Pascal André Semadeni
Angestellt, Management Consultant, Swisscom
Bern, Schweiz
Werdegang
Berufserfahrung von Pascal André Semadeni
B2B Enterprise Security Consulting, , Security Design & Architecture (DevSecOps), GRC (Governance, Risk & Compliance), Conformity of Security Frameworks (ISMS ISO 2700x, NIST, CIS), BCM/ DRP and BIA, Data Governance (Privacy, Protection), Security (Operation) Management & Processes, Access Control (IAM, Privilege Access Management), Internal Control Systems (SOX, ISAE) Cyber Security Assessments, Audits and Reviews, Security Awareness and Communications.
Leitung Data Governance- & Compliance Ethik, Rechtsgrundlagen, ISMS Inventar, Architektur (Metadaten), Life Cycle, Data Lineage Risikomanagement, Massnahmen Datenschutz und Informationssicherheit (IAM, Privacy, Coding) Prozesse, Dokumentenlenkung Liaison Produktlinien, Technologie und Agile Projekte Awareness, Knowledge Assurance, Coaching Tools Integration (Workflows, Standardisierung).
3 Jahre und 2 Monate, Juni 2017 - Juli 2020
Chief Information Security Officer (CISO)
Bundesverwaltung
Head of Information Security & Deputy Head of Integral Security Owner of Information Security Management System (ISMS, ISO 27k) Business Liaison and IT Risk Management (Risk Identification, Analysis, Assessment and Measures) Concepts, Frameworks and Policies Process Management Compliance, Reviews, Audits, Consulting & Advisory Access Controls (Identity & Access) Management Incident & Exception Management Training & Awareness
Information Security Management Systems (ISMS) Design and Processes Business and IT Risk Management (Risk Identification, Analysis, Assessment and Measures) Regulation, Standards and Governance (ISO 27001, ISO 22301, SOX, IKS) Security Concepts, Frameworks and Policies Compliance Reviews, Audits and Security Controls & Architectures Secure Access Controls (Identity & Access) Management Business Continuity Management Incident Management Investigation
2 Jahre, Apr. 2014 - März 2016
Global Process Owner (GPO)
Novartis Business Services
Within Center of Excellence responsible for IT Security global end-to-end process across divisions. Maintain integrity of process & controls, governance, continuity and associated tools & methodology. Drive change by collaborative standardization for effective controls and efficiency. Manage documentation and training activities. Monitor KPI’s to assess compliance, risk and quality. Solicit streamline operations, evaluate benefits and priorities to enable continuous improvement.
2 Jahre und 1 Monat, März 2012 - März 2014
Head Global Security & Controls
Novartis Pharma AG
Group ERP Design & Governance; IT Security, Risk & Controls Adapt defined ERP design and governance farsighted in assurance with global core strategy, maintain security and controls for enterprise assets (e.g. R2P, O2C, FRA, MDM). Support implementation of SAP Solution Manager for change management (CHARM), document management (DMS) and IT service management (ITSM; incidents and problems).
1 Jahr und 10 Monate, Mai 2010 - Feb. 2012
Senior IT Auditor
Novartis International AG
Senior IT Auditor (Global IT); Governance, Risk and Compliance; SAP Basis Security; IT Controls.
4 Jahre und 6 Monate, Nov. 2005 - Apr. 2010
Manager
Ernst & Young AG
3 Jahre und 9 Monate, Feb. 2002 - Okt. 2005
Applikationssupporter
Swisscom Fixnet AG
1 Jahr und 10 Monate, Juni 1999 - März 2001
SAP Consultant
CSC Ploenzke AG
4 Jahre, Feb. 1995 - Jan. 1999
Forschungsleiter
Wella AG
Ausbildung von Pascal André Semadeni
1 Monat, Mai 2012 - Mai 2012
Information Security
SAP (Schweiz) AG
SAP Global Certification
1 Monat, Okt. 2011 - Okt. 2011
Finance and Accounting
Harvard Business School
Business Finance II
2004 - 2006
Busines Information Systems
Universität Innsbruck (Business School Vienna)
1999 - 1999
SAP
SAP College Olten
1987 - 1991
Chemie
Universität Bern
Organische synthetische Chemie von Naturstoffen
1984 - 1987
Chemie
Universität Fribourg
Organische synthetische Chemie
Sprachen
Deutsch
Muttersprache
Englisch
Fließend
Französisch
Fließend
Italienisch
Grundlagen