Работал в 2 компаниях 8 лет 6 месяцев
IT
Compliance Lead
Yalantis
IT
2 года 11 месяцев
12.2021 - по настоящее время
- Develop and lead the Compliance Department.
- Responsible for the creation and maintenance of the Integrated Management System (IMS: ISO 9001, ISO 27001, ISO 27701).
- Lead the process of creation and maintenance of IMS policies and standards based on knowledge of best practices and compliance requirements.
- Lead and perform annual Enterprise Risk Assessment.
- Develop and present for the senior management Enterprise Risk management reports.
- Prepared, conduct, and facilitate internal and external audits (ISO Certification Audit).
- Review and prepare detailed reports of audit findings and present any irregularities or exceptions.
- Ensuring the integrity, availability, confidentiality, privacy, and continuity of IMS.
- Contribute to set objectives for the relevant functions, levels and processes required for IMS.
- Prepare periodic reports for the Board of Directors, as necessary or requested.
GRC Analyst
SoftServe
IT
5 лет 6 месяцев
06.2016 - 12.2021
- Responsible for the creation and maintenance of IS policies and standards based on knowledge of best practices and compliance requirements.
- Evaluate the design and operational effectiveness of IS policies, standard, and procedures.
- Collaborate with business units to perform annual Enterprise Risk Assessment, deliver assessment results; and identify solutions to minimize risk exposure
- Develop internal IS risk management reports for senior management.- Work with control owners to ensure control accuracy and remediate any issues related to control exceptions.
- Facilitate external audits (ISO 27001 Certification Audit)
- Assess, monitor, and enforce compliance with internal and regulatory requirements.
- Perform internal IT, compliance & operational auditing assignments. Review and prepare detailed reports of audit findings and present any irregularities or exceptions.
- Develop and maintain Security Training and Awareness Programs
Учился в 1 заведении
Запорізький національний університет
психологія
Запоріжжя, 2008
Владеет языками
Английский
выше среднего
Может проходить собеседование на этом языке
Может проходить собеседование на этом языке
Немецкий
базовый
Молдавский
ниже среднего
Польский
базовый
Украинский
свободно
Может проходить собеседование на этом языке
Может проходить собеседование на этом языке
Курсы, тренинги, сертификаты
QMS Specialist/Internal Auditor
ИД аккредитации: 88020230109
ISO/IEC 27701:2019 Lead Auditor Course
ИД аккредитации: 20210226-044
ISO/IEC 27701:2019 Lead Implementer Course
ИД аккредитации: 20210225-007
ISO/IEC 27001:2013 Lead Auditor Course
ИД аккредитации: 20171027-003
ISO/IEC 27001:2013 Lead Implementer Course
ИД аккредитации: 20171026-003
Дополнительная информация
Особисті якості
Hello everyone! I would like to briefly share my experience with you before you can view more details: I have been working in IT and Compliance for more than 8 years. Started as a GRC specialist and was involved in the support and implementation of ISO 27001. Then participated in ISO 27701 and SOC2 processes. At the moment I have experience of creating an Integrated Management System and Compliance Department from the very beginning. I also have knowledge and experience with ISO 20000, ISO 13485, ISO 42001, HIPAA, GDPR and several similar standards. I am looking for new and interesting job opportunities and would like to share my knowledge and experience in my new job. Please contact me further if you have any questions. Let's make Security and Compliance together!
https://www.linkedin.com/in/liubov-mykulets/
Liubov
Liubov
Compliance Lead/ Quality Manager/ Consultant/ Internal Auditor
Львов
полная занятость
Характер работы: удаленная работа, гибридная
Обновлено 1 месяц назад