Nikolay Korsunskiy

Hello, my name is Nikolay Korsunskiy, and I am a Cybersecurity Risk Manager. With a strong technical background in programming and network security, I have spent the last several years helping organizations protect their sensitive data and mitigate the risks of cyber attacks.

My passion for cybersecurity began early on in my career, when I was working as a software engineer. I quickly realized that security was not just a "nice-to-have" feature, but rather an essential component of any software or system. Since then, I have dedicated my career to mastering the field of cybersecurity.

As a Cybersecurity Risk Manager, I have extensive experience in identifying potential vulnerabilities in systems, assessing the likelihood and potential impact of a breach, and developing strategies to mitigate these risks. I have a deep understanding of the technical details that underpin cybersecurity, which allows me to effectively communicate with both technical and non-technical stakeholders.

Experience​​​

2022 – Present | Infrastructure Risk & Security - Senior Manager Cyber Security and IT Risk Management

Royal Bank of Canada – Cyber Technology Office – Global Cyber Security

- Lead programs to improve or remediate cyber security control environment across RBC, and partner with business side to enable capabilities and improve the overall control posture across the technology environment

- Took lead in architecture and development of risk profile standardized firewall rulesets with streamlined provisioning byautomation framework

- Interpreted regulatory requirements and corporate policies, communicated the matter in approachable manner alongside current status, and provide oversight of compliance as required

- Provided deep technical assessment services to project teams and their business units to assist in their design in order to identify potential regulatory and cyber risks and proposed solutions to mitigate risk and establish compliant state

- Provided visionary leadership and management to a highly skilled team supporting mission critical enterprise security controls and IT services protection

- Security controls architecture, provisioned of custom security solutions to internal clients based on their requirements, education and promotion of secure coding and cyber security principals

2020 – 2022 | Infrastructure Risk & Security - Senior Network Security Analyst

Royal Bank of Canada – Cyber Technology Office – Global Cyber Security

- Took lead and SME role on providing risk assessments and guidance on project initiatives to mitigate potential setbacks or delays pertaining to non-compliancy, operational risk or security gaps, making sure project framework is being developed with strict adherence to RBC Security Standards and cyber security awareness

- Provided deep technical assessment services to project teams and their business units to assist in their design in order to identify potential IT risks and proposed security solutions to mitigate risk items and establish compliant state

- Facilitated authoritative risk counselling and advisory during thetime sensitive initiatives originated from Capital Markets, I&TS and T&O platform owners and provided assistance to resolve compliance divergences

- Collaborated with Security Architecture, Security Solution Architecture and Senior Leadership CTO team to ensure correct cyber security controls are in place while liaising with business sideand key stakeholders educating fostering security practice culture

- Risk assessment and evaluation of highly utilized firewall rules, acting as SME bridge with requestors to limit the risk exposure to the firm while making sure clients’ needs are met

- Provided mentorship, guidance and tutoring to newly employed FTEs and Co-op students on security infrastructure, security architecture, risk and cyber controls and cyber security key principles

2015 – 2020 | Internet Infrastructure - Senior Network Security Analyst

Royal Bank of Canada – Security Integration – Global Cyber Security

- Automation systems development and architecture which facilitated enormous time and energy savings for team members and users requesting assistance – system processed 2100 requests per month and equated to over 160 hours of time per month saved for team, utilizing C# and Python for development and Github, Jenkins, UrbanCode Deploy pipelines

- Policies architecture, troubleshooting of policy logic, provision of custom security solutions to internal clients based on their requirements, education and promotion of secure coding and cyber security principals

- Development of in-house health check applications (C#, .NET 4.5), that enabled Internet Security team to be the first one informed of any proxy authentication issues and take preventative measures to avoid possible high priority P1/P2 incidents

- Deployment and integration of proxy devices and SSLv (Symantec SSL visibility appliance) globally across RBC infrastructure

- Acted as SME on security integration projects, automation initiatives and cross department development .NET 4.5 projects, provided training to new team members

- Utilized Logstash/Kibana logging platform for monitoring security alerts, detailed reporting and establishing grounds for cyber security improvement projects

- Took lead on numerous security standards compliance, attestation, migration and clean-up projects for security devices

​

2013 – 2015 | Command Centre - Senior Support Analyst

Bank of Montreal (Data Centre) – Software Delivery Operations, Command Centre

- Troubleshot network issues related to remote imaging, connectivityor network changes for workstations and servers, provided directionsand guidance to NOC analysts of the root cause of a problem and to a solution, consequently reducing down time for an end-user and/orBMO branch

- Performed Team Lead role for BIC scanner deployment project - oversaw Command Centre BIC project team, provided support and training to team members, worked with BMO TD Branch Solutions project team to improve deployment process, developed project related Powershell/C# scripts which maximized efficiency, raising daily throughput of scanners deployed by Command Centre team

- Executed remote and time efficient branch site forensics using .NET 4.5 framework (in house development of PowerShell and C#scripts) utilizing Active Directory LDAP queries, WMI queries,Beacon (proprietary network infrastructure database) for PCD Workstation refresh project, which significantly increased efficiency, minimized time and cost for the project team

- Developed in-house PowerShell automation/error check scripts forHP Workstation Refresh/Windows 7 roll-out project, PCD Workstation refresh/Windows 7 roll-out projects, MACH2 Server refresh project, regular data backups and daily activities that significantly improved efficiency and reduced human error odds forthe team

- IT Tier 2 Support for newly installed workstations – troubleshoot hardware, software, SCCM and networking issues, regular onsite technician/user call support, Remedy ticketing system monitoring according to BMO established processes and guidelines

- Participated in project management activities: technical requirements/specifications research, site forensics, logistics, VAR performance monitoring and reporting SLA fulfillment

- Initially started with BMO as Branch Field Technician, responsibilities included installing and setting up branch network infrastructure (2 to 8 Stackwise Cisco 3750 switches, 1 Cisco 2911series router, Avaya telephone systems)

2009 – 2012 | DTX Tech Inc.

Network/System Administrator

- Deployed IT network infrastructure consisting of 3 Cisco 2811 series routers and 5 Cisco 2950 series switches spanned across 2 physical locations for DTX Technologies, Ontario - Wireless processing, reconciling and reporting ticketed transactions/point of sale software 

- Deployed 25 servers running Ubuntu Linux, PostgreSQL, Apacheand 6 workstations according to client’s specifications

- Implemented security and traffic optimization solutions, performed website development/backups

​

• Currently working towards CISSP

• AWS Certified Security – Specialty (SCS-C01)

• Google Professional Cloud Security Engineer

• Google Associate Cloud Engineer

• Blue Coat Certified ProxySG Professional

• Blue Coat Certified ProxySG Admin

• PAN ACE (Accredited Configuration Engineer)

• Certified Lean Six Sigma Yellow Belt

• ITIL Foundation V3

• CCNA (2015)

• CompTIA Server+/Network+/A+ certifications [2001]

• System Engineer [2001] | Bauman Moscow State Technical University