Alexandru Isache
Houston,TX
Summary
Results-driven IT professional with 14 years of experience in developing and executing successful compliance programs in information security. Skilled in technology controls, data privacy, and ISO standards audit. Proven track record of creating robust information security policies and procedures. Demonstrates expertise in interpreting results of internal and external assessments/audits and providing strategic recommendations to management. Highly organized and detail-oriented with strong project management skills. Effective collaborator with cross-functional teams.
Overview
14
14
years of professional experience
1
1
Certification
Work History
Senior Information Security Analyst
FedEx
02.2022 - 08.2024
- Conducted risk assessments: Evaluated risks in IT systems and collaborated with IT teams to implement security controls and safeguards, protecting critical assets
- Policy and compliance management: Developed, reviewed, and enforced policies, procedures, and controls to meet GDPR, PCI DSS, SOC, and ISO 27001 compliance requirements, maintaining a compliance posture for over 30 projects
- Security training: Conducted security awareness training sessions for over 1,000 employees on security best practices, policies, and procedures, significantly improving overall security awareness
- Audit coordination: Coordinated and participated in over 100 internal and external security audits and assessments to evaluate the effectiveness of security controls and ensure compliance, providing detailed recommendations for remediation
- Monitored and analyzed data security events and incidents, investigated and responded to security incidents, and conducted investigations to determine the root cause and extent of security breaches
- Tracked progress through to resolution
Data Security and Privacy Consultant
IBM Romania
02.2017 - 07.2021
- Team Leadership: Managed and led DS&P Consultants team since May 2018
- Controls Execution: Defined and implemented security controls for over 30 projects using the Internal Data Security & Privacy Framework
- Policy Development: Created and maintained security plans compliant with client and IBM requirements
- Compliance Monitoring: Ensured compliance with security regulations through contract analysis and communication with stakeholders
- Incident Management: Developed and communicated incident response and breach notification procedures
- Data Utilization: Analyzed breach and incident data to enhance security adherence
- Training: Conducted and evaluated security training sessions for practitioners
- Risk Evaluation: Implemented security techniques to minimize risk and prevent data leakage
- Risk/Incident Log: Maintained a Risk/Incident Management Log with leadership review
Project Manager/Quality Control
IBM Romania
10.2012 - 01.2017
- Quality Assurance: Performed quality checks and internal audits, ensuring compliance with processes and procedures
- Enhanced testing, deployment, and service improvement processes
- Project Management: Conducted comprehensive reviews, organized and led daily activities, and ensured timely, within-budget project delivery
- Risk Management: Identified and managed risks and critical incidents during software development and integration projects
- Framework Application: Applied ITIL and CMMI frameworks to meet customer quality standards
- Audit Support: Supported external audits and benchmarks
Service Implementation Manager
NCR
09.2010 - 08.2012
- Project Management: Directed business projects for Global Accounts, ensuring they met time, cost, and technical objectives
- Managed start-up activities and transferred deliverables to life-cycle owners
- Planning: Managed equipment inventory and coordinated installation requests
- Training: Oversaw training requirements for engineers
Education
Master - Management And Business Administration
Academy of Economic Studies
06.2006
University - Agricultural Economy
Academy of Economic Studies
06.2004
Skills
- Adaptability and Flexibility
- Compliance Monitoring
- Business Continuity
- Data Incident Management
- Risk Assessment
- Resource Allocation
- Auditing Experience
- Information Protection
Certification
- (ISC)2- Certified Information Systems Security Professional, 2023
- CompTIA Security + Certification, 2023
- Certified Internal Auditor for Information Security Management System ISO27001, TUV Austria, 2019
- ITIL V3 Foundation Certificate in IT Service Management, External Party, 2014
Languages
English
Full Professional
Spanish
Professional Working
Romanian
Native or Bilingual
Timeline
Senior Information Security Analyst
FedEx
02.2022 - 08.2024
Data Security and Privacy Consultant
IBM Romania
02.2017 - 07.2021
Project Manager/Quality Control
IBM Romania
10.2012 - 01.2017
Service Implementation Manager
NCR
09.2010 - 08.2012
- (ISC)2- Certified Information Systems Security Professional, 2023
- CompTIA Security + Certification, 2023
- Certified Internal Auditor for Information Security Management System ISO27001, TUV Austria, 2019
- ITIL V3 Foundation Certificate in IT Service Management, External Party, 2014
Master - Management And Business Administration
Academy of Economic Studies
University - Agricultural Economy
Academy of Economic Studies
Similar Profiles
NATHANIEL CARAVEONATHANIEL CARAVEO
Courier at FedExCourier at FedEx
Ryan ChristianRyan Christian
Team Leader at FedExTeam Leader at FedEx
Nicholas SantiagoNicholas Santiago
Delivery Driver at FedExDelivery Driver at FedEx