← Back to list
senior
Registration: 29.08.2022

Aliaksei Brusiantsou

Specialization: Security Architect
Security Architect at EPAM IT Security team, focused on Enterprise-scale projects, including SIEM, CASB, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity controls, Cloud security stack, VLM, Risk evaluation, EMM, Information Architecture, Integration, Search and Infrastructure. Overall IT experience is 13+ years, chief officer role experience is 6+ years.
Information architecture Security audit
Security Architect at EPAM IT Security team, focused on Enterprise-scale projects, including SIEM, CASB, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity controls, Cloud security stack, VLM, Risk evaluation, EMM, Information Architecture, Integration, Search and Infrastructure. Overall IT experience is 13+ years, chief officer role experience is 6+ years.
Information architecture Security audit

Portfolio

Homecredit Bank (Belarus)

- Implementation SIEM (IBM Qradar), DLP (Searchinform). - Implementation antispam protection (Symantec Mail Security), EDR (Symantec Endpoint Protection). - GRC documentation: security policy, management passwords, anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy).

JSC Bank Processing Center

- Passing audit PCI DSS, PCI PA, PCI CP. - Team management (6). Assign tasks, allocation of resources, control, KPI. - Implementation GRC (RVision Risk manager), SIEM (HP ArcSight). - Implementation and maintenance security incident process. - Implementation Integrity control (Symantec Data Center Security (Critical System Protection).

EPAM Systems

Customer: Software & Hi-Tech. - Team management (24). Assign tasks, allocation of resources, control, KPI. - Security governance and compliance: global company roadmaps, annual budget, resource allocation. - Collaboration with different service teams during hardening, and implementation solutions. - Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess). - Implementation EDR (SentinelOne), Honeypots (TrapX), BitLocker, FileVault. - Amazon, Azure, GCP and EPAM Cloud Security. - Implementation of Cisco Umbrella, DarkTrace, PaloAlto NGIPS. - Implementation Nessus, Qualys, Acunetix scanners and agents. - Passing audits: ISO27k, PCI DSS, ISAE 3402, GDPR. - Implementation PAM (OneIdentity), AntiSpam (ProofPoint). Customer: Petrofac (Sharjah). - Creation and leading security Azure hybrid architecture (7000 endpoints, 900 servers). - Building ZeroTrust: MCAS, Intune, MFA, Azure Sentinel, WD ATP, Azure ATP. - Implementation Office365 DLP. - SOC manager/coordination OPS cyber activities (18 team members). - Continuous vulnerability management from the ground-up (Nessus, Nipper, WDATP). - Implementation EDR solution (CrowdStrike).

Skills

CISSP
TOGAF
CISA
CDPSE
CCSP
ITIL4

Work experience

Security Architect, Lead
since 09.2019 - Till the present day |EPAM Systems
Nessus, Azure Sentinel, MCAS, WD ATP, Azure ATP, CrowdStrike, Thycotic, CarbonBlack, Qradar IBM, BeyondTrust, OPSWAT MetaDefender, MetaAccess, DarkTrace ATP, UEBA, SIEM, CVM
Customer: Petrofac (Sharjah). - Creation and leading security Azure hybrid architecture (7000 endpoints, 900 servers). - Building ZeroTrust: MCAS, Intune, MFA, Azure Sentinel, WD ATP, Azure ATP. - Implementation Office365 DLP. - SOC manager/coordination OPS cyber activities (18 team members). - Continuous vulnerability management from the ground-up (Nessus, Nipper, WDATP). - Implementation EDR solution (CrowdStrike).
Chief Information Security Officer (PM, RM, DM, Architect)
11.2015 - 09.2021 |EPAM Systems
.
Customer: Software & Hi-Tech. - Team management (24). Assign tasks, allocation of resources, control, KPI. - Security governance and compliance: global company roadmaps, annual budget, resource allocation. - Collaboration with different service teams during hardening, and implementation solutions. - Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess). - Implementation EDR (SentinelOne), Honeypots (TrapX), BitLocker, FileVault. - Amazon, Azure, GCP and EPAM Cloud Security. - Implementation of Cisco Umbrella, DarkTrace, PaloAlto NGIPS. - Implementation Nessus, Qualys, Acunetix scanners and agents. - Passing audits: ISO27k, PCI DSS, ISAE 3402, GDPR. - Implementation PAM (OneIdentity), AntiSpam (ProofPoint).
Deputy Chief Information Security Officer
06.2014 - 10.2015 |JSC Bank Processing Center
.
Project: PCI DSS, PCI CP. - Passing audit PCI DSS, PCI PA, PCI CP. - Team management (6). Assign tasks, allocation of resources, control, KPI. - Implementation GRC (RVision Risk manager), SIEM (HP ArcSight). - Implementation and maintenance security incident process. - Implementation Integrity control (Symantec Data Center Security (Critical System Protection).
Chief Security Specialist
04.2008 - 06.2014 |Homecredit Bank (Belarus)
.
Project: SIEM, DLP, EDR, Antispam,PCI DSS. - Implementation SIEM (IBM Qradar), DLP (Searchinform). - Implementation antispam protection (Symantec Mail Security), EDR (Symantec Endpoint Protection). - GRC documentation: security policy, management passwords, anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy).

Educational background

Business administration, economics and management (Bachelor’s Degree)
2010 - 2012
School of Business and Management of Technology of BSU
Engineer of Information Technology and Management (Bachelor’s Degree)
2003 - 2008
Belarusian State University of Informatics and Radioelectronics

Languages

EnglishAdvancedSpanishUpper IntermediateRussianNative
Information architectureSecurity audit