$$$$
{{ $t($store.state.user.experience_value_in_dollars) }}
Expert
{{ $t($store.state.user.experience_search_name) }}
0
jobs
Information Security Professional
Luka Zedginidze
,
London, United Kingdom
Experience
Other titles
Skills
I'm offering
Luka is an experienced and forward-thinking security professional with over 15 years' experience in delivering differentiation to business through developing and executing innovative strategies to build resilience against cyber risks. He has worked across a number of disciplines within Security during his career and has spent more than 10 years within the Financial Services.
Luka has spent the last 4+ years in consulting and has an excellent track record in leading and streamlining transformation programmes and security functions and building and managing C-level relationships.
Luka has spent the last 4+ years in consulting and has an excellent track record in leading and streamlining transformation programmes and security functions and building and managing C-level relationships.
Markets
United Kingdom
Links for more
Once you have created a company account and a job, you can access the profiles links.
Industries
Language
English
Fluently
Russian
Good
Ready for
Larger project
Ongoing relation / part-time
Available
My experience
2015 - ?
job
Security Consulting Manager
Accenture UK.
As a trusted advisor focusing on assisting clients across the globe to adopt practices which provide proactive management and control of their risk and security posture. Led security remediation programmes ($5m+) spanning multiple geographies. Worked with key regulators across the globe and helped clients bridge the gap between regulatory expectations, obligations and business needs.
UK Bank - Security Architect
* Designed E2E security architecture for a new digital - cloud-native - platform hosting member experience and store solutions for 600K+ users. Performed Privacy and Regulatory impact assessments.
Leading Post and international courier services company - Delivery Director
* Led a global team of 20 consultants and SOC analysts + client operational teams to manage the transition of global SOC, covering 40 countries and 11 000 users.
* Evolved processes for global incident response and developed 100+ custom use cases leveraging real-time threat intelligence data, improving threat detection and response by >75%. Concluded red team exercises.
UK Bank - Risk and GDPR Consultant
* Performed GDPR gaps assessment and produced remediation roadmap, driving enhanced control of privacy risks and improved data quality.
* Developed DPO operating model and embedded into the risk control framework, shaping governance and privacy risk up to the board level.
FTSE 100 Insurance - Security Lead
* Delivered an effective security workstream for £60M+ technology transformation programme to build a new Digital Insurer Solution stack, led a team of 6 architects and penetration testers.
* Impacted 1000+ Security BRs, assessed & collaborated on solution architecture, produced Security HLD and ensured security controls are implemented into the designs and the application builds. Yielded 60%> improvement in productivity by automating application security reviews during multi-speed development and deployment.
FTSE 250 Retailer - Security Architect
* Set up entire security, risk, and data protection function for a new business venture. Represented on behalf of the client as the Head of Security to sell and present its Cloud-based Software-as-a-Service to its customers globally.
* Designed & implemented global, multi-type cloud security architecture for Software-as-a-Service product that handled payments, PCI, eCommerce, PoS & PEDs in-store, financial data, personal data, and payment data.
UK Bank - Security Architect
* Designed E2E security architecture for a new digital - cloud-native - platform hosting member experience and store solutions for 600K+ users. Performed Privacy and Regulatory impact assessments.
Leading Post and international courier services company - Delivery Director
* Led a global team of 20 consultants and SOC analysts + client operational teams to manage the transition of global SOC, covering 40 countries and 11 000 users.
* Evolved processes for global incident response and developed 100+ custom use cases leveraging real-time threat intelligence data, improving threat detection and response by >75%. Concluded red team exercises.
UK Bank - Risk and GDPR Consultant
* Performed GDPR gaps assessment and produced remediation roadmap, driving enhanced control of privacy risks and improved data quality.
* Developed DPO operating model and embedded into the risk control framework, shaping governance and privacy risk up to the board level.
FTSE 100 Insurance - Security Lead
* Delivered an effective security workstream for £60M+ technology transformation programme to build a new Digital Insurer Solution stack, led a team of 6 architects and penetration testers.
* Impacted 1000+ Security BRs, assessed & collaborated on solution architecture, produced Security HLD and ensured security controls are implemented into the designs and the application builds. Yielded 60%> improvement in productivity by automating application security reviews during multi-speed development and deployment.
FTSE 250 Retailer - Security Architect
* Set up entire security, risk, and data protection function for a new business venture. Represented on behalf of the client as the Head of Security to sell and present its Cloud-based Software-as-a-Service to its customers globally.
* Designed & implemented global, multi-type cloud security architecture for Software-as-a-Service product that handled payments, PCI, eCommerce, PoS & PEDs in-store, financial data, personal data, and payment data.
Transformation, Manager, Processes, Framework, DPO, Native, Trusted Advisor, International, Software, Regulatory, Development, Assessment, Insurance, Hosting, Ecommerce, Embedded, Data quality, Security, Architecture, Data protection, Technology, Management, Consulting, GDpr, Solution architecture, Cloud, Deployment
2011 - 2015
job
Chief Information Security Officer
United Financial Corporation.
Responsible for enterprise-wide information security and PCI compliance program for Level 1 payment processor providing acquiring and card issuing services to 15+ member financial institutions (banks and payment gateways), leveraging largest POS terminals and ATMs network locally. Led team of 5 information security specialists with the accountability for all enterprise data protection, including information security policy and strategy, incident response, cyber threat intelligence, supplier risk management, client audit and go-to-market support, vulnerability management, business continuity, disaster recovery, regulatory compliance, controls assurance, crisis management, attack simulation. Directed activities of outsourced domestic and offshore resources. Administered $1M+ budget. Coordinated security management across corporate IT, legal, and other business units.
* Developed and executed 5-year security strategy. Reorganised risk management department and related systems/tools into autonomous business units with entrenched processes. Success led to 150% growth in productivity over 1 year.
* Consolidated 100% of the corporate-wide compliance, regulatory, risk, and operational processes by implementing the first Enterprise Risk Management framework.
* Developed and implemented security daily operational procedures and refined security policies related to regulatory and business requirements.
* Established application security practice, incorporating threat modelling and secure coding best practices into enterprise SDLC and project management lifecycles.
* Reduced attack surface by designing and managing the implementation SIEM and WAF technologies.
* Developed long-term, sustainable PCI compliance maintenance plans including staff requirements, budget estimates, and technology refresh plans. Facilitated and managed PCI external audits and PIN security program assessments.
* Expanded business continuity coverage for all sites while reducing 5-year costs by >$1M.
* Delivered spam reduction solution and security awareness campaign, resulting in >70% drop in volume.
* Maximized operational stability, regulatory compliance, and security oversight by establishing first Change Advisory Board to handle change management and change controls.
* Developed and executed 5-year security strategy. Reorganised risk management department and related systems/tools into autonomous business units with entrenched processes. Success led to 150% growth in productivity over 1 year.
* Consolidated 100% of the corporate-wide compliance, regulatory, risk, and operational processes by implementing the first Enterprise Risk Management framework.
* Developed and implemented security daily operational procedures and refined security policies related to regulatory and business requirements.
* Established application security practice, incorporating threat modelling and secure coding best practices into enterprise SDLC and project management lifecycles.
* Reduced attack surface by designing and managing the implementation SIEM and WAF technologies.
* Developed long-term, sustainable PCI compliance maintenance plans including staff requirements, budget estimates, and technology refresh plans. Facilitated and managed PCI external audits and PIN security program assessments.
* Expanded business continuity coverage for all sites while reducing 5-year costs by >$1M.
* Delivered spam reduction solution and security awareness campaign, resulting in >70% drop in volume.
* Maximized operational stability, regulatory compliance, and security oversight by establishing first Change Advisory Board to handle change management and change controls.
Offshore, LED, Processes, Go, Waf, Framework, Audit, Enterprise, Campaign, Regulatory, Advisory board, Support, Pos, Growth, Implementation, Change management, It, Network, Security, Crisis management, Compliance, Data protection, Technology, Management, Information Security, Risk Management, Audit, Budget, Project Management
2006 - 2010
job
Technical Program Manager
MagtiCom.
Delivered innovative technology roadmap with $3M+ annual budget including cross-program strategic planning, sequencing, delivery of 150+ technology implementation and remediation projects. Established and managed multiple strategic vendor relationships with external partners, vendors, and consultants. Developed and harmonised innovative user-centric design methodologies with project management practices.
PART-TIME / SHORT TERM / EARLY ASSIGNMENTS:
Over 10 years' international experience working within the financial services and technology industries at various levels ranging from "hands-on" technical to managerial and advisory roles.
Security Consultant, Miro ◦ Cyber Security Consultant, UniPAY ◦ Head of IT, Gelwins Group
Sr. IT Expert / IT Expert, Procredit Bank ◦ Sr. IT Specialist, Ultracom ◦ IT Specialist, Studio Re.
PART-TIME / SHORT TERM / EARLY ASSIGNMENTS:
Over 10 years' international experience working within the financial services and technology industries at various levels ranging from "hands-on" technical to managerial and advisory roles.
Security Consultant, Miro ◦ Cyber Security Consultant, UniPAY ◦ Head of IT, Gelwins Group
Sr. IT Expert / IT Expert, Procredit Bank ◦ Sr. IT Specialist, Ultracom ◦ IT Specialist, Studio Re.
Design, Project Management, Budget, Strategic Planning, Management, Technology, Security, It, Implementation, International, Manager, Technology implementation
My education
2006
-
2007
Cambridge International College
Certificate, Computers and IT
Certificate, Computers and IT
2003
-
2007
Iv Javakkhishvili Tbilisi State
Bachelors, Law
Bachelors, Law
Luka's reviews
Luka has not received any reviews on Worksome.
Contact Luka Zedginidze
Worksome removes the expensive intermediaries and gives you direct contact with relevant talent.
Create a login and get the opportunity to write to Luka directly in Worksome.
38000+ qualified freelancers
are ready to help you
Tell us what you need help with
and get specific bids from skilled talent in Denmark