Summary
Overview
Work History
Education
Skills
Websites
Quote
Personal Information
Certification
Golf
Timeline
Generic
RUFARO WARINDA

RUFARO WARINDA

Industrial Engineer (Technology: Security & Compliance)
Johannesburg

Summary

Committed to solving governance related, socio-economic issues through the application of technological controls. A published Industrial Engineer with multi vertical experience in process engineering, Cyber Security and Technological Compliance.

Overview

3
3
years of professional experience
11
11
years of post-secondary education
2
2
Certifications

Work History

PROCESS ENGINEER

WWISE
3 2019 - 4 2021
  • Created technologically based processes and systems that assisted customers in achieving certifications to various ISO standards, namely ISO 27001:2013, NIST800-53 and PCI DSS.
  • Traveled internationally (Ghana, Australia and Peru) as a Process Engineer, Lead Implementer and Auditor on client certification journeys into ISO 27001:2013 for clients such as :Gold Fields Mining Group and Teraco Data Environments.
  • Mapped various governance standards against each other in order to create a seamless governance strategy where technological tooling could be leveraged to achieve compliance across multiple frameworks.
  • Built governance standards, procedures and workflows against information security based frameworks (NIST, COBIT, ITIL, FINRA, ISO 27001:2013, PCI DSS)

MODERN WORK CLOUD ANALYST

Tangent Solutions
04.2021 - 03.2022
  • Assisted clients in creating Security Operation Centers with cyber security & compliance digital strategies from their business processes to the technical deployments in Microsoft 365 and Azure.
  • Deployed various technologies for these clients in order to achieve their compliance goals namely: Microsoft Purview Compliance, Microsoft Information Protection, Microsoft Data Loss Prevention, Records Management, Data Lifecycle Management, Insider Risk Management, Microsoft Defender for 365, Netskope: CASB solution deployed with API connectors into Microsoft 365, Information governance and Architecture with various SharePoint/ Teams deployments.

SECURITY CONSULTANT

NBConsult
04.2022 - 02.2023
  • MCAS/ Microsoft Zero Trust Implementation
  • Project lead for the security implementation M365 Defender, Identities, Cloud apps (MCAS now defender for Cloud Apps)
  • Conducted detailed security assessments and deployment gap analyses using CSAT tooling from QS Solutions
  • Assisted in mitigating compliance and privacy risks for complex and strictly regulated clients
  • Created the Architecture for a Compliant Data Migration from StorSimple 8000 to Azure File Share for one of South Africa's largest Insurance firm (First compliant migration of its kind recognized directly by Microsoft) created and executed all technical requirements to ensure preservation of chain of custody and financial laws/ regulations
  • Information Technology Audit compliance on an organization & legal level for clients who wanted to advance their digital estate using a combination of the CIS Benchmark, Zero Trust Framework and ISO 27001:2022
  • Assisted in Active Directory Design to ensure compliance to NIST 800-53.

SECURITY & COMPLIANCE COMPETENCY LEAD

NBConsult
02.2023 - Current
  • Recognized author of Microsoft's Zero Trust Adoption Framework Articles (Which is now officially part of Microsoft's MCRA link: https://learn.microsoft.com/en-us/security/zero-trust/adopt/zero-trust-adoption-overview)
  • Lead authored the 'Meet Regulatory and Compliance Requirements Article' on Behalf of Microsoft.
  • Created risk based strategies for deploying security technologies as well as conducted the assessments thereof.
  • Presented at industry conferences and webinars relating to how customers should consider adopting the security and compliance within their digital estates.
  • Deployed digital Security Operations Centers by leveraging Microsoft Sentinel along with Microsoft Defender XDR.
  • Consulted as a virtual Chief Information Security Officer (CISO) for a large conglomerate based in Hong Kong.

Education

IEB MATRIC -

St John's College
01.2009 - 05.2013

BENG INDUSTRIAL ENGINEERING - undefined

University of Pretoria
01.2014 - 04.2019

SAP (SYSTEM APPLICATION AND PRODUCT) - undefined

University of Pretoria
01.2018 - 04.2019

Skills

  • LANGUAGES
  • English Native
  • Business Analysis
  • PowerShell Scripting
  • GDPR
  • POPIA
  • NIST
  • COBIT
  • PCIDSS
  • FINRA
  • Cyber Security Strategy & Deployments

  • Intrusion Detection

  • Compliance Management

  • Application security

  • Privacy regulations

  • Business Continuity

  • Data protection

  • Access Control

  • Incident Response

  • SIEM management

Quote

Gnavum fortuna repugnat. "Fortune disdains the lazy"

Personal Information

Date of Birth: 11/13/95

Certification

ISO Lead Auditor

Golf

I'm a 5 handicap golfer but please, it's just for good fun!

Timeline

SECURITY & COMPLIANCE COMPETENCY LEAD

NBConsult
02.2023 - Current

MS 900 & MS 500

05-2022

SECURITY CONSULTANT

NBConsult
04.2022 - 02.2023

MODERN WORK CLOUD ANALYST

Tangent Solutions
04.2021 - 03.2022

ISO Lead Auditor

02-2021

SAP (SYSTEM APPLICATION AND PRODUCT) - undefined

University of Pretoria
01.2018 - 04.2019

BENG INDUSTRIAL ENGINEERING - undefined

University of Pretoria
01.2014 - 04.2019

IEB MATRIC -

St John's College
01.2009 - 05.2013

PROCESS ENGINEER

WWISE
3 2019 - 4 2021

Similar Profiles

  • Janeke Leibrandt

    Janeke LeibrandtJaneke Leibrandt

    Luxury Retail Sales Manager at Starboard Cruise Services IncLuxury Retail Sales Manager at Starboard Cruise Services Inc

    View Profile
  • Derick Opoku

    Derick OpokuDerick Opoku

    Head of Supply Chain at Starbucks South AfricaHead of Supply Chain at Starbucks South Africa

    View Profile
  • Janette Mafunda

    Janette MafundaJanette Mafunda

    Intern at Grand Mercure Dubai CityIntern at Grand Mercure Dubai City

    View Profile
RUFARO WARINDAIndustrial Engineer (Technology: Security & Compliance)