Lucas (Msc) Garzarolli
Business Consultant
Experience
Business Consultant
nospia e.U.
- By striving to always deliver the best results, I was able to help many companies improve their security posture, reduce risks, and build a solid foundation for data protection and information security, as well as successfully execute complex IT projects.
Security Officer
x-tention
- Conducting internal and external data protection and information security projects
- Hosting workshops for clients with critical infrastructure in the industrial and healthcare sectors
Security Officer
Usabilla by SurveyMonkey
- Lead responsible for information security and data protection: strategy, processes, communication, product improvements, policies, and agreements
- Leading initiatives to implement an information security management system (ISMS) and achieving successful initial ISO 27001 certification with zero non-conformities
Security & Privacy Consultant
Deloitte
- Providing consulting services in data protection (GDPR), information security, and risk management
- Conducting security awareness trainings for clients across various industries
Quality Specialist
Socionext EU
- Managing and developing the central project management platform
- Designing and implementing an authorization concept to resolve SOD conflicts and optimize the existing IAM
Summary
For over a decade, I have supported companies in information security, data protection, governance, risk management, compliance (GRC), and project management. Working as an external consultant and internal security officer has not only given me a solid understanding of compliance management but also taught me how to tackle the various organizational challenges that come with it. I am highly committed and always do my best to deliver projects as efficiently as possible and to my clients' complete satisfaction.
My professional background spans a range of industries, including logistics, financial services, information and communication technology, the food industry, tech companies, construction, manufacturing, recycling, publishing, government institutions, and healthcare.
Skills
Data Protection (Gdpr, Ccpa)
Iso 27001
Information Security
Risk And Project Management
Compliance Management
Team Lead
Business Process Optimization
Negotiation
Microsoft Office
G Suite
Implementation And Optimization Of Information Security Management Systems (Isms): Leading And Supporting Initial Iso 27001 Certifications And Re-certifications. Projects Included Defining Clear Security Strategies And Setting Measurable Goals, As Well As Implementing And Improving Documentation, Processes, And Controls In Risk Management, Business Continuity Management, Change Management, Coordinating Penetration Tests, Asset Management, Business Partner Vetting, And Internal Audits.
Compliance And Data Protection Consulting: Structuring And Formalizing Compliance Management, Creating And Improving Documentation, Policies, And Processes, Conducting Gap Analyses, And Implementing Measures To Ensure Compliance With The Eu Gdpr, Other European Laws, And Some International Regulations In Data Protection And Information Security.
Workshops And Training: Security Awareness (Developing And Delivering Security Awareness Programs For Employee Onboarding, Advanced Modules For Further Training And Refreshers, Additional Materials, And Regular Communication Activities) As Well As Workshops And Training On Data Protection And The Eu Gdpr To Raise Awareness Of General Data Protection Requirements And To Implement And Communicate Policies.
Audits And Assessments: Conducting Internal And External Audits, Including Comprehensive Risk Assessments, Gdpr Gap Analyses, And It Audits As Part Of Year-end Reviews. Planning And Documenting Required Actions, Performing Checks, Training Employees, And Presenting Results In Management Reports.
Contractual Agreements And Negotiations: Drafting And Adjusting Ndas, Data Processing Agreements Under The Eu Gdpr, And Information Security Agreements, And Negotiating Them In The International B2b Space With Smes And Fortune 500 Companies.
Project Management: Coordinating Complex Projects With Various Internal And External Stakeholders, Including Cross-functional Collaboration In Alignment With Management.
Ciso And Data Protection Officer: Leading Security And Data Protection Initiatives As An Experienced Security Officer And Certified Data Protection Officer; Additional Qualifications Such As Isaca Crisc Or Mediation To Address Technical And Organizational Challenges.
Languages
Education
JKU Linz
Master of Science · Business Informatics · Linz, Austria
Certifications & licenses
Certified Data Protection Officer
WIFI Austria
Certified Mediator
London School Of Mediation
CRISC Certification
ISACA
Profile
Frequently asked questions
Do you have questions? Here you can find further information.
Where is Lucas based?
What languages does Lucas speak?
How many years of experience does Lucas have?
What roles would Lucas be best suited for?
What is Lucas's latest experience?
What companies has Lucas worked for in recent years?
Which industries is Lucas most experienced in?
Which business areas is Lucas most experienced in?
Which industries has Lucas worked in recently?
Which business areas has Lucas worked in recently?
What is Lucas's education?
Does Lucas have any certificates?
What is the availability of Lucas?
What is the rate of Lucas?
How to hire Lucas?
Average rates for similar positions
Rates are based on recent contracts and do not include FRATCH margin.
Similar Freelancers
Discover other experts with similar qualifications and experience
Experts recently working on similar projects
Freelancers with hands-on experience in comparable project as a Business Consultant
Nearby freelancers
Professionals working in or nearby Hallwang bei Salzburg, Austria
