Berlin, Berlin, Germany
I am an information security leader with 16 plus years of experience across fintech and digital platforms. I focus on building practical security programs that align engineering, regulatory expectations, and business growth, with clear executive reporting and strong operational foundations.
Development of the Global Security Operations Unit in order to align the information security management system program with business growth and comply with standards and regulations such as PCI, GDPR, MAS TRM, etc. This business unit is composed by the following Global teams: CSIRT, Security Operations Center,Cyber Threat Intelligence and Global Cloud Security.
- Implementation of the Cyber Security Incident Response Team from scratch. Established a Framework to adopt and develop policies, procedures, and playbooks using Security Orchestration and Automation to scale and improve the handling of Security incidents. - Led the Application Security team and coordinated external and internal pentests (Web, IOS, Android, etc.). · Kick-Off of SAST (Semgrep) at the global scope and develop secure hardened AMIs for AWS and GCP across +250 AWS accounts and +300 GCP projects. · Automation and workflow development for secrets detection in DH GitHub Organization and vulnerability management.
· Implementation of Security Operations Center team in order to detect, analyze, and respond to cybersecurity incidents using a combination of technology solutions and a strong set of processes. · Deployment & Management of our own SIEM platform using Elastic Search , LogStash & Kibana and AlienVault for PCI , Snort, and Radware (IPS) in order to protect sensitive data and comply with industry or government regulations (PCI, ISO 27001, SOX). Focused on improving big data analysis for investigating potential threats in key logs sources and augmenting them as well as adding context using automation and orchestration tools
·Leaded User Access and Control Management team (IAM) . Deployment of Identity and access platform in order to automate the user access application provisioning as a result of improving performance and considerably reducing SLAs. ·Developed NOC Team from scratch in order to Monitor, support and troubleshoot of all the IT Infrastructure and application monitoring perfomance (Apdex, Error Rate, Transactions, etc). Including more than 16000 Instances and Network Devices distributed in 14 Datacenters (Open Stack Cloud & AWS) on a 24x7x365 basis.
Technical lead on 3rd AT&T recertification of Avaya ESP, which incorporates widely available requirements from information security regulations and industry standards, including but not limited to, the following: ISO 27002:2005 Information Technology –Security Techniques – Code of Practice for Information Security Management Open Web Application Security Project (OWASP) Guide to Building Secure Web Applications and Web Services Technical Lead of MPKI 2048-bits Migration Efforts Management of Qualys Internal & External Vulnerability Assessments Management of the VeriSign Control Panel for SV/Dev/Prod User Certificates (a.k.a. the MPKI Pilot). Technical support for eToken issues for those who are using SV/Dev/Pilot/Prod User Certificates. Management of SSL Verisign Control Panel for issuance of SSL Certificates for Prod Web Servers Management of LDAP and Group Policy for Internal users & customers
Provided guidance and governance to comply with the core information security tenets of confidentiality, integrity, and availability of information and assure secure service delivery to Avaya's customers. Assure worldwide service delivery process meets or exceeds industry regulatory compliance requirements and security best practices. Align Information Security with GSS business needs to increase customer satisfaction.
Ensure adherence within the Delivery Center to the Project Security Policy and Security Operations Manual. • Develop compliance plans and establish compliance dashboards for leadership review at agreed frequency • Identify potential risks and issues with compliance to the Project Delivery Lead and the Project Security and Compliance Manager • Provide input to potential modifications to the Security Policy and Security Operations Manual • Coordinate Annual local PCI audit activities with the PCI QSA Intervention in Internal Audits and methodology for Payment Card Industry (PCI). Deployments of External and Internal Vulnerability Assessments with Retina & Nmap. Patch & Change Management Coordination. Implementation of Symantec Security Information Manager