Cyber Security Consultant / Penetration testing

freiberufler Cyber Security Consultant / Penetration testing auf freelance.de
Referenz
online
Europa
en  |  ru  |  it
auf Anfrage
9000 Varna
22.11.2020

Kurzvorstellung

Experienced Information Security Officer from the fin-tech industry. Achieved multiple PCI-DSS certifications. Skilled in Linux/Windows Security, Analytical Skills, Teamwork, Penetration Testing, Vulnerbility Management and Network Administration.

Auszug Referenzen (1)

"He is a great professional, focused on accomplishing his task on time. Demonstrates strong knowledge in Pen.testing Inf.Sec area."
Information Security Consultant (Festanstellung)
Kundenname anonymisiert
Tätigkeitszeitraum

12/2016 – 3/2019

Tätigkeitsbeschreibung

PCI-DSS Level1 Service provider
- Reviewing and approving security policies, controls and cyber
incident response planning
- Ensuring compliance with the changing laws and applicable
regulations
- Conducting internal security scans
- Ensuring that disaster recovery and business continuity plans
are in place and tested
- Taking part in the internal penetration testing
- Conducting awareness training
- Communicating best practices and risks to all parts of the
business

Eingesetzte Qualifikationen

PCI-DSS

Ich biete

  • Cyber Security
  • Datenschutz
  • Ethical Hacking
  • Informationssicherheit
  • IT Sicherheit (allg.)
  • PCI-DSS
  • Penetrationstest
  • Vulnerability Management

Projekt‐ & Berufserfahrung

Penetration tester
Fin-Tech company - NDA, Sofia
9/2019 – 10/2019 (2 Monate)
Banken
Tätigkeitszeitraum

9/2019 – 10/2019

Tätigkeitsbeschreibung

External penetration test on the network infrastructure, Exchange servers,
web servers, customer portal, blog and more.

Eingesetzte Qualifikationen

Penetrationstest


Information Security Consultant
Kundenname anonymisiert, London
12/2017 – 3/2019 (1 Jahr, 4 Monate)
Banken
Tätigkeitszeitraum

12/2017 – 3/2019

Tätigkeitsbeschreibung

PCI-DSS Level 2 Service provider certification

Eingesetzte Qualifikationen

PCI-DSS


Data Protection Consultant
Kundenname anonymisiert, Varna
10/2017 – offen (3 Jahre, 3 Monate)
Ship Management
Tätigkeitszeitraum

10/2017 – offen

Tätigkeitsbeschreibung

▪ Act as point of contact with EU residents, supervisory authorities and internal teams
▪ Identify and evaluate the company’s data processing activities
▪ Provide advice and instructions on how to conduct Data Protection Impact Assessments (DPIAs)
▪ Monitor data management procedures and compliance within the company
▪ Participate in meetings with managers to ensure privacy by design at all levels
▪ Maintain records of processing operations
▪ Address all queries from data subjects within legal timeframes
▪ Liaise with other organisations that process data on company behalf
▪ Write and update detailed guides on data protection policies
▪ Perform audits and determine whether we need to alter our procedures to comply with regulations
▪ Offer consultation on how to deal with privacy breaches
▪ Arrange for training on GDPR compliance for employees
▪ Follow up with changes in law and issue recommendations to ensure compliance

Eingesetzte Qualifikationen

Datenschutz


Information Security Consultant (Festanstellung)
Kundenname anonymisiert, Varna
12/2016 – 3/2019 (2 Jahre, 4 Monate)
Banken
Tätigkeitszeitraum

12/2016 – 3/2019

Tätigkeitsbeschreibung

PCI-DSS Level1 Service provider
- Reviewing and approving security policies, controls and cyber
incident response planning
- Ensuring compliance with the changing laws and applicable
regulations
- Conducting internal security scans
- Ensuring that disaster recovery and business continuity plans
are in place and tested
- Taking part in the internal penetration testing
- Conducting awareness training
- Communicating best practices and risks to all parts of the
business

Eingesetzte Qualifikationen

PCI-DSS


Zertifikate

Offensive Security Certified Professional (OSCP)
Juni 2019

Web Application Scanning and Cloud Agent - Qualys Inc.
Juli 2018

Vulnerability Management - Qualys Inc.
Juli 2017

Interactive Programming in Python - Rice University
Oktober 2015

Software Defined Networking
Juni 2015

Python First Stage Programming - University of Michigan
Mai 2015

Qualifikationen

Windows, Linux, Python, Vulnerability management tools (qualys,nessus, owasp zap, openvas),
Microsoft Office 365 Security administration, Network Security, WebApplication Security, SIEM, DLP, HSM ( SafeNet ), Data Privacy, GDPR, Card schema integration ( Visa, MasterCard, JCB )

Über mich

With extensive knowledge and experience within the Maritime and Financial sectors, as a Cyber Security Consultant and Penetration tester, S. understands the importance of Cyber Security within this critical environment more than most. As a career professional, he has been responsible for the development of cyber and information security control frameworks, infrastructure and vulnerability management solutions. Has multiple PCI DSS certifications under his belt.

Persönliche Daten

Sprache
  • Englisch (Fließend)
  • Russisch (Gut)
  • Italienisch (Grundkenntnisse)
  • Bulgarisch (Muttersprache)
Reisebereitschaft
Europa
Arbeitserlaubnis
  • Europäische Union
Home-Office
bevorzugt
Profilaufrufe
683
Alter
34
Berufserfahrung
9 Jahre und 10 Monate (seit 02/2011)

Kontaktdaten

Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.

Jetzt Mitglied werden »