Александр Орлов
@0003119
Business Information Security Officer bridging security, business, and engineering for secure products.
What I'm looking for
I’m a Business Information Security Officer (BISO) with 3+ years of experience bridging security, business, and engineering teams across digital products and enterprise environments. At SberKorus-Saint Petersburg, I act as a security partner for 4 digital products and align security initiatives with business objectives and product roadmaps.
In my previous role as Lead Information Security Engineer / Acting Head of Information Security at Admiralty Shipyards-Saint Petersburg, I coordinated information security across enterprise infrastructure, led risk assessments and governance participation, and improved security monitoring and detection coverage. I also led security investigations and insider threat assessment activities, while supporting security policies and operational procedures.
I bring a strong focus on Product Security, Secure SDLC, risk management, and security architecture reviews, working closely with engineering, DevOps, and product teams. I’m especially interested in Security Governance, AI Security, and Security Strategy—translating technical risks into business language and driving practical improvements through cross-functional collaboration.
Experience
Work history, roles, and key accomplishments
Security Business Partner (BISO)
SberKorus-Saint Petersburg
Feb 2025 - Present (1 year 5 months)
Act as a security partner for multiple digital products, aligning security initiatives with business objectives and product roadmaps. Integrate security requirements into SDLC processes, run architecture/release security reviews, and drive vulnerability management and security improvements.
Lead Information Security Engineer
Admiralty Shipyards-Saint Petersburg
Dec 2023 - Dec 2024 (1 year)
Coordinated enterprise information security activities across infrastructure and security teams, including risk assessments and governance participation. Improved enterprise monitoring/detection coverage, supported security policy/procedures, and led investigations including insider threat assessment.
Security Analyst
Datagile-Saint Petersburg
Jan 2023 - Dec 2023 (11 months)
Supported security monitoring and detection engineering activities, including security event analysis and event classification. Worked with SIEM platforms and collaborated with engineering teams during testing and delivery.
Education
Degrees, certifications, and relevant coursework
Bonch-Bruevich Saint Petersburg State University of Telecommunications
Bachelor’s degree, Information Security (Cybersecurity)
2018 -
Bachelor’s degree in Information Security (Cybersecurity) at Bonch-Bruevich Saint Petersburg State University of Telecommunications. Ongoing as of the provided education timeline.
Peter the Great St. Petersburg Polytechnic University
M.Sc. in Information Security, Security and Cyberpsychology of Internet Communications
2023 - 2025
M.Sc. in Information Security, focused on Security and Cyberpsychology of Internet Communications, at Peter the Great St. Petersburg Polytechnic University from 2023 to 2025.
St. Petersburg College of Telecommunications
Associate of Applied Science, Computer Networking
2015 - 2018
Associate of Applied Science in Computer Networking at St. Petersburg College of Telecommunications from 2015 to 2018.
Tech stack
Software and tools used professionally
Availability
Location
Authorized to work in
Job categories
Interested in hiring Александр?
You can contact Александр and 90k+ other talented remote workers on Himalayas.
Message АлександрGet matched with your dream remote job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
