Руководитель департамента ИТ Аудита

Был больше месяца назад

По договорённости

45 лет (родился 27 марта 1980), не состоит в браке, детей нет

Москва, готов к переезду

Занятость

не указано

Гражданство

не указано

Контакты

Телефон

Почта

Будут доступны после открытия

Фото, имя и контакты доступны только авторизованным пользователям

Опыт работы 20 лет и 7 месяцев

- Февраль 2013 – работает сейчас
- 12 лет и 10 месяцев
Tutor / Auditor
British Standards Institution (BSI)
Обязанности и достижения:
Responsibilities: - Conducting audits and trainings across Russia regions and CIS: ISO27001, ISO20000, ISO22301, ISO9001, ISO14001. - Development of training materials. - Participation in conferences and educational seminars. Clients: - The Ministry of Finance of the Republic of Azebaijan - KTZ, Railway Enterprise of the Republic of Kazakhstan - KaspiBank, Kazakhstan - Bank of the Republic of Kirgizia - Nartional Bank of the Republic of Kazakhstan
- Март 2012 – работает сейчас
- 13 лет и 9 месяцев
Head of Direction of the International Certification Authority
Academy of Information Systems
Обязанности и достижения:
Responsibilities: - Establish and support communication with international certification authorities in the field of information security and IS-audit (ISACA, BSI, MIS, PCI Council). - The development of KPI metrics for AIS staff. - Participation in conferences and educational seminars. - Development of training materials. - Conducting trainings across Russia regions and CIS: CISA, CISM, ISO27001, ISO20000, ISO22301, ISO14001, Stonesoft. Key Clients: - GOZNAK, Federal State Unitary Enterprise - Norilsk Nickel - Pension Fund of the Russian Federation - HSBC Bank
- Март 2011 – март 2012
- 1 год и 1 месяц
Senior Consultant, Advisory Services
4x4 Professional Services Agency
Обязанности и достижения:
Advisory services in banking, insurance, retail, telecom companies. Focus on operational risk and operational effectiveness services such as IT audit, IT strategy, program management, quality management and business continuity management. Projects: - Perform IT audit for SOGAZ based on CobIT5 framework (1st audit in Russia based on CobIT 5) - Perform risk assessment for Backup Process Facility of “National bank TRUST”. - Perform risk assessment and prepare Disaster Recovery Plan for "ROSNO", one of the leaders in insurance. - VF Services, the Visa Application Centre of France (VAC). Perform risk assessment and audit for 152-Fed.Law compliance. - Access Business Group International. Perform risk assessment and audit for 152-Fed.Law compliance. - MBA Consult. Design IT-Strategy, perform risk assessment and IS audit. - VTB Insurance. Audit for 152-Fed.Law compliance.
- Октябрь 2007 – ноябрь 2008
- 1 год и 2 месяца
Senior Engineer (Information Security)
KPMG, Москва
Обязанности и достижения:
- Start-up KPMG regional offices (IT/IS-related projects); - Provide technical risk assessments into IT, business projects, integration processes, and others activities. - Identify, Assess and Contain Information Security Risks - Participation in BCP/DRP tests within international team. - Develop Security Policies; - Develop, communicate and maintain Information Security standards and guidelines to maximize the effectiveness of security architecture and controls in meeting these requirements. - Reports preparation. - Coaching IT staff on remote sites. - Conduct interviews with newcomers. Projects: 1. Start-up of new KPMG offices: - Rostov-on- Don (70 users); - Donetsk (50 users); - Yekaterinburg (250 users). 2. Internal IT audit in Alma Ata office, start a new HelpDesk service for 500 users, hire a new team. 3. Support of movement to a new KPMG office (2,500 users).
- Октябрь 2005 – октябрь 2007
- 2 года и 1 месяц
IT Site Support Manager (Gas&Oil Fields)
CSS International, Москва
Обязанности и достижения:
IT/IS Services Supervision in Gas & Oil Fields for: - Shell Exploration and Production Service N.V.; - Salym Petroleum Development N.V.; - Sakhalin Exploration and Investment Company N.V.; - Repsol YPF. Responsibilities: - Carried out almost all duties of IT Field Service Manager, including on coordination of IT projects across Russia region. - Responsibility for ensuring SLA are met. - Analyzing, evaluating and improvement the quality of service on the basis of command indicators (SLA and other KPI metrics). - Serving as Situation Manager and as a primary focal point for customer complaints, satisfaction issues and global problems. - Working with the business units to determine requirements for client support. - Act as a IT Coach and IT Trainer to ensure quality of calls and interaction with the customers of highest quality. Executed projects: 1. Shell Exploration and Production Service N.V.: - Establishing new HelpDesk service 24x7 for all EMEA region (up to 10,000 users). 2. «Salym Petroleum Development N.V.»: - Coach a new Network/HelpDesk team. - Implement new Process Domain for Salym Field; - Monitoring system implementation for Salym Field. • Achievements: - Have successfully completed the project of expansion of local Helpdesk to a Global Russian Service Desk, has managed technical, organizational issues and developed new IT procedures, policies based on SOX and Security issues as well. - Developed, justified and implemented the motivation system and recruitment model for the Helpdesk employees. - Achieved excellent KPI Service Desk performance and quality of service with the following SLA in annual average: FCR = 91.7%; Abandoned rate after 30 sec = 2.9%; Response rate within 30 sec = 92.8% (8 sec.); Handle time = 9min and 17sec; 45000 annual interactions are handled. - Successfully completed Service Desk transformation project into Hewlett-Packard in accordance with structure reorganization. - Took part in Shell IT Trust Domain Audit on a annual basis.
- Май 2005 – октябрь 2005
- 6 месяцев
Engineer
Club-400 Ltd
Обязанности и достижения:
Responsibilities: - Support Universal Mail System "REX400". (up to 15 Servers)
- Август 2002 – апрель 2003
- 9 месяцев
IT manager
Startmaster, Воронеж
Обязанности и достижения:
Responsibilities: - Manage technical and guarantee departments; - Coaching staff.
- Февраль 2001 – август 2002
- 1 год и 7 месяцев
Engineer
RET - computers, Воронеж
Обязанности и достижения:
Responsibilities: - Hardware and Software support; - Network solutions.

Образование

- Высшее образование
- Очно-заочная
- 2013
Lipetsk State University
Факультет: Information Technologies
Специальность: Information Security
- Высшее образование
- Дневная/Очная
- 2003
Воронежский государственный университет
Факультет: Physics
Специальность: Physics of semiconductors

Обо мне

Дополнительные сведения:

- Higher education and additional Information Security education. - ISACA certifications: CISM, CISA - BSI Lead Auditor: ISO27001, ISO20000, ISO22301, ISO9001, ISO14001. - STO BR Auditor (Central Bank of Russia Security Standard) - Cisco certifications: CCNA, CCDA. - Stonesoft Trainer Certificate (SMC, FW, IPS, SSL). - CobIT, ITIL/ITSM, PCI DSS, Risk Management, Data Privacy Law (FZ-152) broad knowledge. - Basic knowledge of accounting standards. - 5+ years combined experience in IT/IS audit, IT/IS strategy, Risk Management and Regulatory Compliance, Program Management, Information Security and Business Continuity Management. - 10+ years combined experience in IT/IS Infrastructure, networking and security. - Banking/Insurance and/or Global Consulting experience - Ability and readiness to find acceptable balance between security risk and project timeline & budget - People management, project management, intercommunication and presentation skills - Managed IT security controls: network protection, antivirus protection, data encryption - Operation Systems security broad knowledge