Aliaksei Brusiantsou

Security solution architect II at EPAM IT Security team, focused on Enterprise-scale projects, including Zero Trust, SIEM, DLP, NGIPS, ATP, IAM, Endpoint Encryption, WAF, Integrity solution, Cloud security stack (AWS ,Azure), VLM, GRC, EMM, Information Architecture, Integration, Search and Infrastructure. Primary expertise is in SIEM, ATP, DLP, VLM and Microsoft technologies stack. Overall IT experience is 15+ years

Security solution architect at EPAM IT Security team, focused on Enterprise-scale projects - Provided security architecture consulting for clients Petrofac, DCS, IMF, Mercedes-Benz. - Developed Secure Closed Perimeters packages including a list of all available controls/schemes/others - Implemented solutions: CrowdStrike/Zscaler/MCAS/WD ATP/Azure ATP/DarkTrace/CarbonBlack

Team management (24) Security governance and compliance: global company roadmaps,budget, etc Implementation Software Defined Perimeter (Symantec SAC, OPSWAT MetaAccess), NGEndpoint (SentinelOne), host-based IPS, encryption by BitLocker, FileVault; PAM (OneIdentity) AWS,Azure,GCP cloud security Implementation AntiSpam (ProofPoint), Cisco Umbrella, PaloAlto and Cisco NGIPS, Network UEBA (DarkTrace), Honeypots (TrapX) Implementation SOC L1-L3 Implementation Qualys Passing: ISO27k, PCI DSS, ISAE 3402, GDPR

- Team management (5). Assign tasks, allocation of resources, control, KPI - Hardening NGEndpoint (Symantec Endpoint Protection), host-based IPS - Endpoint encryption BitLocker, FileVault - Amazon and EPAM cloud Security - AppLocker tool - POC SIEM HP ArcSight and IBM Qradar - Implementation Cisco OpenDNS, POC PaloAlto and Cisco NGIPS - Nessus, Qualys scanners - IDS-IPS implementation management - Security awareness: Yammer, Org employees, trainings - Honeypot for phishing emails

- Team management (6 people) - Implementation GRC solution (RVision Risk manager) - Implementation SIEM (HP ArcSight). - Implementation SOC with L1-L3 levels - Implementation integrity system (Symantec Data Center Security (Critical System Protection) ) - The development of the documentation: security policy , security standart for devices, access policy control external devices, security application management , virus protection order , backup policy, network segmentation policy and other)

- Implementation SIEM (IBM Qradar). - Implementation DLP (Searchinform) - Maintenance antispam protection (Symantec Mail Security) - Maintenance anti-virus protection (Symantec Endpoint Protection), in addition application and device control system - The development of the documentation: security policy , management passwords , security policy for external devices , anti-spam policy, application security policy, antivirus policy, backup policy, network segmentation policy and other) - audit PCI DSS

- The definition of vulnerabilities in the information structure of the customer company, the definition of methods to eliminate, issuing recommendations to address the gaps in enterprise security - Installation and configuration DLP systems (Searchinform, Symantec ) - Monitor and evaluate the effectiveness of implemented security solutions

- Management 200 servers distributed across regions (including replication, migration, subdomains, etc.) - Installation, configuration and optimization of the operating system, installing and configuring software - Implementation anti-virus system (Kaspersky) - Implementation centralized backup system (Acronis Backup) - Administration SQL databases - Implementation CA, terminals queues - Management audio and video surveillance systems - Installation local networks, service switching cabinets, patch panels