Károly Aczél

Interim Head of Global IT Security Awareness and Communication

Passau, Germany
Experience
Jan 2024 - Dec 2024
1 year
Munich, Germany

Interim Head of Global IT Security Awareness and Communication

Amer Sports Group

  • Led and managed the global cybersecurity awareness program & served as global communications officer for the cybersecurity awareness program according to ISO 27001
Jan 2024 - Dec 2024
1 year
Oldenburg, Germany

Risk Handling & General Information Security

EWE Tel GmbH

  • Risk analysis to uncover gaps across 3 legal entities
  • Process mapping and design and strategic risk management
  • Training concept and content enablement for employees to run risk management compliant with norms and regulators (NIS2, ISO 27001, ISO 9001, ISO 50001)
Jan 2024 - Dec 2024
1 year
Hanover, Germany

Risk Management

ivv – Informationsverarbeitung für Versicherungen

  • Reviewed internal processes for regulatory compliance and identified and defined mitigation measures for processes not meeting regulatory requirements (NIS2, DORA)
Jan 2023 - Dec 2023
1 year
Essen, Germany

Senior Project Manager Cybersecurity

RWE AG

  • Implemented RWE’s cybersecurity strategy for 2 of 5 business units (Renewables – OPEA & OFF) considering the following standards & frameworks: KRITIS, NIS2, NIST, ISO27001
  • Led Renewables team, responsible for budget and project planning
  • Risk management, project management, employee training at RWE, point of contact for Renewables within the RWE group
Jan 2023 - Dec 2023
1 year
Stäfa, Switzerland

ISO 27001 Certification – ISMS Setup

Sensirion Connected Solutions AG

  • Supported ISO 27001 certification process – policies, SoA, documentation, risk matrix, processes, employee training
Jan 2017 - Dec 2022
6 years
Zürich, Switzerland

CISO, Head Risk & Compliance

Bär & Karrer AG

  • Responsible for building and running a unit to implement information security objectives according to ISO 27001
  • Responsible for updating and maintaining security documentation, security policy, and security guidelines; led GDPR
  • Managed information security projects and external service providers
  • Planned and conducted internal audits, supported customer and certification audits
  • Coordinated and delivered trainings/awareness
  • Developed, implemented, and reviewed risk strategy and risk-related policies and their implementation into processes, workflows, and systems
  • Analyzed and monitored all risk parameters and potential risks, ensuring appropriate measures to reduce risk
  • Responsible for strategic (compliance) direction and further development of compliance systems
Jul 2014 - Dec 2016
2 years 6 months
Vitznau, Switzerland

Risk & Integrity and Controlling Manager

ZZ Vermögensberatung (Schweiz) AG

  • Established, implemented, and continuously monitored risk management for the Swiss company according to FINMA requirements (operational and strategic for three funds: Emerging & Frontier Markets Fixed Income, Commodity & Volatility, and Private Equity – Offshore)
  • Contact person for stakeholders (banks, authorities, board of directors)
  • Prepared quarterly risk reports on funds for executive management & board of directors as well as banks
  • Prepared application for asset manager license (KAG, FINMA)
  • Introduced investment compliance system (MIG 21) and compliance processes (instructions, guidelines, regulations, employee handbook, and compliance organization specification) under FINMA supervision
  • Conducted regular compliance trainings for employees, responsible for training program (internal & external)
  • Strategic controlling of group companies (hotels, clinic, real estate) of the Pühringer Group (Park Hotel Vitznau AG, Campus Hotel Hertenstein AG, Cereneo AG, Park Hotel Vitznau Immobilien AG)
  • Developed, monitored, and consolidated monthly reporting of group companies
  • Quarterly reporting and year-end closing for group (strategic guidance)
Jun 2012 - May 2014
2 years
Zug, Switzerland

Financial Analyst

P&R Equipment and Finance Corp.

  • Identified, analyzed, and managed risks using quantitative approaches
  • Reviewed monthly/quarterly financial statements, result review
  • Monthly preparation, analysis, and commentary on profit and loss statement, balance sheet, and contribution margin accounting of investment pools
  • Designed, implemented, and maintained group controlling
  • Improved reporting and key figure systems
  • Budgeting and forecasting (liquidity management)
  • Prepared controlling and management reports
Sep 2005 - Dec 2010
5 years 4 months
Munich, Germany

Capital Market Sales (Fund Trading)

Bank Reuschel

Sep 2005 - Dec 2010
5 years 4 months
Munich, Germany

Capital Market Sales

Deutsche Bank

Sep 2005 - Dec 2010
5 years 4 months
Zug, Switzerland

Investment Manager

Invision Private Equity

Sep 2005 - Dec 2010
5 years 4 months
Indonesia

Trade & Marketing

K. Small Business Administration

Sep 2005 - Dec 2010
5 years 4 months
Zug, Switzerland

Investment Controller

TDF Ecotech AG

Summary
  • Expert in information security (ISO 27001/ NIS2 / DORA / KRITIS / (B,K,V)-AIT and risk management
  • Leader with strong entrepreneurial and business mindset and approach
Languages
German
Native
English
Advanced
Hungarian
Advanced
Education
Oct 2011 - Jun 2012

Pacific States University

Master of Business Administration, specialization in Finance · Los Angeles, United States

Oct 2004 - Jun 2009

Fachhochschule Rosenheim

Diploma in Business Administration (FH), specialization in Controlling, Taxation & Auditing · Rosenheim, Germany

Fachoberschule Passau

Technical high school diploma, specialization in Business · Germany

Certifications & licenses

CISM

Cyber Crime & Digital Forensics

Forentec GmbH

Cyber Threats

Swiss Infosec

ISO / IEC 27001 Foundation

Digicomp Academy AG

Compliance & Risk

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions