Senior Information Technology Leader
Ph.D-level educated Chief Information Security Officer with extensive experience in IT and Cybersecurity, responsible for all data and systems security and infrastructure, protecting over 50M records of sensitive, personally identifiable information and corporate intellectual property. Trusted advisor to CEO, Boards of Directors, Executive committees. Valued for thought leadership, technical acumen, and business-positive approach to managing risks to information. Experience leading high-performing technical teams. Strong track record of attracting and developing top talent to succeed in executive roles. Accountable for all enterprise data protection, including information security policy and strategy, digital forensics, incident response, cyber threat intelligence, application security, identity access management, vulnerability management, subsidiary risk, regulatory compliance, controls assurance, and attack simulation.
Relevant Core Strengths
PCI DSS HIPAA SOC SOX NIST ISO 2700X ITGC COBIT COSO SIEM PMP AGILE ITIL IS/ICT DATACENTER INFRASTRUCTURE AND SECURITY PRIVATE/PUBLIC CLOUDS
Relevant Professional Experience
CISO/Head of IT National Merchant Center Irvine, CA 2007 – Present
Eliminated potential security risks in hundreds of millions in financial loses, penalties, lawsuits and loss of business by changing Company IT Strategy from Reactive to Proactive. Created Security Philosophy using the combination of known methodologies such as ISO2700X, COBIT, COSO, NIST. It's included system and information security programs, risk management, making policies / standards / guidelines, compliance and other related activities based on PCI DSS, SOC, HIPAA and SOX requirements.
Improved IT system security and infrastructure control, prevented potential vulnerabilities by implementing following security solutions: EDR/EPP, IPS/IDS, SIEM, DLP, IAM&Automation, MFA, Data and Email Encryption, WEB Filtering/Monitoring, etc…
Achieved 100% redundancy, completely eliminated downtime. Decreased datacenter costs by 80% and system maintenance costs by 50%. Established Company IT Strategy, Re-designing and optimizing all IT infrastructure including network, servers, firewalls, applications based on PCI DSS requirements and migrated IT System to high-availability datacenter.
Decreased Infrastructure costs by 50% for Corporate Office. Achieved load balancing, redundancy, operation flexibility and security targets in US and EU locations. Completed Private Cloud projects based on HP Blades and VMware technologies for multiple locations (US-Orange County, Los Angeles; Europe-Lausanne, Geneva).
Eliminated 20% PCI DSS additional costs for redesigning system components by negotiating questionable decisions with PCI DSS assessors. Found solutions which keep business needs, system security and PCI DSS requirements on the appropriate levels.
Completed PCI DSS audits smoothly within budgeted time, costs and IT resources by managing and optimizing all aspects such as documents preparation (procedures, policies, spreadsheets, network diagrams, etc...), and vulnerability remediating.
Increased Business by 30% with implementing MITEL VoIP Phone System with predictive, progressive and other unique and easy adjustable features for Sales Office.
Returned 50% of investment by having Mitel VoIP Phone System on premises with ability to make multitenant system and outsource it to partners.
Created KPIs and metrics which gave opportunities to evaluate whether or not an organization is meeting its objectives.
Implemented and tested Business Continuity/Disaster Recovery plan and tools by utilizing VMware, Veeam and HP Blade technologies. It made the ability to continue critical functions and business processes after the occurrence of the disaster.
Increased IT Support effectiveness 25% and made it more service oriented by implementing ServiceDesk tool based on ITIL methodology, including the following service management components: incident, problem, change, project, asset, CMBD, SLA, etc… Additionally, enabled monitoring of IT personnel allocation, which was useful optimizing responsibility matrix.
EMEA IT Operations and Planning Manager Intel Moscow, Russia 2006 – 2007
Improved WAN uptime to 99.87% for R&D sites by redesigning WAN and LAN infrastructure.
Improved Network components audit by Argus deployment completion.
Improved VoIP quality by upgrading PBX.
Completed EMEA/Russia Transition Plan: Identified areas of responsibilities, career plans for team members.
IT Infrastructure Manager Home Credit & Finance Bank Moscow, Russia 2003 – 2005
Eliminated delays with responds between Russia Transactional Proxy server and Main Server in Czech Republic by designing and implementing monitoring system to identify core network, servers and applications issues and switching core network infrastructure to the more advanced equipment with clustered server’s technology and load balancing for application servers. Moscow Proxy Transactional cluster and infrastructure became available on 100% with 75% reserve for grow.
Increased IT Service Quality in case of tech issues resolution speed, higher availability for the applications by organizing 24/7 IT Support included layer 1,2,3 engineers, plus contractors for some sites and functions. It is allowed for Bank take more business, plus good reputation for Moscow and regional offices.
Improved IT Service Delivery level by building internal procedures, regulations and implementing tools to organize IT Department teams how to work with each other and customers based on ITIL matrix. It is allowed IT team to be more optimized based on the skills and time shifts.
Eliminated potential security risks which can cause reputation and business loses by designing and managing installation for following systems: NEW IPS/IDS, DLS, Email Encryption, Biometric System, Remote Access, Video Monitoring, AV Protection, IT Monitoring, etc… Bank was rapidly growing at that time and was very important to setup appropriate security levels.
Senior IT Engineer Huawei Technologies, Ltd. Moscow, Russia 1998 – 2002
Eliminated Office applications delays for Sales Office by setup and configuring load balancing concept based on Cisco and Huawei equipment which increased Internet bandwidth from 60% to 100% capacity and enabled the expansion of workforce.
Saved $Millions of dollars monthly, eliminated server downtime and prevented ISP disconnection by building a datacenter and migrating all core infrastructure and application servers to the new datacenter.
Eliminated IT Services bottleneck and increased tech issues resolution speed for Moscow and regional offices on appropriate level by reorganizing IT Support with 1st, 2nd and 3rd level support engineers, and supplemented with service agreements for local contractors as needed.
EDUCATION & CERTIFICATIONS
Ph.D., Information System Management Institute of Education Information Sciences, Moscow, Russia
Bachelor’s Degree in Finance and Credit Moscow State Social University, Moscow, Russia
Master’s Degree in Information Systems Management Alexander Popov Naval Radio Electronic Academy, St. Petersburg, Russia
CISSP, expected second quarter 2020.
ITIL Service Manager, ITIL
Microsoft Project, IBM&PMI
Software Life Cycle Management, RDTECH