Stefan Radushev
Cyber Security Consultant
Erfahrungen
Juli 2023 - Juli 2024
1 Jahr 1 Monate Switzerland
Cyber Security Consultant
Galderma S.A Switzerland
- Patch Management process and implementation SME
- Penetration testing SME - define scope, create tender, support pen testing teams, approve the reports and translate them to the CLevel management
- Policy Compliance / Asset Inventory - hardening standard
- Qualys and ServiceNow Vuln. Response synchronization project Phase 2
- CyberArk IAM/PAM integration and roll-our
- Cloud Security Architecture Azure, AWS
- OT Networks Design and Implementation Secure Factory Designs
- O365 Azure Security Center - server hardening
- KnowB4 staff awareness training and phishing simulations
- PhishER phishing email protection integration and configuration
- SME for Incident Response and Prevention
Okt. 2022 - Juni 2023
9 Monaten Germany
Cyber Security Consultant
NTT DATA
- Design and lead the Vulnerability Management transformation program for a big client in the construction field
- Implement different roll-our strategies
- PoC a vulnerability management solution Qualys
- Project Manager and Lead for a team of 10 people
- Create and implement custom dashboards, widgets and reports for the clients needs
- Align and integrate the Vulnerability Management system Qualys with ServiceNow CMDB, NAC, SOAR and other solutions
- Act as final level of support for troubleshooting or creating custom solutions in Qualys
- Part of the Architecture board for the client
Mai 2022 - Nov. 2022
7 Monaten Switzerland
Security and Patch Management Consultant
International Committee of the Red Cross
- Assessment and evaluation of the VM/PM processes against ISO27005
- Architectural design of a new VM/PM processes following ISO27005
- Process involving over 200 apps and different teams
- Security VM and PM workshops
- Hands-on implementation and configuration of a Vulnerability and PM system(Qualys)
- Implementation of hardening standards and following them with policy compliance(Qualys)
- SME for SOC integration SOAR Playbooks, policies, procedures, use cases
- Knowledge transfer
- Lowering of the FTE needed for different teams to patch using semi-automation process
Juni 2021 - Juni 2022
1 Jahr 1 Monate France
Cyber Security Consultant
AXA Operational Resilience
- Part of Operational Resilience team responsible for the whole AXA entity
- DDoS topic Subject-Matter Expert
- DDoS Protection Assessment on 50 entities
- Reviewing DDoS protections technologies Volumetric and Application layers
- XDR fast isolation and recovery use cases
- Attack case scenarios creation Ransomware, DDoS, Data leakage, etc
- Red Button creation use case creation following ISO standards
Okt. 2020 - Jan. 2022
1 Jahr 4 Monaten Switzerland
Cyber Security Consultant
Galderma S.A Switzerland
- Zscaler Administration
- IAM system tender and architecture CyberArk
- New Vulnerability Architecture Qualys
- Policy Compliance / Asset Inventory - hardening standard
- Security Awareness program KB4/PhishER
- ServiceNow Vulnerability Response and Qualys integration Architecture and documentation Phase1
- SecureWorks XDR Taegis RedCloak - tender, PoC, deployment and administration
- XDR SOC - Workflows, RACI, Runbooks creation
- O365 Azure Security Center - server hardening
- Network Security Architecture SME
- Cloud Security Architecture Azure, AWS
Sept. 2019 - Bis heute
5 Jahren 6 Monaten Bulgaria
Cyber Security / Penetration Testing Consultant
3Cyber-Sec Ltd.
- Cybersecurity and Penetration testing services for the Marine sector
- Build comprehensive Penetration testing customers scenarios for compliance frameworks SANS Top 25, OWASP Top 10, NIST
- Plan and execute Penetration tests services and Red team Exercises
- Develop technical and executive reports
- Present business oriented findings at front of customers executives
- Assists customers remediation process
- Project Management for Cyber Security
- Static Code Analysis
- SQLi, XSS, Overflows, DLLHijacking
- Vulnerability management - Nessus/Tenable, Qualys
- Wi-Fi testing
Sept. 2019 - Okt. 2020
1 Jahr 2 Monaten Bulgaria
Cyber Security Consultant
myPOS AD
- CyberSecurity and Penetration testing services
- Lead PCI DSS Level 1 certification - Project Management and SME
- Implement security measures following the new SPoC standard
- IDS solutions implementation Kibana, Suricata, Splunk
- HSM devices configuration, administration and PKI management(SafeNet)
- POSIX security architecture and hardening
- Remote office implementation and administration IDaaS F5 Big-IP
- Secure email gateway PoC and implementation Proofpoint
- Vulnerability Architecture and implementation into the CI/CD pipeline
- Qualys VMDR
- SIEM and EDR tender and implementation
- Created Staff Awaness program KnowBe4
- Phishing prevention Proofpoint
- Implementation of ISO27001/2 security principles
Sept. 2019 - Nov. 2019
3 Monaten Bulgaria
Penetration Testing Consultant
External penetration test on the network infrastructure, Exchange servers, web servers, web applications, blog and more.
Recon-ng, Maltego, Burp, Dirbuster, Nessus/Tenable, sqlmap, XPath, XXE, XSS, File Inclusion, Fuzzing, DLLHijacking, Buffer Overflow, Metasploit, NMap, crackmapexec, BloodHound, Kerberoast
Bash/Python scripting
Okt. 2017 - Bis heute
7 Jahren 5 Monaten Bulgaria
Data Protection Officer
Stargate Maritime LTD
- Act as point of contact with EU residents, supervisory authorities and internal teams
- Identify and evaluate the company's data processing activities
- Provide advice and instructions on how to conduct Data Protection Impact Assessments DPIAs
- Monitor data management procedures and compliance within the company
- Participate in meetings with managers to ensure privacy by design at all levels
- Maintain records of processing operations
- Address all queries from data subjects within legal timeframes
- Liaise with other organisations that process data on company behalf
- Write and update detailed guides on data protection policies
- Perform audits and determine whether we need to alter our procedures to comply with regulations
- Offer consultation on how to deal with privacy breaches
- Arrange for training on GDPR compliance for employees
- Follow up with changes in law and issue recommendations to ensure compliance
Dez. 2016 - März 2019
2 Jahren 4 Monaten Bulgaria
Information Security Officer
iCard AD
- Directing and approving the security designs of systems, applications, ATMs and PoS devices - hardware and SaaS, HSMs SafeNet, mobile applications/API
- Conducting Vulnerability, SIE, Patch, AV management, log analysis (splunk, ELK and Firewall rules review
- Involved in the process of testing and approving the security systems SIEM, AV, DLP, VM, IDP/IPS, OTP, web application firewalls
- Participate in the integration projects for the major card schemes Visa, Master Card, JCB, UnionPay, AMEX, Bancontact and more
- Reviewing and approving security policies, controls and cyber incident response planning
- Ensuring compliance with the changing laws and applicable regulations PCIDSS, Cyber Security Act
- Overseeing identity, access, BYOD, IoT, PKI management
- Ensuring that disaster recovery and business continuity plans are in place and tested
- Conducting Internal Penetration tests on the networks, servers, web applications, etc
- Employee Information security and Anti-Phishing training and communicating best practices and risks to all parts of the business
Sept. 2015 - Apr. 2016
8 Monaten Bulgaria
Corporate Administrator
iCard AD
- Evaluating network performance issues including availability, utilization, throughput, and latency
- Planning and executing the selection, installation, configuration, and testing of equipment; defining network policies and procedures; establishing connections and firewalls
- Securing network by developing network access, monitoring, control, and evaluation; maintaining documentation
- Upgrades network by conferring with vendors; developing, testing, evaluating, and installing enhancements
- Creating, installing and managing Virtual Machines on Hyper-V and VMWare
- Worked and troubleshoot Microsoft Active Directory, Microsoft DHCP and DNS servers, Windows Server 2007 R2, Windows Server 2008 R1/R2, Windows Server 2012 R1/R2
- Worked with Linux servers Debian and Ubuntu
- Installed, configured and maintained network equipment – switches, routers, access points from Cisco and Fortinet
- Installed and worked with VoIP servers and VoIP phones – FortiVoice, Freeswitch FusionPBX and Cisco Call Manager
- Bash scripting
- Installed and maintained monitoring
Juli 2012 - Bis heute
12 Jahren 8 MonatenIT & Cyber Security Consultant
Stargate Maritime LTD
- Office 365 Administration SaaS
- Reporting directly to CEO
- Migration of IaaS email and storage servers to Office 365
- Network segmentation External, DMZ, Internal
- Upgrading, installing and troubleshooting networks, networking hardware devices and software
- Analysing workflow, access, information, and security requirements for in-house software
- Preparing users by designing and conducting training programs providing references and support
Feb. 2011 - Sept. 2015
4 Jahren 8 Monaten Bulgaria
Level 2 Network Administrator
TCV AD
- Serving as the security officer for the network
- Recommending and scheduling repairs to the LAN/WAN
- Upgrading, installing and troubleshooting networks, networking hardware devices and software
- Establishing network specifications by conferring with users
- Analysing workflow, access, information, and security requirements
- Designing router administration, including interface configuration and routing protocols
Zusammenfassung
My background, while extensive, isn't traditional and believe me I know that.
After years working for the Blue team (Cyber Security), I decided that is not enough. I wanted to find ways to contribute even more to organizations. This is why I jumped the fence and started studying and working for the Red team (Penetration testers), as this allows me to be a Purple team member. Now I can do a penetration test on your infrastructure, do an educational phishing attack against your employees, after that sit with the IT and IS teams and do the Vulnerability, Patch and SIE management and after that stand in front of the Board of Directors and translate all that them in a way they understand. A true cultural changer that can work with any part of your organisation.
MY LIFE PHILOSOPHY
The wolf has a thick neck, because he does his job on his own.
Bulgarian proverb
Sprachen
Bulgarisch
Muttersprache
Englisch
Muttersprache
Ausbildung
Okt. 2006 - Juni 2012