Experience

CYBER0

• Angola
• Computer and Network Security
• 1 - 100 Employee

• Senior Auditor

  • Aug 2021 - Present

  Key Responsibilities: • Oversees the design, development, and execution of SWIFT CSCF compliance audits – analyses organisational compliance in line with the CIS Top 20 Security Controls – generates reports that guide on security control improvements • Prepares benchmarks and configuration standards for Windows Server, Mac OS, Cisco Network, and various infrastructure • Pivotal to the Cloud Migration Project, tasked with analysing existing infrastructure and generation preparatory plans to support a seamless migration, including a risk assessment to address how cloud migration will impact on security controls • Oversees the analysis and development of systems, policies and contracts that govern security, backup, and updates, including the development of the Incident Response Plan • Key to the development and implementation of event monitoring systems, and as a part of the team, leads the testing of implemented policies and response plans for rigour • Hands-on with the coding and development of User Activity Monitoring Systems to oversee security from an internal perspective, and creates training, educational presentations and learning based on identified gaps in knowledge and skill • Project leader in the audit of cyber security processes in large client companies, inc. major banks – creates Information Asset Registers, Access Matrixes and recommendations for SharePoint security based on the results on assessment and audit • Performance coach to a small, specialist project team, responsible for their development, capability, and actions • Creates, develops, and manages external projects from initialisation to presentation of results Show less



PwC

• Professional Services
• 700 & Above Employee

• Cyber Security Consultant

  • Feb 2021 - Jun 2021

  Key responsibilities: · Testing and analysing assets for potential security threats, designing, implementing, and maintaining security protocols, policies, plans, and systems to cover all possible security threats, suggesting improvements to existing security systems, complying with privacy standards and laws; including GDPR and 152-FZ. · Running risk assessment and security tests and designing countermeasures to eliminate potential risks, drawing up registers of processing of personal data, places and terms of storage, legal grounds, analysing the compliance of applicable law and legislation, GDPR and 152-FZ applicability, as well as localisation and scope. · Meeting with clients to discuss security measures, provide information, and to explain the designed system, carrying out GAP analysis, constructing a list of requirements and measures to be taken to bring it into compliance with applicable laws, carrying out the general preparation of forms and checklists of processor assessments in accordance with the new requirements of EDPB, surveying information systems of the client's infrastructure, large organisations, as well as business processes. Key Achievements: · Contributing to the successful implementation of a number of Privacy Projects within the Privacy Team, by facilitating communication between all project stakeholders, effectively coordinating communication processes in and out of the project team, as well as streamlining work processes, enabling Privacy Projects to be delivered within scope. · Playing a pivotal role in the analysis of the applicability and compliance of the GDPG on a large-scale project, with extraterritorial applicability; including the analysis and use of the latest changes in the current legislation, and the provision of a personalised approach and results for a prominent client. · Solely delivering a project, which involves working on several streams, in addition to assisting a major client with unforeseen and urgent tasks. Show less



Informzaschita

• Russian Federation
• Computer and Network Security
• 100 - 200 Employee

• Information Security Specialist

  • Jun 2019 - Feb 2021

  Key Responsibilities: · Assessed the status of company IT, network, and security systems, designed the architecture and recommended the use of network configuration and protocols, inspected and upgraded hardware to avoid vulnerability points, upgraded security software on company systems, inspected and tested the security of networks, ran penetration tests on upgraded systems, responded to security threats, drafted security policies and guidelines, participated in the preparation of commercial proposals. · Developed project documentation based on the results of communication with the client, and the examination of business processes and information systems, collected data, analysed the structure of the company and business processes, evaluated and developed recommendations in the framework of projects in the field of consulting on Information Security and Personal Data Protection. Key Achievements: · Strengthened the company's methodology in the field of Information Security and Personal Data Protection. · Completed training, and received a certificate in the Fundamentals of Project Activities within the Information Security field. Show less



Group-IB

• Singapore
• Computer and Network Security
• 200 - 300 Employee

• Information Security Analyst

  • Feb 2019 - Apr 2019

  Key Responsibilities: · Monitored computer networks for security issues, investigated security breaches and other cyber security incidents with the use of applicable security measures and software designed to protect systems and information infrastructure; including firewalls and data encryption programmes, documented security breaches and assessed the damage they caused. · Collaborated with the Security Team to perform tests and uncover network vulnerabilities, worked in Computer Emergency Response Team (CERT-GIB) with a certified emergency response service. Show less