loader
Summary
Overview
Work History
Education
Skills
Accomplishments
Languages
Certification
Security technologies
Additional Information
Presence in Internet
Work Availability
Timeline
Pasi Koistinen

Pasi Koistinen

CISO, COO
Singapore
Summary

A cybersecurity professional with 20 years experience as a Head of information security and operations in cybersecurity companies. Extensive leadership experience from managing cybersecurity teams and services. Public speaker and author of the book "Smiling Security".

Certified in CISSP, CISM, CISA, CRISC, GCWN, GXPN, QSA, ISO27000 LA.

Overview
4
4
Languages
9
9
Certifications
7
7
years of post-secondary education
22
22
years of professional experience
Work History

CISO and COO

Cyber Intelligence House
2015-09 - Current
  • Managed company operations, including service sales, support services and cybersecurity services with team of 20+ personnel. www.cyberintelligencehouse.com
  • Business development of services, technology and partnerships. Built up the company infrastructure and services from ground-up with strong hands-on focus with technology and services.
  • Head of intelligence analyst team and penetration testing teams.

CISO and COO

Silverskin Information Security
2010-02 - 2015-09
  • Responsible for managing the company operations. www.silverskin.com.
  • Headed, supervised and motivated 20+ penetration tester and senior cybersecurity consultant staff members
  • Consulted customers in application security, firewalls, information security management, IT audit, network security, PCI DSS, penetration testing, security architecture design, security audits, SDLC security, IT/DevSecOps and vulnerability assessments.

Corporate Security Manager

Luottokunta
2010-10 - 2011-08
  • Responsible for corporate security management of the largest credit card payment acquirer in Finland (with 95% market share of the credit card payments in the country).
  • Developed business continuity and disaster recovery plans, aligned security operations with enterprise risk management and developed security policies, operating procedures and cybersecurity awareness training.

CISO

Itella Corporation
2007-08 - 2010-10
  • Responsible for information security management of the Itella Corporation, the national post company of Finland. www.posti.fi
  • Developed information security policies, procedures, standards and guidelines for the corporation.
  • In charge of Enterprise Risk Management (ERM) framework risk management methods and tools development.
  • Conducted risk assessments, audits and compliance checks.
  • Provided SAS70, PCI DSS, ISF SOGP, ISO27000 auditing, advice and guidance services for business units.

CSO and CISO

Nixu
2005-01 - 2007-08
  • In charge of internal cybersecurity of Nixu, a listed cybersecurity company. www.nixu.com
  • Provided cybersecurity advise for clients in Saudi Arabia, Riyadh and Helsinki, Finland as senior cybersecurity consultant.
  • Audited cybersecurity and made risk assessments of Nixu's customers.
  • Implemented cybersecurity policies, procedures and guidelines for the corporation.

Information Security Manager

Avain Technologies
2000-01 - 2004-12
  • In charge of security and implementation of ISO/IEC 27001 certification of the company. Avain Technologies is a agile secure software development company. www.avaintec.com
  • Developed and implemented information security policies, procedures and guidelines. Communicated with company management and board for policy acceptance support.
  • Implemented technical information security controls to meet the requirements of the policies.
  • Assessed cybersecurity risks and audited internal compliance with policies.
Education

MBA Degree On Security Management

Laurea University Of Applied Sciences
2010-07 - 2013-03

Achieving Outstanding Performance Operations Management And Supervision

INSEAD
2016-06 - 2016-07

BBA Degree On Security Management

Laurea University Of Applied Sciences
2000-01 - 2004-01
Skills

Information security management

Business development

Risk management

Effective team leader

Cybersecurity standards: ISO/IEC27000, PCI DSS, BS25999, ISF SoGP, SAS70 (SSAE 16), MAS TRM, NIST, CIS

Accomplishments
  • Author of the book Smiling Security: The Cybersecurity Manager's Road to Success. Published November 2020
  • Every business, large and small, is vulnerable to cyber attack. If your company isn’t well protected, its systems may be compromised by sophisticated hackers with malicious intentions. Business owners, boards, CEOs, and cyber security managers must work together to combat this threat by putting effective security measures and organization in place. With Smiling Security, you can build one from the ground up in just ninety days.
  • Https://www.amazon.co.uk/Smiling-Security-Cybersecurity-Managers-Success/dp/1544511795
Languages

English

Finnish

Swedish

German

Certification

CISSP, Certified in Information Systems Security and Control

CISM, Certified Information Security Manager

CISA, Certified Information Security Auditor

CRISC, Certified in Risk and Information Systems Control

GCWN, Certified Windows Security Administrator

GXPN, Certified Exploit Researcher and Advanced Penetration Tester

ISO27000 Lead auditor

QSA, PCI DSS Qualified Security Assessor

SANS FOR578 Cyber threat intelligence course

Security technologies
  • AWS cloud security, Guard duty, Security hub, Shield, WAF, patch manager,
  • Certificate manager, RDS TDS
  • Anti DDoS solutions, WAF, load balancing, HA proxies
  • Anti phishing, email security
  • Running IT security & SOC teams
  • Penetration testing projects, red teaming services, security incident
  • Management, forensic investigations
  • Vulnerability management, Nessus, Rapid7, OpenVAS
  • Endpoint security, antivirus
  • Firewalls, routing, network security, scanners, wireless security
  • SIEM, Cyber threat intelligence services, log management, tripwire, intrusion
  • Detection
  • Antivirus / anti ransomware
  • Cryptography, Certificates, x.509, HSM
  • VPN, OpenVPN, IPsec, SSL VPN
  • OS security, baselines, hardening, CIS benchmarks - Linux, Windows, MacOSX
Additional Information
  • Resident in Singapore since 2015
  • Employment Pass (EP) holder
Presence in Internet

Book author of "Smiling security"

https://www.amazon.com/Smiling-Security-Cybersecurity-Managers-Successebook/dp/B08L3WXDS9

Personal Linkedin profile

https://www.linkedin.com/in/pasikoistinen

Techinasia video

https://www.techinasia.com/video/5-hacking-techniques-prevention

Personal interest urban farming and growing chilies.

Author of http://www.chilious.com

Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Timeline

Achieving Outstanding Performance Operations Management And Supervision

INSEAD
2016-06 - 2016-07

CISO and COO

Cyber Intelligence House
2015-09 - Current

Corporate Security Manager

Luottokunta
2010-10 - 2011-08

MBA Degree On Security Management

Laurea University Of Applied Sciences
2010-07 - 2013-03

CISO and COO

Silverskin Information Security
2010-02 - 2015-09

CISO

Itella Corporation
2007-08 - 2010-10

CSO and CISO

Nixu
2005-01 - 2007-08

Information Security Manager

Avain Technologies
2000-01 - 2004-12

BBA Degree On Security Management

Laurea University Of Applied Sciences
2000-01 - 2004-01

SANS FOR578 Cyber threat intelligence course

QSA, PCI DSS Qualified Security Assessor

ISO27000 Lead auditor

GXPN, Certified Exploit Researcher and Advanced Penetration Tester

GCWN, Certified Windows Security Administrator

CRISC, Certified in Risk and Information Systems Control

CISA, Certified Information Security Auditor

CISM, Certified Information Security Manager

CISSP, Certified in Information Systems Security and Control