Senior Cybersecurity Professional

DIDIER BLOCH ** crossbrook road, Livingston, NJ **039

adv3nf@r.postjobfree.com

973-***-****

INFORMATION Highly experienced dynamic Chief Information Security Officer with a strong background SECURITY in information technology and cybersecurity. Proven track record of successfully managing LEADER security programs and leading teams. Skilled in risk assessment and mitigation, incident response, and regulatory compliance. Experienced in leading and managing security programs on a global scale. Fluent in French. Seeking to leverage my expertise and experience to contribute to the success of an organization as a senior cybersecurity executive.

CAREER HIGHLIGHTS. · Created Tradewind Markets, Inc. security framework, including the KYC policies and procedures. In charge of the IS027001 certification.

• Overhauled the Freestyle Solutions, Inc. AWS security framework. Implemented 2 factor authentication on all critical systems. Made the headquarters infrastructure fully resilient. In charge of the PCI certification and GDPR compliance.

• Created Mezocliq LLC's security framework and influenced the software development and computing infrastructure to mitigate risks and facilitate the organization's response to internal and external threats. Led the SOC 2/3 project.

• Established Usablenet Inc.'s core operational infrastructure including policies and procedures, standards and controls, security framework, risk management and compliance controls, business continuity plan, and purchasing process and controls. Led the PCI project.

• Managed SunGard Data Services infrastructure support function which provided service to 3,000 users through the deployment of standard troubleshooting, software, hardware and security standards.

VALUE • Information Security

PROPOSITION • BCP/DR

• Risk Management

• IT Audit

• Blockchain

• Asset Virtualization

• Governance

• Technology Strategy

• Cloud Infrastructure

• Data Privacy

PROFESSIONAL

CHIEF INFORMATION SECURITY OFFICER

EXPERIENCE TRADEWIND MARKETS, INC., NEW YORK, NY

2018 to Present

• First CISO: led the development and implementation of the company's first comprehensive information security program. Established security policies, procedures, and controls to protect against cyber threats

• Advised the IT team to secure the company's AWS and office environments. Implemented security controls, including network segmentation and secure access controls.

• Led the effort to get ISO27001 certified.

• Set up the BCP/DRP and activated it on 03/12/22 when New York City implemented its pandemic shutdown.

DIRECTOR OF IT/CISO

FREESTYLE SOLUTIONS, INC., PARSIPPANY, NJ

2015 to 2018

• First CISO: led the development and implementation of the company's first comprehensive information security framework. Established security policies, procedures, and controls to protect against cyber threats and meet regulatory requirements.

• Developed and implemented a disaster recovery plan to ensure the continuity of operations in the event of a natural disaster or cyber attack. Conducted regular testing and training to ensure the plan was effective.

• Advised the cloud team to secure the company's AWS production systems. Implemented security controls, including network segmentation, IDS and secure access controls to protect against external threats and meet compliance requirements. Conducted regular security assessments to identify and mitigate vulnerabilities.

• Successfully led the company through the annual PCI-DSS level 1 certification process. Worked with cross-functional teams to ensure all requirements were met and coordinated with the certification body to ensure a smooth audit process. CHIEF INFORMATION SECURITY OFFICER

MEZOCLIQ, LLC, NEW YORK, NY

2013 to 2015

• First CISO: Led the development and implementation of the company's first comprehensive information security program. Established security policies, procedures, and controls to protect against cyber threats and meet regulatory requirements.

• Helped engineer a highly resilient hardware and software production infrastructure. Worked with the engineering team to design and implement a production infrastructure that was highly resilient to hardware and software failures. Conducted regular testing and maintenance to ensure the infrastructure was operating at peak efficiency.

• Led the company through the annual SOC 2, type I & type II and SOC 3 audits. Worked with cross-functional teams to ensure all requirements were met and coordinated with the auditing firm to ensure a smooth audit process.

• Led the red team pentesting, overseeing the planning and execution of regular simulated cyber attacks to test the company's security posture. Analyzed results and provided recommendations for improving the company's security defenses. HEAD OF INFORMATION TECHNOLOGY

USABLENET INC., NEW YORK, NY

2012 to 2013

• As the first head of information technology, successfully established and led the IT department, setting the foundation for future growth and success.

• Conducted a thorough audit of the environment to identify and address security vulnerabilities, resulting in a more secure and reliable system.

• Successfully migrated the email system from a standalone server to Microsoft 365, improving efficiency and reducing the risk of data loss.

• Implemented cost-saving measures that resulted in a 30% reduction in IT expenses, while also managing the IT infrastructure for the London, New York, Los Angeles, and Udine, Italy offices. Additionally, initiated a PCI certification project to ensure compliance with industry standards and protect sensitive data. SVP, IT DELIVERY SERVICES DIVISION

SUNGARD FINANCIAL SERVICES, NEW YORK, NY

2001 to 2012

• Tasked by SunGard's CEO to engineer and implement a plan to address data leakage risks, and successfully implemented measures to prevent data loss and protect sensitive information.

• As the lead for incident response and physical/logical security for the Northeast SunGard offices, developed and implemented strategies to protect the company's assets and data.

• Played a key role in acquisition due diligence and SOX400 compliance efforts, ensuring that SunGard's processes and systems met industry standards and regulatory requirements.

• Led strategic infrastructure improvement projects in collaboration with key business heads, implementing new technologies and processes to drive efficiency and support business growth.

• Served as businesses primary point of contact while managing support activities for 3,000 users across 32 offices across the Northeast, New England and Midwest regions.

• Implemented centralized software distribution and patching procedures to maximize user productivity while minimizing risk.

EDUCATION MBA IN QUANTITATIVE METHODS/OPERATIONS RESEARCH UNIVERSITY OF SOUTH CAROLINA, COLUMBIA, SC

MASTER OF FINANCE

INSTITUT SUPERIEUR DU COMMERCE, PARIS, FRANCE

BACHELOR OF SCIENCE IN STATISTICS AND BIOLOGY

LYCEE JEAN MOULIN, FORBACH, FRANCE

PROFESSIONAL Certified Information Systems Security Professional (CISSP), ISC2 CERTIFICATIONS Certified Information Security Manager (CISM), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Ethical Hacker (CEH), EC-Council

Certified Chief Information Security Officer (C CISO), EC-Council FEMA Emergency Management Institute, IS-700

ITIL Foundation V3.O

LANGUAGES & French: bilingual

AFFILIATIONS Italian: spoken, read, written

German: read, written

InfraGard, Member

Information Systems Audit and Control Association, Member. International Information Systems Security Certification Consortium, Member New York Information Systems Security Association, Member. Autism Fund Raising.

Contact this candidate