A

Aliaksei Brusencov CISSP, TOGAF, CCSP, CISA, CDPSE, MCSAA, ITIL, AAIA

DevOps Engineer

Amsterdam, North Holland, Netherlands17 yrs 11 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • 14+ years of IT experience with a focus on security architecture.
  • Expertise in SIEM, ATP, DLP, and Microsoft technology stack.
  • Led security architecture initiatives for major clients.
Stackforce AI infers this person is a Security Architect specializing in enterprise IT security solutions.

Contact

LinkedIn

Skills

Core Skills

Enterprise SecurityCloud SecuritySecurity Architecture

Other Skills

Endpoint SecurityZero TrustCloud Access Security Broker (CASB)Identity & Access Management (IAM)Client Consultingcode hooksAnthropic ClaudeClaude SkillsAI SecuritySecurity Information and Event Management (SIEM)Identity and Access Management (IAM)Information Security ManagementPCI DSSIntegrity ManagementVulnerability Management

About

Security solution architect focused on Enterprise-scale projects, including Zero Trust, SIEM, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity controls, Cloud security stack, VLM, Risk management, EMM, Information Architecture, Integration, RnD. Primary expertise is in SIEM, ATP, DLP, VLM and Microsoft technologies stack. Overall IT experience is 14+ years, chief role experience is 6+ years. Performing role of technical security lead, system architect and project coordinator; provided planning, architecture and supervision services for multiple implementation projects and prototyping initiatives. Provided architecture consulting for clients like Bridgewater, Novartis, Mercedes-Benz, ThyssenKrupp, Petrofac, AlphaBank. Architecture certifications: CISSP, TOGAF, CCSP, CISA, CDPSE, Security Risk Management and Evaluation Microsoft certifications: Certified Microsoft Security Administrator, Certified Microsoft Enterprise Administrator Technical certifications: Symantec Data Loss Prevention (SSE, SSE+), Symantec Messaging Gateway (SSE, SSE+, STS), HP ArcSight ESM, Logger, Express (SSE, SSE+), Symantec Security Information Manager (SSE, SSE+, STS), QualysGuard Vulnerability Management, Symantec Critical System Protection (STS), IBM Qradar Management, OPSWAT MetaAccess Certified Administrator

Experience

17 yrs 11 mos
Total Experience
3 yrs 8 mos
Average Tenure
10 yrs 6 mos
Current Experience

Epam systems

4 roles

Security Architect II

Promoted

Jan 2022Present · 4 yrs 4 mos

  • Security solution architect II at EPAM IT Security team, focused on Enterprise-scale projects, including Zero Trust, SIEM, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity solution, Cloud security stack (AWS ,Azure), VLM, GRC, EMM, Information Architecture, Integration, Search and Infrastructure. Primary expertise is in SIEM, ATP, DLP, VLM and Microsoft technologies stack.
  • Overall IT experience is 15+ years
  • Performing role of technical security lead, system architect and project coordinator; architecture and supervision services for multiple implementation projects and prototyping initiatives.
  • Perform Security Audits for on-going projects: both Architecture and Implementation/Code Review
  • Building Secure Architecture and Design for the new projects and making corrections to the existing ones
  • Work as a Security Advisor helping to establish secure development activities in SDLC end-to-end
  • Perform Security Trainings for Development Teams
  • Communicate with customers and teams, convey the message about importance of security, the ways of establishing it and the wrong ways of enforcing it
  • Communicate with all sub-teams: BAs, Developers, QAs, building consistent understanding of Security Requirements, main Threats, Mitigations implemented
  • Provided security architecture consulting for clients Bridgewater, Mercedes-Benz, Thyssenkrupp, Petrofac, Novartis, AlphaBank.
Enterprise SecurityEndpoint SecurityCloud SecurityZero TrustCloud Access Security Broker (CASB)Identity & Access Management (IAM)

Security Solution Architect

Feb 2021Feb 2022 · 1 yr

  • Security solution architect at EPAM IT Security team, focused on Enterprise-scale projects, including Zero Trust, SIEM, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity solution, Cloud security stack (AWS ,Azure), VLM, GRC, EMM, Information Architecture, Integration, Search and Infrastructure. Primary expertise is in SIEM, ATP, DLP, VLM and Microsoft technologies stack.
  • Provided security architecture consulting for clients DCS, IMF, Mercedes-Benz.
  • Developed Secure Closed Perimeters packages including a list of all available controls/schemes/others
  • Implemented solutions: CrowdStrike/Zscaler/MCAS/WD ATP/Azure ATP/DarkTrace/CarbonBlack

Chief Security System Engineer

Oct 2017Feb 2021 · 3 yrs 4 mos

  • Team management (14). Assign tasks, allocation of resources, control, KPI
  • Security governance and compliance: global company roadmaps, annual budget, resource allocation
  • Collaboration with different service teams during hardening, implementation solutions.
  • Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess)
  • Implementation Honeypots (TrapX)
  • Hardening NGEndpoint (Symantec Endpoint Protection), host-based IPS
  • Endpoint encryption by BitLocker, FileVault
  • Amazon,Azure,GCP and EPAM cloud Security
  • AppLocker tool
  • Implementation Cisco Umbrella (URL/DNS filtering)
  • Network UEBA (DarkTrace)
  • Implementation PaloAlto and Cisco NGIPS
  • Implementation and maintenance security incident process L1-L2-L3
  • Implementation Nessus, Qualys, Acunetix scanners and agents
  • Documentation improvements: policies, work instructions
  • Security awareness: Yammer, Org employees, trainings
  • Honeypot for phishing emails
  • Passing audits: ISO27k,PCIDSS,ISAE3402,GDPR
  • Implementation PAM (OneIdentity)
  • Implementation AntiSpam (ProofPoint)

Lead security system engineer

Nov 2015Oct 2017 · 1 yr 11 mos

  • Team management (5). Assign tasks, allocation of resources, control, KPI
  • Collaboration with different service teams during hardening, implementation solutions.
  • Hardening NGEndpoint (Symantec Endpoint Protection), host-based IPS
  • Endpoint encryption by BitLocker, FileVault
  • Amazon and EPAM cloud Security
  • AppLocker tool
  • POC SIEM HP ArcSight and IBM Qradar
  • Implementation Cisco OpenDNS
  • POC PaloAlto and Cisco NGIPS
  • Implementation and maintenance security incident process
  • Nessus, Qualys, Acunetix scanners
  • IDS-IPS implementation management
  • Documentation improvements: policies, work instructions
  • Security awareness: Yammer, Org employees, trainings
  • Honeypot for phishing emails

Jsc banks processing center

Deputy Chief Information Security Officer

Jul 2014Nov 2015 · 1 yr 4 mos · Belarus, Minsk

  • Passed audit PCI DSS, PCI CP
  • Team management (6). Setting tasks, allocation of resources, control.
  • Implementation and maintenance risk management and assessment process (RVision Risk manager)
  • Implementation and maintenance SIEM (HP ArcSight).
  • Implementation and maintenance security incident process
  • Implementation and maintenance of the integrity system (Symantec Data Center Security (Critical System Protection) )
  • The development of the documentation: security policy , security standarts for devices, management passwords , order of the access policy control external devices, the order of application management , virus protection order , order of backup , network segmentation policy and other documents)
  • Monitor and evaluate the effectiveness of implemented security solutions

Homecredit bank (belarus)

Senior Security Specialist

Jul 2011Jul 2014 · 3 yrs · Belarus, Minsk

  • Implementation and maintenance SIEM (IBM Qradar).
  • Implementation and maintenance DLP (Searchinform)
  • Management of antispam protection (Symantec Mail Security)
  • Management of anti-virus protection and firewall (Symantec Endpoint Protection)
  • Implementation and maintenance application and device control system (Symantec Endpoint Protection with plugins)
  • The development of the documentation: security policy , management passwords , security policy for control external devices , anti-spam protection policy, application security policy, antivirus policy, backup policy, network segmentation policy and other documents)
  • Monitor and evaluate the effectiveness of implemented security solutions
  • Interaction with colleagues in English (colleagues from Chech Republic - Homecredit Chech).
  • pre- audit PCI DSS

Searchinform

Security Specialist

Jan 2010Jul 2011 · 1 yr 6 mos · Minsk

  • The definition of vulnerabilities in the information structure of the customer company, the definition of methods to eliminate, issuing recommendations to address the gaps in enterprise security
  • Installation and configuration DLP systems (Searchinform, Symantec )
  • Monitor and evaluate the effectiveness of implemented security solutions

Minsk regional real estate agency (brti)

Senior System Administrator

Jun 2008Oct 2010 · 2 yrs 4 mos · Minsk,st. Papanina 9

  • Management numerous of servers distributed throughout the region (including replication, migration, subdomains, etc.)
  • Installation, configuration and optimization of the operating system, installing and configuring software
  • Implementation and maintenance anti-virus system (Kaspersky)
  • Implementation and maintenance centralized backup system (Acronis Backup)
  • Administration servers with SQL databases
  • Technical support for conferences
  • Implementation and maintenance CA, terminals queues
  • Management audio and video surveillance systems
  • Installation local networks, service switching cabinets, patch panels

Education

The Belarusian State University of Informatics and radioelectronics

specialist — Engineer of Information Technology and Management

Jan 2003Jan 2008

Belarusian State University

specialist

Jan 2010Jan 2012

Stackforce found 100+ more professionals with Enterprise Security & Cloud Security

Explore similar profiles based on matching skills and experience

Aniruddha Biyani

Aniruddha Biyani

Information Security

at Prophecy

Bengaluru, India10 yrs 4 mos exp
Natchaphon Burapanonte

Natchaphon Burapanonte

Cybersecurity Architect

at Ascend Money

Bangkok, Thailand10 yrs 6 mos exp
Application ArchitectureCyber-securityIT ComplianceSecurity Architecture DesignPenetration Testing
Ravi Yadav

Ravi Yadav

Global Head, Cybersecurity Business Unit at Tata Consultancy Services

at Tata Consultancy Services

Atlanta, United States22 yrs 10 mos exp
Cloud SecurityCyber SecuritySecurity Strategy DevelopmentRisk ManagementNetwork Security
Harpreet Dhiman

Harpreet Dhiman

Staff Engineer - Security

at Beckman Coulter Diagnostics

Bengaluru, India14 yrs 4 mos exp
Product SecuritySecurity EngineeringDevSecOpsApplication SecuritySecurity Consulting
KS

Kamal Sharma

Accumulated Expertise

at Career-Wide Experience

Abu Dhabi, United Arab Emirates0 mo exp
Jaspal Singh Khaira

Jaspal Singh Khaira

Lead Analyst (Senior Engineer)

at PCS Security

Singapore, Singapore10 yrs 5 mos exp
Incident ResponseCyber Threat Hunting (CTH)Cyber Threat Intelligence (CTI)Malware AnalysisNetwork Security
Jason Rees

Jason Rees

Senior Vice President, Technology Cloud Engineering, EMEA

at Oracle

Wokingham, United Kingdom30 yrs 1 mo exp
Cloud ComputingEnterprise ArchitectureInformation Security
Ali Yazdani

Ali Yazdani

Founder

at ScanDog

Berlin, Germany16 yrs 3 mos exp
DevSecOpsApplication SecurityThreat & Vulnerability ManagementPenetration TestingWeb Application Security Assessment