Summary
Overview
Work History
Education
Skills
Certification
Personal Information
Timeline
Generic

Andreea Ichim

Security Consultant

Summary

Highly focused employee with 9 years of experience in IT sector. Proven record of managing workloads and meeting deadlines. Adaptable and motivated to succeed and contribute to company success. Level of knowledge is demonstrated through badges and certifications obtained, which can be found here.

Overview

7
7
years of professional experience
3
3
Certifications
3
3
Languages

Work History

Data Security & Privacy Consultant/ Governance, Risk and Compliance

IBM Romania
3 2016 - 7 2022
  • Design and implement DS&P Framework for customer account, including controls implementation: Security Planning, Access Management, Separation of Duties, Incident Management, Workplace Security, based on NIST Framework and ISO 27001 ISMS Standard
  • Delivered high-quality presentations to stakeholders, effectively communicating project objectives and results.
  • Improved client satisfaction by effectively managing multiple projects and consistently meeting deadlines.
  • Perform control testing for areas deemed in scope of ISAE (Change Management, Incident Management, IT Security, Access Management, Physical Security)
  • On-Off boarding process owner
  • Conduct quarterly data security controls regarding user id accesses, physical access, and DS&P documentation revalidation
  • Ensure compliance with IBM internal controls (Key Control Operations/Internal audit)
  • Act as single point of contact for DS&P related internal and external reviews and audits (ISO 27001 or client audits)
  • Implement GDPR requirements including Technical and Organizational Measures
  • Drive remediation of risks and issues that result from DS&P reviews, incidents and other Lines of Defense activities
  • Monitor contact and contract changes for client information security compliance requirements; disseminate those requirements to the appropriate roles on the account; update the baseline controls execution plan and disseminate
  • Lead effort to ensure security compliance in accordance with applicable regulations
  • Document and communicate to the account team, the account's incident response and breach notification process consistent with IBM's process and client requirements
  • Leverage breach and incident information to address pervasive issues and improve compliance across the account
  • Train and test all practitioners regarding compliance, policies, and the secure handling of client information
  • Own the account's document retention policy and repository for secure storage of sensitive client information necessary for the performance of services
  • Document and maintain a Risk / Incident Management Log and ensure account/project leadership review.

Data Security & Privacy Consultant Team Lead

IBM Romania
12.2016 - 05.2018
  • Coordinating a team of 13 data security consultants
  • Supporting and advising with DS&P Framework, audits and GDPR
  • Responsible for resource management.
  • Worked with other teams to enforce data security on different projects

Business Controller

IBM Romania
10.2015 - 02.2016
  • Prepare processes for IBM Client Innovation Centers
  • Verify compliance with all processes
  • Assess internal controls/ Key Control over Operations
  • Periodic reports on the findings, conclusions and recommendations resulted from the audit
  • Collaborate with Center Leaders to maintain a view on the risk awareness
  • Prepare Monthly Operations Review – report on utilization, headcount, diversity, attrition.

Project Management Officer

IBM Romania
07.2013 - 09.2015
  • Conduct re-planning when project adds changes as determined by the customer management and project management
  • Send task plan to project team as updates are made and as requested - Gather task updates, deliverables and issues/problems
  • Assist the team and offer support, as necessary, to keep the project on track
  • Assist in driving the project to completion, as scheduled - Create reports, charts etc
  • Preparing monthly financial reports that involves revenue and forecast.
  • Prepared and submitted project invoices for review and approval.

Intern – Operations Specialist

IBM Romania
03.2013 - 06.2013

Front Desk Assistant

Anchor Group
04.2011 - 11.2012

Education

Bachelor of Arts - Applied Modern Languages

University of Bucharest
Bucharest, Romania
01.2008 - 2011.04

Master of Arts - Diplomatic Techniques

University of Bucharest
Bucharest, Romania
01.2012 - 2014.04

Skills

Data and information security

undefined

Certification

Comptia Security+

Personal Information

  • Date of Birth: 12/30/1989
  • Nationality: Romanian

Timeline

Comptia Security+

12-2023

Certified in Cybersecurity - ISC2

08-2023

ISO 27001 internal auditor for Information Security Management Systems

03-2018

Data Security & Privacy Consultant Team Lead

IBM Romania
12.2016 - 05.2018

Business Controller

IBM Romania
10.2015 - 02.2016

Project Management Officer

IBM Romania
07.2013 - 09.2015

Intern – Operations Specialist

IBM Romania
03.2013 - 06.2013

Master of Arts - Diplomatic Techniques

University of Bucharest
01.2012 - 2014.04

Front Desk Assistant

Anchor Group
04.2011 - 11.2012

Bachelor of Arts - Applied Modern Languages

University of Bucharest
01.2008 - 2011.04

Data Security & Privacy Consultant/ Governance, Risk and Compliance

IBM Romania
3 2016 - 7 2022
Andreea IchimSecurity Consultant