Károly Aczél
Interim Head of Global IT Security Awareness and Communication
Experience
Jan 2024 - Dec 2024
1 yearMunich, Germany
Interim Head of Global IT Security Awareness and Communication
Amer Sports Group
- Led and managed the global cybersecurity awareness program & served as global communications officer for the cybersecurity awareness program according to ISO 27001
Jan 2024 - Dec 2024
1 yearOldenburg, Germany
Risk Handling & General Information Security
EWE Tel GmbH
- Risk analysis to uncover gaps across 3 legal entities
- Process mapping and design and strategic risk management
- Training concept and content enablement for employees to run risk management compliant with norms and regulators (NIS2, ISO 27001, ISO 9001, ISO 50001)
Jan 2024 - Dec 2024
1 yearHanover, Germany
Risk Management
ivv – Informationsverarbeitung für Versicherungen
- Reviewed internal processes for regulatory compliance and identified and defined mitigation measures for processes not meeting regulatory requirements (NIS2, DORA)
Jan 2023 - Dec 2023
1 yearEssen, Germany
Senior Project Manager Cybersecurity
RWE AG
- Implemented RWE’s cybersecurity strategy for 2 of 5 business units (Renewables – OPEA & OFF) considering the following standards & frameworks: KRITIS, NIS2, NIST, ISO27001
- Led Renewables team, responsible for budget and project planning
- Risk management, project management, employee training at RWE, point of contact for Renewables within the RWE group
Jan 2023 - Dec 2023
1 yearStäfa, Switzerland
ISO 27001 Certification – ISMS Setup
Sensirion Connected Solutions AG
- Supported ISO 27001 certification process – policies, SoA, documentation, risk matrix, processes, employee training
Jan 2017 - Dec 2022
6 yearsZürich, Switzerland
CISO, Head Risk & Compliance
Bär & Karrer AG
- Responsible for building and running a unit to implement information security objectives according to ISO 27001
- Responsible for updating and maintaining security documentation, security policy, and security guidelines; led GDPR
- Managed information security projects and external service providers
- Planned and conducted internal audits, supported customer and certification audits
- Coordinated and delivered trainings/awareness
- Developed, implemented, and reviewed risk strategy and risk-related policies and their implementation into processes, workflows, and systems
- Analyzed and monitored all risk parameters and potential risks, ensuring appropriate measures to reduce risk
- Responsible for strategic (compliance) direction and further development of compliance systems
Jul 2014 - Dec 2016
2 years 6 monthsVitznau, Switzerland
Risk & Integrity and Controlling Manager
ZZ Vermögensberatung (Schweiz) AG
- Established, implemented, and continuously monitored risk management for the Swiss company according to FINMA requirements (operational and strategic for three funds: Emerging & Frontier Markets Fixed Income, Commodity & Volatility, and Private Equity – Offshore)
- Contact person for stakeholders (banks, authorities, board of directors)
- Prepared quarterly risk reports on funds for executive management & board of directors as well as banks
- Prepared application for asset manager license (KAG, FINMA)
- Introduced investment compliance system (MIG 21) and compliance processes (instructions, guidelines, regulations, employee handbook, and compliance organization specification) under FINMA supervision
- Conducted regular compliance trainings for employees, responsible for training program (internal & external)
- Strategic controlling of group companies (hotels, clinic, real estate) of the Pühringer Group (Park Hotel Vitznau AG, Campus Hotel Hertenstein AG, Cereneo AG, Park Hotel Vitznau Immobilien AG)
- Developed, monitored, and consolidated monthly reporting of group companies
- Quarterly reporting and year-end closing for group (strategic guidance)
Jun 2012 - May 2014
2 yearsZug, Switzerland
Financial Analyst
P&R Equipment and Finance Corp.
- Identified, analyzed, and managed risks using quantitative approaches
- Reviewed monthly/quarterly financial statements, result review
- Monthly preparation, analysis, and commentary on profit and loss statement, balance sheet, and contribution margin accounting of investment pools
- Designed, implemented, and maintained group controlling
- Improved reporting and key figure systems
- Budgeting and forecasting (liquidity management)
- Prepared controlling and management reports
Sep 2005 - Dec 2010
5 years 4 monthsMunich, Germany
Capital Market Sales (Fund Trading)
Bank Reuschel
Sep 2005 - Dec 2010
5 years 4 monthsMunich, Germany
Capital Market Sales
Deutsche Bank
Sep 2005 - Dec 2010
5 years 4 monthsZug, Switzerland
Investment Manager
Invision Private Equity
Sep 2005 - Dec 2010
5 years 4 monthsIndonesia
Trade & Marketing
K. Small Business Administration
Sep 2005 - Dec 2010
5 years 4 monthsZug, Switzerland
Investment Controller
TDF Ecotech AG
Summary
- Expert in information security (ISO 27001/ NIS2 / DORA / KRITIS / (B,K,V)-AIT and risk management
- Leader with strong entrepreneurial and business mindset and approach
Languages
German
NativeEnglish
AdvancedHungarian
Advanced Education
Oct 2011 - Jun 2012
Pacific States University
Master of Business Administration, specialization in Finance · Los Angeles, United States
Oct 2004 - Jun 2009
Fachhochschule Rosenheim
Diploma in Business Administration (FH), specialization in Controlling, Taxation & Auditing · Rosenheim, Germany
Fachoberschule Passau
Technical high school diploma, specialization in Business · Germany
Certifications & licenses
CISM
Cyber Crime & Digital Forensics
Forentec GmbH
Cyber Threats
Swiss Infosec
ISO / IEC 27001 Foundation
Digicomp Academy AG
Compliance & Risk
Need a freelancer? Find your match in seconds.
Try FRATCH GPT More actions
Similar Freelancers
Discover other experts with similar qualifications and experience
