Mark Bruno
@markbruno
Information Security Officer focused on risk governance and operational resilience in regulated environments.
NetherlandsWhat I'm looking for
I’m an Information Security professional with experience in governance oversight, structured risk assessment, and security control evaluation within regulated environments. I maintain formal risk documentation and translate technical findings into executive-level risk guidance.
In my current work, I conduct structured security risk assessments for public and private sector clients—identifying critical assets and evaluating threat exposure across infrastructure and supply chains. I develop and maintain risk documentation (likelihood, impact, mitigation strategies, and residual risk tracking) and produce advisory risk reports to support informed decision-making and control improvements.
I’ve supported second-line security governance and structured risk management across research and client-facing operations, contributing to control gap identification and residual risk evaluation. I also help drive measurable security improvements by monitoring mitigation progress and reassessing exposure over time.
Outside of my day-to-day risk work, I’m building depth in digital governance and operational resilience through my ISACA CISM (in-progress) and master’s studies, while aligning security initiatives to defined risk appetite using ISO 27001 and NIST CSF. I’m particularly focused on turning threat intelligence and technical insights into actionable guidance for leadership and operational teams.
Experience
Work history, roles, and key accomplishments
Information Security Risk Contractor
Freudiger IT Security B.V.
Jan 2025 - Present (1 year 3 months)
Conduct structured security risk assessments for public and private sector clients, identifying critical assets and evaluating threat exposure across infrastructure and supply chains. Built formal risk documentation and translated technical findings into prioritized remediation roadmaps aligned with ISO 27001 and NIST CSF.
Freelance Security & Policy Analyst
NewLines Institute
Jan 2025 - Present (1 year 3 months)
Research emerging technology, cybersecurity, and governance developments for a policy-oriented audience and translate complex security topics into structured, accessible analysis for decision-makers and CERT-related contexts. Support strategic discussions at the intersection of digital governance, security, and regulatory environments.
Education
Degrees, certifications, and relevant coursework
Webster University (Leiden)
Master of Arts (MA), International Relations & National Security
2025 -
Pursuing an MA in International Relations & National Security at Webster University (Leiden) from 2025.
Western Governors University
Master of Science (MSc), Cybersecurity & Information Assurance
2023 - 2024
Completed an MSc in Cybersecurity & Information Assurance at Western Governors University from 2023 to 2024.
University of Maryland
Master’s Certificate, Computer and Information Systems Security & Information Assurance
2021 - 2022
Completed a Master’s Certificate in Computer and Information Systems Security & Information Assurance from 2021 to 2022.
State University of New York at Fredonia
Bachelor of Science (BSc), Communication & Media Management
2012 - 2014
Completed a BSc in Communication & Media Management from 2012 to 2014.
Availability
Location
NetherlandsAuthorized to work in
Website
themoloch.comSocial media
Job categories
Interested in hiring Mark?
You can contact Mark and 90k+ other talented remote workers on Himalayas.
Message MarkFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
