Szukasz pracownika?
Marcin Wolak

offline

Marcin Wolak

IT Security Professional, CISSP-ISSAP ISSMP CISA MCITP:EA MCSE:Security IBM i 6.1 Administrator

Miejscowość:
Amsterdam, zagranica
Branże:
Doradztwo/Konsulting
Finanse/Ekonomia
Informatyka/Administracja

Zobacz pełny profil

Stwórz profil

Musisz wpisać swoje imię
Musisz wpisać swoje nazwisko
Musisz wpisać poprawny e-mail
Musisz wpisać hasło (min. 8 znaków)
Musisz zaakceptować regulamin

Doświadczenie i referencje

Firma:
ABN AMRO Bank NV - Amsterdam, The Netherlands (od 2008-03)
Stanowisko:
Senior Technology Risk Analyst
Obowiązki:
- Analysing security architecture (network, OS, DB and application layer) of IT systems;
- Defining security requirements for IT Systems;
- Assessing risks for IT Systems and Processes and recommending countermeasures to mitigate them;
- Defining action plans for assessed systems and applications;
- Defining scopes for penetration and application security tests.
Firma:
ABN AMRO Polish Financial Advisory Services - Warsaw (od 2006-09 do 2008-03)
Stanowisko:
Technology Risk Analyst
Obowiązki:
- Analysing security architecture (network, OS, DB and application layer) of IT systems;
- Defining security requirements for IT Systems;
- Assessing risks for IT Systems and Processes and recommending countermeasures to mitigate them;
- Defining action plans for assessed systems and applications;
- Defining scopes for penetration and application security tests.
Firma:
European Network Security Institiute (www.ensi.net) - Warsaw (od 2003-05 do 2006-08)
Stanowisko:
IT Security Consultant
Obowiązki:
- Defining and developing internal methodologies, processes and procedures for penetration testing and performing security audits;
- Developing, implementing and reviewing corporation’s Information Security Policy (establishing information security policy for Banks and other Financial Institutions, Heat and Power Plants and other companies);
- Designing security strategies for corporate environments and supervising their deployment;
- Defining security requirements for IT Systems,
- Assessing risks and implementing contermeasures to mitigate them,
- Performing penetration tests and security audits of corporation’s external and internal networks, computer systems, firewalls, and other devices,
- Performing security tests of Web applications, specially E-Banking applications (over 20 successfully finished projects),
- Finding holes and vulnerabilities in software deploying by customers (Reverse Engineering of win32 applications),
- Defining and developing security standards, configurations, guidelines and procedures to protect operating systems and applications against intruders;
- Providing security consulting for customers;
- Monitoring security of customers network services;
- Writing articles for computer magazines;
- Speaking at security workshops.
Firma:
Dialog Telecom (www.dialog.pl) - Wroclaw (od 2001-08 do 2002-11)
Stanowisko:
IT Specialist
Obowiązki:
Administering Windows NT/2000 and UNIX (Sun Solaris) Servers. Designing backup strategy. Testing and choosing solutions to improve servers and networks security. Installation, configuration and testing of software.
Firma:
Bank Zachodni WBK - AIB Group (www.bzwbk.pl) - Wroclaw (od 2000-09 do 2001-07)
Stanowisko:
E-Banking System Maintenance Specialist
Obowiązki:
Administering, securing and maintaining Windows NT/2000 and UNIX (AIX,ICL) Servers. Designing backup strategy. Performing functional and security tests of Internet banking applications.

Edukacja

Uczelnia:
Politechnika Wrocławska (1994-10 - 2000-06)

Zobacz stronę uczelni »

Kierunek:
Informatyka - Wydział Informatyki i Zarządzania, Specjalność Systemy Sterowania
Poziom studiów:
magisterskie

Informacje dodatkowe

Przebyte kursy:
Information Systems Security Management Professional (ISSMP), January 2012
IBM i 6.1 Administration, November 2011
Certified Information Systems Security Professional (CISSP), July 2004, recertified in July 2007 and July 2010
Information Systems Security Architecture Professional (ISSAP), May 2009, recertified in July 2010
Microsoft Certified IT Professional: Enterprise Administrator (Windows 2008), January 2010
Microsoft Certified Systems Engineer: Security specialization on Windows 2000 & 2003, January 2008
Certified Information Security Auditor (CISA), January 2009
ITIL V3 Foundation Certificate, September 2010
Security Clearance (Confidential Level), issued by Internal Security Agency (ABW) in Poland, July 2003,
ISMS Lead Auditor (27001), November 2007
ISMS Internal Auditor (BS7799-2), November 2004
Organizacje:
ISC2 - http://isc2.org
Języki:
English - fluent
Nederlands - vloeiend
Russian - basic
Hobby:
Sport, music, good movies
Inne:
Speaker at security workshops: - Workshops for Security Administrators – organized by European Network Security Institute

Author of articles for computer magazines:

- Universal shellcode for MS Windows Systems” – Hakin9 (2/2004) Article describes creation of universal shellcode for all 32-bit MS Windows Systems and was published in Polish, German, Spanish and French editions

- Remote Exploit for MS Windows 2000” – Hakin9 (4/2004) Article describes creation of remote exploit for MS Windows 2000 RPC Locator service (buffer overflow vulnerability) Service and was published in Polish, German, Spanish, French and Czech editions

- My first buffer overflow” – msCoder (1/2006)

Grupy


ISSA Polska ISSA Polska

Information Security Systems Association Polish Chapter, czyli ISSA

Profil pochodzi z serwisu GoldenLine.pl

© 2005-2012 GoldenLine.pl Wszelkie prawa zastrzeżone.

Wyślij zaproszenie do

Anuluj