← В ленту
senior
Регистрация: 29.08.2022

Aliaksei Brusiantsou

Специализация: Security Architect
Security Architect at EPAM IT Security team, focused on Enterprise-scale projects, including SIEM, CASB, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity controls, Cloud security stack, VLM, Risk evaluation, EMM, Information Architecture, Integration, Search and Infrastructure. Overall IT experience is 13+ years, chief officer role experience is 6+ years.
Security Architect at EPAM IT Security team, focused on Enterprise-scale projects, including SIEM, CASB, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity controls, Cloud security stack, VLM, Risk evaluation, EMM, Information Architecture, Integration, Search and Infrastructure. Overall IT experience is 13+ years, chief officer role experience is 6+ years.

Портфолио

Homecredit Bank (Belarus)

- Implementation SIEM (IBM Qradar), DLP (Searchinform). - Implementation antispam protection (Symantec Mail Security), EDR (Symantec Endpoint Protection). - GRC documentation: security policy, management passwords, anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy).

JSC Bank Processing Center

- Passing audit PCI DSS, PCI PA, PCI CP. - Team management (6). Assign tasks, allocation of resources, control, KPI. - Implementation GRC (RVision Risk manager), SIEM (HP ArcSight). - Implementation and maintenance security incident process. - Implementation Integrity control (Symantec Data Center Security (Critical System Protection).

EPAM Systems

Customer: Software & Hi-Tech. - Team management (24). Assign tasks, allocation of resources, control, KPI. - Security governance and compliance: global company roadmaps, annual budget, resource allocation. - Collaboration with different service teams during hardening, and implementation solutions. - Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess). - Implementation EDR (SentinelOne), Honeypots (TrapX), BitLocker, FileVault. - Amazon, Azure, GCP and EPAM Cloud Security. - Implementation of Cisco Umbrella, DarkTrace, PaloAlto NGIPS. - Implementation Nessus, Qualys, Acunetix scanners and agents. - Passing audits: ISO27k, PCI DSS, ISAE 3402, GDPR. - Implementation PAM (OneIdentity), AntiSpam (ProofPoint). Customer: Petrofac (Sharjah). - Creation and leading security Azure hybrid architecture (7000 endpoints, 900 servers). - Building ZeroTrust: MCAS, Intune, MFA, Azure Sentinel, WD ATP, Azure ATP. - Implementation Office365 DLP. - SOC manager/coordination OPS cyber activities (18 team members). - Continuous vulnerability management from the ground-up (Nessus, Nipper, WDATP). - Implementation EDR solution (CrowdStrike).

Скиллы

CISSP
TOGAF
CISA
CDPSE
CCSP
ITIL4

Опыт работы

CyberSecurity
с 09.2019 - По настоящий момент |EPAM Systems
Nessus, Azure Sentinel, MCAS, WD ATP, Azure ATP, CrowdStrike, Thycotic, CarbonBlack, Qradar IBM, BeyondTrust, OPSWAT MetaDefender, MetaAccess, DarkTrace ATP, UEBA, SIEM, CVM
Customer: Petrofac (Sharjah). Project Role: Security Architect, Lead. - Creation and leading security Azure hybrid architecture (7000 endpoints, 900 servers). - Building ZeroTrust: MCAS, Intune, MFA, Azure Sentinel, WD ATP, Azure ATP. - Implementation Office365 DLP. - SOC manager/coordination OPS cyber activities (18 team members). - Continuous vulnerability management from the ground-up (Nessus, Nipper, WDATP). - Implementation EDR solution (CrowdStrike). - Nessus, Azure Sentinel, MCAS, WD ATP, Azure ATP, CrowdStrike, Thycotic, CarbonBlack, Qradar IBM, BeyondTrust, OPSWAT MetaDefender, MetaAccess, DarkTrace ATP, UEBA, SIEM, CVM.
Chief Information Security Officer
11.2015 - 09.2021 |EPAM Systems
.
Customer: Software & Hi-Tech. Project Role: PM, RM, DM, Architect. - Team management (24). Assign tasks, allocation of resources, control, KPI. - Security governance and compliance: global company roadmaps, annual budget, resource allocation. - Collaboration with different service teams during hardening, and implementation solutions. - Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess) - Implementation EDR (SentinelOne), Honeypots (TrapX), BitLocker, FileVault Amazon, Azure, GCP and EPAM Cloud Security. - Implementation of Cisco Umbrella, DarkTrace, PaloAlto NGIPS. - Implementation Nessus, Qualys, Acunetix scanners and agents. - Passing audits: ISO27k, PCI DSS, ISAE 3402, GDPR. - Implementation PAM (OneIdentity), AntiSpam (ProofPoint).
Deputy Chief Information Security Officer
06.2014 - 10.2015 |JSC Bank Processing Center
.
Project: PCI DSS, PCI CP. Project Role: Security Officer, Project Manager. - Passing audit PCI DSS, PCI PA, PCI CP. - Team management (6). Assign tasks, allocation of resources, control, KPI. - Implementation GRC (RVision Risk manager), SIEM (HP ArcSight). - Implementation and maintenance security incident process. - Implementation Integrity control (Symantec Data Center Security (Critical System Protection).
Chief Security Specialist
04.2008 - 06.2014 |Homecredit Bank
.
Project: SIEM, DLP, EDR, Antispam,PCI DSS. Project Role: Project manager, Security Specialist. - Implementation SIEM (IBM Qradar), DLP (Searchinform). - Implementation antispam protection (Symantec Mail Security), EDR (Symantec Endpoint Protection). - GRC documentation: security policy, management passwords, anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy).

Образование

School of Business and Management of Technology of BSU (Бакалавр)
2010 - 2012
School of Business and Management of Technology of BSU
Belarusian State University of Informatics and Radioelectronics (Бакалавр)
2003 - 2008
Belarusian State University of Informatics and Radioelectronics

Языки

АнглийскийПродвинутыйИспанскийВыше среднегоРусскийРодной