Viktor Chalyi

VP of Engineering | Cybersecurity & Compliance | PCI DSS · SOX · GRC | Fintech & Telecom

prof_pic.jpg

I’m Viktor — an engineering and cybersecurity leader with over 15 years of experience leading global engineering organizations through modernization, growth, and large-scale digital transformation. Currently at IDT Corporation, I lead 100+ engineers across five product lines serving millions of users worldwide, operating in PCI DSS and SOX-scoped fintech and telecom environments.

Beyond engineering leadership, I run hands-on security and compliance programs: PCI DSS audit coordination with QSA, SOX IT general controls, vulnerability management (ASV scanning, network and web application pen testing, segmentation testing), network security review, DLP, patch management, and security awareness. I care deeply about building secure systems, measurable outcomes, and developing the next generation of engineering leaders.

Key Achievements

  • Led 100+ engineers (Software, QA, TPMs) across 5 product lines serving millions of users
  • Achieved 99.995% platform uptime, surpassing enterprise reliability benchmarks
  • Led PCI DSS compliance program across 10+ applications: user management, change management, network security review, asset inventory, DLP, and full vulnerability management lifecycle (ASV scanning, network/web app/segmentation pen testing) — coordinated remediation across 10 scrum teams
  • Completed SOX IT general controls including change traceability, user access reviews, and audit logging
  • Drove privacy compliance program for state law requirements (CCPA and others) across web and mobile apps
  • Led GenAI-driven support modernization, boosting first-contact resolution by 45%
  • Reduced annual costs through legacy system decommissioning and platform modernization
  • Reduced engineering manager onboarding from 2 months to 3 weeks via an EM Playbook
  • Improved release predictability by 25% through DORA metrics adoption with DevLake

Core Expertise

  • Cybersecurity & Compliance: PCI DSS, SOX IT controls, GRC, vulnerability management (ASV scanning, network pen testing, web application pen testing, segmentation testing), DLP, patch management, network security review, asset inventory, trusted key and certificate management, security awareness programs, privacy compliance (CCPA/US state laws)
  • Engineering Leadership: Team scaling (15 to 100+ engineers), hiring, mentorship, org design, EM playbooks
  • Technical: AWS, CI/CD, DevOps, Microservices, .NET/C#, Python, Terraform, Docker, Kubernetes
  • Domains: Fintech, Telecom, AI/GenAI, E-commerce, Mobile Top-up, eSIM
  • Practices: DORA metrics, Backstage, Observability (OTEL/Grafana), Agile/Scrum, Infrastructure as Code

Let’s Connect

  • LinkedIn — connect or message me
  • CV / Resume — detailed work history and achievements
  • Blog — my writing on engineering leadership, AI, and DevOps

Latest posts

May 04, 2026 CompTIA Security+ Study Notes: Threats, Crypto, and Risk
May 01, 2026 Cybersecurity in Practice: Breaking Down the Career Paths
Apr 24, 2026 Claude Code Token Limit: How to Stretch Your Daily Budget

Latest books

Oct 22, 2025 Made to Stick: Why Some Ideas Survive and Others Die
Sep 15, 2025 System Design Interview – An Insider's Guide: Volume 2
Aug 19, 2025 Extreme Ownership: How U.S. Navy SEALs Lead and Win