
Pablo Cevasco
Project Management
Nevada, United States
Skills
Scrum Methodology
About
PABLO CEVASCO's skills align with Consultants and Specialists (Information and Communication Technology). PABLO also has skills associated with Insurance & Finance Managers (Insurance and Finance). PABLO CEVASCO has 5 years of work experience, with 2 years of management experience, including a low-level position.
View more
Work Experience
CYBERSECURITY CONSULTANT
Hacking Mode LLC
January 2021 - Present
- * Undertaking information security audits or assessments against industry standards and regulatory frameworks, such as ISO 27001/2, NIST CSF, SWIFT CSP, GDPR, DORA, PCI DSS, etc. * Support the organization's overall objectives by implementing Cyber Security strategies and programs. * Develop project plans tailored to medium and large-sized projects, taking into consideration defined high-level priorities and business requirements. * Effectively manage project budget, scope, and schedule to ensure successful project outcomes. * Document and communicate any modifications made to the original project scope with stakeholders. * Validate project deliverables against scope and quality expectations, actively participating in project stage-gates, including post-mortems. Identify opportunities for process improvement. * Providing consultancy on designing, reviewing, and implementing information security policies, standards, and procedures, as well as digital operational resiliency plans. * Conducting cyber maturity assessments to identify gaps and provide adequate recommendations. * Conducting security risk assessments and advising on risk treatment options. * Providing general consultancy with respect to various information and cyber security domains, assisting clients in aligning with industry best practices. * Assisting in business development and generating new opportunities.
PENTESTER/CONSULTANT/PROJECT MANAGER
YAAKOV'S GROUP LLC
August 2018 - December 2020
- * Performs security and/or risk assessments aligned with industry standards (ISO 27001/2, NIST, CIS, PCI DSS, SWIFT CSP), regulatory requirements and best practices. * Performed infrastructure and application penetration tests, as well as physical security review and social engineering tests for our global clients. * Performed application penetration tests across public and private networks. * Performed assessments of security awareness training using social engineering * Developed and leverage custom exploits. * Worked on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets. * Address project issues and risks throughout the project's life cycle, developing action and contingency plans as necessary. * Offer recommendations for the establishment of policies, standards, and guidelines to enhance Cyber Security practices.