↓↓↓ I invite you to read the content of my resume ↓↓↓
my resume
Business profile
Leader | Council & Board Member | IT & Security Manager | GRC & Audit Manager | Coach & Trainer
MBA Program Director | IT Management Academy Director | AZIT Professor & Lecturer
My other profiles:
ORCID Ludzie Nauki ResearchGate LinkedIn
Work Experience
Allianz Group
Head of IT GRC (Manager of IT Process Management) / AZPL
Head of IT GRC (Manager of IT Process Management) / AZPL
October 2023 - Present
I am responsible for the Group IT GRC (IT Governance, Risk Compliance).
Lead Auditor IT / AAM
June 2023 - August 2023
June 2023 - August 2023
I am responsible for IT Risk Assessments and IT Audits within the Allianz Asset Management - an International Group (Allianz Global Investors, PIMCO).
mBank S.A.
Senior Security Manager
June 2022 - June 2023
I was responsible for the cyber risk and threat modeling process, the vulnerability management, IT security standards (based on ISF, NIST, CSA, ISO, ISACA, IIA, CObIT, BaFin, EBA), ISMS, security / compliance audits, the contract management (security areas), and the cooperation within an international capital group (Commerzbank).
August 2021 - May 2022
I was responsible for: IT security standards (based on ISF, NIST, CSA, ISO, ISACA, IIA, CObIT, BaFin), the cyber security programs / projects management, security / compliance audits, the security exemption process, the cooperation within an international capital group (Commerzbank), administering of the GRC system (standard and exemption management, risk and audit management modules), architecting AI solutions into IT security processes.
IT Security Expert
October 2020 - July 2021
I was responsible for: architecting IT security standards (based on CObIT, ISF, NIST, CSA, ISO, ISACA, IIA, etc.), the security exemptions process, third party security audits (cloud solutions), administering of the GRC system's modules.
Head of IT Audit (Audit Manager)
May 2019 - September 2020 (1 year 5 months)
I was responsible for the mBank's group internal IT and security audit area.
IT Audit Expert
March 2019 - May 2019 (3 months)
I was responsible for: IT internal audits (IT operational risk management, IT systems & processes, IT compliance function, IT security management processes (IT and cyber), cloud computing, ISMS), recommendations and guidelines, monitoring and reporting, ensuring the effectiveness of the system of IT and security risk, ensuring the effectiveness of the system of IT and security internal control.
Academy of IT Management in Public Administration
May 2019 - September 2020 (1 year 5 months)
I was responsible for the mBank's group internal IT and security audit area.
IT Audit Expert
March 2019 - May 2019 (3 months)
I was responsible for: IT internal audits (IT operational risk management, IT systems & processes, IT compliance function, IT security management processes (IT and cyber), cloud computing, ISMS), recommendations and guidelines, monitoring and reporting, ensuring the effectiveness of the system of IT and security risk, ensuring the effectiveness of the system of IT and security internal control.
Academy of IT Management in Public Administration
Director of the Academy
June 2020 – PresentI am responsible for the Research and Science activities and an international cooperation (AACSB, BQF).
Member of the Program Committee
January 2015 – Present
I am responsible for the Academy and the Foundation science program.
AZIT Professor
May 2020 – Present
I am responsible for the Executive MBA lectures and the graduation process.
Senior Lecturer
January 2015 – May 2020
I was responsible for the Academy lectures.
Bank Pocztowy SA
Head of Internal Audit (Managing Director)
June 2016 - March 2019 (2 years 10 months)
I was responsible for the Internal Audit area in the Bank.
Head of IT Internal Audit (Deputy Director)
July 2012 - June 2016 (4 years)
I was responsible for the internal IT and security audit area in the Bank.
Senior IT Auditor
February 2012 - June 2012 (5 months)
I was responsible for: internal IT and security audits, recommendations and guidelines, monitoring and reporting, reviewing of the bank's compliance with regulatory and the company compliance standards.
GreenPost Sp. z o.o.
Audit Director
July 2011 - March 2012 (9 months)
I was responsible for the external and internal audit area.
IT Solution Architect (B2B Contract)
July 2009 - March 2012 (2 years 9 months)
I was responsible for: defining, implementing and testing the technical requirements of products in accordance with the regulations in Poland and the European Union (such as electronic transactions, electronic shipping documents, electronic payments, the confirmation, the accounting, tax issues).
Development Director
February 2011 - June 2011 (5 months)
I was responsible for: the company products, implementation projects, testing compliance services, establishing organizational standards, monitoring and reporting.
Controlling and Investment Director
December 2010 - January 2011 (2 months)
I was responsible for the financial planning, controlling, monitoring and reporting.
Capital Market Institute - WSE Research S.A. (Warsaw Stock Exchange Group)
Development Director
November 2010 - February 2011 (4 months)
I was responsible for: the business strategy and the business perspective process management, the financial planning, developing fixed and security training program (being one of the trainer), the internal management consulting, the sales and vendor process management (including negotiations), the IT services and application process management, the trends analysis.
Bogusław Bujak
June 2016 - March 2019 (2 years 10 months)
I was responsible for the Internal Audit area in the Bank.
Head of IT Internal Audit (Deputy Director)
July 2012 - June 2016 (4 years)
I was responsible for the internal IT and security audit area in the Bank.
Senior IT Auditor
February 2012 - June 2012 (5 months)
I was responsible for: internal IT and security audits, recommendations and guidelines, monitoring and reporting, reviewing of the bank's compliance with regulatory and the company compliance standards.
GreenPost Sp. z o.o.
Audit Director
July 2011 - March 2012 (9 months)
I was responsible for the external and internal audit area.
IT Solution Architect (B2B Contract)
July 2009 - March 2012 (2 years 9 months)
I was responsible for: defining, implementing and testing the technical requirements of products in accordance with the regulations in Poland and the European Union (such as electronic transactions, electronic shipping documents, electronic payments, the confirmation, the accounting, tax issues).
Development Director
February 2011 - June 2011 (5 months)
I was responsible for: the company products, implementation projects, testing compliance services, establishing organizational standards, monitoring and reporting.
Controlling and Investment Director
December 2010 - January 2011 (2 months)
I was responsible for the financial planning, controlling, monitoring and reporting.
Development Director
November 2010 - February 2011 (4 months)
I was responsible for: the business strategy and the business perspective process management, the financial planning, developing fixed and security training program (being one of the trainer), the internal management consulting, the sales and vendor process management (including negotiations), the IT services and application process management, the trends analysis.
Bogusław Bujak
Independent Consultant and Auditor
October 2006 - December 2011 (5 years 3 months)
Business Excellence Institute (Poland)
Senior Auditor / Senior Manger / Trainer (B2B Contract)
October 2006 - July 2009 (2 years 10 months)
I was responsible for: the project delivery process, auditing and advisory projects for selected customers (TOP 100), Compliance, trainings and workshops.
Vice President
July 2007 - June 2008 (1 year)
I was responsible for: the business strategy definition and the business operation management, the project delivery process, auditing and controlling processes, the international cooperation (including accreditation procedures), the business risk management, the revenue assurance process, trainings and workshops.
Member of the Board
October 2005 - February 2007 (1 year 5 months)
I was responsible for: the business strategy definition and the business operation management, the project delivery, auditing and controlling processes, the international cooperation (including accreditation procedures), the business risk management, the revenue assurance process, trainings and workshops.
Orange Polska (Telekomunikacja Polska S.A.)
IT Services Director
February 2004 - September 2005 (1 year 8 months)
I was responsible for: the IT service level management proces (SLM), auditing and assessing the level of the quality of the IT services (the cost and KPI’s analysis), consistency of IT processes, the revenue assurance process, the customer satisfaction questionnaire (as a Director of Tech Customer Satisfaction Program), the communication and PR for TP (R&D, IT, Telco) process, the strategy of the company for the sale and delivery integrated ICT services and supervising over the correctness of the implementation projects for corporate Clients, reporting according to corporate standards (IAS, IFRS, internal TPSA, FT).
IT Division Manager (Service Level Management)
July 2003 - January 2004 (7 months)
was responsible for: the IT service level management proces (SLM), auditing and assessing the level of the quality of the IT services (the cost and KPI’s analysis), the customer satisfaction questionnaire (as a Director of Tech Customer Satisfaction Program), reporting according to corporate standards (IAS, IFRS, internal TPSA, FT).
Orange Polska (PTK Centertel sp. z o.o.)
IT Security and Efficiency Division Manager
March 2003 - June 2003 (4 months)
I was responsible for: the Revenue Assurance process, the cost optimization (TCO), the IT security management, the personal data protection (GDPR).
Support Manager
January 2002 - February 2003 (1 year 2 months)
I was responsible for: the IT services and processes, the cost optimization (TCO reduction over 10% of the annual IT budget), the service level management process (SLM).
IT Section Manager (Distributed Computing)
June 1999 - January 2002 (2 years 8 months)
I was responsible for: the IT services and processes, IT standards, the application and system management process (i.e. Terminal Servers, Business Applications, ITSM systems, ERP and Data Warehouse systems); Internal ISO 900x Audits, IT purchasing and logistics (annual budget over $6 million).
IT Help Desk Coordinator
December 1997 - May 1999 (1 year 6 months)
I was responsible for: building IT Service Desk and providing support to users of the IT systems, conducting internal business audits (as an ISO Internal Auditor and a member of the team "Promoters of Quality").
IT Help Desk Consultant
July 1997 - December 1997 (6 months)
I was responsible for the IT Service Desk and the IT system user support process.
S.bit
Implementation Specialist
November 1996 - February 1997 (4 months)
I was responsible for: planning and implementing applications, and the end user support and trainings.
Senior Auditor / Senior Manger / Trainer (B2B Contract)
October 2006 - July 2009 (2 years 10 months)
I was responsible for: the project delivery process, auditing and advisory projects for selected customers (TOP 100), Compliance, trainings and workshops.
Vice President
July 2007 - June 2008 (1 year)
I was responsible for: the business strategy definition and the business operation management, the project delivery process, auditing and controlling processes, the international cooperation (including accreditation procedures), the business risk management, the revenue assurance process, trainings and workshops.
Member of the Board
October 2005 - February 2007 (1 year 5 months)
I was responsible for: the business strategy definition and the business operation management, the project delivery, auditing and controlling processes, the international cooperation (including accreditation procedures), the business risk management, the revenue assurance process, trainings and workshops.
Orange Polska (Telekomunikacja Polska S.A.)
IT Services Director
February 2004 - September 2005 (1 year 8 months)
I was responsible for: the IT service level management proces (SLM), auditing and assessing the level of the quality of the IT services (the cost and KPI’s analysis), consistency of IT processes, the revenue assurance process, the customer satisfaction questionnaire (as a Director of Tech Customer Satisfaction Program), the communication and PR for TP (R&D, IT, Telco) process, the strategy of the company for the sale and delivery integrated ICT services and supervising over the correctness of the implementation projects for corporate Clients, reporting according to corporate standards (IAS, IFRS, internal TPSA, FT).
IT Division Manager (Service Level Management)
July 2003 - January 2004 (7 months)
was responsible for: the IT service level management proces (SLM), auditing and assessing the level of the quality of the IT services (the cost and KPI’s analysis), the customer satisfaction questionnaire (as a Director of Tech Customer Satisfaction Program), reporting according to corporate standards (IAS, IFRS, internal TPSA, FT).
Orange Polska (PTK Centertel sp. z o.o.)
IT Security and Efficiency Division Manager
March 2003 - June 2003 (4 months)
I was responsible for: the Revenue Assurance process, the cost optimization (TCO), the IT security management, the personal data protection (GDPR).
Support Manager
January 2002 - February 2003 (1 year 2 months)
I was responsible for: the IT services and processes, the cost optimization (TCO reduction over 10% of the annual IT budget), the service level management process (SLM).
IT Section Manager (Distributed Computing)
June 1999 - January 2002 (2 years 8 months)
I was responsible for: the IT services and processes, IT standards, the application and system management process (i.e. Terminal Servers, Business Applications, ITSM systems, ERP and Data Warehouse systems); Internal ISO 900x Audits, IT purchasing and logistics (annual budget over $6 million).
IT Help Desk Coordinator
December 1997 - May 1999 (1 year 6 months)
I was responsible for: building IT Service Desk and providing support to users of the IT systems, conducting internal business audits (as an ISO Internal Auditor and a member of the team "Promoters of Quality").
IT Help Desk Consultant
July 1997 - December 1997 (6 months)
I was responsible for the IT Service Desk and the IT system user support process.
S.bit
Implementation Specialist
November 1996 - February 1997 (4 months)
I was responsible for: planning and implementing applications, and the end user support and trainings.
Languages knowledge
English, professional proficiency
- Cambridge Business English Certificate (BEC) Vantage
- TOEIC – 845 points
Polish, native language
Academic and Post-Graduate Educations
- Doctor of Philosophy in management sciences, PhD (PL: dr n. ekon.)
Warsaw University of Technology (Politechnika Warszawska)
Faculty of Management
Distinction in the 6th edition of the Competition for the Award of the President of the National Bank of Poland for the best doctoral dissertation in the field of economic sciences. - Executive MBA & Diplôme International du Management
- The French Institute of Management associé à l'Institut Français de Gestion
- Master in management and marketing (PL: mgr)
University of Management and Law in Warsaw (Wyższa Szkoła Zarządzania i Marketingu w Warszawie)
Marketing and Management Faculty - Engineer of mechatronics (PL: inż)
Warsaw University of Technology (Politechnika Warszawska)
Faculty of Mechatronics - Cybersecurity: Managing risk in the information age
Harvard University - Ethics of AI
University of Helsinki - Artificial Intelligence
University of Helsinki - Writing in the Sciences Seminar (Statement of Accomplishment)
Stanford University - Fixed and Security Analysis based on CFA (PL: doradca inwestycyjny)
Koźmiński University (Akademia Leona Koźmińskiego)
Certifications and other credentials
- CCSK - Certificate of Cloud Security Knowledge
- CISA - Certified Information Systems Auditor
- QA - Accreditation in Quality Assessment / Validation
- CPTE - Certified Penetration Testing Engineer
- CRMA - Certification in Risk Management Assurance
- CIA - Certified Internal Auditor
- ISO/IEC 27001 Lead Auditor
- Proofpoint Certified Identity Threat Specialist
- Proofpoint Certified Security Awareness Specialist
- Proofpoint Certified Insider Threat Specialist
- Proofpoint Certified AI/ML Specialist
- Algosec ASMS Foundation (Certified User)
- SC-400 - Microsoft Certified: Information Protection and Compliance Administrator Associate
- SC-400 - Microsoft Certified: Information Protection Administrator Associate
- GPMPC - Google Project Management Professional (PMP) Certificate
- DP-900 - Microsoft Certified: Azure Data Fundamentals
- AI-900 - Microsoft Certified: Azure AI Fundamentals
- AZ-900 - Microsoft Certified: Azure Fundamentals
- CSSBB - Certified Six Sigma Black Belt
- CSSGB - Certified Six Sigma Green Belt
- White Belt of Lean Six Sigma
- ITIL® Expert Certificate in IT Service Management
- ITIL® Manager - Manager's Certificate in IT Service Management
- MCSD - Microsoft Certified Solution Developer
- MCAD - Microsoft Certified Application Developer
- MCDBA - Microsoft Certified Database Administrator
- MCSA - Microsoft Certified Systems Administrator
- MCSE - Microsoft Certified Systems Engineer
- MCP - Microsoft Certified Professional
- OneTrust Certified GRC Professional
- OneTrust Targeted Data Discovery Expert
- 5th Trainer - the 5th Element Game Trainer
- ITVM - Manager in IT Value Management
- ITVM - Professional in IT Value Management
- cte™ - Certified TCO Expert
- IA - Internal Auditor, Polish Ministry of Economy
- IA - Internal Auditor, British Standards Institution (BSI)
- Build Your Knowledge of Cloud Administration
- Cloud Engineering with Google Cloud
Organizations
- Academy of IT Management in Public Administration – member of the Program Committee
- Foundation IT Leader Club Polska – member of the Council (vice chairman)
- Foundation IT Leader Club Polska – member of the Program Committee
- IT Service Management Forum Polska (itSMF) – ex-member and ex-vice president of the Management Board (2004-2008)
- League for Nature Conservation (LOP) – ex-member of the Main Management Board (1990-1995)
- The Institute of Internal Auditors (The IIA) – member
- ISACA – silver member
- International Society of Automation - senior member
- Association of Martial Artists World Wide – member (Black Belt Council)
- Polish Martial Arts Federation – member
- International Combat Martial Arts Unions Association – member
- International Combat Martial Arts Union – member
- International Combat Martial Arts Masters Union – member
- International Combat Chinese Martial Arts Union – member
- International Combat Martial Arts Founders Union – member
- International Combat Tai Chi Union – member
- International Combat Stick Fighting Union – member
- International Combat Sword Fighting Union – member
- Global Martial Arts Assocation – member
- Vienna Wushu Academy – fellow
- European Wushu Academy – fellow
- Neijia Academy – fellow
Honors & Awards
Professional Honors & Awards:
- Prize of the Board (2014, 2013, 2002, 2000)
- Prize of the President of the Board (2004)
- Prize of the CIO (2002, 2001)
Science Honors & Awards:
Non Profit Honors:
- The Gold Badge of the Alliance for Environment Protection (1990)
- The Silver Badge of the Alliance for Environment Protection (1989)
Hobbies Honors:
- The crown of Polish Half Marathons (2016)
- The arm of Half Marathons (2016, 2017)
- Mountain tourist badge - popular (2016)
- Mountain tourist badge - small brown (2017)
- Mountain tourist badge - small silver (2019)
- The crown of Warsaw (2021)
- The crown of Polish Mountains (2021)
Subskrybuj:
Posty (Atom)