Sergey Rossolov
Education:
Master of Science - MS
Computer and Information Systems Security/Information Assurance
Western Governors University
2020 : 2021
BS Information Technology
Computer and Information Systems Security/Information Assurance
Western Governors University
2014 : 2017
Experience:
Implement and configure security controls to comply with NIST SP800-171 and NIST SP800-53 requirements.
Engage with engineers from infrastructure and development teams to develop, implement, and troubleshoot secure networking, architecture, and controls. Conduct risk assessments, threat modeling, and oversee risk remediation efforts.
Write control descriptions based on current architecture and propose remediation actions at the technical operational level.
Configure SIEM and FIM logging capabilities, including monitoring functions, establishing a baseline, and creating alerts based on audit requirements.
Implement a Governance, Risk and Compliance tool to manage audits and assessment work, control implementation, policy and governance documentation, risk assessments, map controls/ policy/frameworks, etc.
Manage internal and external audits and assessments.
Lead industry standard audits for certification (i.e., SOC 2, ISO27001, Cyber Essentials, etc.).
Represent the organization's security posture to external auditors, customers, and partners.
Create and update the organization’s information security policies, standards, procedures, and guidelines
2023 : Present
Cloud Security Company
Information Security Engineer
• Provided strategic guidance to senior leadership on contemporary IT practices and their relevance to the organization
• Monitored SIEM and promptly responded to alerts
• Conducted in-depth analysis of malfunctioning components and security incidents to identify underlying causes
• Managed vulnerability assessments to ensure the organization's security posture is robust
• Managed security controls, incident response and ensured adherence to established policies and procedures
• Deployed new endpoint protection solutions and configured them to align with the organization's needs
• Configured firewall policies based on industry best practices and vendor recommendations
2020 : 2023
Cloud Software Company
Security Administrator
Provided support and manages infrastructure core elements in the local and public cloud. Devised and prepared documents and arranged training material.
Administered servers, network, and security appliances to ensure security from any internal or external threats as well as incidents. Perform administration duties to solve
customer problems while exceeding customer satisfaction. Assessed project requirements and implement
new technologies to exceed set expectations. Lead design, troubleshooting, and maintenance of
network environment to improve communication and security.
2020 : 2020
Zones, LLC
Systems and Security Administrator
Formulated and established new and effective IT policy and best practice guides to achieve targeted
results and assure best practice workmanship. Spearheaded and administered servers, desktop
computers, printers, routers, switches, firewalls, phones, personal digital assistants, smartphones,
software deployment, and security. Assessed and scheduled timeframes for major IT projects, such as
system updates, upgrades, migrations, and outages. Participated in performing routine security posture
check as well as corrective actions if required. Analyzed and solved problems reported by users while
ensuring user satisfaction.
2015 : 2020
Metropolitan Development Council
Systems Administrator
Regular application installations, configurations, and day-to-day administration.
Monitor Windows servers for performance issues and stability concerns.
Laptop imaging and end user support
Troubleshoot hardware and software issues as they arise.
Staying familiar with new versions of applications used on servers.
Working with and troubleshooting all of the following, including, but not limited to : AD, DNS, DHCP, RDP.
Use knowledge of each of the above listed technologies as related to the issue at hand.
Work with permissions in Microsoft Servers.
Document issues and associated resolutions to problems.
2006 : 2010
Anlit
Systems and Network Administrator
Company: Cloud Security Company
Years of Experience: 13
Spoken Language: Russian