Serik Kylyshbayev CISSP

Information Security Leader | Engineering Mindset | Automation Enthusiast

LinkedIn Profile Contact for Full CV

Professional Summary

Information Security professional with over 18 years of experience and an engineering mindset. Expert in designing resilient security frameworks, conducting complex audits, and building ISMS from scratch for large holding structures. Proven track record in securing hybrid cloud environments and optimizing SecOps efficiency through n8n automation and AI integration.

Governance & GRC

  • ISO 27001 / NIST 800
  • PCI DSS Compliance
  • Group-wide Audits
  • Risk Management (COSO)

SecOps & Engineering

  • SIEM (Sentinel / QRadar)
  • EDR / DLP / WAF
  • NGFW (Fortinet / Cisco)
  • Vulnerability Mgmt

Cloud & Network

  • Azure Security & M365
  • MS Intune (MDM)
  • Zero Trust Architecture
  • Secure VPN / SASE

Automation & AI

  • n8n Security Workflows
  • LLM & AI Integration
  • API Integration
  • Python Scripting

Key Experience Highlights

Verny Capital LLP Information Security Manager
  • Designed and implemented a unified IS Standard for a portfolio of 17 companies, ensuring 100% compliance through annual audits.
  • Spearheaded secure migration to MS Azure, fine-tuning Sentinel (SIEM), Intune (MDM), and Cloud DLP.
  • Established a comprehensive risk management lifecycle and justified critical security controls across holding infrastructure.
  • Architected defense-in-depth layers by deploying NGFW, WAF, EDR, and Vulnerability Management processes.
Eurasian Bank JSC Information Security Officer
  • Managed the full lifecycle of IBM QRadar SIEM, developing custom parsers and correlation rules to eliminate visibility gaps.
  • Built a threat management process from the ground up, integrating CTI feeds to mitigate emerging risks.
  • Improved MTTD (Mean Time to Detect) by deploying advanced response rules and automated reporting dashboards.
BankPozitiv Kazakhstan JSC Information Security Officer
  • Established a comprehensive ISMS aligned with ISO 27001, COBIT, and National Bank of Kazakhstan requirements.
  • Represented the bank in regulatory working groups (National Bank, AFK) to develop national cybersecurity standards.
  • Architected multi-layered defense systems and managed Thales HSM modules for secure transaction processing.
  • Introduced the bank’s first SIEM system and implemented 2FA for secure remote access.

Interests & Projects

Automation: Developing home automation ecosystems and personal AI assistants using n8n.
Music: Electric guitar enthusiast; focused on signal processing and pedalboard engineering.
Sports: Football player; advocate for strategic teamwork and collaborative spirit.