Legally registered with Independent advisory services, conducting advanced penetration tests, and EU regulatory compliance (NIS2, CRA).
Aktualisiert am 08.01.2026
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 01.02.2026
Verfügbar zu: 100%
davon vor Ort: 50%
Independent advisory services focused on hardening critical network infrastructure
conducting advanced penetration tests
and ensuring EU regulatory compliance (NIS2
IT Integration
Digital Strategy
Project Implementation
Server Management
Role-Based Access Control (RBAC)
Security Monitoring
Information Security Analysis
Risk Analysis
Infrastructure Projects
IT Compliance
Regulatory Guidelines & Confidentiality
Identity and Access Management (IAM)
Vulnerability Assessment
Security Information and Event Management (SIEM)
BCP/BCM
Cyber Security Awareness Training
Penetration Testing on WebApp/API/Network/Active Directory & Cloud
IT Security Policies & Procedures
English
Verhandlungssicher
Bengali
Muttersprache
German
Grundkenntnisse

Einsatzorte

Einsatzorte

Kassel, Hessen (+50km)
Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

9 Monate
2025-06 - heute

Threat modeling for critical infrastructure

Senior Cyber Security Architect
Senior Cyber Security Architect
  • Providing freelancing services in Security and IT Engineering, do clients in the EU as an Independent Senior Cyber Security Architect based Germany.
  • Operating as a legally registered Freiberufler with Independent advisory services focused on hardening critical network infrastructure, conducting advanced penetration tests, and ensuring EU regulatory compliance (NIS2, CRA). 
  • Threat modeling for critical infrastructure (OT/Cloud). Proven track record leading security programs for international organizations (UNMISS, WFP, UNICEF). 
  • Available for projects across the DACH and EU regions.
Kassel, Germany
7 Monate
2024-11 - 2025-05

Strengthening cybersecurity resilience

OT Network Security Specialist Incident Response NIS2/CRA/DORA IEC 62443 ...
OT Network Security Specialist
  • Strengthening cybersecurity resilience across Group Operational Technology environments. 
  • Enhanced cybersecurity resilience across OT environments by conducting comprehensive assessments. 
  • Identified requirements for enhancement of existing solutions and provision of new solutions in Information Security, Infrastructure, Asset Lifecycle Management, and Service Management. 
  • Ensured compliance with IEC 62443, ISO 27001, and internal policies across all OT-related functions and responsibilities.
Incident Response NIS2/CRA/DORA IEC 62443 ISO 27001 Vulnerability Assessment ISRM BCP/BCM
B. Braun, Melsungen, Germany
5 Jahre 4 Monate
2019-07 - 2024-10

charge of implementing and maintaining ISO 27001

Senior IT Security Engineer Penetration Testing in Network/Active Directory & Cloud Cloud security (Azure/AWS/VMware) Bash ...
Senior IT Security Engineer
  • Spearhead is a provider of Data Center Colocation Service (associate company of M&H Telecom) - I was in charge of implementing and maintaining ISO 27001, NIST controls, vulnerability management programs and penetration tests for leading local and international companies. 
  • Led, implemented, monitored and optimized security measures for data, systems, and networks with a specific emphasis on cloud security. 
  • This covers development and maintenance of policies relating to information security.
  • Identified and analyzed security vulnerabilities using OpenVAS, conducting simulated attack scenarios to proactively mitigate risks and enhance system integrity. 
  • Coordinate and implement the Security and Incident Management Program (SIEM). 
  • Conduct information security risk analysis, plan mitigations and contingency plans to senior management.
Penetration Testing in Network/Active Directory & Cloud Cloud security (Azure/AWS/VMware) Bash Incident Response ISO 27001 OWASP Top 10 Vulnerability Assessment ISRM BCP/BCM
Spearhead, Dhaka, Bangladesh
2 Jahre 8 Monate
2019-08 - 2022-03

charge of implementing

Field Support Engineer (part-time) Infrastructure Security IT Project Management
Field Support Engineer (part-time)
  • Marlink s. r. o. is an EU-based satellite communication company to inter-connect businesses - I was in charge of implementing the UNICEF and World Food Programme secure VSAT installation in Bangladesh.
Infrastructure Security IT Project Management
Marlink s.r.o., Dhaka, Bangladesh
4 Jahre 1 Monat
2015-03 - 2019-03

Implemented and maintained Security Information and Event Management

IT Security Specialist IT Security Policies & Procedures Cyber Threat Hunting DDOS Mitigation ...
IT Security Specialist

UNMISS, UN mission (22k+ users). Implemented and maintained Security Information and Event Management (SIEM)

  • Monitored and investigated IT security events using custom rules and reports tailored to the organization?s environment.
  • Led IT security audits and conducted penetration testing, improving the security footprint by 75%.
  • Researched attack vectors and implemented effective defense methods. Managed controls, SOPs, BIA, and mitigation strategies to minimize network and security incidents.
IT Security Policies & Procedures Cyber Threat Hunting DDOS Mitigation Bash SSO SAST DAST Red Teaming IT audit SIEM ITIL Cyber Security Awareness Training
United Nations Mission in South Sudan (UNMISS), Juba, South Sudan
4 Jahre 1 Monat
2011-03 - 2015-03

Virtualization (VMware, Azure)

Senior ICT Security Engineer Infrastructure Security IT Project Management Cloud security (Azure/VMware/IBM Cloud) ...
Senior ICT Security Engineer
  • WFP Bangladesh - Virtualization (VMware, Azure), Windows 2008 and Sophos Enterprise Project. 
  • Performed penetration test with NESSUS. Perform infrastructure Security, Policies and Procedures. 
  • Planned and maintained ICT disaster recovery (DRP and BCP).
Infrastructure Security IT Project Management Cloud security (Azure/VMware/IBM Cloud) Asset Mgt. ITIL IAM SAP ERP
World Food Programme (WFP), Dhaka, Bangladesh
2 Jahre 2 Monate
2008-11 - 2010-12

Secured Cisco-based IP telephone network

ICT Security Consultant Develop scripts and tools Exploit Modification
ICT Security Consultant
  • UNICEF Bangladesh - Secured Cisco-based IP telephone network.
  • Managed IT Security policies and rules based on UN guidelines.
Develop scripts and tools Exploit Modification
UNICEF, Dhaka, Bangladesh

Aus- und Weiterbildung

Aus- und Weiterbildung

18 Jahre
2007-01 - 2024-12

EMBA in Management Information Systems (MIS)

Master in Business Administration, American International University Bangladesh (AIUB), Dhaka, Bangladesh
Master in Business Administration
American International University Bangladesh (AIUB), Dhaka, Bangladesh
5 Jahre 4 Monate
1995-09 - 2000-12

Bachelor of Science in Engineering / Electronics and Communication

B.Sc. Engineering, American International University Bangladesh, Dhaka, Bangladesh
B.Sc. Engineering
American International University Bangladesh, Dhaka, Bangladesh

Position

Position

Independent Senior Cyber Security Architect based in Kassel, Germany. Operating as a legally registered Freiberufler.

Kompetenzen

Kompetenzen

Top-Skills

Independent advisory services focused on hardening critical network infrastructure conducting advanced penetration tests and ensuring EU regulatory compliance (NIS2 IT Integration Digital Strategy Project Implementation Server Management Role-Based Access Control (RBAC) Security Monitoring Information Security Analysis Risk Analysis Infrastructure Projects IT Compliance Regulatory Guidelines & Confidentiality Identity and Access Management (IAM) Vulnerability Assessment Security Information and Event Management (SIEM) BCP/BCM Cyber Security Awareness Training Penetration Testing on WebApp/API/Network/Active Directory & Cloud IT Security Policies & Procedures

Produkte / Standards / Erfahrungen / Methoden

TECHNICAL SKILLS

Cybersecurity & Infrastructure:

Infrastructure Security, Penetration Testing (WebApp, API, Network, Active Directory, Cloud), Cloud Security (Azure, AWS, VMware), IT Security Policies & Procedures, Vul. Management, Incident Response, Cyber Threat Hunting, DDOS Mitigation, SIEM, IAM, SSO.


Security Engineering & Tools:

OWASP Top 10, SAST, DAST, Python & Bash Scripting, Red Team Infrastructure Design, Cobalt Strike, Metasploit, Core Impact, Exploit Pack, Container Security (Docker, Kubernetes), CI/CD Security (GitLab), Cyber Security Awareness Training.


Standards & Frameworks:

ISO 27001, IEC 62443, NIST, NIS2, CRA, ITIL, ISRM, BCP/BCM, IT Audit.


Systems & Management:

IT Project Management, Linux, Windows, System Administration, Asset Management, Budget - Technical, SAP ERP.

Einsatzorte

Einsatzorte

Kassel, Hessen (+50km)
Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

9 Monate
2025-06 - heute

Threat modeling for critical infrastructure

Senior Cyber Security Architect
Senior Cyber Security Architect
  • Providing freelancing services in Security and IT Engineering, do clients in the EU as an Independent Senior Cyber Security Architect based Germany.
  • Operating as a legally registered Freiberufler with Independent advisory services focused on hardening critical network infrastructure, conducting advanced penetration tests, and ensuring EU regulatory compliance (NIS2, CRA). 
  • Threat modeling for critical infrastructure (OT/Cloud). Proven track record leading security programs for international organizations (UNMISS, WFP, UNICEF). 
  • Available for projects across the DACH and EU regions.
Kassel, Germany
7 Monate
2024-11 - 2025-05

Strengthening cybersecurity resilience

OT Network Security Specialist Incident Response NIS2/CRA/DORA IEC 62443 ...
OT Network Security Specialist
  • Strengthening cybersecurity resilience across Group Operational Technology environments. 
  • Enhanced cybersecurity resilience across OT environments by conducting comprehensive assessments. 
  • Identified requirements for enhancement of existing solutions and provision of new solutions in Information Security, Infrastructure, Asset Lifecycle Management, and Service Management. 
  • Ensured compliance with IEC 62443, ISO 27001, and internal policies across all OT-related functions and responsibilities.
Incident Response NIS2/CRA/DORA IEC 62443 ISO 27001 Vulnerability Assessment ISRM BCP/BCM
B. Braun, Melsungen, Germany
5 Jahre 4 Monate
2019-07 - 2024-10

charge of implementing and maintaining ISO 27001

Senior IT Security Engineer Penetration Testing in Network/Active Directory & Cloud Cloud security (Azure/AWS/VMware) Bash ...
Senior IT Security Engineer
  • Spearhead is a provider of Data Center Colocation Service (associate company of M&H Telecom) - I was in charge of implementing and maintaining ISO 27001, NIST controls, vulnerability management programs and penetration tests for leading local and international companies. 
  • Led, implemented, monitored and optimized security measures for data, systems, and networks with a specific emphasis on cloud security. 
  • This covers development and maintenance of policies relating to information security.
  • Identified and analyzed security vulnerabilities using OpenVAS, conducting simulated attack scenarios to proactively mitigate risks and enhance system integrity. 
  • Coordinate and implement the Security and Incident Management Program (SIEM). 
  • Conduct information security risk analysis, plan mitigations and contingency plans to senior management.
Penetration Testing in Network/Active Directory & Cloud Cloud security (Azure/AWS/VMware) Bash Incident Response ISO 27001 OWASP Top 10 Vulnerability Assessment ISRM BCP/BCM
Spearhead, Dhaka, Bangladesh
2 Jahre 8 Monate
2019-08 - 2022-03

charge of implementing

Field Support Engineer (part-time) Infrastructure Security IT Project Management
Field Support Engineer (part-time)
  • Marlink s. r. o. is an EU-based satellite communication company to inter-connect businesses - I was in charge of implementing the UNICEF and World Food Programme secure VSAT installation in Bangladesh.
Infrastructure Security IT Project Management
Marlink s.r.o., Dhaka, Bangladesh
4 Jahre 1 Monat
2015-03 - 2019-03

Implemented and maintained Security Information and Event Management

IT Security Specialist IT Security Policies & Procedures Cyber Threat Hunting DDOS Mitigation ...
IT Security Specialist

UNMISS, UN mission (22k+ users). Implemented and maintained Security Information and Event Management (SIEM)

  • Monitored and investigated IT security events using custom rules and reports tailored to the organization?s environment.
  • Led IT security audits and conducted penetration testing, improving the security footprint by 75%.
  • Researched attack vectors and implemented effective defense methods. Managed controls, SOPs, BIA, and mitigation strategies to minimize network and security incidents.
IT Security Policies & Procedures Cyber Threat Hunting DDOS Mitigation Bash SSO SAST DAST Red Teaming IT audit SIEM ITIL Cyber Security Awareness Training
United Nations Mission in South Sudan (UNMISS), Juba, South Sudan
4 Jahre 1 Monat
2011-03 - 2015-03

Virtualization (VMware, Azure)

Senior ICT Security Engineer Infrastructure Security IT Project Management Cloud security (Azure/VMware/IBM Cloud) ...
Senior ICT Security Engineer
  • WFP Bangladesh - Virtualization (VMware, Azure), Windows 2008 and Sophos Enterprise Project. 
  • Performed penetration test with NESSUS. Perform infrastructure Security, Policies and Procedures. 
  • Planned and maintained ICT disaster recovery (DRP and BCP).
Infrastructure Security IT Project Management Cloud security (Azure/VMware/IBM Cloud) Asset Mgt. ITIL IAM SAP ERP
World Food Programme (WFP), Dhaka, Bangladesh
2 Jahre 2 Monate
2008-11 - 2010-12

Secured Cisco-based IP telephone network

ICT Security Consultant Develop scripts and tools Exploit Modification
ICT Security Consultant
  • UNICEF Bangladesh - Secured Cisco-based IP telephone network.
  • Managed IT Security policies and rules based on UN guidelines.
Develop scripts and tools Exploit Modification
UNICEF, Dhaka, Bangladesh

Aus- und Weiterbildung

Aus- und Weiterbildung

18 Jahre
2007-01 - 2024-12

EMBA in Management Information Systems (MIS)

Master in Business Administration, American International University Bangladesh (AIUB), Dhaka, Bangladesh
Master in Business Administration
American International University Bangladesh (AIUB), Dhaka, Bangladesh
5 Jahre 4 Monate
1995-09 - 2000-12

Bachelor of Science in Engineering / Electronics and Communication

B.Sc. Engineering, American International University Bangladesh, Dhaka, Bangladesh
B.Sc. Engineering
American International University Bangladesh, Dhaka, Bangladesh

Position

Position

Independent Senior Cyber Security Architect based in Kassel, Germany. Operating as a legally registered Freiberufler.

Kompetenzen

Kompetenzen

Top-Skills

Independent advisory services focused on hardening critical network infrastructure conducting advanced penetration tests and ensuring EU regulatory compliance (NIS2 IT Integration Digital Strategy Project Implementation Server Management Role-Based Access Control (RBAC) Security Monitoring Information Security Analysis Risk Analysis Infrastructure Projects IT Compliance Regulatory Guidelines & Confidentiality Identity and Access Management (IAM) Vulnerability Assessment Security Information and Event Management (SIEM) BCP/BCM Cyber Security Awareness Training Penetration Testing on WebApp/API/Network/Active Directory & Cloud IT Security Policies & Procedures

Produkte / Standards / Erfahrungen / Methoden

TECHNICAL SKILLS

Cybersecurity & Infrastructure:

Infrastructure Security, Penetration Testing (WebApp, API, Network, Active Directory, Cloud), Cloud Security (Azure, AWS, VMware), IT Security Policies & Procedures, Vul. Management, Incident Response, Cyber Threat Hunting, DDOS Mitigation, SIEM, IAM, SSO.


Security Engineering & Tools:

OWASP Top 10, SAST, DAST, Python & Bash Scripting, Red Team Infrastructure Design, Cobalt Strike, Metasploit, Core Impact, Exploit Pack, Container Security (Docker, Kubernetes), CI/CD Security (GitLab), Cyber Security Awareness Training.


Standards & Frameworks:

ISO 27001, IEC 62443, NIST, NIS2, CRA, ITIL, ISRM, BCP/BCM, IT Audit.


Systems & Management:

IT Project Management, Linux, Windows, System Administration, Asset Management, Budget - Technical, SAP ERP.

Vertrauen Sie auf Randstad

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.