Aliaksei Brusiantsou

senior

Registration: 29.08.2022

Portfolio

Homecredit Bank (Belarus)

- Implementation SIEM (IBM Qradar), DLP (Searchinform). - Implementation antispam protection (Symantec Mail Security), EDR (Symantec Endpoint Protection). - GRC documentation: security policy, management passwords, anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy).

JSC Bank Processing Center

- Passing audit PCI DSS, PCI PA, PCI CP. - Team management (6). Assign tasks, allocation of resources, control, KPI. - Implementation GRC (RVision Risk manager), SIEM (HP ArcSight). - Implementation and maintenance security incident process. - Implementation Integrity control (Symantec Data Center Security (Critical System Protection).

EPAM Systems

Customer: Software & Hi-Tech. - Team management (24). Assign tasks, allocation of resources, control, KPI. - Security governance and compliance: global company roadmaps, annual budget, resource allocation. - Collaboration with different service teams during hardening, and implementation solutions. - Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess). - Implementation EDR (SentinelOne), Honeypots (TrapX), BitLocker, FileVault. - Amazon, Azure, GCP and EPAM Cloud Security. - Implementation of Cisco Umbrella, DarkTrace, PaloAlto NGIPS. - Implementation Nessus, Qualys, Acunetix scanners and agents. - Passing audits: ISO27k, PCI DSS, ISAE 3402, GDPR. - Implementation PAM (OneIdentity), AntiSpam (ProofPoint). Customer: Petrofac (Sharjah). - Creation and leading security Azure hybrid architecture (7000 endpoints, 900 servers). - Building ZeroTrust: MCAS, Intune, MFA, Azure Sentinel, WD ATP, Azure ATP. - Implementation Office365 DLP. - SOC manager/coordination OPS cyber activities (18 team members). - Continuous vulnerability management from the ground-up (Nessus, Nipper, WDATP). - Implementation EDR solution (CrowdStrike).

Skills

CCSP

CDPSE

CISA

CISSP

ITIL4

TOGAF

Work experience

CyberSecurity

since 09.2019 - Till the present day |EPAM Systems, http://www.epam.com

Nessus, Azure Sentinel, MCAS, WD ATP, Azure ATP, CrowdStrike, Thycotic, CarbonBlack, Qradar IBM, BeyondTrust, OPSWAT MetaDefender, MetaAccess, DarkTrace ATP, UEBA, SIEM, CVM

Customer: Petrofac (Sharjah); Project Role: Security Architect, Lead Creation and leading security Azure hybrid architecture (7000 endpoints, 900 servers) Building ZeroTrust: MCAS, Intune, MFA, Azure Sentinel, WD ATP, Azure ATP Implementation Office365 DLP SOC manager/coordination OPS cyber activities (18 team members) Continuous vulnerability management from the ground-up (Nessus, Nipper, WDATP) Implementation EDR solution (CrowdStrike) Nessus, Azure Sentinel, MCAS, WD ATP, Azure ATP, CrowdStrike, Thycotic, CarbonBlack, Qradar IBM, BeyondTrust, OPSWAT MetaDefender, MetaAccess, DarkTrace ATP, UEBA, SIEM, CVM,

Chief Information Security Officer

11.2015 - 09.2021 |EPAM Systems, http://www.epam.com

Customer: Software & Hi-Tech; Project Role: PM, RM, DM, Architect Team management (24). Assign tasks, allocation of resources, control, KPI Security governance and compliance: global company roadmaps, annual budget, resource allocation Collaboration with different service teams during hardening, and implementation solutions. Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess) Implementation EDR (SentinelOne), Honeypots (TrapX), BitLocker, FileVault Amazon, Azure, GCP and EPAM Cloud Security Implementation of Cisco Umbrella, DarkTrace, PaloAlto NGIPS Implementation Nessus, Qualys, Acunetix scanners and agents Passing audits: ISO27k, PCI DSS, ISAE 3402, GDPR Implementation PAM (OneIdentity), AntiSpam (ProofPoint)

Deputy Chief Information Security Officer

06.2014 - 10.2015 |JSC Bank Processing Center

Project: PCI DSS, PCI CP, Project Role: Security Officer, Project Manager Passing audit PCI DSS, PCI PA, PCI CP Team management (6). Assign tasks, allocation of resources, control, KPI. Implementation GRC (RVision Risk manager), SIEM (HP ArcSight) Implementation and maintenance security incident process Implementation Integrity control (Symantec Data Center Security (Critical System Protection)

Chief Security Specialist

04.2008 - 06.2014 |Homecredit Bank (Belarus)

Project: SIEM, DLP, EDR, Antispam,PCI DSS; Project Role: Project manager, Security Specialist Implementation SIEM (IBM Qradar), DLP (Searchinform) Implementation antispam protection (Symantec Mail Security), EDR (Symantec Endpoint Protection) GRC documentation: security policy, management passwords, anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy)

Educational background

School of Business and Management of Technology of BSU (Bachelor’s Degree)

2010 - 2012

School of Business and Management of Technology of BSU

Belarusian State University of Informatics and Radioelectronics (Bachelor’s Degree)

2003 - 2008

Belarusian State University of Informatics and Radioelectronics

Languages

EnglishAdvancedSpanishUpper IntermediateRussianNative