Sotiris Kamoutsis

Curriculum Vitae

For more details, visit my profile: https://www.linkedin.com/in/samkamoutsis

Results-driven Cybersecurity and Risk Management Consultant with over 34 years of expertise spanning IT, information security, and cybersecurity. Extensive experience including recent serving as a Big 4 consultant specializing in risk management and cybersecurity for financial services, advising global organizations on regulatory compliance and cyber resilience.

A seasoned leader in designing and auditing secure systems, building robust cybersecurity frameworks, and driving strategic initiatives that align security priorities with business goals.

Professional Experience

  • Ernst & Young – Senior Manager, Risk Management Athens, Greece
  • Deutsche Bank – Vice President, Principal Auditor New York, USA
  • Barclays – AVP Infrastructure, Data, Resilience & Information Security Auditor New York, USA
  • SYSWARE – Information Security Consultant New York, USA
  • Alma Bank – VP, Information Security Officer New York, USA
  • Royal Bank of Canada – Information Security Manager Toronto, Canada
  • Castrol – Information Technology & Security Manager Toronto, Canada
  • SYMCOR – Information Technology Project Manager Toronto, Canada
  • Eurobank – Information Technology Manager Athens, Greece
  • Meridian Credit Union – IT Support / Internal Auditor Toronto, Canada

Areas of Expertise

PRIMARY

  • Cybersecurity Audit
  • Information Security
  • Cybersecurity
  • Finding, Issue, and Exception management
  • Information Security Governance
  • Information Security Policy & Procedure design
  • Financial Services Risk Management
  • IT Risk and Business Impact Assessments
  • Enterprise Risk Management
  • Business Continuity Management and Disaster Recovery
  • ——————————————
  • SECONDARY
  • Information Technology Governance and Controls (ITGC)
  • Security Awareness and Training
  • Business Continuity and Disaster Recovery Planning
  • Computer Security Incident Response
  • Threat & Vulnerability Management
  • Threat Monitoring & Mitigation
  • Security Architecture & Design
  • Cloud Security
  • Network / Endpoint Security
  • Data Security Loss Prevention
  • Intrusion Detection & Prevention
  • Network Access Controls
  • Third Party / Vendor Management
  • Site Visits and Audits
  • Vulnerability Management
  • Network Penetration Testing
  • Privacy & Regulatory Compliance
  • Program & Project Management
  • ISO27001 ISMS Management
  • ISO27002 Implementation
  • Forensics Management
  • ITIL

Certifications

CISA – Certified Information Systems Auditor

CISM- Certified Information Security Manager