Advanced Cyber Security Architect/Engineer
Honeywell
Total years of experience :10 years, 9 Months
Provide network security consultancy to various green and brown field projects to ensure effective operational deployment, ensuring solutions are designed for the Industrial Control System's technical policies and standards. Develop, deploy and maintain network security standards for the Industrial Control System network based on policy requirements, some of the day to day and long-term activities are: Future Growth Project at Tengiz (Chevron)
• Risk management and assessment
• FTE (fault-tolerant Ethernet) architectural design
• Network and systems Hardening
• Network and Cyber Security Assessments
• Network Vulnerability Assessment
• Endpoints and network hardening
• Virtualization, DMZ, Cyber security, Commissioning and Brownfield integration - (Chevron, Tengiz)
• Future Growth Project Integrated Operation Control Center, Start-up & Commissioning - (Chevron, Tengiz)
• Future Growth Project Gathering Wellpads Commissioning & Integration - (Chevron, Tengiz)
• Managing large-scale transformation projects within the Kazakhstan Stock Exchange market, got recognition from the AIFC governor and AIX management.
• Implementation of ISO27002/27032 (Certification dated August, 2019), and meet on-going ISO27002/27032 requirements.
• AWS, Azure Cloud Security
• SWIFT Information Security Officer
• Formulating the Cyber Security Policy according to AIX's risk management process.
• Outlining and implementing a cyber security work plan based on the Cyber Security Policy with relevant company officers.
• Formulating and approving AIX's cyber security procedures.
• Raising employee awareness of cyber security issues.
• Involvement in projects and purchasing of products and services, whose acquisition has cyber security implications for AIX, with responsibility for assimilating and implementing cyber security mechanisms.
• Involvement in reception tests, as well as the deployment and assimilation stage of new ICT systems.
• Manage response and recovery process (determine containment ability while examining procedures and methods for addressing damage scenarios).
• Implement, support and maintenance of Cloud Access Security Broker (Mvision Cloud from McAfee).
• Implement, support and maintenance endpoint security controls (McAfee).
• Implement, support and maintenance Data Leakage Protection Systems (McAfee).
• Act as a BCP manager.
• Maintain infrastructure security (AWS).
• Interpreted clients' needs and introduced services to fit specific requirements.
• Risk Assessment of Technical Task for new development.
• Handling in-house and third-party security testing projects.
• SDLC.
• Evaluated diverse organizational systems to identify workflow, communication and resource utilization issues.
• Led e-learning, big data (BI) projects, including coordinating schedules, organizing resources and delegating work to meet deliverable and timeline requirements.
JSC “Real Estate Fund “Samruk - Kazyna, Nur-Sultan,
Akmolinskaya
• Report to Board of Directors.
• Infrastructure Security.
• Information Security Program Development and
Management.
• Active Directory, McAfee DLP, IBM Lotus,
Bookkeeping software administration.
• Updating and development of internal policies and
procedures.
• Ensure IT Architecture meets security requirements.
• Information Security Awareness Training.
• Ensure that risk assessments, vulnerability
assessments, and threat analysis are conducted
consistently.
Stroiengineering Astana LLP, Nur-Sultan, Akmolinskaya
• Participation in development of National Standards
of Republic of Kazakhstan in Quality of Systems
(telecommunication field).
• Work with international standard organization such
as NFPA, ISO, ASME, etc. in order to adapt
international standards in Republic of Kazakhstan.
• Audit of third-party companies.
• Development of Information Security Program
Development and Management internally.