Information Technologies

About us

Our Vision & Mission

SIQ Competence Centre of Cybersecurity is holding leadership position in South East Europe and we are expanding to other markets also. We believe our success is driven by our people who are delivering exceptional service where we help our customers to protect data and fight against cybercrime.

Our values

We build honest and transparent relationships with our own partners. The work is impartial and independent and based on knowledge and professionalism.

About SIQ Ljubljana

SIQ Ljubljana is a professional, independent, and impartial institution providing complete solutions in the fields of product testing and certification, management systems assessment, metrology, and training. Providing a wide range of comprehensive services, it is our objective to support organizations in their endeavors to realize their goals relating to the quality of their products and services, and to increase the productivity and efficiency of their operation. For more than 50 years we have cooperated with organizations in their efforts to enter markets, increase productivity, improve quality, and reach excellence. 

 

 

Numerous accreditations and memberships of international certification schemes and associations are evidence of the international validity and high professional level of our work. Our key competitive advantage is the knowledge and experiences of our experts, international recognition and credibility, flexibility, complete solutions, ever new services, and ability to adapt to the market. 

SIQ Ljubljana is the first and currently the only institution in south-east Europe with PCI DSS accreditation to perform security assessments (ASV vulnerability scans and QSA audits). This proves our competence and commitment to offer complete services in the field of financial information technology security assessments. 

We are financially responsible for our services as we have the appropriate professional liability insurance. 

SIQ Ljubljana has 7 branch offices worldwide and partners in 65 countries 

 

Our organizational structure ensures that, performing their daily tasks, the personnel are independent of anyone having direct commercial interests in conformity assessment, and that conflicts of interests are avoided. SIQ ensures its impartiality by not providing consultancy concerning the establishment and/or maintenance of compliance with standards. Integrity, independence, and impartiality are our values. 

By assessments and by passing our knowledge and experience on to our clients, we contribute to the development of the society that is knowledge driven. Our services are of highest quality. 

Our staff are experts in a wide range of areas, covering information security, safety of products and systems, metrology, management systems assessment and training. Jointly, we can therefore deliver wide-ranging complete solutions to customers. 

Security assessment team

The team consists of security experts holding numerous internationally recognized security certificates and with years of experience in the field. Suggested organizational structure, project approach, and selected methodology ensure that all procedures and results are carried out and processed according the acknowledged standards and are possible to analyse and review. All the personal have been security vetted.

Branko Miličević

branko.milicevic@siq.si

T: +386 1 4778 343

M: +386 31 811 006

Certificates and experience 

  • Bachelor of Information Security
  • Offensive Security Certified Professional (OSCP)
  • ISACA CSX Cybersecurity Fundamentals
  • CREST CPSA
  • CREST RPT
Branko Miličević has received Bachelor’s degree of Information Security in 2019 with diploma about security of mobile financial applications on Faculty of Criminal Justice and Security (Information Security) where thesis has been graded with highest possible grade. Branko finished EMBA study in Croatia and is currently studying for M.A in Criminal Justice and Security. He has strong technical background and extensive knowledge about information security. He has proven the understanding of cybersecurity by passing ISACA CSX certification, earning CREST certificates and passing OSCP exam where extensive technical knowledge is required as exam holds the title of one of the hardest exams in cyber security certifications scheme. Branko can provide most complex penetration tests/security assessment to organizations. He is dedicated to the analysis of vulnerabilities in web and mobile applications, exploit development and reverse engineering of malware code. 

Miha Ozimek, MSc

ozimek.miha@siq.si

Certificates and experience 

  • CISA, CISM, CSX
  • PCI DSS ASV, QSA
  • SIQ QMS Auditor (ISO 9001)
  • CIS-SIQ ISMS Auditor (ISO/IEC 27001, 27018)
  • CIS-SIQ ITSM Auditor (ISO/IEC 20000)
  • CIS-SIQ BCM Auditor (ISO 22301)
  • PRIS
  • NPK Varnostni manager
  • WLA SCS Auditor
  • EIDAS Auditor
Miha Ozimek finished postgraduate studies in the field of information security standards and the implementation of information security policies in organizations. Since 2007, he is an auditor of quality, information security and IT service management systems at the Slovenian Institute of Quality and Metrology (SIQ), and he performed assessments of quality systems and information security in most Slovenian companies. He is working with national agencies for data security such as AKOS and IP-RS in preparing organizations to carry out the work in accordance with the provisions of the legislation (ZVOP-1, TZP-1, ZVDAGA, PCI-DSS, personal data security, etc.). Since 2008 he participates as a guest lecturer at the Faculty of Security Studies in the field of information security management systems. Miha Ozimek finished postgraduate studies in the field of information security standards and the implementation of information security policies in organizations. Since 2007, he is an auditor of quality, information security and IT service management systems at the Slovenian Institute of Quality and Metrology (SIQ), and he performed assessments of quality systems and information security in most Slovenian companies. He is working with national agencies for data security such as AKOS and IP-RS in preparing organizations to carry out the work in accordance with the provisions of the legislation (ZVOP-1, TZP-1, ZVDAGA, PCI-DSS, personal data security, etc.). Since 2008 he participates as a guest lecturer at the Faculty of Security Studies in the field of information security management systems. Miha Ozimek works at SIQ Ljubljana as a subcontractor.

Sara Queipo

Certificates and experience 

  • PCI DSS QSA certification
  • CISA
  • ISACA CSX Cybersecurity Fundamentals
  • C|EH EC-Council
  • BSI Training Academy – Information Security Management Systems Auditor/Lead Auditor Training Course (BS ISO/IEC 27001:2013)
  • Master’s degree in cybersecurity management
Sara Queipo studied telecommunications engineering and a master’s degree in cybersecurity management at UPC Barcelona. Sara has more than 8 years of experience in offensive security and information security auditing, with more than 300 audits for international regulated markets. She collaborates with the Spanish National Cybersecurity Institute as part of the Digital Transformation and Economy Ministry.

Luka Kanduč

Certificates and experience 

  • Bachelor of Information Security
  • Offensive Security Certified Professional (OSCP)
Luka is a professional cybersecurity expert with a 100% success breach rate when conducting a pentest. He is a leading Slovenian security expert who graduated from the Faculty of Security Sciences, majoring in Information Security. With more than 15 years of experience in the cybersecurity industry, DevOps, SysOps, and the implementation of secure and reliable services Luka is willing to help others to fight against cyber-attacks and protecting their data and infrastructure. Recently, he has been focusing on vulnerability analysis of web services, mobile devices, and IoT devices. Luka Kanduč works at SIQ Ljubljana as a subcontractor.