Max Chernousov
Cyber Security, Audit, GRC
Experience
Cyber Security, Audit, GRC
Freelance
- Various projects with Wolters Kluwer (Security IT Audit) and Nebius AI (SOC 2, ISO 27001 and SOX controls implementation).
Head of Cyber Security
Gorillas / Getir NL
Information Security strategy development aligned with the company's goals and the unicorn’s risk appetite.
Contributing to higher evaluation of the company targeting investment rounds and IPO. Participation in Tech Due Diligence.
Performing risk-based assessments and controls implementation (GDPR, ISO 27002:2022). Development of internal security processes, policies and procedures (ISO 27001, NIST 800-53, CIS 8).
Information Security Officer
Mollie
Information security governance and security operations implementation for the fast-growing fintech scale-up (300->800).
PCI DSS, PSD2, KYC and GDPR compliance activities.
IT & Security Risk assessment according to the DNB requirements.
Reporting on threats, security gaps and risk response plans.
IT Risk & Security Lead
SBM Offshore
- Leading transformation in IT supporting implementation of a solid IT internal control framework for internal and external audits.
Group Senior Manager Internal Control - Digital and Technology
VEON
Internal control strategy, implementation and testing (SOX, IT).
Oracle Fusion internal control implementation (FCPA, SOX and anti-bribery and corruption controls).
Internal control reporting to the Board (Risk & Audit Committee).
Third-party SOC reporting evaluation (Oracle, Ericsson, Amdocs), including SOC 1/2, ISO 27001, ISO 27017, ISO 27018.
Cyber-security risks and controls advisory and project work.
Management self assessment (Internal SOX certification).
Manager - Risk Advisory
Deloitte
Leading an IT SOX audit at the largest national telecom holding (100M subscribers); responsible for revenue and IT processes assessment.
Cyber risk assessments, internal policies development based on ISO 27001/27002 and COBIT5 frameworks; M&A Due Diligence (cybersecurity and IT part) and development of an IT & cyber security roadmap for IPO.
Internal audit advisory (Banking, FinTech, TMT).
Mentored and developed 10 team members, helping them to grow to the next level (grades from Intern to Assistant Manager).
Internal IT Auditor
Megafon
Conducted risk-based IT audits to provide reasonable assurance to management on risks affecting company goals.
Ensured effective follow-up and remediation of issues and deviations.
Improved efficiency through process optimization.
Performed fraud investigation and management consulting.
Advised management on building internal control systems.
Analyzed current financial and business activities.
Service Delivery Lead
Hewlett-Packard
Supervised first and second line technical support teams (30 FTE) for 2000+ office and remote users.
Supported server-side hardware and infrastructure software (HP ProLiant bare metal, 3Par, Microsoft, Symantec).
Configured, maintained and monitored on-premises infrastructure (VMware).
Implemented HP ITSM standards.
Deputy CIO
Management Academy
Supported and maintained 30 servers (Windows Server 2003/2008, Gentoo Linux).
Designed and implemented a fail-over VMware 3.5 cluster.
Managed a fleet of 350 PCs, terminals and over 2000 active users.
Administered LAN/WAN networking and Linux-based networking services (OSPF, BIND, Apache, MySQL, PHP, Nginx, Samba, iptables, proxy).
Maintained telecommunication infrastructure, including switches, routers and VoIP.
Industries Experience
See where this freelancer has spent most of their professional time. Longer bars indicate deeper hands-on experience, while shorter ones reflect targeted or project-based work.
Experienced in Education (9 years), Telecommunication (5.5 years), Professional Services (4.5 years), Banking and Finance (3.5 years), Information Technology (3 years), and Retail (2 years).
Business Areas Experience
The graph below provides a cumulative view of the freelancer's experience across multiple business areas, calculated from completed and active engagements. It highlights the areas where the freelancer has most frequently contributed to planning, execution, and delivery of business outcomes.
Experienced in Information Technology (21.5 years), Operations (9.5 years), Audit (8.5 years), Finance (2.5 years), Quality Assurance (2 years), and Legal (1 year).
Skills
Risk Management ★★★★★
Audit & Assurance ★★★★★
Security Operations ★★★★★
Infrastructure Security ★★★★☆
Cloud Security ★★★★☆
Product Security ★★★★★
Iso 27001/2 ★★★★★
Soc Aicpa ★★★★★
Pci Dss ★★★★☆
Gdpr ★★★★☆
Pcaob (It Sox) ★★★★★
Languages
Education
HSE University
Computer Science · Computer Science · Moskva, Russian Federation
Municipal Management Academy
Management · Management
Certifications & licenses
Certified Information Systems Auditor (CISA)
VEON | Group Senior Manager Internal Control - Certified Information Systems Digital and Technology
Certified Ethical Hacker (CEH)
Certified Internal Auditor (CIA)
Cisco Certified CyberOps Associate
Google Project Management
Profile
Frequently asked questions
Do you have questions? Here you can find further information.
Where is Max based?
What languages does Max speak?
How many years of experience does Max have?
What roles would Max be best suited for?
What is Max's latest experience?
What companies has Max worked for in recent years?
Which industries is Max most experienced in?
Which business areas is Max most experienced in?
Which industries has Max worked in recently?
Which business areas has Max worked in recently?
What is Max's education?
Does Max have any certificates?
What is the availability of Max?
What is the rate of Max?
How to hire Max?
Average rates for similar positions
Rates are based on recent contracts and do not include FRATCH margin.
Similar Freelancers
Discover other experts with similar qualifications and experience
Experts recently working on similar projects
Freelancers with hands-on experience in comparable project as a Cyber Security, Audit, GRC
Nearby freelancers
Professionals working in or nearby Amstelveen, Netherlands
