Evgenii Tolmachev
@evgeniitolmachev
Cybersecurity leader with 15+ years of experience in security management.
What I'm looking for
I am a cybersecurity leader with over 15 years of experience supporting complex, global organizations in developing and managing security capabilities. My expertise spans both offensive and defensive security, with a strong focus on security strategy, program management, architecture, and engineering. I have successfully established security programs from the ground up, integrated secure development practices, and advanced security maturity across varied technical environments.
Throughout my career, I have led multinational teams and held cross-regional roles in global consulting firms and IT companies. I am skilled at driving innovation and fostering a culture of security awareness, combining strategic thinking with technical depth to align security initiatives with business goals. My key achievements include developing comprehensive cybersecurity strategies, enhancing third-party risk management, and implementing company-wide security awareness programs that significantly increased security awareness scores.
Experience
Work history, roles, and key accomplishments
Senior Security Technical Program Manager
Woven by Toyota
Nov 2020 - Mar 2025 (4 years 4 months)
Developed and executed a comprehensive product cybersecurity strategy and program, managing the development and implementation of a Cybersecurity Management System. Successfully integrated 7 critical teams into a unified security program, embedding core security practices and driving a shift-left approach.
Manager (Cybersecurity Engineering Team)
PwC Consulting LLC.
Nov 2019 - Nov 2020 (1 year)
Planned and executed security assessments combining threat-led penetration testing (TLPT) simulating advanced persistent threats (APT) and purple team exercises for top clients. Developed an offensive security testing toolkit to bypass most recent advanced defenses, strengthening red team capabilities.
Lead Security Architect
Rakuten Inc.
Jun 2017 - Nov 2019 (2 years 5 months)
Initiated building of the security architecture team and established security architecture practices from scratch. Developed and implemented comprehensive security architectures with a global scope, covering cloud, network, applications, and identity/access management systems.
Engineering Manager
Sberbank Technologies
Feb 2015 - May 2017 (2 years 3 months)
Developed a software security program and roadmap, aligning security initiatives with business objectives. Hired and mentored security engineers and developers, and led the integration of security practices (BSIMM) into the secure software development lifecycle (SDLC).
Senior Consultant
PriceWaterHouseCoopers Russia B.V.
Jun 2013 - Feb 2015 (1 year 8 months)
Conducted international eDiscovery and digital forensics investigations in collaboration with legal offices and an international consulting network. Investigated attacks and data breaches affecting clients, developing and developing remediation plans to protect client data and systems.
Consultant
Positive Technologies
Jan 2011 - Jun 2013 (2 years 5 months)
Developed tailored software security functionalities for the company's main product (SIEM based on security asset management technology). Designed and implemented innovative security solutions to enhance resilience against cyber threats for clients in the financial industry.
Education
Degrees, certifications, and relevant coursework
The National Research University Higher School of Economics (HSE)
Master of Science, Financial Management
2003 - 2008
Completed a Master of Science in Financial Management. This program provided a strong foundation in financial principles and their application.
Availability
Location
Authorized to work in
Job categories
Interested in hiring Evgenii?
You can contact Evgenii and 90k+ other talented remote workers on Himalayas.
Message EvgeniiFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
