Alexey Gulchuk — V-office CV

# Alexey Gulchuk

> [linkedin](https://ru.linkedin.com/in/alexeygulchuk) | Astana, Kazakhstan |  [alexey@v-office.kz](mailto:alexey@v-office.kz)

## Experience

** V-office LLP (Kazakhstan), Information Security Advisor**
March 2017 – Present

Systems integrator company responsibilities:

* Information security audit and/or Penetration testing
* Company and customers processes optimization/development 
* Information security Training for internal stuff (skills improvement, cyber security awareness)
* Customer infrastructure optimization
* Pilot project implementation with further deployment into production
* Securing business processes 
* Cloud and network administration

SOC (Security Operation Center) as a service for telecom/service provider company:

* ISMS administration and control
* Incident response
* Forensics
* Vulnerability management

**InfoSecurity, Information Security Incident Response Advisor**
May 2017 – February 2018  (9 months)

* Threat analysis, forensics
* Incident investigation, response, mitigation

**NCOC, Head of ICT&IM Security**
August 2015 – June 2016  (11 months)

* Team management
* Provide regular reports for briefing to senior managers and members 
* Develop ICT Security processes in line with ISO 27000
* Implement ICT Security controls in accordance with best practices
* Perform risk assessment for services and projects

**NCOC, Senior ICT Business Integrity and Security Advisor**
July 2012 – August 2015 (3 year 2 months)

* Coordinate day-to-day tasks to provide subordinates and junior staff with required skills and knowledge as well as coaching them on long term strategic activities
* Develop information Security policies and procedures
* Develop ICT Security processes in line with ISO 27000
* Implement ICT Security controls in accordance with best practices
* Perform classroom sessions with theoretical materials delivery followed by hand-on training to provide subordinates and junior staff with skills and knowledge as required for day-to-day company activities and long term development
* Provide subject matter expert advice to ICT Management on forthcoming and existing company projects regarding ICT Security
* Provide regular reports for briefing to senior managers and members 
* Participate in Change Advisory Board (CAB) including in depth analysis and sign-off regarding all ICT Security issues before implementation in production
* Monitor systems and conduct investigations of security incidents, breaches or suspected breaches to ascertain and determine the cause and make any recommendations for remedial action, including discipline, or legal action
* Perform risk assessment for services in production and projects 
* Manage technical security penetration testing and oversight of control audits
* Provide proactive tools/scripts development to achieve risk reduction; increase service improvement; and deliver long-term information integrity.
* Advanced troubleshooting of Server operating systems & applications
* Provision of second and third line support for Service desk Personnel

**NCOC , ICT Business Integrity and Security Advisor**
June 2011 – July 2012 (1 year 1 month)  
**NCOC , Junior ICT Business Integrity and Security Advisor**
March 2010 – June 2011 (1 year 1 month)

* Perform security assessment of changes on Change Advisory Board (CAB)
* Provide risk assessment for production services and projects 
* Perform assessment of changes in laboratory environment before implementation in production. Report on results and provide expert advice to ICT Management
* Setup application configuration management both on server and client level 
* Monitor, verify, analyse and report on logs related to ICT Security to ensure proper implementation and execution of workflows and tasks   
   Create reports concerning information on internet use and user abuse 
* Investigate and report on configuration weakness through analysis tools
* Perform physical security assessments on Server, Patch and communication rooms. Produce and analyse audit report on access to such rooms
* Perform periodic checks and manage ‘readiness-status’ with regards to Business Continuity Plan at ATC recovery site
* Coordination and oversight of information usage, access and structures with periodic report to relevant business or data owners
* Assisted in the formulation and set up of an ICT Security Investigation laboratory to investigate breaches or prepare new security tools for use and acceptance in production environment.  
   Data Loss Prevention; Document classification; Penetration testing

## Education

Karaganda State Technical University  
Electrical engineer, Electric drive and automation of technological complexes  
Dates attended: 2001-2006

## Skills

**Microsoft**: Exchange, TMG, Active Directory, SCOM, WSUS, MS PKI, GPO, NTFS permissions, Servers 2003/2008(R2)/2012(R2)/2016  
**McAfee**: ePO, DLP, Antivirus; **Kaspersky**: Antivirus, KATA (SandBox), Mail Gateway  
**Virtualization**: VMWare (ESX, ESXi),VCloud Director, Proxmox  
**Linux**: Ubuntu, Debian (workstation/server), Backtrack, Kali (linux based penetration testing, forensics investigation tools), FreeBSD Unix
**Vulnarability scanners**: GFI, Nessus, nmap, OWASP, OVAL, Metasploit  
**Networking**: Websense (WEB filtering tool), PaloAlto (NGFW), FireEye, IronPort, UTMbox(NGFW)  
**Scripting**: Powershell, Python, GO

## Certification:

1. InfoWatch DLP
1. 412-79: ECSAv4
1. 312-49: CHFIv4
1. 312-50: CEHv6
1. Prince2 Foundation
1. 70-290: Managing and Maintaining a Microsoft Windows Server 2003 Environment

## Trainings
1. ISO/IEC 27000-27007; ISO/IEC 27011;
1. CISM: Certified Information Security Manager
1. McAfee VirusScan and ePolicy Orchestrator Administration
1. ECSA: EC Council Certified Security Analyst 
1. CISSP: Certified Information Systems Security Professional
1. ITILv2: Service desk
1. CHFI: Certified Hacking Forensics Investigator
1. CEH: Certified Ethical Hacker
1. McAfee DLP Administration
1. Prince2: Projects In Controlled Environments 
1. 10135A: Configuring, Managing and Troubleshooting Microsoft Exchange Server 2010
1. 2277: Implementing, Managing, and Maintaining a Microsoft® Windows Server™ 2003 Network Infrastructure: Network Services
1. Risk management in information security
1. 5927A: Microsoft Office Project Standard 2007, Managing Projects 
1. 2273: Managing and Maintaining a Microsoft Windows Server 2003 Environment
1. Cobit
1. ITILv3