Fachlicher Schwerpunkt dieses Freiberuflers

CISO, IT Sicherheit Experte, Projekt Manager, Lean Six Sigma Black Belt, CISSP, ITIL, ISO27002, CEH.

verfügbar ab
verfügbar zu
100 %
davon vor Ort
100 %
20 km

Ich möchte bevorzugt für Projekte in diesen Einsatzorten kontaktiert werden.


Recent Experience The role of Project Manager

Over 30 years’ experience with developing, implementing and managing complex projects within time, scope and budgetary constraints.


  • Lean, Six Sigma, SAP, PDCA, Agile, Scrum, ICE.

Responsible for planning, coordinating, development and implementation of IT solutions, involving companies from small to enterprise in size:

  • Service Manager.

IT Security Service (Define, Test, Implement, Support and Continuous Improvement).


Scrum, Agile and Lean Six Sigma.

Business Intelligence.

  • Solutions Manager; Standalone solutions (Complete office environment).
  • Data & Integration Manager; Data Centre solutions (transition of physical to virtual).
  • End to End.
  • Server.
  • Change & Test Manager; Software project management and support with SCCM.
  • Release Management.

Managing changes to enable improved IT processes:

  • Defining expectations (ITIL)(Lean Six Sigma DMAIC, DFSS, DMADV).
  • Measuring progress.
  • Analysing process and data flow. (S.I.P.O.C).
  • Improving upon all areas where possible.
  • Implementing controls to ensure all are up to date.

Continuous research of data output.

  • SLA´s & OLA´s.
  • Change Management Process.
  • Problem Management.

Support Levels 1-3 (System Engineer) and Project Management

  • Incident Management.
  • FMEA.
  • Software proof of concept (ensuring suppliers deliver as expected).
  • Software Readiness.
  • Release Management.
  • Poka-Yoke.


  • Delivering customer satisfaction by understanding the voice of the customer.
  • Direct link between stakeholders and suppliers.
  • Dissolving conflicts.
  • Direct contact with all stakeholders and partners.
  • Communication & Time Plan.
  • Constant communication with Sponsors.
  • KANO.
  • Coaching where necessary.
  • Gap Management;
  • Ensuring root issues are solved as soon as possible.
  • Being aware of deficiencies and how to reduce them to a level of acceptance.
  • Recent Methodologies used:

Lean & Six Sigma, SAP, Agile, ITIL, CoBit, ISO 9000 & 27001, Scrum, Waterfall.

  • Lessons learned to turn information into knowledge.

Comprehensive Reports.

  • Celebrating and recognizing success.


10/2014 - Heute

5 Jahre 10 Monate

BCA Services Ltd Information Technology Security Architect & Lean Six Sigma Black Belt Consultant

  • On-Site Project Manager; Service Manager (None-standard requests)
  • On-site Project Manager; Application Readiness (Global Migration)
  • On-site Project Manager & Lead Security Architect for Bombardier Transport
  • On-site IT Security Service Manager for Bombardier Transport
  • Security reviewer for Global 200,000 user rollout
  • Security reviewer for all applications (from requirement, design and implementation)
  • Main focus and communication person for all security matters between internal and external
  • Methodologies used:
  • Lean & Six Sigma, SAP, Agile, SABSA, TOGAF, COBIT, ITIL

03/2013 - 09/2014

1 Jahr 7 Monate

Security Manager

On-Site Novartis Pharmaceutical, Basel, Switzerland
  • Compliance liaison with 3rd Party Suppliers e.g. IBM and BT
  • CTQ Business and Security Process (Value Added and None Value Added) identification
  • KRI / KPI Reporting
  • Risk Management
  • Global Information Technology Security Manager
  • Security Risk Assessments (Internal infrastructure and external products)
  • Security concepts and architect solutions
  • Security contracts with 3rd Party suppliers
  • Using Lean Six Sigma methodology - ICE Methodology

07/2012 - 02/2013

8 Monate

BCA-Services Ltd – (Project Manager and Team Leader)

Enterprise Security Solutions, Munich
  • Information Technology Security Manager
  • Business Security Architecture (Strategy Alignment)
  • Data Lifecycle Migration
  • Business continuity and Disaster Recovery
  • Enterprise Architecture Solutions
  • Operational awareness and to ensure all processes and procedures alignment
  • Quality and Compliance Control, SOX GxP
  • IT Security Audits ISO 27001

02/2009 - 07/2012

3 Jahre 6 Monate

Server Security Analyst (Global Data Centres)

Actelion Pharmaceuticals Ltd, Allschwil, Switzerland
  • Single point of contact for security, incidents, compliance and stakeholder/sponsor adviser
  • Internal Security Audit, Risk Analysis and Report with recommendations
  • Global Security Infrastructure and Architecture, planning, implementation and support
  • Global event and risk handling, reporting and support
  • Collation of threat information and informing management on current security risk levels and available
  • solutions
  • Creation of Senior Security Role, creation of security analyst role
  • High quality documentation: Policies, Standards, Procedure and Guidelines
  • Global Symantec Endpoint Protection Implementation, replication and support
  • SCCM concept and best practice for implementation to manage a large global Server environment
  • Access and Identity Management, Biometric, remote access, AAA
  • Data loss prevention, POC proxy/web security solutions
  • Application compliance, (Security Baseline – SOX, GxP, Basel)
  • Security Strategies, Analysis and POC for the security software and recommendations (GAP analysis and
  • Solution presentation). Continuously in contact with leading vendors to give security agility
  • HSM Security concept, installation and continuous maintenance
  • Windows Server 2000 to 2008
  • Symantec Security Products
  • 3rd Level Support – Security events, issues and problems (working alongside product engineers)

05/2008 - 02/2009

10 Monate

BCA-Services Ltd – Project Manager and Team Leader

Enterprise Security Solutions, Munich, Germany.


  • On-Site Security Consultant, ensuring managed services aligned with regional and global strategies
  • Ensuring policy definition and scope were consistent and agreed upon by multiple stakeholders
  • Conflict handling (with both and or between) internal and external stakeholders
  • IT Solutions for Small, Middle and Enterprise size companies
  • Information Security and Risk Management analysis with solution recommendations
  • Identity and Access Management
  • Asset management; organisation, governance and compliance of information ISO27001, GxP and SOX
  • Small, Medium and Enterprise Security Architecture Design
  • Physical Security analysis, with solution recommendations (CCTV)
  • Small, Medium and Enterprise Business Continuity Solutions
  • Disaster Recovery Solutions and Good Practices
  • Data Life-cycle Management Solutions
  • High-level documentation for Compliance (Policy, Procedures and Guidelines
  • Operations Security (Incident Management)

02/2005 - 04/2008

3 Jahre 3 Monate

EMEA Senior Trainer Consultant

Symantec (Symantec procured Veritas), Ascheim

EMEA Senior Trainer Consultant:

  • Customer orientated, training, consulting and or pre-sales responsibilities
  • Customer satisfaction via after sales support
  • General Consultancy (Best Practices).


Aug 4th 2003 to Feb 1st 2005

Veritas (Now Symantec). Ascheim, Germany

Senior Support Engineer

  • Global Windows Server BEWS Support Engineer
  • Fast and predictable response times

2001 – 2003

Heimerer College of IT Education

IT Trainer / Coach:

  • Security and Access Control Design and Infrastructure (Active Directory)
  • Windows & Linux environment

1997 – 2001

Diploma - Self-Employed, Golf Professional Trainer

Diploma Certificate (10 years required)

1996 – 1997

BrainLAB, Munich, Germany

  • Logistics

1995 – 1996

United Friendly Financial Planning, UK

  • Financial Advisor

1989 – 1995

Sussex Police Force, UK

  • Police Constable
    • Work under pressure
    • Analysis (Thinking outside of the box)
    • Conflict resolution
    • Handling Emergency life & death situations
    • Results driven (top achiever)

1979 – 1989

British Army, 2nd Battalion Parachute Regiment & Queens Life Guards

  • None-Commissioned Officer
  • Team Leader.
    • Out of the box, Out of the comfort zone, Attention to detail
    • Team work, leadership, responsibility, discipline, initiative, setting goals and achieving them
    • Top achiever

Large – Mid Scale Projects

  • IT None-Standard Request Service Manager - Bombardier 2015-Current. (+200,000 Users).

o Direct Project Team Size 30.

  • IT Application Readiness – Bombardier 2015.
  • IT Security Project and Service Manager - Bombardier 2014-2015.

o Direct Project Team Size 25.

  • IT Security Manager Solutions – Novartis 2013-2014. (+200,000 Users).
  • Global IT Security – Actelion Pharmaceuticals 2009-2013. (+3000 Users).
  • IT Security Services Provider 2013 to 2014.
  • IT Security Manager Solutions 2012 to 2013.
  • Patch Management concept, implementation & support 2011 to 2012.
  • Data Lifecycle Projects 2005 to 2009.
  • IT Security Architecture projects 2001 to present.
  • Using data to target specific crime organisations 1993.
  • High Tech Surveillance implementation to high-risk areas 1992.
  • Communication (Using technology to improve internal communications) 1990.
  • Big Data analysis (Statistics & Reducing crime in a major city) 1990.
  • International logistical transportation of cargo using databases 1985.
  • Strategic Planning, implementation & continuous improvement 1983.
  • Training & Development of Team building skills 1980 to Present.






Native Language


Experiences Abroad:

  • Fulltime Employment: England, Germany and Switzerland
  • Project Work: Austria, Italy, France, Holland, Belgium, Oman, Thailand, Australia and Belize


Current Qualifications:

  • Lean Six Sigma Black Belt (Business & Process Excellence).
  • CISSP Certified (Enterprise Architect Security (Masters Degree Equivalent (5 Years min required))) IAT Level III, IAM Level III, IASAE II.
  • ITIL v3 (Process Management).
  • ISO 27002 (IT Security).
  • MCSE, MCSA, MCP 2000 & 2003. (Specifically directed toward Active Directory IAM).
  • EC-Council Forensics Specialist Exam.
  • EC-Council Security Analyst.
  • EC-Council Ethical Hacking and Countermeasures (IT Security), CND Analyst, Infrastructure Support, Incident Reporter, Auditor, IASAE III.