Работал в 2 компаниях   8 лет 6 месяцев

IT

Compliance Lead

Yalantis

IT

2 года 11 месяцев

12.2021 - по настоящее время

- Develop and lead the Compliance Department.

- Responsible for the creation and maintenance of the Integrated Management System (IMS: ISO 9001, ISO 27001, ISO 27701).

- Lead the process of creation and maintenance of IMS policies and standards based on knowledge of best practices and compliance requirements.

- Lead and perform annual Enterprise Risk Assessment.

- Develop and present for the senior management Enterprise Risk management reports.

- Prepared, conduct, and facilitate internal and external audits (ISO Certification Audit).

- Review and prepare detailed reports of audit findings and present any irregularities or exceptions.

- Ensuring the integrity, availability, confidentiality, privacy, and continuity of IMS.

- Contribute to set objectives for the relevant functions, levels and processes required for IMS.

- Prepare periodic reports for the Board of Directors, as necessary or requested.

GRC Analyst

SoftServe

IT

5 лет 6 месяцев

06.2016 - 12.2021

- Responsible for the creation and maintenance of IS policies and standards based on knowledge of best practices and compliance requirements.

- Evaluate the design and operational effectiveness of IS policies, standard, and procedures.

- Collaborate with business units to perform annual Enterprise Risk Assessment, deliver assessment results; and identify solutions to minimize risk exposure

- Develop internal IS risk management reports for senior management.- Work with control owners to ensure control accuracy and remediate any issues related to control exceptions.

- Facilitate external audits (ISO 27001 Certification Audit)

- Assess, monitor, and enforce compliance with internal and regulatory requirements.

- Perform internal IT, compliance & operational auditing assignments. Review and prepare detailed reports of audit findings and present any irregularities or exceptions.

- Develop and maintain Security Training and Awareness Programs

Учился в 1 заведении

Запорізький національний університет

психологія

Запоріжжя, 2008

Владеет языками

Английский

выше среднего

Может проходить собеседование на этом языке

Может проходить собеседование на этом языке

Немецкий

базовый

Молдавский

ниже среднего

Польский

базовый

Украинский

свободно

Может проходить собеседование на этом языке

Может проходить собеседование на этом языке

Курсы, тренинги, сертификаты

QMS Specialist/Internal Auditor

LLC "International Management Systems", 2023

ИД аккредитации: 88020230109

ISO/IEC 27701:2019 Lead Auditor Course

EY CertifyPoint, 2021

ИД аккредитации: 20210226-044

ISO/IEC 27701:2019 Lead Implementer Course

EY CertifyPoint, 2021

ИД аккредитации: 20210225-007

ISO/IEC 27001:2013 Lead Auditor Course

EY Analytics (Asia-Pacific), 2017

ИД аккредитации: 20171027-003

ISO/IEC 27001:2013 Lead Implementer Course

Ernst & Young CertifyPoint, 2017

ИД аккредитации: 20171026-003

Дополнительная информация

Особисті якості

Hello everyone! I would like to briefly share my experience with you before you can view more details: I have been working in IT and Compliance for more than 8 years. Started as a GRC specialist and was involved in the support and implementation of ISO 27001. Then participated in ISO 27701 and SOC2 processes. At the moment I have experience of creating an Integrated Management System and Compliance Department from the very beginning. I also have knowledge and experience with ISO 20000, ISO 13485, ISO 42001, HIPAA, GDPR and several similar standards. I am looking for new and interesting job opportunities and would like to share my knowledge and experience in my new job. Please contact me further if you have any questions. Let's make Security and Compliance together!
https://www.linkedin.com/in/liubov-mykulets/

Liubov

Compliance Lead/ Quality Manager/ Consultant/ Internal Auditor

Львов

38 лет

полная занятость

Характер работы: удаленная работа, гибридная

Обновлено 1 месяц назад