Sandra Cako
Project & Product Security Manager
Vienna
Summary
Accomplished security expert with a proven track record, enhancing cybersecurity compliance and fostering leadership development. Pioneered innovative risk assessment methodology and achieved strategic goals through critical thinking and team collaboration. Adept in cybersecurity compliance and stakeholder management, driving projects to success with resilience, agility and innovation. Skilled in navigating challenges to deliver impactful solutions.
Overview
8
8
years of professional experience
4
4
years of post-secondary education
3
3
Certifications
4
4
Languages
Work History
Project Security Manager
Hitachi Rail
Vienna, Vienna
09.2023 - Current
- Responsible for driving compliance with IEC 62443 standard by implementing processes and frameworks to achieve desired security levels. Currently leading efforts to achieve full compliance as part of organizational strategic goals and customer requirements
- Designed and implemented new security risk assessment methodology within the project, subject to become elevated on the company level and applied across all engineering projects
- Constantly striving for innovation and agility including initiatives for cross-projects collaboration
- Demonstrated leadership and team spirit development
- Delivered knowledge sharing and expertise building
- Assumed additional responsibilities to assist team in troubleshooting issues in order to ensure project timeline is unaffected
Chief Strategy Officer
CyberShield
Frankfurt, Germany
03.2024 - 11.2024
- Contributed as a freelance consultant to a cybersecurity startup, supporting strategic operations and long-term company planning.
- Designed structured development plan that aligned with company's growth objectives.
- Acted as a customer service representative, fostering effective communication, maintaining quality standards, and enhancing the company's reputation within the DACH region.
- Led marketing initiatives by analyzing market trends, generating actionable insights, recommending content strategies, and organizing webinars to promote the company’s offerings.
Security Project Manager
Sportradar
02.2021 - 08.2023
- Led key projects to ensure fulfillment of security audit requirements for different standards such as SOX, MGA, DGA and UKGC compliance.
- Presented regular updates on project status to senior leadership, maintaining transparency and facilitating informed decision-making.
- Continuously monitored project progress, adjusting timelines and resources as needed to achieve timely completion.
- Streamlined communication between stakeholders, fostering collaboration in the development of robust security solutions.
- Negotiated contracts with vendors, securing favorable terms that aligned with budgetary constraints and project requirements.
- Drove change management ensuring consistent and uninterrupted company's operations
Information Security Analyst and Engineer
Sportradar
Vienna, Vienna
09.2019 - 02.2021
- Participated in incident response activities, including digital forensics, incident analysis, and detailed reporting.
- Initiated the acquisition process for a SIEM tool by conducting vendor comparisons, leading negotiations, and fostering cross-departmental collaboration.
- Led the successful implementation of the SIEM solution (Splunk), ensuring seamless integration and effective coordination with relevant teams.
- Enhanced the organization's security posture by developing SOC capabilities, including the creation of security dashboards and automated alarms.
- Conducted threat modeling using the STRIDE methodology to identify vulnerabilities and mitigate risks.
Security Consultant & Team Lead API
OmnitechIT
Belgrade, Serbia
12.2016 - 05.2019
- Managed the entire project lifecycle independently, leading a team of 10 members to successful completion.
- Delivered a large-scale RBI Group project with Tatra Banka, ensuring full compliance with PSD2 regulations.
- Designed and implemented a Fraud Detection System for Dimension Data, utilizing CA Strong Authentication and CA Risk Authentication tools to enhance security and minimize fraudulent activities.
- Participated in several projects by designing and implementing CA API Gateway.
- Delivered and prepared pre-sales activities, proof of concepts and product training to customers.
Education
Bachelor of Science - Informatics And Computing
Singidunum University
Belgrade 10.2013 - 06.2017
Skills
- Leadership Development
- Strategic Planning
- Risk Assessment
- Cybersecurity Compliance
- Team Collaboration
- Critical Thinking
- Problem-solving
- Stakeholder management
Accomplishments
Professional football player for 13 years, with participation in Serbian national team for 7 years. Competed in matches for qualifications for European championships.
Certification
ISA/IEC 62443 Certified Cybersecurity Fundamentals Specialist
Timeline
Chief Strategy Officer
CyberShield
03.2024 - 11.2024
ISA/IEC 62443 Certified Cybersecurity Fundamentals Specialist
02-2024
Project Security Manager
Hitachi Rail
09.2023 - Current
Prince2 Agile Foundation
12-2021
Security Project Manager
Sportradar
02.2021 - 08.2023
Information Security Analyst and Engineer
Sportradar
09.2019 - 02.2021
ISO 27001:2013
03-2018
Security Consultant & Team Lead API
OmnitechIT
12.2016 - 05.2019
Bachelor of Science - Informatics And Computing
Singidunum University
10.2013 - 06.2017
Similar Profiles
Justin CoreJustin Core
Software Engineer at Hitachi RailSoftware Engineer at Hitachi Rail
MINTO CHACKO MATHEWMINTO CHACKO MATHEW
Manufacturing Operations at HITACHI RAILManufacturing Operations at HITACHI RAIL
Nolan SongerNolan Songer
Project Management Intern at Hitachi RailProject Management Intern at Hitachi Rail