пропозиції роботи
P K
Information Security Professional, CISA
Warszawa,
mazowieckie
Dołącz do GoldenLine i obejrzyj pełny profil tego użytkownika
Zobacz pełny profil
Doświadczenie zawodowe
IT Risk & Control Specialist
- Auditing critical Third Party Vendors in line with
the Vendor IT Risk Assessment process – ISO
27001 based;
- Coaching and supporting less experienced
colleagues;
- Developing & Improving the Vendor IT Risk
Assessment process.
the Vendor IT Risk Assessment process – ISO
27001 based;
- Coaching and supporting less experienced
colleagues;
- Developing & Improving the Vendor IT Risk
Assessment process.
Senior Information Security Analyst
- Information Security SME responsible for France,
Belgium, Luxembourg, Poland, Czech Republic
and Slovakia;
- Delivering pragmatic and business driven
information security services across the EMEA
region that is consistent with global requirements;
- Assisting Country COO’s, CSO’s and ITLM’s to
manage risk according to the risk appetite set by Divisions.
Belgium, Luxembourg, Poland, Czech Republic
and Slovakia;
- Delivering pragmatic and business driven
information security services across the EMEA
region that is consistent with global requirements;
- Assisting Country COO’s, CSO’s and ITLM’s to
manage risk according to the risk appetite set by Divisions.
Third Party Assurance Analyst
The Royal Bank of Scotland - London/Edinburgh, UK
Three month secondment (April – July 2011)
- Participating in the design of an Internal Assurance process;
- Conducting a Third Party and GBM PES review.
The Royal Bank of Scotland N.V. Warsaw, Poland
- Conducting Information Security Audits in 26 EMEA countries;
- Gathering and verifying evidence;
- Developing relationship with internal/external business.
Three month secondment (April – July 2011)
- Participating in the design of an Internal Assurance process;
- Conducting a Third Party and GBM PES review.
The Royal Bank of Scotland N.V. Warsaw, Poland
- Conducting Information Security Audits in 26 EMEA countries;
- Gathering and verifying evidence;
- Developing relationship with internal/external business.
Junior Technology Risk Analyst
ABN AMRO Bank N.V. Amsterdam, Netherlands
Three month secondment (September – December 2009)
- Supporting Head of Risk in risk management, tracking & monitoring.
ABN AMRO Bank N.V. Warsaw, Poland
- Performing technology risk assessments in line with the
Technology Risk Assessment Process;
- Auditing Third Party vendors.
Three month secondment (September – December 2009)
- Supporting Head of Risk in risk management, tracking & monitoring.
ABN AMRO Bank N.V. Warsaw, Poland
- Performing technology risk assessments in line with the
Technology Risk Assessment Process;
- Auditing Third Party vendors.
Szkolenia i kursy
TRAININGS:
- 2012 December - Securitum - Network Security - Penetration Testing
- 2012 May - MIS - Cyber Security Risk Management
- 2011 June - BSI – BS 25999 Lead Auditor
- 2010 October - C-Net - Certified Data Centre Design
- 2009 December - SANS - 20 Critical Security Controls – In Depth
CERTIFICATIONS:
- CISA - Certified Information Systems Auditor - ISACA (#12101419)
- BS25999 - Lead Auditor
- 2012 December - Securitum - Network Security - Penetration Testing
- 2012 May - MIS - Cyber Security Risk Management
- 2011 June - BSI – BS 25999 Lead Auditor
- 2010 October - C-Net - Certified Data Centre Design
- 2009 December - SANS - 20 Critical Security Controls – In Depth
CERTIFICATIONS:
- CISA - Certified Information Systems Auditor - ISACA (#12101419)
- BS25999 - Lead Auditor
Edukacja
Informatyka, inżynierskie
Polsko-Japońska Wyższa Szkoła Technik Komputerowych w Warszawie
Specjalizacje
IT - Administracja
Bezpieczeństwo/Audyt
Organizacje
ISACA Information Systems Audit and Control Association
Grupy
Polsko-Japońska Akademia Technik Komputerowych
Najlepsza niepubliczna uczelnia techniczna w kraju, według rankingu Perspektyw i Rzeczpospolitej. Uczelnia zwraca szczególną uwagę na dostosowywanie programów kształcenia do wymogó
ISACA
ISACA (Information Systems Audit and Control Association) - Stowarzyszenie do Spraw Audytu i Kontroli Systemów Informatycznych.
