János Sipos Email and Phone Number

JaSipos IT Security and Audit Ltd, refers to the association of member firms of Antea Alliance of Independent Firms, each one of which is a separate and independent legal entity

150+ international projects120+ audits as lead215+ cases audit support at client side 142+ Million EURs fraud investigation10+ countries as on site working experienceCISA, CISM, CGEIT, CRISC, CFE, ITIL, ISO27001 LA, Data Protection Officer, data protection and privacy expert, engineer, economistGDPR compliance advisor, IT, information security, IT security and audit support, fraud investigation, risk management, process improvement, PCI DSS support, PSD2… Show more 150+ international projects120+ audits as lead215+ cases audit support at client side 142+ Million EURs fraud investigation10+ countries as on site working experienceCISA, CISM, CGEIT, CRISC, CFE, ITIL, ISO27001 LA, Data Protection Officer, data protection and privacy expert, engineer, economistGDPR compliance advisor, IT, information security, IT security and audit support, fraud investigation, risk management, process improvement, PCI DSS support, PSD2 preparation support, General Data Protection Regulation (GDPR, EU Regulation 2016/679) preparation support with legal partner, international teams' leading (direct and matrix reports, formal and informal relationships)Call me in case you- need solid suggestions to make your IT environment more effective,- need some improvement in information security,- need prudent, valid information about your IT environment,- will be audited and you would like to be ready as far as possible,- suspect some improper activities (either IT or business) or- need information security expert in connection with Hunguard audit compliance or in connection with the Hungarian "IT security Act" (in Hungarian: "2013. évi L. törvény" and "információ biztonsági felelős") - the law allows to execute the tasks by external so you can save many and headcount- need support to prepare future PSD2 or General Data Protection Regulation (GDPR, EU Regulation 2016/679)janos.sipos@jasipos.comwww.jasipos.com+36 70 931-3439Real partnership, efficient support, proven results Show less

I was the direct manager of CTI EMEA Risk&Control Service Management team (responsible for 53 countries) and the matrix manager of Distributed Operations and Core Infrastructure Services teams in the Budapest Shared Service Centre of Citigroup.My scope of responsibility included the supervision of issue remediation, risk assessment and reporting; resource allocation, task scheduling and execution supporting furthermore the process improvement as well.

My task was to plan and execute the MOL Group data center consolidation (30+ data centers in 10 countries) hereby significantly reduce the operating cost (OPEX) and raise the operation security, reliability and transparency.The final result of consolidation will be app. 35% operating cost reduction per year following the second year, beyond the more secure environment.

My task was to govern the IT security activities within the MOL Group member companies (30+ thousands of users, 192 companies, 53 countries, 4 continents).We leaded/participated in 150+ international projects. The member companies were involved into the activities as partners. Support of business activities were in the focus, contribution with non-IT colleagues and prevention of incidents were highlighted.Overall measures, regular controls and monitoring solutions were implemented… Show more My task was to govern the IT security activities within the MOL Group member companies (30+ thousands of users, 192 companies, 53 countries, 4 continents).We leaded/participated in 150+ international projects. The member companies were involved into the activities as partners. Support of business activities were in the focus, contribution with non-IT colleagues and prevention of incidents were highlighted.Overall measures, regular controls and monitoring solutions were implemented. Beside the technology development significant attention was paid to the human factor and the cost efficiency.We prepared the member companies for audits and supported them both on the fieldwork and the report negotiation phases, too (200+ audits altogether).As the result of the activities the yearly external audit statements (about IT security) were reduced by 80 percentages in the MOL and their risk level was reduced by two grades (in for level scale). Show less

I coordinated and reorganized the full IT activities within six Russian oil companies as country CIO (based on Moscow, near the Ural mountains and in Siberia) parallel with my previous MOL Group level IT security manager position.

Foundation of the IT and physical audit group, development of audit programs (audit methodologies), regular audit of Hungarian Erste Bank member companies (bank, lease and investment companies etc.), contribution with authorities (Financial Authorities, National Bank) and external auditors, Basel-II preparation, fraud investigation.I leaded 70+ different type of audits approximately.

Lead and take audits within the Bank and the member companies (broker house, investments, leasing, insurance etc.), fraud investigation/prevention in international team (KBC Group, ABN Amro, Ernst&Young etc.).The affected amount of fraud investigations I participated altogether was above than 22 billion HUF (above than 73 m EUR).I prepared methodology to calculate client money loss in case of frauds which was implemented in arrangements and at litigations also many cases.I work out… Show more Lead and take audits within the Bank and the member companies (broker house, investments, leasing, insurance etc.), fraud investigation/prevention in international team (KBC Group, ABN Amro, Ernst&Young etc.).The affected amount of fraud investigations I participated altogether was above than 22 billion HUF (above than 73 m EUR).I prepared methodology to calculate client money loss in case of frauds which was implemented in arrangements and at litigations also many cases.I work out methodology to identify suspicious cases/transactions for further investigations. Show less