Description

Senior security / governance consultant with more than 28 years of experience in Information Security, AI Governance, Risk Management, Internal Audit, Compliance and Data Protection across financial services, aviation, manufacturing, public sector and critical infrastructure sectors.

Specialized in the design and implementation of Information Security Management Systems (ISMS), AI Governance frameworks, Enterprise Risk Management programs, DORA readiness initiatives, ISO 27001 implementation, GDPR compliance and cybersecurity governance, with a strong focus on risk management framework alignment and regulatory requirement execution.

Extensive experience supporting executive leadership teams, regulatory compliance programs, internal and external audits, control framework design, risk assessments and security transformation initiatives across multinational organizations, including stakeholder management and communication with business stakeholder groups and stakeholder groups.

Languages

Hungarian
Native or bilingual
English
Fluent
Spanish
Fluent
Dutch
Conversational

Workplace preferences

Can work on-site

Leuven (up to 50km)

GIS-Consulting
Owner, Senior/Executive Advisor
CONSULTING AND AUDITS
May 2015 - Today (11 years and 1 month)
Belgium
Financial industry:
New Entity – Information Security Framework Design – ISO2700x and DORA
IT Risk – Compliance and Risk Management – ISO2700x and DORA
Data Protection - Data Classification

Postal industry:
Enterprise Risk Management
GDPR activities (RoPA, DPIA, breach management, etc.)
ITGC / ISO2700k control framework redesign

Manufacturing industry:
SOx-404 ITGC / ISO27k implementation
External audit coordination
GDPR - Process design with data protection requirements incorporated
Risk Management Framework

Aviation industry:
ISMS / ISO27k design and implementation
Internal audits of the ISMS
GDPR Risk Management AI governance ISO 27001 Audit
Verizon Business – Brussels, Belgium
Governance Risk and Compliance - Security Principal Consultan
May 2011 - April 2015 (3 years and 11 months)
Delivered compliance consulting and IT audits, providing technical advisory to support business operation continuity and control effectiveness
Performed risk management activities, including business impact analysis and IT risk assessments and proposed practical risk mitigation options
Performed ISO27k gap assessments including regulatory and internal requirements
Designed and implement ISO27k based IT policies and procedures, translating technical requirements into operational controls
Ensured quality in the deliverables in all engagements and managed risks through structured analyst driven reporting, supporting stakeholder management and communication with business stakeholder groups
Ernst & Young
Technology and Security Risk Services - Consultant, Manager, Senior Manager
CONSULTING AND AUDITS
December 2004 - March 2011 (6 years and 3 months)
Led Pan-European audits
Led team of ca. 15 auditors locally across multiple engagements
Managed audit support portfolio (over 60 concurrent clients) and utilization of staff
Engagement budget management Risk Management Audit People management Coaching