Head of Info(cyber) Security and Privacy, CISO
Work experience
More than 15 years of experience in the IT industry:
Knowledge in the fields of the software development, telecommunications, financial institutions, industrial enterprises, public authorities, gambling
Familiar with information security and privacy international standards (ISO270xx, ISO27701, GDPR, CCPA, HIPAA, PCI DSS)
Knowledge of IT and Network Security principles, architecture, techniques and technologies
Knowledge of security systems on the market
Knowledge of general network environment
Application security requirements development
Understanding of the technical aspects of Information Security and Privacy
Experience with Vulnerability scans and penetration testing (Kali Linux, Burpsuite, Acunetix, NMap)
Experience of working in an international company. Strong ability to multitask and work independently with limited supervision. Excellent team player, professional, efficient, positive, flexible and open-minded. Committed to professional development and research to ensure innovation in management and problem-solving.
Highlights
Lead, develop and mature the Information Security function and its strategies, management system and personnel in a strategic, pragmatic and commercially minded fashion, ultimately to ensure company's information is secure and available for business operations globally. In addition, as Head of Information Security operated as a security subject matter expert and thought leader, both within corporate as well as providing guidance and consultation to partners and clients from time to time.
Lead and manage a team of information security professionals, including motivation, development and performance management.
Defining, directing and maintaining the information security program across the company's different product development and largely independent business units/products
Implementation of Information security management system governance according to the ISO27001
Performing audits of ISMS and Privacy programs for compliance with the requirements of the EU GDPR and the ISO27001
Developing and update information security and privacy documentation according to the EU GDPR
Supporting surveillance audits for compliance with the ISO 27001
Developing and implementing Information Security and Privacy processes
Partnering with application/system owners to identify Information security and privacy risks and establish an appropriate security controls, remediation plans, and improvements
Developing trainings for different topics: Information Security, EU GDPR introduction, Privacy by design in software development, Privacy and Security Basics, Incident response, etc
Managing security threat and vulnerability assessments
Project Management, Project coordination
Handling Information Security and Privacy Incidents
And more...
Be free to contact me and discuss my achievements.
Looking for
Can provide CISO as a Service (part-time, projects, support etc.):
Preparation and support of ISO27001, ISO27701, SOC audits including providing of internal audits
Creating of Information security department (function) form scratch
Support of penetration testing
Vendor assessment and tendering
Information security awareness, statistics, reports etc
Information security and IT strategy development
Information security documentation creation and management
Security Assessment of IT and Business processes
Risk assessment and mitigation
And more...
Be free to contact me for clarify all the details about my past experience and suggest new opportunities.
Domain experience
| Gambling | 3.5 years |
| Security | more than 10 years |
Languages
| English | C1 - Advanced |
| Ukrainian | Native |
Українська, English
Verified candidate
The candidate had at least one successful hire through Djinni.