IT Security Consultant | Security Engineer
Aktualisiert am 13.03.2025
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 01.04.2025
Verfügbar zu: 70%
davon vor Ort: 5%
Security Tools
IT-Security
Security Automation
Jenkins
Continuous Integration
Security Automation
CI-CD
SDLC
Docker
IT Security
Virtualisierung
Container
Security Tools
ISO 27001
Vulnerability Management
System Hardening
Deutsch
Englisch verhandlungssicher
Threat Modeling
Informationssicherheit
Patchmanagement
Sicherheitsmanagament
German
Muttersprache
English
Fortgeschritten
Spanish
Grundkenntnisse

Einsatzorte

Einsatzorte

Málaga (+20km)
möglich

Projekte

Projekte

1 Jahr 11 Monate
2024-01 - heute

IT Security Consultant "Technical Compliance Scanning"

IT Security Consultant Bourne-again-shell IT-Security IT-Compliance
IT Security Consultant
Risk management and elimination of compliance violations
Further development of monitoring and reporting methods
Maintenance of scan policies on the basis of CIS benchmarks
Advice on the selection, implementation and configuration of new tools for the SOC.
Qualys ServiceNow
Bourne-again-shell IT-Security IT-Compliance
IT service provider for the financial sector
1 Jahr 3 Monate
2022-09 - 2023-11

Security Consultant for Control Room products

Security Consultant Informationssicherheit SDLC ISO 27000 ...
Security Consultant
Security Consultant for 3 major control room products developed by 10 scrum teams in 3 locations worldwide
  • Inventory and Secret Management to prepare ISO27001 Audit
  • Vulnerability assessment; Incident response (PSIRT)
  • System and service hardening; Compliance to CIS benchmark
  • Security Tool integration in CI pipeline
  • Automated Dependency Management with Renovate

Informationssicherheit SDLC ISO 27000 ISO 27001 Vulnerability Incident Management Betriebssysteme Linux Penetrationstest Continuous Integration Open Source Bourne-again-shell
Barco Control Rooms GmbH
Karlsruhe, Germany
2 Jahre 2 Monate
2020-07 - 2022-08

Product Owner ?Team Argonauts?

Product Owner Atlassian JIRA Agile Atlassian JIRA Scrum Product Owner ...
Product Owner
  • managed the team backlog as proxy PO in a scaled scrum environment
  • aligned the workpackages with Product Owners of 2 Products and the 5 Team-members

Atlassian JIRA Agile Atlassian JIRA Scrum Product Owner Scrum Agile Softwareentwicklung Atlassian Confluence
Barco Control Rooms GmbH
Karlsruhe, Germany
3 Jahre 11 Monate
2018-10 - 2022-08

Application Security for ?Control Room Collaboration Systems?

Security Engineer  Agile Softwareentwicklung Scrum SDLC ...
Security Engineer 
AppSec Programm ?Control Room Collaboration Systems?
? Integrated Security into Agile Software Development of 2 Products
? Aligned Security Practices across 10 Teams & 3 Barco Sites
Continuous Integration Pipeline ?Control Room Collaboration Systems?
? Maintained the Tools and Infrastructure (Jenkins, VMware, Cisco Network, Server Hardware, TrueNAS)
? Established Security Controls in the CI/CD pipeline
Memeber of the ?Security Council Enterprise Division?
? Defined the global Barco Security Roadmap
? Standardized security tools and processes within Barco on a global level
Agile Softwareentwicklung Scrum SDLC Continuous Integration Secure coding HTTPS Virtualisierung Threat Modeling SAST DAST Vulnerability Open Source Secure Develop Informationssicherheit
Barco Control Rooms GmbH
Karlsruhe, Germany
4 Jahre 9 Monate
2014-01 - 2018-09

Security Testing of Control Room Products

Test Engineer Security  Atlassian JIRA Atlassian JIRA Agile Atlassian Confluence ...
Test Engineer Security 

  • performed vulnerability scanning
  • implemented Patch management "networked visualization systems"
  • executed OS / service hardening on Debian based systems

Atlassian JIRA Atlassian JIRA Agile Atlassian Confluence Bourne-again-shell Debian Linux Vulnerability Continuous Integration Testautomatisierung Patchmanagement
Barco Control Rooms GmbH
Karlsruhe, Germany
2 Jahre 4 Monate
2011-09 - 2013-12

Software Quality Assurance of "Networked Visualization Systems"

Quality Engineer Windows 7 Windows 10 Linux Administration ...
Quality Engineer

  • Tested the software components of "Networked Visualization Systems"
  • Setup and maintenance of the test lab / test network

Windows Linux
Windows 7 Windows 10 Linux Administration Linux-Distribution Debian Bourne-again-shell SSH Testautomatisierung Cisco Switch Serveradministration Server Infrastruktur Testmanagement
Barco Control Rooms GmbH
Karlsruhe, Germany
3 Jahre 10 Monate
2007-11 - 2011-08

Display Engineer "Car Multimedia"

Display Engineer
Display Engineer
  • Specification and evaluation of LC displays
  • Technical evaluation of quotations, preparation of functional specification
  • Support manufacturing plant with test engineering for series production
  • Standardization, automation and further development of existing measurement procedures in the field of displays/optics
  • Supervision of optics measurement laboratory
  • Evaluation of new measurement methods
Robert Bosch GmbH
Leonberg, Germany
4 Jahre
2007-09 - 2011-08

Project Engineer

Project Engineer
Project Engineer
 Project assignment at Robert Bosch GmbH
Mannheim, Germany
7 Monate
2006-06 - 2006-12

Internship "switching time acceleration of TFT-LCDs"

Hardware Entwickler FPGA VHDL
Hardware Entwickler

  • Measurement of the switching time of TFT-LCDs
  • Implementation of a circuit for switching time acceleration (FDD, RTC, Overdrive) on a FPGA board

FPGA VHDL
Johnson Controls
Durlach, Germany

Aus- und Weiterbildung

Aus- und Weiterbildung

5 Jahre 10 Monate
2001-10 - 2007-07

Electrical Engineering and Information Technology

Diplom-Ingenieur (Dipl.-Ing., former German equivalent to a Master's degree), Universität Karlsruhe (TH), Karlsruhe, Germany
Diplom-Ingenieur (Dipl.-Ing., former German equivalent to a Master's degree)
Universität Karlsruhe (TH), Karlsruhe, Germany
8 Jahre 11 Monate
1992-09 - 2001-07

General qualification for university entrance (Abitur)

General qualification for university entrance (Abitur), Lise-Meitner Gymnasium, Königsbach-Stein, Germany
General qualification for university entrance (Abitur)
Lise-Meitner Gymnasium, Königsbach-Stein, Germany

Position

Position

As a seasoned Security Engineer with 9+ years of experience in Application Security and Agile Software Development, I am seeking projects where I can bring my expertise to enhance security measures and protect digital assets. I offer a comprehensive skill set, including Vulnerability & Patch Management and Security Automation, to deliver targeted solutions for your specific project needs.

Kompetenzen

Kompetenzen

Top-Skills

Security Tools IT-Security Security Automation Jenkins Continuous Integration Security Automation CI-CD SDLC Docker IT Security Virtualisierung Container Security Tools ISO 27001 Vulnerability Management System Hardening Deutsch Englisch verhandlungssicher Threat Modeling Informationssicherheit Patchmanagement Sicherheitsmanagament

Produkte / Standards / Erfahrungen / Methoden

Security Skills:

  • Application Security Testing (Rapid7 Nexpose, Tenable Nessus, OWASP ZAP, Invicti Acunetix)
  • Secure SDLC (OpenSAMM, Threat Modelling, SAST, DAST, Vulnerability Management)
  • PKI (PrimeKey EJBCA, Let's Encrypt, Smallstep, openssl)
  • Identity & Access Management (Keycloak, OpenLDAP)


Software skills:

  • Agile (Product Owner, Scaled Scrum)
  • Development (Jenkins, Git, Jira, Bash, Debian Packaging, Ansible)
  • Virtualisation (VMware vSphere/Workstation, Virtualbox, Docker)
  • Storage (ZFS, SMB, NFS, iSCSI, TrueNAS)


Profil:

  • Experienced IT Security Consultant specializing in Application Security, Information Security, and Cyber Security
  • With 9+ years of expertise in delivering robust security solutions, I ensure the confidentiality, integrity, and availability of digital assets
  • Skilled in Vulnerability & Patch Management, Security Automation and IT Infrastructure protection
  • Committed to safeguarding organizations against cyber threats

Betriebssysteme

Linux
Windows

Datenkommunikation

Extreme Networks EXOS
Cisco IOS
DHCP

Einsatzorte

Einsatzorte

Málaga (+20km)
möglich

Projekte

Projekte

1 Jahr 11 Monate
2024-01 - heute

IT Security Consultant "Technical Compliance Scanning"

IT Security Consultant Bourne-again-shell IT-Security IT-Compliance
IT Security Consultant
Risk management and elimination of compliance violations
Further development of monitoring and reporting methods
Maintenance of scan policies on the basis of CIS benchmarks
Advice on the selection, implementation and configuration of new tools for the SOC.
Qualys ServiceNow
Bourne-again-shell IT-Security IT-Compliance
IT service provider for the financial sector
1 Jahr 3 Monate
2022-09 - 2023-11

Security Consultant for Control Room products

Security Consultant Informationssicherheit SDLC ISO 27000 ...
Security Consultant
Security Consultant for 3 major control room products developed by 10 scrum teams in 3 locations worldwide
  • Inventory and Secret Management to prepare ISO27001 Audit
  • Vulnerability assessment; Incident response (PSIRT)
  • System and service hardening; Compliance to CIS benchmark
  • Security Tool integration in CI pipeline
  • Automated Dependency Management with Renovate

Informationssicherheit SDLC ISO 27000 ISO 27001 Vulnerability Incident Management Betriebssysteme Linux Penetrationstest Continuous Integration Open Source Bourne-again-shell
Barco Control Rooms GmbH
Karlsruhe, Germany
2 Jahre 2 Monate
2020-07 - 2022-08

Product Owner ?Team Argonauts?

Product Owner Atlassian JIRA Agile Atlassian JIRA Scrum Product Owner ...
Product Owner
  • managed the team backlog as proxy PO in a scaled scrum environment
  • aligned the workpackages with Product Owners of 2 Products and the 5 Team-members

Atlassian JIRA Agile Atlassian JIRA Scrum Product Owner Scrum Agile Softwareentwicklung Atlassian Confluence
Barco Control Rooms GmbH
Karlsruhe, Germany
3 Jahre 11 Monate
2018-10 - 2022-08

Application Security for ?Control Room Collaboration Systems?

Security Engineer  Agile Softwareentwicklung Scrum SDLC ...
Security Engineer 
AppSec Programm ?Control Room Collaboration Systems?
? Integrated Security into Agile Software Development of 2 Products
? Aligned Security Practices across 10 Teams & 3 Barco Sites
Continuous Integration Pipeline ?Control Room Collaboration Systems?
? Maintained the Tools and Infrastructure (Jenkins, VMware, Cisco Network, Server Hardware, TrueNAS)
? Established Security Controls in the CI/CD pipeline
Memeber of the ?Security Council Enterprise Division?
? Defined the global Barco Security Roadmap
? Standardized security tools and processes within Barco on a global level
Agile Softwareentwicklung Scrum SDLC Continuous Integration Secure coding HTTPS Virtualisierung Threat Modeling SAST DAST Vulnerability Open Source Secure Develop Informationssicherheit
Barco Control Rooms GmbH
Karlsruhe, Germany
4 Jahre 9 Monate
2014-01 - 2018-09

Security Testing of Control Room Products

Test Engineer Security  Atlassian JIRA Atlassian JIRA Agile Atlassian Confluence ...
Test Engineer Security 

  • performed vulnerability scanning
  • implemented Patch management "networked visualization systems"
  • executed OS / service hardening on Debian based systems

Atlassian JIRA Atlassian JIRA Agile Atlassian Confluence Bourne-again-shell Debian Linux Vulnerability Continuous Integration Testautomatisierung Patchmanagement
Barco Control Rooms GmbH
Karlsruhe, Germany
2 Jahre 4 Monate
2011-09 - 2013-12

Software Quality Assurance of "Networked Visualization Systems"

Quality Engineer Windows 7 Windows 10 Linux Administration ...
Quality Engineer

  • Tested the software components of "Networked Visualization Systems"
  • Setup and maintenance of the test lab / test network

Windows Linux
Windows 7 Windows 10 Linux Administration Linux-Distribution Debian Bourne-again-shell SSH Testautomatisierung Cisco Switch Serveradministration Server Infrastruktur Testmanagement
Barco Control Rooms GmbH
Karlsruhe, Germany
3 Jahre 10 Monate
2007-11 - 2011-08

Display Engineer "Car Multimedia"

Display Engineer
Display Engineer
  • Specification and evaluation of LC displays
  • Technical evaluation of quotations, preparation of functional specification
  • Support manufacturing plant with test engineering for series production
  • Standardization, automation and further development of existing measurement procedures in the field of displays/optics
  • Supervision of optics measurement laboratory
  • Evaluation of new measurement methods
Robert Bosch GmbH
Leonberg, Germany
4 Jahre
2007-09 - 2011-08

Project Engineer

Project Engineer
Project Engineer
 Project assignment at Robert Bosch GmbH
Mannheim, Germany
7 Monate
2006-06 - 2006-12

Internship "switching time acceleration of TFT-LCDs"

Hardware Entwickler FPGA VHDL
Hardware Entwickler

  • Measurement of the switching time of TFT-LCDs
  • Implementation of a circuit for switching time acceleration (FDD, RTC, Overdrive) on a FPGA board

FPGA VHDL
Johnson Controls
Durlach, Germany

Aus- und Weiterbildung

Aus- und Weiterbildung

5 Jahre 10 Monate
2001-10 - 2007-07

Electrical Engineering and Information Technology

Diplom-Ingenieur (Dipl.-Ing., former German equivalent to a Master's degree), Universität Karlsruhe (TH), Karlsruhe, Germany
Diplom-Ingenieur (Dipl.-Ing., former German equivalent to a Master's degree)
Universität Karlsruhe (TH), Karlsruhe, Germany
8 Jahre 11 Monate
1992-09 - 2001-07

General qualification for university entrance (Abitur)

General qualification for university entrance (Abitur), Lise-Meitner Gymnasium, Königsbach-Stein, Germany
General qualification for university entrance (Abitur)
Lise-Meitner Gymnasium, Königsbach-Stein, Germany

Position

Position

As a seasoned Security Engineer with 9+ years of experience in Application Security and Agile Software Development, I am seeking projects where I can bring my expertise to enhance security measures and protect digital assets. I offer a comprehensive skill set, including Vulnerability & Patch Management and Security Automation, to deliver targeted solutions for your specific project needs.

Kompetenzen

Kompetenzen

Top-Skills

Security Tools IT-Security Security Automation Jenkins Continuous Integration Security Automation CI-CD SDLC Docker IT Security Virtualisierung Container Security Tools ISO 27001 Vulnerability Management System Hardening Deutsch Englisch verhandlungssicher Threat Modeling Informationssicherheit Patchmanagement Sicherheitsmanagament

Produkte / Standards / Erfahrungen / Methoden

Security Skills:

  • Application Security Testing (Rapid7 Nexpose, Tenable Nessus, OWASP ZAP, Invicti Acunetix)
  • Secure SDLC (OpenSAMM, Threat Modelling, SAST, DAST, Vulnerability Management)
  • PKI (PrimeKey EJBCA, Let's Encrypt, Smallstep, openssl)
  • Identity & Access Management (Keycloak, OpenLDAP)


Software skills:

  • Agile (Product Owner, Scaled Scrum)
  • Development (Jenkins, Git, Jira, Bash, Debian Packaging, Ansible)
  • Virtualisation (VMware vSphere/Workstation, Virtualbox, Docker)
  • Storage (ZFS, SMB, NFS, iSCSI, TrueNAS)


Profil:

  • Experienced IT Security Consultant specializing in Application Security, Information Security, and Cyber Security
  • With 9+ years of expertise in delivering robust security solutions, I ensure the confidentiality, integrity, and availability of digital assets
  • Skilled in Vulnerability & Patch Management, Security Automation and IT Infrastructure protection
  • Committed to safeguarding organizations against cyber threats

Betriebssysteme

Linux
Windows

Datenkommunikation

Extreme Networks EXOS
Cisco IOS
DHCP

Vertrauen Sie auf Randstad

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.