Open to opportunities

Musakhan Eminov

@musae

Message

Information Security GRC Analyst with expertise in risk management.

Azerbaijan

Message

What I'm looking for

I seek a role that fosters growth in cybersecurity and compliance.

I am an Information Security GRC Analyst with extensive experience in governance, risk, and compliance. My proven expertise lies in conducting security assessments, identifying vulnerabilities, and implementing risk mitigation strategies. I have a comprehensive understanding of Information Risk Management Frameworks and am proficient in utilizing advanced security tools and frameworks to ensure compliance with industry standards such as NIST CSF, ISO 27001, GDPR, and PCI DSS.

Recently, I had the honor of speaking at Black Hat MEA 2024, showcasing my commitment to sharing knowledge in the cybersecurity community. Currently, I am preparing for the System Security Certified Practitioner (SSCP) certification exam, further enhancing my skills and knowledge in the field. My role at Kapital Bank as an Information Security GRC Analyst and Team Lead has allowed me to implement key security measures, conduct risk assessments, and contribute to incident response planning, ensuring regulatory alignment and enhancing overall compliance.

Experience

Work history, roles, and key accomplishments

Current

Information Security GRC Analyst

Current

Kapital Bank

Jul 2023 - Present (1 year 11 months)

As an Information Security GRC Analyst and Team Lead, I implemented key security measures that reduced risks and enhanced compliance with industry standards. I conducted research on cybersecurity trends, led the adoption of NIST CSF and ISO standards, and developed information security policies. My role included conducting risk assessments and supporting compliance audits.

Governance Risk Management Compliance NIST CSF ISO 27001 PCI DSS Risk Assessment Incident Response Security Policies Vulnerability Management

Cybersecurity Engineer Intern

Caspian Innovation Center | SOCAR

Feb 2023 - May 2023 (3 months)

During my internship, I collaborated with cybersecurity professionals to perform penetration testing and identify vulnerabilities. I assisted in incident response activities, conducted malware analysis, and contributed to writing rules for SIEM and XDR solutions. I gained hands-on experience with various security tools.

Penetration Testing Malware Analysis Incident Response SIEM Vulnerability Assessment Network Security Security Tools Risk Mitigation

Tour Leader/Staff

The 31st International Olympiad in Informatics

Aug 2019 - Aug 2019 (0 months)

I designed and managed a comprehensive itinerary for a large group of tourists, ensuring efficient transportation and accommodations. I led a team of volunteers, demonstrating strong communication skills and effectively resolving issues that arose during the event.

Event Management Team Leadership Communication Problem Solving Interpersonal Skills Customer Service Coordination

Education

Degrees, certifications, and relevant coursework

Azerbaijan State Oil and Industry University

MSc. of Information Systems Security, Information Systems Security

2023 - 2025

Université de Strasbourg

Bachelor of Computer Science, Computer Science

2019 - 2023

ICT LAB Development and Training Center

Postgraduate Degree - Cybersecurity, Cybersecurity

2021 - 2022

Grade: Technest scholarship recipient

Studied advanced topics in cybersecurity including cryptography, red teaming, and web attacks. Completed a capstone project on threat modeling and vulnerability assessment.

Institute of Education of the Republic of Azerbaijan

Cybersecurity Training Program, Cybersecurity

2020 - 2021

Completed a Cybersecurity Training Program covering topics such as Ethical Hacking, Security Principles, Web Application Security, and Incident Response.