Corporate Information Security Roundtable

Ruben D. Chacon

CISSP, CISM, CISA, CRISC, GCCC, CIPP/US, CIPM, Security+, ITIL SM, Prosci Change Management

VP and CISO
Eaton Corporation

Ruben D. Chacon is the Technology VP & Chief Information Security Officer (CISO) at Eaton, an American-Irish multinational power management company with 2021 sales of $19.63 billion.

With over 30 years of diversified IT and business experience, Ruben holds multiple certifications relevant to information security, privacy, and change management.

Starting his career at the German conglomerate Siemens in Mexico City designing and implementing data networks, Ruben had increased IT and business responsibilities working for global companies such as Kraft, Phillip Morris, Mondelez International, The Coca-Cola Company, Constellation Brands, and CDW.

Among his most recent and relevant experience, Ruben:

  • Significantly improved CDW’s information security posture strengthening resiliency, transforming detection, and improving prevention capabilities and processes in the cybersecurity space and simplifying, standardizing, and centralizing Governance, Risk Management and Compliance (GRC) processes.
  • Led the incident containment, response, and recovery efforts to a significant malware incident (NotPetya) in June 2017 impacting Mondelez International, a 30B+ USD revenue organization. Partnering with law enforcement (FBI). Leading the forensic analysis to find root cause and defining specific actions to ensure a reliable recovery of IT services for the global company.
  • Designed and implemented a robust cybersecurity strategy, roadmap and scorecard based on the NIST Cybersecurity Framework and the 20 Critical Cybersecurity Controls for Mondelez International.
  • Designed and implemented a global Security Operations Center (SOC) supported by a Managed Security Services Provider (MSSP) incorporating advanced capabilities and practices for Mondelez International and later for Constellation Brands
  • Defined and implemented an identity and access management (IAM) program for Constellation Brands
  • Defined and implemented a program to ensure compliance with the European General Data Protection Regulation (EU GDPR) for Mondelez International

Ruben regularly interacts with peer CISOs from industries such as CPG, Manufacturing, Healthcare, Retail, Technology, banking, and insurance companies, analysts from research organizations, strategists from consulting firms, advanced technologies vendor providers, and law enforcement. Ruben also likes to read technical articles and attend selected conferences and seminars relevant to CISO and the industry he serves. All this helps to keep his professional knowledge current.

Ruben is part of the Board of Directors at Lumity (non-for-profit organization based in Illinois).