Ivan Kalinić
Verified Expert in Engineering
Cybersecurity Developer
Ivan is a seasoned professional with cybersecurity, quality assurance, and software development expertise. He's proficient in securing systems, ensuring compliance, enhancing software quality, managing risks, developing robust security protocols, and driving software projects to success. Ivan is also adept in leading security initiatives, implementing strong security measures, and optimizing software quality in diverse environments.
Portfolio
Experience
Availability
Preferred Environment
Linux, Windows
The most amazing...
...project I've led involved running a full-scale security & privacy program, a security operation center, & security solutions for a multinational company.
Work Experience
Head of GRC and Senior Information Security Consultant
Diverto
- Built a team of senior advisors specializing in information security and cybersecurity.
- Advised numerous companies in information security and cybersecurity.
- Performed the role of CISO for a prominent automotive plastic part company, managing security at six organizations in five countries.
Expert Court Witness for ICT, IP, and QMS
Vukovar and Zagreb County Courts
- Gathered and examined digital forensics evidence under relevant court orders.
- Analyzed digital evidence and created reports for court judges, explaining IT facts in layperson's terms.
- Partook in court proceedings and provided the court with accurate and independent opinions.
Head of Quality Management and Consultant for Quality and Security
IN2
- Performed multiple privacy and security consulting projects in the corporate, health, and public sectors.
- Built and managed an integrated management system, including quality management, information security, data privacy, environment protection, and health and safety.
- Managed several company reorganization proceedings.
Managing Director
LVP Consulting
- Provided consultancy services in information security, quality, compliance, governance, and auditing.
- Assisted in information system development, implementation, and maintenance.
- Delivered project coordination and management services.
Project Quality Manager
Novartis
- Acted as a GRC manager delegate and managed offshore project quality pools.
- Drove simplification and efficiency initiatives for compliance processes and supported creating and revising relevant IT and business function standard operating procedures to ensure they meet requirements.
- Supported commercial IT and financial services projects, handled global and local implementations of digital and mobile projects, and assisted in SOX-relevant projects.
Project Manager
IGEA
- Managed large projects of over five million euros funded by the European Union and the World Bank.
- Participated in several projects in various managerial roles, including documentation manager, service manager, and software quality auditor.
- Obtained security clearance and managed security for confidential projects.
Software Project Leader and Software Developer
IGEA
- Developed numerous Java, Centura, and Gupta applications.
- Built ITSM support processes and administered Serena Business Mashups applications supporting ITSM processes.
- Established processes and a new service desk business department using ITIL principles.
IT Internal Auditor
Kvarner Vienna Insurance Group
- Participated in planning yearly and quarterly audit activities, executed audit plans, made several additional audits required by the supervisory board and regulators, and participated in joint audits for the whole corporate group.
- Developed interfaces for collecting raw audit data and built in-house software for audit process support and reporting.
- Consulted business departments on audit recommendations implementation and laws and best practices alignment.
Experience
Security Operations Center Implementation
Security Operations Center Readiness Assessment and Advisory Services
Externalized CISO Services
SOC 2 Type II Implementation
SOC 2 Type II Readiness Assessment
GRC System, Information Asset Repository, Risk Assessment, and Business Impact Analysis
Information Security Advisory Services
Network Data Loss Prevention (DLP) Consultancy Services
Implement Management System Based on ISO/IEC 27001:2013 and ISO 9001:2015 Standards
Application Security Review
Data Access and Web Application Management System
Information Security Advisory Services
Implement Information Security Practices into Existing Corporate Security Function
Review IaaS and Web Hosting IT Infrastructure
Cloud Governance Strategy
Information Security Advisory Services
SaaS Solution and Cloud Service Provider Assessment
Achieving GDPR Compliance
As an interim DPO and security manager, I performed 100+ classifications, 30+ DPIAs, and security assessments. I also organized 20+ GDPR workshops, developed necessary tools and policies, and established a compliance framework.
Digital Transformation Oktal Pharma Ltd | B2B Webshop, ERP Virtual warehouse, Integration Platform
Technical Assistance for Improving MIS of HRD OS in Turkish Ministry of Labor and Social Security
As a quality and security consultant, I analyzed security requirements and performed gap analysis against ISO 27001:2013 standards, consulted and trained the project team on security control design and implementation, as well as assessed the system against applicable security controls, etc.
Integrated Management System (Quality, ITSM, Environment, Health, and Safety)
Education
Specialist Degree in Information Systems Security and Auditing Management
Faculty of Organization and Informatics, University of Zagreb - Varaždin, Croatia
Master's Degree in Information Systems
Faculty of Organization and Informatics, University of Zagreb - Varaždin, Croatia
Certifications
Certified Secure Software Lifecycle Professional
ISC2
Certificate of the Business Continuity Institute (CBCI)
Business Continuity Institute
Certified Data Privacy Solutions Engineer
ISACA
Certified Cloud Security Professional
ISC2
ISO 9001 Lead Auditor
Bureau Veritas
ISO/IEC 27001 and ISO/IEC 20000 Lead Auditor
Bureau Veritas
Information Systems Security Management Professional
ISC2
ICE Silver Training
Novartis
ITIL Foundation
Axelos
Certified Information Systems Security Professional
ISC2
Oracle Public Sector Specialist
Oracle
Project Management Professional (PMP)
Project Management Institute (PMI)
Skills
Tools
ANTs, Jira, Subversion (SVN), Syslog, Elastic
Industry Expertise
Cybersecurity
Platforms
Windows, Linux, Oracle Database, Azure, Playbook
Paradigms
Team Development, ITIL, DevOps, App Development, DevSecOps, Penetration Testing
Storage
Database Security, Databases
Languages
Java
Frameworks
Spring
Other
IT Governance, Security Controls, GRC, IT Audits, Quality Assurance (QA), Enterprise Risk Management (ERM), Governance, Security, IT Security, Third-party Risk, Global Project Management, Quality Management, Information Security, Information Security Management Systems (ISMS), Leading Quality Assurance (LQA), Quality Management Systems (QMS), GDPR, CISO, SOC 2, ISO 27001, Corporate Governance, Risk Management, NIST, Security Management, IT Project Management, Business Analysis, Information Systems, ISO 9001-2015, ISO 20000, ITSM, BIA, Risk Assessment, Classification, Incident Response, Security Review, RoPA, Computer Architecture, Networking, Economics, Organization, Compliance, Defense Information System Network (DISN), Regulatory Reporting, Regulatory Compliance, Data Analysis, ISO/IEC 9126, Security Clearance, SOX Compliance, Application Security, Total Quality Management (TQM), Safety, International Data Privacy Regulations, Data Privacy, Court Records, Strategy, Leadership, PKI, Data Loss Prevention (DLP), Cloud Security, IT Service Management (ITSM), Business Continuity, Software Development Lifecycle (SDLC), Assets, Centura, Serena Business Mashups, SaaS, Software Development, Social Engineering, IaaS, IT Infrastructure, Cloud, Computational Finance, Programming, Controlling, Cryptography, Biometrics, Commercialization, Finance, Environment, Digital Forensics, SOX, SIEM, Integration, Analysis, Web Proxy, Web Application Firewall (WAF), Web Hosting, DPIA, Digital Transmission, System Integration
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring