Head Of Department
CurrentSoftware production company 8K+ of employees● Organized from scratch an information security system for cloud SaaS products for B2B and B2C clients, developed threat models in accordance with the MITRE ATT&CK matrix and implemented security controls based on NIST SP 800-53 and CSA Cloud Controls Matrix (CCMv4) frameworks to reduce and mitigate current cybersecurity risks and helped launch a new sales channel for the company's software products in less than two months, overtaking… Show more Software production company 8K+ of employees● Organized from scratch an information security system for cloud SaaS products for B2B and B2C clients, developed threat models in accordance with the MITRE ATT&CK matrix and implemented security controls based on NIST SP 800-53 and CSA Cloud Controls Matrix (CCMv4) frameworks to reduce and mitigate current cybersecurity risks and helped launch a new sales channel for the company's software products in less than two months, overtaking competitors in more than six months.● Established a new virtual CISO service for the external market In 3 months, and won over 10 contracts with external software production teams over the next 6 months adding over USD $400K.● Deployed from scratch information security controls in OpenStack cloud region organized monitoring and incident response for an infrastructure of 2000+ servers which allowed to reduce critical levels of cyber risks and avoid potential losses from cyber breaches, and also helped the company to meet the contractual service level agreement (SLA) and avoid penalties. ● Formed information security requirements, based on NIST SP 800-160 standard, for the company's application production CI/CD pipeline for 500+ components and deployed such code security tools as SAST, DAST, SCA etc. Reduced application vulnerabilities and production costs by 30%, by implementing security reviews early in production. Show less