25.11.2025 aktualisiert
Premiumkunde
nicht verfügbarIT Regulatory Compliance & GRC (BCM, IT Risk, DORA, ISO 22301, Outsourcing)
Frankfurt, Deutschland
Frankfurt +500 km
Master's Degree in FinanceSkills
Künstliche IntelligenzAmazon Web ServicesConfluenceJiraAuditsAuditmanagementFinanzdienstleisterGeschäftskontinuitätCloud ComputingCmdbComplianceInformationssicherheitKrisenmanagementGap-AnalyseGovernance-Risikomanagement und ComplianceIt-RisikomanagementISO / IEC 27001ProjektmanagementAuslagerungRecruitment Process OutsourcingPower BiRisikoanalyseBetriebsmodellenMetisTestenNational Institute Of Standards And Technology (NIST)DatenschutzMariskBeweismanagementVBA Programming LanguageISO 22302GPTServicenow
DORA & IT/GRC | BCM | Outsourcing (MaRisk EBA) | Information Security
I’m an independent DORA and IT/GRC programme lead helping banks and financial institutions achieve audit-ready outcomes fast. I deliver time-boxed engagements with regulator-style evidence across Operational Resilience, Outsourcing (MaRisk AT 9/EBA), BCM (MaRisk 7.3/ISO 22301) and Information Security (ISO 27001/ NIST).
Why me
I cover three roles at once: DORA Lead, Outsourcing Manager, BCM Manager; so you avoid hand-offs and delays. I’ve sat on each side (IT, Risk, Security), so I connect requirement -> control -> test -> evidence -> report without friction.
Services
- DORA compliance uplift
- Outsourcing management (MaRisk AT 9/EBA): register, contractual clauses, performance monitoring, exit strategies
- Business Continuity (ISO 22301): BIA, RTO/RPO, BCP, crisis playbooks, tabletop exercises
- IT Risk & Control: KRIs, test templates, monthly dashboards
- Regulatorz reporting: board/CRO packs, audit responses, remediation tracking
Skills / Competencies
- DORA, Operational Resilience, ICT Risk, Incident & Continuity
- Outsourcing / Third-Party Risk (MaRisk AT 9, EBA)
- BCM / DR (ISO 22301), Crisis Management & Tabletop
- Information Security (ISO 27001), Policy & Controls
- IT Risk Management, KRIs, Control Testing, Evidence Management
- Programme/Project Leadership (PMP)
- Stakeholder & Audit Management (CIO/CRO/Regulator)
Certifications & Memberships
- Certificate of the BCI Examination (CBCI), Business Continuity Institute
- AWS Certified Cloud Practitioner, Amazon Web Services
- Member of BCI (MBCI), Business Continuity Institute
- Project Management Professional (PMP), Project Management Institute
- Outsourcing Management in Financial Institutions, Bank-Verlag GmbH
- Data Protection in Financial Institutions, Bank-Verlag GmbH
- ISO 22301 Business Continuity Systems Implementation, British Standards Institution
Additional Project Experience
>150 mid-terms and smaller projects on UpWork and Fiverr (99% - 5-star result).
https://www.fiverr.com/users/dmitriyshatov/
https://www.upwork.com/freelancers/dmitryshatov
Tools
Microsoft 365 (incl. VBA), Jira, Confluence, ServiceNow (CMDB, TPRM module), Fusion Risk, Castellan (ClearView), Everbridge, AWS, PowerBI
AI-Tools
ChatGPT, Microsoft Copilot, METIS AI
Sprachen
DeutschgutEnglischverhandlungssicherRussischMuttersprache
Projekthistorie
Zertifikate
Outsourcing Management in Financial Institutions
Bank-Verlag GmbH2022
Data Protection in Financial Institutions
Bank-Verlag GmbH2022
Certificate of the BCI Examination (CBCI)
Business Continuity Institute2016
ISO 22301 Business Continuity Implementation
British Standards Institution2012
Portfolio
UpWork Projects
Top Rated Upwork consultant in Business Continuity, Risk (GRC) & InfoSec. I design BCP/DR, run tabletop exercises, build incident/crisis playbooks, and deliver audit-ready policies (ISO 22301/27001, DORA, GDPR). Fast, fixed-scope BIAs, risk registers, vendor & data classification.
Fiverr Projects
Business Continuity, Risk (GRC) & InfoSec specialist. I build BCP/DR, run tabletop drills, create incident/crisis playbooks, and write audit-ready policies (ISO 22301/27001, DORA, GDPR). Clear packages, quick turnaround, pro templates: BIAs, risk registers, vendor & data classification.