OBJECTIVE:

Over 19 years of experience in Information Technology, including 14 years in Consulting. Alexey specializes in planning and implementation of complex IT - enabled transformational programs across various industries, including Financial Sector, Oil & Gas, Utilities, Media, and Telecommunications.

SUMMARY:

• Providing strategic advice to the board on IT Development, Architecture, System Selection, and implementation for some of the largest organizations in the region;
• Strong understanding of various aspects of business transformation including customer segmentation, operating model development, multi-channel strategies, underwriting, best practices for sales and service, personnel motivation, as well as their impact on IT architecture;
• Managing large-scale system transformational programs;
• International exposure including CEE and US.

EXPERTISE AREA:

• Strong leadership skills, ability to mobilize a team and drive large-scale transformational programs;
• IT Strategy and implementation planning, banking systems selection, vendor negotiations and contracting
• IT Procurement, budgeting and controlling processes design and implementation, IT cost optimization
• Knowledge of the market of modern IT solutions;
• Strong negotiation skills. Executive negotiation support during acquisition of large systems;
• Cybersecurity incident preparation, mitigation and forensics;
• Big Data solutions;
• Knowledge of various IT Governance and regulatory frameworks.

TECHNICAL SKILLS:

• Project Management and Business Transformation
• PMO Development and Operation
• PITBM, Transform Methodology
• Project Quality Review Methodology
• TOGAF
• IT Governance, Management, Risk and Security Standards and best practices
• ValIT, Cobit, Risk IT standards from ISACA, including practitioner guides
• ITIL
• IT Governance Methodology
• ISO 27001
• NIST, SPRINT and SARA Risk Assessment Frameworks
• Development of business case of new technologies, including ROI/NPV calculation
• Regulatory frameworks
• PCI DSS (audit and implementation)
• SOX-404 (Internal controls implementation and testing)
• Core Banking Applications
• FlexCube (Oracle/iFlex), Fidelity Profile, Temenos T24, SAP for Banking, Infosys Finacle, Midas and BankMaster from Misys, Delta Bank from Delta Informatique, Bancs from Tata Consulting, Atlas
• Business Intelligence/ Corporate Performance Management applications and DataWarehouses
• Fernbach, SAP Business Objects, Oracle Hyperion, Oracle Enterprise GL, SAS, IBM Cognos, Microsoft BI, Terradata, Sybase IQ
• Banking Sales Channel Management Systems, Front office and Loan Origination
• S1, CR2. BankWorkd, BSC Gemini, Statlogics/Credilogic, Egar Loans, FairIsaac, Loxon
• Card processing systems: Nomad Cortex, OpenWay, Transmaster
• Collection systems
• FairIsaac, Loxon
• Enterprise Content Managemet
• IBM FileNet, EMC Documentum, ORACLE Universal Content Management, Microsoft ECM Suite (based on SharePoint), Interwoven WorkSite, OpenText Livelink ECM Suite
• Data Quality and Data Governance
• Products: Trillium, Informatica
• Data Governance Methodology
• Integration Platforms and ESB
• IBM WebSphere, Oracle SOA Suite/BEA, Sun Java CAPS, TIBCO ActiveMatrix BusinessWorks
• Identity & Access Management Systems
• Oracle Identity and Access Management Suite, IBM Tivoli Identity Manager & IBM Tivoli Access Manage r, Sun Identity Management, Microsoft Identity Management
• Data Center and Infrastructure
• TIA-942, Virtualization planning with VMWare, Microsoft Hyper-V, Citrix, Cisco, Cisco SAFE standard
• Infrastructure strategy planning for server and desktop virtualization, SAN, backup, and physical Data Center
• Cryptographic products and algorithms
• Guardian Edge Hard Disk Encryption, PGP Desktop;
• Protocols SSL, IPSec. Crypto algorithms and has functions: RSA, DES, Triple DES, AES, Blowfish, MD5, SHA1.
• Vulnerability scanners
• ISS, LANGuard, XSpider, Nessus, nmap, WebScarab, Paros, Acunetics web vulnerability scanner

PROFESSIONAL EXPERIENCE:

Independent consultant

Confidential

Responsibilities:

• Established and run anticrisis PMO aimed to mitigate a major cybersecurity incident involving SWIFT in a bank. The project involved mobilization of the crisis team, risk assessment, development and oversight of implementation of the plan for containment and eradication of intruders. Performed forensics investigation. Run daily meetings of the crisis team, which included CEO, CRO, CSO, CIO and responsible personnel. Supported personnel assessment and hiring;
• IT Audit of E-Health application in accordance with US HIPAA;
• Developed and organized a series of trainings on Cybersecurity Incident Response for a number of organizations, including State Railways, Ministry of Justice, Prozorro, etc
• Member of the Expert Advisory board of the General Staff of Army of Ukraine.

CIO

Confidential

Responsibilities:

• Driven IT component of the Group Transformation Program;
• Member of the Group Counsel. Provided strategic oversight of IT architecture, budgeting and planning, strategic project authorization and implementation for the businesses of the Group;
• Permanent invitee to the supervisory board meetings of the key businesses;
• Completed centralization of the IT Procurement Function
• Developed Group-wide IT Architecture;
• Developed Group-wide Information Security Policy.

Director, Head of the IT Advisory Practice, CEE leader

Confidential

Responsibilities:

• Established and developed mature Information Technology Advisory practice and the Banking Technology Group
• Established CEE FS Technology network
• Led key marketing initiatives, including banking industry “road-show” for advisory services, spoke at numerous conferences and board-level events
• Established relations with the C-level executives of the major banks and telecoms in the region
• Led transformation programs for major Russian banks and Ukrainian state agencies
• Designed, sold and managed a number of complex projects on IT strategy, system selection, implementation support, IT Governance and Security.
• Developed territory alliances with the major vendors of the banking applications and BI/CPM platforms (Trillium, Temenos, iFlex/Oracle, SAS, Fernbach, S1, CR2, Terradata, Fair Isaac, Infosys, BSC-Gemini, etc.) and other vendors (Microsoft, SAP HP, Sun Microsystems, IBM, Oracle, Sybase, FairIsaac, Loxon). Successfully leveraged vendors as a sales and marketing channel
• Established targeting processes within the Business Consulting Division
• Rolled out “Fever Pitch” program, and acted as a “Fever Pitch” Coach (sales coach) for large and strategic proposals in the territory
• Hired and developed a strong technology team
• Some of the relevant projects, completed by Alexey while at PwC:
• Support of the effectiveness improvement programme, involving transformation of the front, middle and back-office for Akbars Bank. Alexey was running the IT stream of the transformation which included planning, selection and implementation support of the front- and mid-office systems for sales support and underwriting, as well as centralization of the back-office;
• Development of the IT requirements in order to enable Retail Banking transformation for Gazprombank;
• SOX-404 implementation, including IT Policies development for Kyivstar;
• Strategy and operational model development for Delta Bank, KreditDnepr (Alexey was running a team responsible for the IT stream);
• Developed IT strategy and IT architecture for several banks, including OTP, Prominvestbank, First Ukrainian International Bank, BTA Bank (Kazakhstan), CommerzBank, KreditPromBank, VolksBank, Bank Pivdenniy;
• Completed core banking system selection projects for Volksbank, KreditPromBank, Alfa bank, Pivdenniy;
• Support of the new CIO of Raiffeisn Bank Aval within the task of IT-functions centralization, enhancement of control and efficiency of IT (audit of branch network, development of IT KPIs of the HO, regional directorates and branches, modeling of architecture centralization);
• Implementation of the Customer Information File and data cleansing solution for Pravex Bank (a subsidiary of Intesa San Paolo);
• Development of comprehensive E-Customs strategy for the State Customs Service of Ukraine.

Manager, Head of the Technology & Security Risk Services Department

Confidential

Responsibilities:

• Developed Technology Audit and Advisory group of 15 people
• Established an IT Advisory and audit support practice
• Completed a number of high-profile projects on IT Strategic Alignment, System Selection, IT Governance, Internal Controls (incl. SOX implementation), IT Security (penetration testing)
• Led a number of Consulting and Audit Support assignments (including integrated audits) for Banking and Telecom industries (exposure to more than 40 banks, and the largest telecommunications operators in the region)
• Led numerous marketing initiatives
• Some of the relevant projects, completed by Alexey while at Confidential & Youg:
• IT Audit of the Oschadniy Bank of Ukraine (under World Bank grant, 2004-200 5). The project scope included review of the IT Applications, infrastructure, and IT Governance, as well as analysis of the strategic implementation projects;
• SOX-404 implementation for MTS;
• Security audit of the National Card Processing Centre of Respublic of Belarus;
• Penetration testing of Raiffeisen Bank (Russia);
• Review of the Card Processing System “Topaz” of the National Bank of Ukraine, following dispute with Visa;
• IT review of more than 20 banks in the CIS region including National Bank of Republic of Belarus, as well as large retail banks.

Project Manager, Head of Information Security Department

Confidential

Responsibilities:

• Responsible for overall Information Security of ING in Ukraine (including application, internet, external, internal, personnel, and physical security), reported directly to CEO
• Managed a number of strategic projects
• Developed more than 30 various IT and Security policies, procedures and instructions.
• Established a BCP site (including design, location selection and implementation) and developed a Disaster Recovery Plan;
• Rolled out new firewall and IDS infrastructure, end-point protection, physical access system

Senior Network Security Engineer

Confidential

Responsibilities:

• Responsible for end-to-end internet and intranet protection of the Company
• Managed complex Internet infrastructure, consisting of more than 50 firewalls, web, smtp, DNS, FTP, and specialized application servers, located in two data centres
• Managed a group of 2 and liaised with the other groups and subsidiaries of Barclays
• Established web content monitoring programme
• Performed resolution of complex problems and incidents
• Designed fault-tolerant firewall and internet solutions;
• Implemented a solution for security event monitoring and established monitoring procedures for the Operations group;
• Ensured Y2K readiness initiative of the Internet and Intranet infrastructure.

Network Engineer

Confidential

Responsibilities:

• Security assessment, penetration testing and security architecture design for a number of banks and brokerage firms in the US;
• Intrusion-detection system selection for the major telecom operator (Level-3 Communications);
• On-site delivery of an intranet application for a major oil company in Saudi Arabia (Aramco), including roll-out, training and the client acceptance.

Research Assistant

Confidential

Responsibilities:

• Computer simulation of the decision making architectures for the military operations, using color Petri nets;
• Developed a software tool for visualization of effectiveness of decision making architecture and its sensitivity analysis.

Network Engineer

Confidential

Responsibilities:

• Security system administration for the major clients including IBM, Cable&Wireless, DMSO.
• Unix security hardening, secure architecture design and configuration

President

Confidential

Responsibilities:

• Organizing professional education program (jointly with PwC) and translation of professional standards and best practice
• Cooperation with State Agency of Special Communications and Information Protection, Agency of E-Government of Ukraine, Ministry of Justice, President’s Administration
• Commenting national draft laws on Cybersecurity, Information Security, National Cybersecurity Strategy, Green Book on E-Government
• Member of the Civil Council of the Agency of E-Government of Ukraine and Technical Council of the General Staff