SUMMARY

• Slav is a Cyber Security Manager with experience in Vulnerability Management, Risk, Application Security, Building Information Security User Awareness Programs, Governance, PCI Compliance, Cyber Security Incident Response, and Physical Security. Currently seeking a leadership management role that involves building and managing information security teams, working with business leaders on aligning cyber security strategy with the business mission and vision of the company and architecting a state of the art cyber security initiatives to protect the firm. He's a technical manager looking to transition from his previous technical and consulting roles into a Cyber Security Senior Management Role.
• Slav has an MBA in Technology Management. He's also CNDA, CEH and CISM, Agile Scrum CSM Certified, and has CISSP and PMP training. In the last ten years he worked full time and consulted for high profile NY State New York City agencies in the public sector, as well as financial clients BNP Paribas JPMorgan Chase. He's fluent in both English Russian.

Information Security Skills:

• Cyber Security Incident Response, Vulnerability Management and Architecture, Application Security Assesments, SDLC, Penetration Testing Tools metasploit, hands on experience defending against high profile DDoS attacks and architecting solutions to withstand such attacks, as well as Application Security, RISK, writing security policies and procedures, and building strong information security programs aligned with business goals. PCI DSS, CobiT, ISO 27002, HIPAA.
• Application Security Tools for automated code review IBM Appscan, Qualys WAS.
• Member of the Application Security OWASP NY/NJ Chapter, regularly attend and keep on top of al APPSEC and Hacker events. He's also a member of FBI Infragard US Coast Coast Guard Auxiliary, a Division of US Homeland Security.

EXPERIENCE

Confidential

Cyber Security Consultant

• Brought on board to oversee Cyber Security for a high profile project under the direction of NYC Mayor's Office for Hurricane Sandy Recovery. This program is a close collaboration between NYC Federal Government.
• Primary responsibility is Application Security Accreditation Architecture for the one of the NYC Apps to be taken to the cloud in Windows Azure.
• Oversee tuning of the barracuda Web Application Firewall WAF , security controls, etc.
• Performing IBM APPScans of the app code and working with developers to remediate any application vulnerability, specifically the OWASP TOP 10.
• Reviewing the proposals for new code releases with business analysts and writing security requierements and recommendations.
• Conducting Cyber Security Awareness programs posters, monthly email newsletters, and training employees.
• Conducting physical audits of our vendors who are managing the IT operations of remote locations in several boroughs that collect information from clients. Making sure if any PPSI information that is collected is secured. The audits include physical security assesments, network assesments, operation controls, etc, controls, procedures, as well as BCP DR, and physical security.
• Responsible for a Vulnerability Management Program utilizing Mcafee Foundstone Scanners. Making sure remediation is done in a timely manner by the wintel team and running weekly reports to assess security risks.

Confidential

IT Security Engineer

• Reviewing existing security architecture and make recommendations on improving security posture to protect the bank against Cyber Attacks and internal threats.
• Work closely with APPSEC teams to assess the results of the automated appscans and vulnerability scans to make sure the WEB/APP/DB servers are setup in the correct tiers/zones, the servers are patched, the flow of traffic is correct and if there are any risks raised with unsecure protocols, they're addressed prior to going in production.
• Working with ITSEC Engineering, Application Teams, Governance/RISK, and Network Research Attack Teams, as well as CSIRT Teams in protecting the bank and continuously monitoring the continuously changing cyber security threat landscape.
• Optimizing firewall policies, cleaning up existing policies, removing risky and duplicate rules.
• Performing firewall changes for global firewall requests on Checkpoint R65, R75.40, ASA/FWSM firewalls.

Confidential

Senior Security Consultant

• Brought onboard to improve and grow the existing cyber security posture and align Cyber Security with Business goals.
• Setup Security Metrics and monthly cyber security executive reports.
• Roll out MDM Airwatch mobile device management.
• Implementation of DLP and Websense Security Gateway
• Setup a Vulnerability Management Program along with Policies, Reporting, and Executive Dashboards.
• Work on creating a Forensics Team, setup a training for legal team, and research the tools such as ENCASE for the team, and work on investigations with the lawyers.
• PCI HIPAA compliance, Cyber Security Incident Response Planning and monthly reporting, Security Awareness and International Travel Awareness.
• Reviewing audit findings, documenting risks, analyzing and recommending appropriate actions to reduce and or eliminate the security risks.
• Working closely with Application Security Team reviewing architecture of new applications, flow of data to make sure it does not violate our security policies in the n-tier layered architecture and follow SDLC.
• Reviewing existing security architecture and make recommendations on improving security posture to protect the company against internal and external threats, including physical security.

Confidential

Security Consultant

• Working in ITSEC Operations Team providing support in fast paced environment for Brokerage and Retail Banking World Wide.
• Use Qualys WAS for automated secure code review for app assesments.
• Working with Tufin to optimize firewall policies, cleaning up existing policies, removing risky and duplicate rules.
• Performing firewall changes for global firewall requests on Checkpoint R65, R75.40, Netscreen ISG2000, and Fortinet firewalls.
• Reviewing audit findings, documenting risks, analyzing and recommending appropriate actions to reduce and or eliminate the security risks.
• Working closely with Application Security Team reviewing architecture of new applications, flow of data to make sure it does not violate our security policies in the n-tier layered architecture.
• Upgrading checkpoint firewalls from R65 to R75.40 Gaia.
• Reviewing existing security architecture and make recommendations on improving security posture to protect the bank against Cyber Attacks and internal threats.

Confidential

Security Specialist

• Leading vpn migration projects for NYC Agencies as part of our Security Portfolio Service offerings to other NYC Agencies.
• Run automated IBM Appscans for Application Security Accreditation projects and review the accreditation documents as well as work with developers to address the security risks in the applications.
• Firewall changes on ASA, FWSM, Checkpoint R75 firewalls.
• Coordinating and leading support and new security requests between MTA Agencies and DoiTT.
• Reviewing and analyzing IDS/IPS events for proventia sensors on the IBM ISS portal.
• Representing the Security Team in daily Change Meetings according to ITIL Standards.
• Site-Site VPN Tunnel support, troubleshooting on Checkpoint NGX platform edge devices.
• Managing and Supporting Juniper SSL VPN Solution creating custom sites for NYC Agencies
• Working with vendors and evaluating security products.
• Running Reports and Analysis of Security Incidents using Qradar, Mazu, and Qualys.

Confidential

Senior Project Manager Enterprise Security /Alternate CISO for Metropolitan Transportation Authority

• Deployed and supported IT Security at the new MTA Agency Business Shared Services BSC a consolidated Peoplesoft environment for all MTA Agencies.
• Evaluated and affected the development of the technical security infrastructure.
• Assessed and recommended security technologies as well as support their integration into the networked environment.
• Collaborated and assisted in development of interagency security policies.
• Deployed Qualys Vulnerability Management System and Point sec disk encryption at MTA HQ.
• PCI Compliance and Application Security initiatives.
• Weekly Change Management in accordance to ITIL Standards.
• Worked with IT SEC Vulnerability Management Audited on conducting agency outreach vulnerability prevention.
• Provided Support for all MTA Agencies with firewall changes, vpn access and troubleshooting.
• Managed RSA server, Nortel Contivity VPN, Checkpoint NGX65 running on Nokias, as well as firewall changes.
• Worked closely with NYC Dept. of IT Telecom/DoITT as well as other NYC agencies such as FISA when supporting connectivity to Citynet Hosted network and FISA applications.
• Implemented Algosec Solution to audit improved performance on Checkpoint NGX firewalls by eliminating unnecessary, duplicate risky rules.
• Audited the rules for PCI Compliance.

Confidential

Security Engineer

• Site-Site VPN Tunnel support, troubleshooting on Checkpoint NGX platform edge devices.
• Managed and Supported Juniper SSL VPN Solution created custom sites for NYC Agencies
• Worked on citywide firewall requests on cisco pix checkpoint NGX firewalls.
• Represented the Security Team in daily Change Meetings according to ITIL Standards.
• Supported and administered Net forensics SIM.
• Ran Reports and Analysis of Security Incidents using Net Forensics, Mazu, and Qualys.

Confidential

• Analyzed Firewall Log Data Security Violation Reports.
• Prevention of security breaches of NYC Agencies.
• Architected and Supported Qualys Vulnerability Management Solution for NYC Agencies.
• Ran security reports in Mazu Net Forensics SIM.
• Migrated Checkpoint VPN users from TACAS to LDAP.
• Problem Management via Remedy for ITSEC group.
• Worked with IT SEC Vulnerability Management Audited on conducting agency outreach vulnerability prevention.

Confidential

• Troubleshot Checkpoint VPN Connectivity RAS issues.
• Monitored SNA T1 circuits.
• Fixed mainframe connectivity issues, as well as CICS, NET2 VPS printing problems.
• Troubleshot mail routing problems between NYC agencies.
• Provided support for all NYC agencies including NYPD FDNY.
• Provided daily end of shift report to management.
• Assisted in training new hires.
• Supported 311 Call Center with Siebel related issues.