Experienced Information Security and Risk Manager
Innovation, security culture and a drive to change are the key aspects that Alex believes are inherent to create an adaptive and resilient information or cyber security function.
Alex has gained both hands-on and strategic experience in the Information Security field within the Financial Sector as a Global Information Security Officer and the Security Strategy Officer for the Tier 1 Rabobank in the Netherlands. He has experience in implementing and running Information Security Programs for critical global banking services and (cloud) applications.
Mark has extensive experience in the Cyber Security field at the Finance Sector as former Executive Director leading the Security Operations Centre at UBS and being Head of the SOC in the Tier 1 Rabobank in the Netherlands. This provided him with the experience to build and run a Cyber Security Program and manage the Security Operation teams in both the technical and people-oriented sides of Cyber Security at Global Financial Enterprises.
Mark has a strong technical background in IT security before he moved into managerial roles. He has been a senior stakeholder in various security programs to protect the business against cyber security threats. Mark is very analytical and has a can do and problem-solving mindset.
We believe that every company has a unique cyber security profile. In our approach, we build upon that unique combination of people, culture and company risks. By focusing on your company profile, we support you to establish an adaptive and resilient cyber security function tailored to your company needs.
With our extensive hands-on experience in the heavily regulated financial enterprises and our background in both strategic and operations field of cyber security we can cover the entire cyber security scope. Our experience ranges from building, assessing or improving cyber security functions and technology, governance risk and compliance or establishing security culture always in line with the business security needs.
From consult to implementation - we help you identify your cyber security readiness, challenges and needs to develop a tailored approach and support you in your journey to achieve desired cyber security goals.
Cyber Security in the cloud for the highly regulated banking industry.
The use of Cloud services is growing is very fast due to the fact it offers lots of benefits for companies. The banking industry tends to be conservative in entering cloud services. The reason lies in the regulations swiss based banks need to comply with. In this interactive session we go through some of the regulations that applies to the Swiss banks and see how that impacts the usage of cloud services and especially focus on the security and compliance aspects of cloud services.
To have a good response to cyber security incidents, there is a lot of focus on what technology is available in cyber space. However next to technology, detecting and responding to a cyber-attack requires a lot of expertise, skills and training in righteous use of security tooling. Once a cyber-attack fully hits the firm causing large business impact, there is no time to waste. As a company you need to be resilient and prepare for attacks and most important train how you want to react as a company. You need to know how to communicate to your key-stakeholders outside office hours with no access to your laptop, who can decide on heavy impact changes, to who, what and where to report the incident. In addition, a lot of people react different under stress caused by a cyber crisis than they do in daily life. Luckily, this can be trained via tabletop exercises focused on the behavior of security incident respond staff during a crisis simulation. With use of tabletop exercises you can establish and test behavior or structures under stress that will prepare staff to perform in a resilient manner during a real cyber-attack.
Building a Security operations Center requires a lot of knowledge, skills and resources. Especially in smaller organizations the 24x7 demand of a SOC is a bottleneck the implement their on SOC. Therefor a lot of organizations decide to outsource their SOC to a Managed Security Service Provider (MSSP).
The benefits of an MSSP lies in the fact that they serve multiple companies. Therefore the running costs are lower. This makes a 24x7 setup more affordable for their clients.
Prusec can provide independent advise on outsourcing a Security operations center. With over a decade in building and running SOC’s in large organizations, we have the right experience, knowledge and skills to support your move.
a prusik knot
The name of the company finds its origin in mountaineering. Inspired by the parallel between security and mountaineering: both disciplines need a good risk management and a lot of practice.
The name Prusec is a merger between the words prusik and security. A prusik is a small rope with a specific knot. it’s used in mountaineering to provide safety to climbers.
Prusik knot is designed to move freely on a line as you climb or descent. When not put under intense force or friction, they can slide up and down with ease. If the end of the rope is pulled suddenly, the friction of the knot will create enough tension to hold the load in place. it saves a climber from falling down.
a prusik knot
the Prusec logo
The Logo of Prusec is a stylistic presentation of the knot used in the prusik rope. It will hold extreme well.
the Prusec logo
Dahliastrasse 12 8008 Zürich