Gabriela Cristina Burducea
Bucharest
Summary
Cybersecurity Analyst with over 5 years of experience in the banking sector, specialized in Governance, Risk and Compliance. Strong expertise in Application Sensitivity Assessments, risk lifecycle management, DLP governance and security exception management within complex enterprise environments.
Currently operating fully in French language, collaborating with international stakeholders and ensuring alignment with group-level Information Security policies.
Experienced in cloud security monitoring (AWS, PrismaCloud) and IAM controls, with solid exposure to regulatory, operational and data protection risk evaluation frameworks.
Overview
10
10
years of professional experience
5
5
years of post-secondary education
Work history
Cybersecurity Analyst with French
Société Générale
București
2021.03 - 2026.02
Role fully performed in French, supporting international banking entities.
Governance, Risk & Compliance
- Conduct Application Sensitivity Assessments to determine confidentiality, integrity, availability and traceability requirements for banking applications
- Evaluate DICP and Data Privacy criteria to establish application sensitivity levels and required security controls
- Review and validate security deliverables prior to CISO approval, ensuring accuracy, completeness and alignment with group security standards
- Inject identified risks into the internal risk management tool and monitor remediation implementation together with developers and application owners
- Perform quarterly follow-up of risk reduction action plans to ensure compliance with remediation commitments
- Handle security exceptions and derogations in accordance with Group Information System Security Policy
DLP Governance
- Contribute to development, implementation and continuous improvement of DLP policies
- Investigate DLP incidents and analyze data leakage risks
- Monitor DLP perimeter and implement corrective measures where required
- Ensure alignment between operational practices and data protection requirements
Cloud & Access Security
- Monitor and analyze PrismaCloud alerts across AWS and Azure environments to reduce vulnerabilities
- Manage AWS access approvals and security group related requests
- Process whitelisting requests for URLs, FTP, IPs and route openings
- Review and manage IAM role assignments (WHATS roles), including rights on UNIX, Windows and database environments
- Treat security exception requests via Pull Requests in internal repositories
Customer Sales & Support Manager with French
HP
Bucharest
2019.08 - 2021.02
- Managed and maintained complex product catalogs for enterprise clients, ensuring contractual compliance and pricing accuracy
- Created customized technical configurations based on customer requirements
- Provided consultancy and delivered structured online training sessions to clients
- Managed external leasing contract documentation and updates
- Worked extensively with numerical analysis, pricing structures and contractual alignment
- Operated fully in French, ensuring high customer satisfaction and long-term account stability
QA Analyst
Teleperformance
Bucharest
2019.01 - 2019.07
- Performed quality audits on operational processes and customer interactions
- Evaluated compliance with internal standards and performance indicators
- Delivered structured feedback and improvement recommendations
- Contributed to maintaining service quality benchmarks in a regulated environment
French Advisor
Teleperformance
Bucharest
2016.07 - 2018.12
- Provided customer support in French language
- Managed sensitive client information with confidentiality and accuracy
- Developed strong communication and conflict resolution skills
Education
Master - Human Resources Management
University of Bucharest
Bucharest 2019.01 - 2021.01
Bachelor - Business Administration
University of Bucharest
Bucharest 2016.01 - 2019.01
Skills
- IAM management
- Risk lifecycle management
- Azure
- Amazon Web Services (AWS)
- DLP controls
- PrismaCloud (Palo Alto)
- Application Sensitivity Assessments
- Security policy compliance
- Security exception handling
- Internal risk management tools
- Pull Request workflow (internal repositories)
- Quality Control
- Risk Analysis
- Threat Knowledge
- Whitelisting implementation
- Microsoft Excel
- Analytical Skills
- Microsoft PowerPoint
- Coaching
- Timelines and organizational abilities
Languages
Romanian
Native
French
Proficient (C2)
English
Advanced (C1)
Core Competencies
- Governance, Risk & Compliance (GRC)
- Application Sensitivity Assessments (ASA)
- DICP and Data Privacy Evaluation
- Risk Identification and Remediation Follow-up
- DLP Governance and Incident Analysis
- Security Exception Management
- Cloud Security Monitoring (AWS, PrismaCloud)
- IAM Controls and Access Governance
- Security Deliverables Quality Control
- Stakeholder Communication in French (C2)
Timeline
Cybersecurity Analyst with French
Société Générale
2021.03 - 2026.02
Customer Sales & Support Manager with French
HP
2019.08 - 2021.02
QA Analyst
Teleperformance
2019.01 - 2019.07
Master - Human Resources Management
University of Bucharest
2019.01 - 2021.01
French Advisor
Teleperformance
2016.07 - 2018.12
Bachelor - Business Administration
University of Bucharest
2016.01 - 2019.01