Educaton & Certifications
Higher
• 2003 — State University of Humanitarian Science, Master of Arts
• CISSP – Certified Information Systems Security Professional
• CISM – Certified Information Security Manager
• CEH – Certified Ethical Hacker
• ECSA – EC-Council Certified Security Analyst
• ITIL foundation
Training
• 2015 — Efficient selling, PwC
• 2014 — Certified Ethical Hacker part 2 (ECSA & LPT), EC-Council
• 2013 — Certified Ethical Hacker, EC-Council
• 2012 — Coaching masterclass, PricewaterhouseCoopers
• 2011 — People management and motivation, PricewaterhouseCoopers
Prior to that (since 2003) I passed a large number of technical and soft skills trainings on different topics.
Work Experience
09.2014 – present
PricewaterhouseCoopers Advisory OOO — Senior Manager, Cybersecurity department
– Established the Center of Competence in Cybersecurity field for the PwC CIS network of firms (the lab, the team, the market strategy, internal and client awareness)
– Conducted and facilitated large number of security-related projects in Russia, Kazakhstan, Azerbaijan, other countries (security strategy development, applications security analysis, penetration testing, etc.)
– Led a number of Cybersecurity public events for PwC clients, spoke at different conferences, published articles
07.2011 – 08.2014
PricewaterhouseCoopers Russia BV — Regional Chief Information Security Officer, Central and Eastern Europe
– Led Information Security function in the Central and Eastern Europe region – 29 countries, more than 50 offices, 8000+ staff, 7 Security Officers team
– Developed and implemented business-focused Information Security Strategy
– Implemented regional ISMS according to the ISO 27001 standard
– Achieved high level of compliance with PwC internal and international security standards (top 10% among PwC network of firms worldwide)
– Built regional Business Continuity Planning and Disaster Recovery programs, led large number of DR tests, including those of a regional Data Center
– Established security support and security services portfolio for a multimillion dollar business of PwC regional data center located in Prague
– Project managed a number of technical implementations and supporting processes (SIEM and SOC, IPS, Endpoints protection, etc.)
12.2007 – 06.2011
PricewaterhouseCoopers Russia BV — IT Security Manager, Russia
– Led Russian IT Security function
– Implemented Information Security Management System according to ISO 27001 standard
– Established privacy legislation compliance for PwC Russia firm
– Led large number of technical implementations – Vulnerability management, Intrusion prevention, Access management, DLP, Endpoint Encryption, etc.
03.2005 – 12.2007
Philip Morris Sales and Marketing – IS Analyst Security
– Implemented and managed technical security solutions (vulnerability management, access management, antivirus, IDS, etc.)
– Supported CISO in Information Risk Management, Business Continuity Planning, Third-party security assessments.
– Developed and implemented security monitoring tool for the global PMI organisation (located in Switzerland).
Prior positions:
09.2003 – 02.2005 Philip Morris Sales and Marketing – Associate IS Technical Analyst
01.2000 – 09.2003 Limited society “ELNAP” – Technical specialist
Languages
English – fluent
Russian – native
Projects Portfolio
– Security strategy and program development, ISMS implementation (multiple projects) – 2014-2015
– Penetration testing of electronic payment and other applications (multiple projects) – 2014-2015
– Regional Business Continuity Planning program implementation 2013-2014
– Acquisition of Technical Data Protection license for Russian entity. 2013-2014
– Regional IT Continuity Planning 2011-2013
– Regional data center security architecture development and implementation. 2010-2012
Skills
– Wide range of soft skills mastered through management of geographically distributed international teams, close collaboration with regional-level senior management and representation of the firm in front of C-suite clients’ executives.
– Good technical knowledge of security field – from technologies to penetration testing techniques applied in multiple internal and client projects, confirmed with such certificates as CISSP, CEH, ECSA
Public Activities
Starting from 2008 I’ve published many security-related articles in different magazines, conducted a lot of public presentations and spoken at various professional forums. I am also acting as a scientific advisor for Information Security Officer MBA students at Russian Academy of National Economy (www.ranepa.ru).
Hobbies, Etc.
Sports, pentesting, traveling
