Nadezda Ustinova
Fähigkeiten und Kenntnisse
Werdegang
Berufserfahrung von Nadezda Ustinova
•Conduct comprehensive information technology audits aligned with different standards such as PCI DSS, ISO and SOC. •Collaborate with cross-functional stakeholders to enhance the organization’s security posture •Develop and mentor team members through on-the-job coaching and training programs. •Proactively drive operational improvements in internal processes through innovative ideas. •Advanced the Global PCI Compliance Program across six business areas and 60+ applications
- 2 years and 11 months, Apr 2018 - Feb 2021
IT Internal Audit Supervisor
Credit Suisse
Execution of technology audit field work on a range of various global and local banking audits, including: Communication of audit results and resolving complicated questions with audit stakeholders. Contributing to audit planning, risk assessment and presentation of findings to senior management for technology related audits, in close collaboration with the IT Audit Manager.
- 2 years and 6 months, Oct 2015 - Mar 2018
Manager
EY - Ernst & Young AG
Manage information risk assessments and IT integrated audits (SOX) within financial audits of large international companies of various industries. Business processes review, with particular focus on the role of IT within wider business and financial reporting process risks. Communicate the identified risks, control observations and other IT audit findings with the relevant stakeholders and company’s management.
- 2 years and 1 month, Oct 2013 - Oct 2015
Senior Consultant
EY - Ernst & Young AG
- 2 years, Nov 2011 - Oct 2013
Senior Consultant
EY - Ernst & Young AG
- 3 years and 2 months, Jul 2008 - Aug 2011
Consultant
KPMG
•Testing design, implementation and effectiveness of internal controls (including SoX audits) •Performing information risk assessment and testing of IT general controls as a part of KPMG financial audits (in financial services, telecommunication, consumer markets and energy industries) •Analysis of policies and procedures over IT governance and IT management comparing to the best practices and main standards
- 2 years and 9 months, Nov 2005 - Jul 2008
Engineer
Federal State Unitary Plant "The Research Institute for Automatics"
•Analysis of exchange, authentication and encryption protocols to determine if they provide necessary security level •Analysis of devices’ hardware realization to determine possible information leakage channels and protection of the devices from information loss •Development encryption systems devices and software-hardware realization of these devices •Source code and network security analysis during the development of special systems •Software development using C and Assembler programming languages
Ausbildung von Nadezda Ustinova
- 4 months, Jun 2010 - Sep 2010
Certified Information Systems Auditor
Information Systems Audit and Control Association
CISA (Certified Information Systems Auditor) Certification by ISACA (Information Systems Audit and Control Association) (www.isaca.org)
- 5 years and 7 months, Sep 2002 - Mar 2008
Specialization in information security of telecommunication systems.
Moscow State Institute of Radio-engineering, Electronics, and Automation (Techni
XING Mitglieder mit ähnlichen Profilangaben
XING – Das Jobs-Netzwerk
Über eine Million Jobs
Entdecke mit XING genau den Job, der wirklich zu Dir passt.
Persönliche Job-Angebote
Lass Dich finden von Arbeitgebern und über 20.000 Recruiter·innen.
21 Mio. Mitglieder
Knüpf neue Kontakte und erhalte Impulse für ein besseres Job-Leben.
Kostenlos profitieren
Schon als Basis-Mitglied kannst Du Deine Job-Suche deutlich optimieren.