HimalayasHimalayas logo
lara sanzLS
Open to opportunities

lara sanz

@larasanz

I build scalable cybersecurity programs for startups, enabling IPO-ready growth.

Spain
Message

What I'm looking for

I’m looking for builder roles in startups and scale-ups where security is an enabler. I want to design security and compliance foundations, lead SecOps/IR/Pentesting, and connect security to business operations without slowing growth.

I’m a cybersecurity leader with 15+ years of experience, specialising in building and scaling security functions in high-growth environments. I design security, compliance, and operational foundations that enable companies to grow with clarity—embedding security into business workflows without slowing the business.

I’ve led SecOps, Incident Response and Pentesting teams, and owned end-to-end compliance programs (SOC2, PCI DSS, SOX, HITRUST) with consistent zero findings across audit cycles. At Flywire, I built the cybersecurity function from early-stage to IPO-ready as the company scaled to Nasdaq-listed status, while balancing security maturity with business velocity.

I connect security, business and operations into scalable systems, bringing a strategic and systems-first approach that improves operational efficiency and response time. Currently, I’m looking for builder roles in startups and scale-ups where security is seen as an enabler, not a blocker.

Experience

Work history, roles, and key accomplishments

DZ
Current

Compliance & Security Lead

Desafío Zero

Oct 2025 - Present (6 months)

Partnered with founders to define security/compliance priorities and KPIs, then designed operational frameworks to execute SOC 2 Type II, PCI DSS, SOX, and HITRUST programs with GDPR alignment. Introduced AI-driven automation to improve operational efficiency and execution at scale.

SOC IIPCI DSSSOXHITRUSTGDPRSecurity OperationsKPIsAutomationStakeholder Management

Education

Degrees, certifications, and relevant coursework

Universidad Politécnica de Valencia logoUV

Universidad Politécnica de Valencia

Bachelor of Science, Computer Engineering

Earned a BSc in Computer Engineering from Universidad Politécnica de Valencia.

AH

Art of Hosting

Participatory Leadership Training, Leadership & Facilitation

Participatory leadership and facilitation training (Art of Hosting) in Urubamba, Peru.

SANS Institute logoSI

SANS Institute

SEC660: Advanced Penetration Testing & Ethical Hacking, Penetration Testing

Completed SEC660: Advanced Penetration Testing & Ethical Hacking through SANS Institute.

Tech stack

Software and tools used professionally

Gmail logo

Gmail

F# logo

F#

Rsyslog logo

Rsyslog

WordPress logo

WordPress

Tines logo

Tines

Remote logo

Remote

X++

Availability

Open to opportunities

Location

Spain

Authorized to work in

Spain

Job categories

Cybersecurity LeadershipSecurity StrategySecurity OperationsSecurity Incident ResponsePenetration TestingInformation Security ComplianceCybersecurity LeadCybersecurity DirectorDirector Of Cybersecurity

Skills

CybersecuritySecurity StrategySecurity Operations (SecOps)Incident ResponsePentestingRed TeamingSecurity ComplianceSOC2PCI DSSSOXHITRUSTGDPRNIST Cybersecurity FrameworkSecurity AutomationTinesMonitoring And AlertingSIEMEDRVulnerability ManagementRsyslogBurp suiteRisk ManagementCross functional LeadershipGmailWordPressX++ Remote

Interested in hiring lara?

You can contact lara and 90k+ other talented remote workers on Himalayas.

Message lara

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan