Ivan Dechev
Angestellt, Senior IT Audit Manager, Swiss National Bank
Zurich, Switzerland
Timeline
Professional experience for Ivan Dechev
Current 1 year and 10 months, since Jun 2021
Senior IT Audit Manager
Swiss National Bank
1 year and 5 months, Jan 2020 - May 2021
Identity & Access Management - Audit and Compliance Lead
Credit Suisse- Leading the Identity & Access Management (IAM) Audit and Controls function managing the risk, audit and regulatory portfolio across all IAM services - Responsible for setting vision, direction and planning prioritization of the direct resources - Working closely with 2nd, 3rd Line of Defense and other teams during their audit fieldwork and regulatory inspections being the SME for IAM controls and collaborating closely with the Enterprise Security Services Audit and Control Lead
Managing technology audit execution, effectively prioritizing competing commitments, performing/assisting with fieldwork as/when required // Effectively supervising and motivating audit teams, providing necessary oversight and guidance to ensure the audit is completed against relevant targets (e.g. budget, fieldwork timing, report clearance, etc.) // Utilizing effective risk awareness in order to ensure an appropriately targeted and risk focused audit approach
1 year and 5 months, Apr 2015 - Aug 2016
Manager - Financial Services Advisory / Cyber Security
Ernst & Young AG, Switzerland
Managing IT security remediation project (incl. identification of risks and issues, implementation of mitigation controls, vendor oversight of effective mitigation, risk acceptance of residual risk) for a global wealth and asset manager // Managing an Business Rollout planning as well as an interface between IT and Business in an Identity & Access Management (IAM) Program for more than 30’000 users and 280 applications for a large Swiss bank
2 years and 9 months, Jul 2012 - Mar 2015
Senior IT Auditor
F. Hoffmann-La Roche AG
Audit and advisory engagements in order to assess IT risks as well as the maturity of IT processes across the organization worldwide / Advisory of management regarding appropriate measures to ensure process efficiency, proper controls and security in IT functions and related IT landscapes / Information security audits covering the areas of IT Security Organization , IT Security Framework as well as IT Security Monitoring and Incident Response processes and tools
1 year and 9 months, Oct 2010 - Jun 2012
Internal IT Auditor
MAN SE
Corporate Audit - IT & Forensic // Audit of internal control systems in respect of IT controls and IT supported process controls across the organization worldwide // Information security audits according to the standard ISO27001 // Compliance audits supported by mass data analysis using IDEA/IDEAScript // TeamMate Champion – user training, technical and user support for the TeamMate audit management system; implementation and configuration of new TeamMate releases
2 years and 7 months, Mar 2008 - Sep 2010
Senior IT Auditor / Senior Consultant
Deloitte & Touche GmbH WPG
Controls Assurance - IT-Audit, Process audit, Mass data analysis, Fraud Detection, SOX (Sarbanes Oxley), ISO27001 Audit and Consulting
Educational background for Ivan Dechev
8 months, Aug 2005 - Mar 2006
Business computer science
Göteborg University / Chalmers University of Technology
Human Computer Interaction
Business computer science
University of Regensburg
Languages
German
Fluent
English
Fluent
Swedish
Basic
Bulgarian
-