Mihran Tepeli

• - Liaising with stakeholders (service providers, internal clients and external vendors (Managed Supply Chain Security and vendor risk))

• - Ensure continuous operational governance through the daily operations

• - Act as the Single Point of Contact (SPOC) for Network/Security Operations (incidents, problems) to ensure alignment with ISO 27001 Annex A controls

• - Project coordination following "Directed 'Security by Design' initiatives: migrations (proxy, remote access : reenforcing Identity and Access Management (IAM) through MFA, dc switches, large-scale segmentation), lifecycle management

• - Collaborating with Information System Security Officer on Change Management : assessment / creation / support of Network/Firewall Changes + Risk & related impact analysis

• - Patch Management & CVE Response : Reviewing on a regular basis the Vulnerability Management Lifecycle by Managed Service Provider & against cve.org /

• - Policy Drafting & Compliance (AlgoSec) : performing periodic reviews to eliminate redundant or 'shadow' rules, thereby enforcing the Principle of Least Privilege across the network infrastructure hence keeping Firewalls audit ready.

• - Chaired technical risk assessments within the Change Advisory Board (CAB), evaluating the security impact of firewall and network modifications to prevent unauthorised access and maintain audit-ready compliance

• - Network : Governed the security architecture of Enterprise Asset Management across WLAN, LAN, WAN, and Data Center environments, enforcing network segmentation controls to protect critical business information assets

• - Security : Managed the end-to-end lifecycle of Identity and Access Management (IAM) and network security controls (NAC 802.1X, S2S VPN, Firewalls), ensuring compliant and secure Remote Access for internal and external stakeholders

• - Project : Led the Security Integration of new business partners and site expansions, implementing Security by Design principles during the rollout and lifecycle management of network services to mitigate Third-Party Risk

• - Business Continuity Management : Architected and validated Business Continuity and Disaster Recovery (BCDR) frameworks; designed and tested redundancy strategies for Campus and Partner environments to meet NIS2 Availability and Resilience requirements

• - Patch Management & CVE Response : Managed the Vulnerability Management Lifecycle, prioritising remediation efforts based on and business impact to ensure continuous compliance and organisational risk thresholds + Reduced the corporate attack surface by implementing a proactive patch management program, aligning technical remediation with documented SLA requirements for critical security updates

• - Policy Drafting & Compliance (AlgoSec) : performing periodic reviews to eliminate redundant or 'shadow' rules, thereby enforcing the Principle of Least Privilege across the network infrastructure hence keeping Firewalls audit ready.

• - Represented the Security function at the Change Advisory Board (CAB), conducting Technical Risk Assessments for major infrastructure changes to ensure alignment with the organisation's Risk Appetite and regulatory obligations

• - Regional Infrastructure & Support : Defined EMEA-wide system requirements and security baselines for campus and partner telecommunication network & Tier-3 incident and problem management for remote and on-site infrastructures, ensuring high-availability connectivity

• - Global Strategic Coordination : Synchronised regional deployments with global WAN architecture teams to align EMEA operations with corporate backbone standard & orchestrate with cross-functional managers and engineers to large-scale technology refreshes and global change window

• - Operational Resilience (BCM) : Architected and implemented redundancy solutions for campus and partner sites to eliminate single points of network failure & Directed Disaster Recovery (DR) design and validation drills, optimising failover convergence and documented recovery objectives (RTO)