Резюме № 54767
Опубліковано: 04.05.2014 р.
Рубрика: Інформаційні технології
|
Information Security Specialist
|
Стартова зарплата: за домовленістю
Тип роботи: Повний робочий день
|
|
Особиста інформація
|
|---|
Місто проживання: Київ
Освіта: вища
Дата народження: 10.02.1975 г. (50 років )
Стать: Чоловіча
Сімейний стан: Перебуваю в шлюбі, дітей немає
| |
Досвід роботи
|
|---|
C 06.2006 по 10.2013 (7 років 4 міс.)
В компанії: ProCredit Bank, Київ
Посада: Information Security Officer
Функціональні обов'язки: Develop and implement Information Security policy and relevant policies, procedures, instructions; Implement the Group Information Security Policy (GISP) according to local requirements rules and regulations; Participate in the development, implementation, testing and update of Business Continuity and Recovery Plan; Monitor security processes in the information systems and identify risks, threats and actual or potential vulnerabilities including new trends arising from the emerging technology; Perform annual information security risk assessments with and for both current IT projects and current IT environment of the Bank; Inventory and classification of information assets; Selection and implementation of new information security ITsystems; Participate in the investigation information security incidents. ITsystems security audit and pen testing, new ITsystems security analysis before its’ implementation; Information Security Awareness Program development and implementation, testing of employees; Implementation of Personal Data protection controls; Providing Bank’s Management and Departments with advice regarding Information Security; Administration of antivirus and antispam systems, employees’ access to the Internet, personal firewalls, PC hard disks encryption, IS security logs collection and analysis, digital signature SEP NBU, internal PKI, vulnerabilities search, intrusion prevention system, physical access control, video surveillance.Successfully implemented projects: ISO 27000 series (СОУ Н НБУ 61 СУИБ 0/0:2010) implementation according to the NBU’s requirements; Digital Signature Certification Center (PKI) implementation for core banking and other IT systems (CA IIT); Implementation of centralized antimalware system using McAfee technology for desktops and servers; Information and physical security requirements within backup data site implementation (on the basis of virtualization systems); Development of set of rules for firewall (Cisco); Implementation of a centralized log collection and management system; Implementation of a Security Information and Event Management system (SIEM) on the test environment (ArcSight); PCI DSS Gap analysis; Implementation of ITpurchase process on the basis of tenders.
C 01.2004 по 06.2006 (2 роки 5 міс.)
В компанії: UkrSotsBank, Запоріжжя
Посада: Information Security Administrator
Функціональні обов'язки: Administration of several systems of PKI ("Dzherelo" developed by IIT, SEP NBU, core banking system "Profix", "Crypto Pro", "Cipher", several systems developed internally) and numerous application software which use encrypted protection; Employees’ access rights administration and audit; Internal network information security audit, employees’ activity analysis; Video surveillance system administration, incidents analysis; ATMs maintenance with regard to security facilities.
C 07.2000 по 01.2004 (3 роки 6 міс.)
В компанії: Zaporizhia Machine-Building Design Bureau Progress State Enterprise (Ivchenko-Progress ZMKB), Запоріжжя
Посада: System Administrator
Функціональні обов'язки: System administration of servers and workstations under Linux, MS Windows Server/Workstation, Novell Netware, DBMS Oracle (on the basis of Red Hat Linux) – in total about 15 servers, 800 workstations in the network; Proxy, antivirus, email and backup systems administration; Wrote extensive documentation for the ongoing maintenance of the system.
| |
Освіта
|
|---|
Навчальний заклад: Kharkiv National University of Radio Electronics
Дата закінчення: 2006-06-01
Факультет: Faculty of Postgraduate Education
Спеціальність: Protection of information with restricted access and automatic processing
Навчальний заклад: Zaporizhzhya National Technical University
Дата закінчення: 1997-06-01
Факультет: Radioenginering Departament
Спеціальність: Radio Equipment Design and Production Technology
| |
Курси та тренінги
|
|---|
Назва курсу/тренінгу: Information Security and Business Continuity Workshop
Компанія: Procredit Holding
Місто: Veles, Macedonia
Період: 5 days
Дата: 01.07.2013
Назва курсу/тренінгу: Trainings McAfee: McAfee Firewall Enterprise IPS, Web Gateway, DLP, EndPoint Security, EndPoint Encryption
Компанія: McAfee
Місто: Kyiv, Ukraine
Період: 7 days
Дата: 01.07.2011
Назва курсу/тренінгу: Designing Security for Microsoft Networks, M2830
Компанія: Training Center "Network Technologies"
Місто: Kyiv, Ukraine
Період: 5 days
Дата: 01.05.2010
Назва курсу/тренінгу: Seminar regarding information security at the National Center of National Bank of Ukraine
Компанія: National Center of National Bank of Ukraine
Місто: Kyiv, Ukraine
Період: 3
Дата: 01.02.2007
Назва курсу/тренінгу: Courses at the National Technical University "Kyiv Polytechnic Institute" in the center of retraining and advanced training of specialists in the field of information security
Компанія: National Technical University "Kyiv Polytechnic Institute"
Місто: Kyiv, Ukraine
Період: 10
Дата: 01.10.2003
| | Іноземні мови та комп'ютерні навички |
|---|
Англійська: Технічна
| Рівень володіння комп'ютером: експерт
Комп'ютерні навички: OS: MS Windows family, Mac OS, Linux and *BSD;Virtualization: VMware vSphere, Citrix XenServer, KVM, Proxmox, LXC, OpenVZ; Security Information and Event Management, SIEM: ArcSight ESM, Splunk, Sawmill, GFI Monitor, GrayLog;Vulnerability assessment: XSpider, OpenVAS, nmap, Qualys, GFI Languard, Acunetix, Metasploit, Kali Linux;Antivirus/End-Point Protection: McAfee ePO, Symantec, Trend Micro, Kaspersky;Data Loss Prevention, DLP: McAfee, ZLock, ZGate;Password analysis: Elcomsoft PPA, Cain, hashcat;Network sniffing: Wireshark, Cain; Information gathering and network enumeration: Maltego, nmap;Crypto: TrueCrypt, DiskCryptor, PGP, McAfee;PKI: CA IIT, CA Author, CA Microsoft;Network security: McAfee Web Gateway, MS ISA/TMG, iptables, squid, Dansguardian, Cisco Guard, Snort;Access control systems: Golden Gate, FortNet;Video surveillance: GeoVision; Application software: RDBMS (MS SQL, MySQL, PostgeSQL), Service Desk+, IBM Lotus Notes, different bank operating systems/core-banking software (CW.Net, Scrooge, Profix, Temenos T24 etc.) and national/international payment systems (SEP, SWIFT, Western Union);Programming/Scripting: Bash, Perl, Ruby, PHP, WSH, PowerShell, C/C++(gcc).
|
| | Додаткова інформація |
|---|
Найбільш важливі досягнення в житті та кар'єрі:
Information Security Professional with more than thirteen years of experience in information security analysis, information security policy design, risk assessment, security incident response and security solutions. Skilled at developing practical solutions that reduce risk while supporting business goals. Key competencies:Delivering various IS/IT related consulting services, including optimization and redesign of business processes, costs optimization in IT, improvement of efficiency, transparency and controllability of IT functions, design of IT systems and solutions architecture, maintaining high level of business continuity;Applying extensive experience of project-, risk- and resource-management;Implementation of and ensuring compliance with a variety of international information security standards and best practices: ISO 27000 series, COBIT, PCI DSS, ITIL, NIST, BSI frameworks, IT Grundschutz;Development and implementation of various methodologies, concepts and strategies, policies and procedures in the fields of IT and Information Security. |  Роздрукувати
 Зберегти на комп'ютері | |
|
