ALEX BAZAY

C CISO, CISSP, CISA, CDPSE, ISACA-CAC, VCP-DCVCMA

**** **** *** ******, *: 646-***-****

Brooklyn, NY 11223 E: adrwis@r.postjobfree.com

CHIEF INFORMATION SECURITY OFFICER

Technology and security leader with 20+ years of experience in spearheading IT initiatives by developing strategic plans, creating innovative process improvements, and managing projects from conceptualization through completion.

Skilled project manager with strong credentials and ample hands-on experience in initiating and implementing creative solutions to ensure zero downtime, save money and improve efficiency.

Strategic CISO with in-depth knowledge and hands-on experience in cybersecurity, information technology, compliance, business continuity, and disaster recovery. Successfully reduced operational costs by 12% following global business analysis and contract renegotiations. Established a cybersecurity awareness program and reduced the number of cyber-related incidents by 80%. Competent leader, able to guide high-performance teams while ensuring efficient continuity and recovery in a globally operated financial boutique company with zero tolerance for downtime.

CORE COMPETENCIES

IT Risk and Security Management

Governance and Cybersecurity

Compliance and Security

Team Building and Mentoring

Forward-thinking IT

Global Service Operations

Project Management

Efficient Solution Development

Process Reengineering

Vendor Contract Negotiation

Team Leadership

Technology and Infrastructure

Storage Architecture

Network Troubleshooting

Backups and Recoverability

Creative Cost Reduction

Workflow Streamlining

Budget and Planning

Change Management

Training and Reporting

Effective Communication

PROFESSIONAL EXPERIENCE

ALIGN COMMUNICATIONS (New York, NY)

Chief Information Security Officer 05/2019 – Present

Responsible for managing internal cybersecurity programs and providing counseling to Align’s clients. Leading the build-out, administration and business development of the cybersecurity practice in the alternative investment industry. Helping Align’s clients to develop cybersecurity programs and provide leadership in bringing those programs to fruition. Acting as a vCISO and regularly report to client business executives on the status of their information security programs. Provide guidance and oversight for continual assessments to help prioritize results to mitigate risk. Responsible for setting the technical standards and vision for the Cybersecurity Solutions while mentoring and developing the cybersecurity analysts’ team. Create and integrate cybersecurity policies according to NIST CSF, ISO 27000, SEC OCIE guidelines, FINRA, CFTC/NFA, SWIFT CSP, NY DFS 23 NYRR part 500, PCI- DSS, SOC 2 Type II, COBIT frameworks. Use the FFIEC CAT for risk management.

Key Accomplishments:

Implemented Cyber Risk Management and Vendor Management programs.

Implemented Continuous Vulnerability Management and Mitigation programs.

Implemented Identity Access Management (IAM) and Privileged Access Management (PAM) solutions.

Oversaw implementation of Enterprise Data Governance, including Data Classification, Data Labeling, DLP and Encryption.

Developed and implemented an Operational Cybersecurity Assessment for numerous financial clients.

Developed and implemented employee information security education and awareness program for multiple clients.

Spearheaded the effort to obtain SOC 2 Type II certification.

GRUSS CAPITAL MANAGEMENT (New York, NY)

Chief Technology Officer/Chief Information Security Officer 01/2014 – 04/2019

Spearheaded strategic planning and day-to-day global business operations related to information technology (IT),

business continuity and cybersecurity. Designed, implemented and supported the company’s Cloud Services, Networks, Servers, Desktop, BYOD, Communications, Phones, DR/BCP Systems, and Cyber Controls. Developed and implemented an IT strategy based on industry best practices. Negotiated contracts with third-party vendors. Led IT and cybersecurity risk management, designed and executed policies and procedures to minimize operational disruption. Oversaw external/internal penetration testing. Developed incident response plans and oversaw tabletop exercises. Developed, tested, and implemented tactical plans for swift recovery and continuity. Led firm data classifications and encryption programs. Managed multiple lifecycles for hardware and software solutions. Handled all budgeting and forecasting for IT and cybersecurity roadmap development. Represented the company during audits and the ODD client sessions.

Key Accomplishments:

Ensured zero downtime and efficient continuity of the company’s global business operations.

Planned and executed relocation and new office build-outs in the U.S., Asia, and Europe. Responsible for electrical load capacity planning, HVAC evaluation, A/V systems, Telco/Server room design, MS Active Directory, VMware, Cisco network security design, phone system, and data communication planning.

Led migration from an on-premise model to a third-party IaaS solution, virtually eliminating premise presence.

Created a more predictable expense pattern by initiating the transition from CapEx to OpEx model.

Led migration from a private cloud to Exchange Online/Office 365 and AWS environments.

Reduced recovery time by aligning business recovery objectives with IT DR procedures.

Instituted semi-annual companywide disaster recovery and business continuity exercises with total disaster simulation.

Championed Insider Threat Program based on Raytheon/Forcepoint SureView. Reduced number of cyber-related incidents and minimized detection time from days to hours.

Developed and supported vulnerability detection and remediation programs, decreasing the remediation process from weeks to days.

Established and maintained employee cybersecurity awareness programs and training.

Implemented Security information and Log Management (LogRhythm) and data governance (Varonis) programs.

Implemented data at rest encryption based on Thales (former Vormetric) DSM.

Implemented and maintained an Intrusion Detection/Intrusion Prevention solution (Cisco NGFW).

Managed migration from Geneva and EZE OMS to Enfusion, cutting $500K in annual expenses.

Designed and implemented virtualization of infrastructure to reduce datacenter footprint and save an average of 6% per year.

Led several cycles of Windows migrations from v.2008 to v.2012 and to v.2016.

Migrated legacy PBX (Nortel/Avaya) to VOIP (Cisco) System and legacy IPC Turrets to Speakerbus, saving 10% annually.

GRUSS & CO.INC/GRUSS ASSET MANAGEMENT (New York, NY)

Senior Network Engineer/Network Architect 09/2005 – 12/2013

Championed building a hot disaster recovery site in Shelton, CT and satellite offices in Florida, London, and Hong Kong. Established best practices for administering and securing the servers and networks. Developed cost-effective solutions and provided guidance on server management operations and other complex technology-related projects. Coordinated with vendors and consultants. Provided IT support and troubleshooting during and after business hours. Responsible for Active Directory and GPO management.

Key Accomplishments:

Helped to conduct comprehensive corporate-wide cost reduction analysis, replaced vendors and re-negotiated contracts, reducing annual recurring cost by 12%.

Assisted in the development and implementation of Technology Usage Policy documentation for enterprise-wide use based on security and compliance requirements.

Developed, tested and executed DR recovery and continuity plans based on company objectives.

Designed, build and supported DR solution based on XOSoft block-level replication.

Migrated multiple legacy systems to VMWare within HP c7000 Blade server-based infrastructure, reducing costs by 50% over a 5-year period, eliminating the purchase of additional stand-alone servers and reducing cooling and power needs at the datacenter facility.

Implemented interoffice WAN optimization solution (Riverbed).

Implemented highly redundant internet connectivity solutions based on FatPipe MPVPN load balancers.

Executed a few cycles of company network refreshes (Cisco Firewalls, Switches and Routers). Designed and implemented multifactor authentication across all company internal and external systems (RSA SecureID).

Implemented an MDM solution (AirWatch).

NET@WORK, INC (New York, NY)

Network Engineer 12/1999 – 09/2005

Designed computer systems and network configurations for new clients and existing customers. Worked in extendable post-installation support, troubleshooting and fixing any issues. Implemented solutions and architectures based on Windows NT/2000/2003 Server, SMS, SQL Server, IIS, Exchange Server, Citrix servers, VMware, RSA SecureID, Blackberry, EMC, HITACHI, and Cisco. Designed, tested, and implemented network infrastructure based on different cluster technologies (MSCS, Legato Co-Standby/AAM), as well as storage and server consolidation solutions based on Storage Area Network (HP, EMC) and virtual technologies (VMware). Managed Firewalls, Switches and Routers. Collaborated with local-loop providers, ISPs and vendors, ensuring optimum operational efficiency and security.

EDUCATION

KYIV NATIONAL UNIVERSITY OF CULTURE AND ARTS (Ukraine) 1991-1996

Bachelor of Arts and Master of Arts (Graduated with Honors)

TRAINING AND CERTIFICATIONS

Certified CISO (C CISO by EC-Council) 2022

Certified Data Privacy Solutions Engineer (CDPSE) 2021

Sumo Logic Foundations and Search Mastery Certification 2020

ISACA Cybersecurity Audit Certification (ISACA-CAC) 2019

VMware Certified Professional, Data Center Virtualization (VCP6-DCV) 2017

Certified Information Systems Auditor (CISA) 2015

VMware Certified Professional, Cloud management and Automation (VCP6-CMA) 2015

Certified Information Systems Security Professional (CISSP) 2013

VMware Certified Professional (VCP2) 2004

Citrix Certified Administration (CCA) 2002

Microsoft Certified System Engineer (MCSE) 2000

Microsoft Certified Professional (MCP) 1999

PROFESSIONAL AFFILIATIONS

Evanta CIO Executive Summit, Governing Body Member 2018 – Present

InfraGard, New York Metro Chapter 2017 – Present

ISACA, New York Metro Chapter (Board Member since 06/2020) 2015 – Present

(ISC)2, New York Metro Chapter 2013 – Present

FS-ISAC 2014 – Present

Served as a Judge:

2022 ISACA Cybersecurity Case Study Competition 05/2022

2021 ISACA Cybersecurity Case Study Competition 05/2021

2020 ISACA Student Cybersecurity Competition 05/2020

2019 HFM European Hedge Fund Technology Awards 08/2019

2019 HFM US Hedge Fund Technology Awards 02/2019

2018 HFM Annual Hedge Fund Awards in Technology Category 09/2018

2018 Hedge Fund Weekly US Technology Awards 02/2018

ADDITIONAL SKILLS & INTERESTS

Languages: Fluent in English, Russian, and Ukrainian.

Contact this candidate