* Develop and implement cybersecurity strategy: Create, maintain, and enforce cybersecurity policies, standards, and procedures aligned with industry best practices and regulatory requirements.* Risk assessment and management: Conduct regular risk assessments to identify vulnerabilities and prioritize mitigation efforts. Develop and implement risk management strategies to protect the organization from cyber threats.* Incident response: Lead the organization's response to security incidents, including investigation, containment, eradication, recovery, and lessons learned.* Team management: Recruit, train, and develop a highly skilled cybersecurity team. Provide leadership and guidance to ensure team members are motivated and effective.* Technology evaluation and implementation: Research, evaluate, and implement new cybersecurity technologies and tools to enhance the organization's security posture.* Compliance: Ensure compliance with relevant cybersecurity regulations and industry standards, such as GDPR, ISO 27001, and NIST Cybersecurity Framework.* Stakeholder communication: Communicate effectively with senior management, employees, and external stakeholders regarding cybersecurity risks, incidents, and initiatives.

The four main responsibilities of this role are: * Governance - adapting regulatory requirements and frameworks to be implemented as internal governance documentation, * Awareness - creating and presenting awareness programs in regards to cybersecurity,* Audit - conducting cybersecurity audits and gap analysis – both regulatory based (NIS, DORA etc) and internal frameworks (NIST 800-53)* Training - preparing the training materials and being the tutor for the colleagues interning within the Cyber Security department.

At PwC the main responsibilities revolved around security and privacy frameworks - both as business cases and as legal requirements (ISO27001, ISO27000, NIS, NIST, GDPR etc).My role involved participation in gap assessments (NIS, NIST, GDPR and ISO27000 frameworks), while evaluating and proposing solutions for legal compatibility and/or implementation of the mentioned frameworks.On the cybersecurity and framework side, the focus was on NIST 800-53. The responsibilities being in identifying the applicable controls, conducting interviews with the responsible businesses, collecting the evidence and writing the recommendations. This type of work improved both my cybersecurity skills and my diplomatic acumen, as providing the news of non-conformity, while getting the acceptance of the business for the results was an exercise in negotiation.The other aspect of my work, the legal analysis of cybersecurity regulations, was in relation to cybersecurity regulations writing. The work involved research for the best legal framework applicable, while protecting commerce and small business owners. It was one of the projects I loved and implicated myself the most – as it was focused both on cybersecurity as a practice to protect the consumer, but it evaluated the costs that the business have to have in order to apply such legislation.

Studio Firefly is part of a F2P German Game Publisher - this created a wonderful international environment and a fast growth medium for the Romanian employees. We were in constant contact with the gaming development studios (Ukrainian, German, Finnish, British and Romanian) - bridging the gap between the final consumer and the development. It was one of a kind experience as we worked and adapted to cultural diversity and medium diversity.Technical responsibilities:* supervising the proper functioning of products (FTP games, especially mobile gaming)* management of critical situations of non-compliance of the product* management of a large volume of tickets, while keeping the SLA standards* reporting feedback to the development team regarding player requirements and pressing issues* investigation of crisis situations and tickets with unique requirements* documenting new processes and updating the documentation in case of changes* creating a flow and a standard of work to obtain a constant level of care of the clientResponsibilities within the team:* participation in the selection of future colleagues by checking the answer sheets and co-managing the day at the office* creating training materials and updating them as needed* training of new employees within the department* supervising the performance of colleagues' responsibilities* transmitting the performance feedback during the training period of the new colleagues - both to the trainee and to the superiorGDPR responsibilities:* project management for the Romania resource allocation on the GDPR compliance aspect* performing the analysis of internal processes that require GDPR compliance * documenting the internal processes that require a better application of the Regulation* implementation of internal GDPR strategy aimed at employees * implementation of the response strategy regarding clients' rights and crisis situations

My responsibilities focused on the publication of four scientific journals per year within the Faculty of Engineering and Environmental Protection Baia Mare (part of the Technical University of Cluj-Napoca). Two journals of student conferences - "Ecological House between Dream and Reality" and two journals of the Department of Environmental ProtectionCommunication and relationship management responsibilities:* active participation in choosing the theme of the conference and the scientific journal for student conferences* maintaining communication between the participating university centers* maintaining communication within the team responsible for publicationEditing and publishing responsibilities:* creating the conference volume* supervising the multiplication and distribution of the volume at the end of the conference* taking over the materials and checking the quality of the content* editing materials for standardization* creating the Wordpress site to publish students' articles online