Hi there , I'm Zhorieff.
My barcode brought you here.
Nice to meet you.
About Zhorieff
Personal Profile
I am an experienced Information Security professional with a strong background in building, developing, and leading security functions in complex enterprise environments. My expertise spans security governance, risk management, security operations, and regulatory compliance.
I combine analytical thinking, structured decision-making, and strong people skills to deliver practical, sustainable security solutions. I believe effective security leadership is built on trust, accountability, and the ability to translate technical risks into clear business impact.
МОТО
Every situation/coin has two sides. I own my perspective while staying open to learning.
Experience
Work History
November 2022 - till now
Chief Information Security Expert: KBC Group Bulgaria
Responsible for defining and executing the local information security strategy in alignment with group security governance. Oversees security operations, risk management, data protection controls, and regulatory compliance. Acts as a trusted security advisor to senior management, supporting business initiatives while ensuring secure and resilient information and IT environments.
June 2021 - November 2022
Senior Expert Security Operations: KBC Group Bulgaria
Contributed to the development and enforcement of information security requirements across business and IT domains. Supported threat detection, risk assessments, security architecture decisions, and policy implementation, ensuring alignment between local operations and group-level security standards.
April 2020 - June 2021
Senior SecOps, DZI General / DZI Health Insurance
Played a key role in strengthening and maturing the local security operations function. Supported the transformation of security operations into a structured and effective capability, covering monitoring, incident response, security tooling, and collaboration with IT and business stakeholders. Focused on operational security oversight, risk mitigation, and continuous improvement of security controls.
Feb 2020- April 2020
Chief Information Security Officer / CISO, First Investment Bank ltd.
Reported directly to senior management and was responsible for enterprise-wide information security governance. Defined security strategy, policies, and controls, oversaw security operations and compliance activities, and supported regulatory and audit engagements. Balanced business priorities with security risk management and organizational resilience.
Feb 2019 - Feb 2020
Information Security Officer (ISO), First Investment Bank ltd.
Responsible for maintaining the confidentiality, integrity, and availability of critical information assets. Developed and implemented security policies, conducted risk assessments, supported audits, and worked closely with business units to embed security requirements into daily operations and projects.
June 2008 - Feb 2019
Administrator Insfrastructure, First Investment Bank ltd.
Earlier career role
Provided infrastructure and systems administration support, including endpoint management, server and network operations, and user support within an enterprise environment. During the later stage of this role, additionally mentored and trained other specialists, preparing them to handle operational and technical challenges independently. Entrusted with responsibility for headquarters infrastructure and direct support of company owners, demonstrating a high level of trust and accountability early in the career.
Core Skills
Administrator Insfrastructure, First Investment Bank ltd.
Earlier career role
Leadership & Team Building
-
Team building and leadership
-
Mentoring and coaching of specialists
-
Building trust and accountability within teams
-
Leading by example
-
Conflict management and constructive feedback
-
Cross-functional collaboration
Analytical & Strategic Thinking
-
Analytical thinking
-
Structured problem solving
-
Risk-based decision making
-
Critical and strategic thinking
-
Attention to detail without losing the big picture
Professional Attitude & Values
-
High sense of responsibility
-
Integrity and ethical mindset
-
Persistence and resilience under pressure
-
Accountability for results
-
Ability to challenge the status quo
Communication
-
Clear communication with technical and non-technical stakeholders
-
Executive and board-level communication
-
Translating technical risks into clear business language
-
Facilitating discussions between business, IT, and security teams
-
Presenting complex topics in a structured and understandable way
Academics
Learning and Living
January 2000 - December 2022
VUZF, Sofia [Bulgaria]
Bachelor-level studies focused on the intersection of information technology and business strategy. The program covered IT analysis, business process modeling, strategic planning, and managerial decision-making, with an emphasis on aligning IT solutions with organizational and business objectives.
Strong focus was placed on analytical thinking, risk awareness, data-driven decision making, and the practical application of technology to support sustainable business performance.
January 2018 - December 2021
Software University, Sofia [Bulgaria]
SoftUni's Software University project was founded with the idea of an innovative and modern educational center that creates true professionals in the world of programming. For us, as for the entire software industry, real practical skills are most important. That is why we use the "learning by doing" model, providing our students with programming training combined with real practical experience and knowledge in the most sought after and modern technologies, ready to start their careers as successful software engineers.
August 2007 - May 2011
New Bulgarian University, Sofia [Bulgaria]
Bachelor-level studies focused on fundamental and applied areas of computer science. The curriculum covered programming, algorithms and data structures, operating systems, computer architecture, databases, computer networks, and software engineering.
The program emphasized analytical thinking, structured problem solving, and practical coursework, combining solid theoretical foundations with hands-on projects relevant to real-world IT environments.
November 1982 - future
"Lessons of life"
The space here is too short to describe everything I have learned and what lies ahead. There are lessons in life and it cannot be stamped with a sheet of paper colored with shades of ink. What lies ahead are many more contributors to life, and to the sheet of ink.
Certificates
January 2026 - CyberArk
Management (PAM) Administration
December 2023 - New Horizons
(ISC)2 Security CISSP (ISC2-CISSP)
December 2021 - EC-Council
Certified Ethical Hacker (CEH)
July 2021 - Software University
Compromising Platforms
April 2021 - Software University
System and Network Compromising
February 2021 - Software University
Open Source Intelligence
November 2020 - SoftUni
Information Security Management
January 2020 - Expert Events
Practical application of EU Regulation 2016/679 (GDPR)
November 2019 - ISACA
Cybersecurity Risk Management
June 2019 - ISACA
CSX Fundamentials
December 2018 - Software University
Computer Networking Advanced
November 2018 - Software University
Windows System Administration
November 2020 - Software University
Computer Networking Fundamentals
Thomas Jefferson
"If you want something you've never had, you must be willing to do something you've never done"