Ivan Mercalina MSc

Ivan Mercalina MSc has a diverse work experience in the field of information security. Ivan has held various leadership roles, including Chief Information Security Officer, Senior Industrial Control Systems Security Consultant, and Principal Ethical Hacker.

In their recent role at Applied Risk B.V, Ivan managed compliance with the ISO27001 standard for information security and conducted cyber security vulnerability assessments and risk assessments for industrial automation and control systems.

Prior to that, at BearingPoint Caribbean, they successfully led the company to compliance with ISO27001 and assisted Agile development teams in implementing secure design practices.

Ivan also served as the Chief Information Security Officer at Waterschap Aa en Maas, Waterschap De Dommel, and Waterschap Brabantse Delta, where they ensured compliance with the Information Security Baseline for Waterschappen and improved information security governance.

Ivan gained experience as a Senior IT Security Consultant at Madison Gurkha, conducting risk assessments and reviewing IT infrastructure designs.

Additionally, Ivan has worked as a Risk Assessor at ABN AMRO Bank N.V, delivering information security risk assessments for new and existing services.

Earlier in their career, they were the Principal Ethical Hacker at British Telecom Professional Services, leading ethical hacking projects for medium to large-sized companies.

Ivan began their career as a Senior System Manager at Getronics Pinkroccade, where they were responsible for web hosting server management and security management of customer environments.

Throughout their work history, Ivan has demonstrated a strong commitment to information security, compliance, risk management, and providing cybersecurity training.

Ivan Mercalina MSc began their education at Peter Stuyvesant College from 1986 to 1993, where they obtained a high school degree. They then attended Utrecht University from 1993 to 1998 and obtained a Master's Degree in Biological and Biomedical Sciences.

In addition to their formal education, Ivan Mercalina MSc has also obtained several certifications. They acquired the LAPL(A) Flight Crew Licence from the EASA - European Union Aviation Safety Agency in April 2021. In December 2020, they obtained the OPITO code 5902; CA-EBS certification from OPITO.

Other certifications include the Certified Incident Handler (ECIH) from EC-Council in December 2018, the Certified Tester Foundation Level from ISTQB - International Software Testing Qualifications Board in November 2017, and the Certified Chief Information Security Officer (CCISO) from EC-Council in September 2016. They also obtained the Certified ISO/IEC 27001 Lead Auditor, Certified ISO 27005 Risk Manager, and Certified ISO 31000 Risk Manager certifications from the ISO - International Organization for Standardization in 2015 and 2014 respectively.

Furthermore, Ivan Mercalina MSc has certifications such as the QualysGuard Certified Specialist from Qualys (obtained in 2009), the Certified Security Analyst & Licensed Penetration Tester (ECSA) and Certified Ethical Hacker (CEH) both from EC-Council (obtained in 2007), and the Microsoft Certified Professional (MCP) from Microsoft (obtained in 2001). They also obtained the VCA V.O.L Safety for Operational Supervisors certification from Stichting Samenwerken voor Veiligheid (SSVV) in May 2019 and the GIAC Global Industrial Cyber Security Professional (GCISP) from SANS Institute in September 2021.

Finally, Ivan Mercalina MSc obtained various certificates related to safety and medical certifications including FMTC Escape Chute & Norwegian Suit; OLF; NSOC-D, OPITO code 5700; BOSIET incl. HUET + EBS, Class 2 (LAPL) Medical Certificate, NOGEPA Medical Certificate, Oil and Gas United Kingdom Medical Certificate, and OPITO Basic H2S. These were obtained from institutions such as FMTC Safety, Inspectie Leefomgeving en Transport, NOGEPA, and Oil & Gas UK between 2020 and 2021.