Gino Peduto

Compliance Expert

Heidelberg, Germany

Experience

Jan 2024 - Present
1 year 7 months

Compliance Expert

CAIRO AG

Supporting a medium-sized company with TISAX certification

  • Developing a customized action plan based on TISAX requirements
  • Assisting with the implementation of security measures
  • Ongoing advice for creating and maintaining an ISMS
  • Introducing Intervalid as a workflow solution for certification, audit & ISMS maintenance
  • Preparation for certification
Jan 2024 - Present
1 year 7 months

Compliance Expert

CAIRO AG

IT risk management and compliance optimization focused on cyber security checks and the NIS 2 directive

  • Analyzing the current IT and security landscape
  • Cyber security check and NIS2 gap analysis
  • Risk assessment and prioritization
  • Transformation consulting for IT compliance and cybersecurity
  • Support in developing and implementing business continuity strategies
Jan 2024 - Dec 2025
1 year

Compliance Expert

CAIRO AG

Security concept for a public sector institution

  • Analyzing requirements considering an existing ISMS (Verinice platform)
  • Creating and managing a project plan
  • Coordinating between departments and IT security
  • Documentation: structure analysis, protection needs analysis, modeling, risk analysis, basic protection check
Jan 2020 - Dec 2022
3 years

QA Automation Engineer

CAIRO AG

E2E test framework

  • Designing and creating E2E tests for various payment systems on different webshops
  • Programming language: Kotlin/Java
  • Tools: Selenium, RestAssured, Jenkins, GitHub Actions, BrowserStack, TestRail
Jan 2019 - Dec 2021
3 years

Software Engineer

CAIRO AG

Development of a RiskCheck tool

  • Tool for compliance checks according to Basel III
  • Connecting various databases
  • Automatic import and matching of sanction lists
  • Implementing advanced rating algorithms
  • Resource-efficient processing
  • Programming language: Python
  • Library: Pandas

Summary

Consultant for IT security & compliance, Information Security Officer. Experience in quality and risk management at Germany's leading payment provider

  • Security consulting according to norms and standards: ISO 27001, BSI Basic Protection, TISAX, SDCSOGVCOe, NIS2, VddCS C10N000A
  • Development and implementation of security strategies
  • Advice on legal and regulatory compliance
  • Development of business continuity and disaster recovery plans
  • Audit preparation

Languages

English
Advanced
German
Advanced
Italian
Intermediate

Education

Lorem ipsum dolor sit amet

Bachelor of Computer Science · Computer Science

Lorem ipsum dolor sit amet

Master of Political Science · Political Science

Certifications & licenses

Azure Administrator Associate

Microsoft

Compliance Expert

ISTQB Foundation Level

ISTQB

Information Security Officer ISO/IEC 27000 ff. plus IT Roles Basic Protection

DEKRA

Kubernetes Administrator

Microsoft MS 900

Microsoft

VdS 10003 Examination

VdS

Security Expert

Solution Expert