enterprise Architecture, Cloud & Cybersecurity

easy • Part time

Jan 2019 - Present • 7 yrs 4 mos

Chief Technology Officer (CTO) at EasyTEM, leading technology strategy, enterprise architecture, and product delivery with a strong focus on scalability, security, operational efficiency, and business growth. Responsible for defining the company’s technical vision, building strategic roadmaps, and driving execution across software engineering, cloud platforms, cybersecurity, DevSecOps, and infrastructure modernization. Provide executive leadership across product development, platform engineering, cloud architecture, DevOps, and secure solution design, ensuring high availability, resilience, performance, and secure-by-design principles across critical environments. Drive the evaluation and adoption of emerging technologies, cloud services, automation practices, and strategic technical partnerships to accelerate delivery, improve time-to-market, and optimize cost-efficiency. Lead governance and best practices across the technology organization, implementing standards for SDLC, CI/CD, monitoring, observability, security controls, incident response, compliance alignment, and operational excellence. Partner with business stakeholders and customers to translate business needs into scalable technical solutions, supporting product evolution, service reliability, and long-term innovation. Played a key role in scaling platform delivery, improving operational efficiency, accelerating release cycles, strengthening security posture, reducing risk exposure, and enabling sustainable business growth through architecture modernization and technology transformation. Core areas of leadership and expertise: SaaS architecture, cloud strategy, DevSecOps, cybersecurity governance, CI/CD automation, platform engineering, resilience engineering, data protection, operational governance, and AI-driven process optimization.

Cloud Security Architect | Zero Trust, SASE/SSE & IAM

IBM • Full time

Aug 2021 - Aug 2025 • 4 yrs

Worked closely with large banking and enterprise customers to design, assess, and implement cloud security architectures across public, private, and hybrid cloud environments. Provided hands-on technical leadership and strategic guidance to customer teams, ensuring alignment with security best practices, governance models, and regulatory requirements. Led customer-facing security engagements end-to-end, including cloud security assessments, solution architecture, implementation oversight, and delivery of key security artifacts such as policies, standards, and operating procedures. Delivered Cloud Risk Assessments and Cloud Hygiene Assessments to identify security gaps, define remediation roadmaps, and strengthen overall cloud security posture. Designed and implemented security controls across multiple domains, including CASB integration, secure remote access, network and identity segmentation, Zero Trust architecture, SASE/SSE adoption, and ZTNA enablement. Supported IAM initiatives involving SSO, SAML, federation, and privileged access, as well as data protection strategies and encryption standards for cloud-hosted workloads. Partnered with technical teams to strengthen cloud security operations through monitoring, threat detection, SIEM enablement, vulnerability management, and incident response improvements. Contributed to the design of preventive and corrective controls to reduce attack surface, mitigate security risks, and improve the resilience of cloud computing and data storage environments. Played a key role in helping customers improve cloud governance, accelerate remediation planning, strengthen security controls, and increase confidence in secure cloud adoption across complex enterprise environments. Core focus areas: Zero Trust, SASE/SSE, ZTNA, CASB, IAM, Cloud Governance, Cloud Risk Assessment, SIEM, Vulnerability Management, Data Protection, and Secure Cloud Architecture.