Freelancer: IT Security, Informationssicherheit, technische Analysen, Penetrationstests, Vulnerabilty Management, Audits, CERT

Freiberufler / Selbstst�ndiger

Remote-Arbeit

Verf�gbar ab: 02.11.2020

Verf�gbar zu: 25%

davon vor Ort: 100%

Top-Skills

Sicherheitsanalyse

IT-Audit

Vulnerability Management

Penetrationstest

PCI DSS

Informationssicherheit

Schwachstellenmanagement

SIEM

SoC

Incident Management

IT-Compliance

Security Awareness

CERT

PCI PA-DSS

Pentest

Systemh�rtung

Netzwerkarchitektur

Certified Information Systems Auditor (CISA)

Certified Information Security Manager (CISM)

ISO 27001

Sprachen

English

German

Einsatzorte

St�dte

Frankfurt am Main (+100km)

Remote-Arbeit

m�glich

Projekte

Rolle

Owner

Projektinhalte

Freelancer
IT Security Consulting
Performing security audits (e.g. penetration tests, forensic analysis, best practices)

Kunde

on request, Bad Vilbel

1 Jahr 9 Monate

2019-01 - 2020-09

Strategic business planning

Head of usd HeroLab, Authorised Signatory

Rolle

Head of usd HeroLab, Authorised Signatory

Projektinhalte

Responsible for analyst teams, development team & internal IT (in total over 80 people)
Strategic business planning
Market analysis, building business partnerships and customer acquisition at senior management level (business development)
Successfully leading cross-functional teams from the areas penetration testing, forensic analysis, vulnerability management, secure coding and code reviews
Representing the usd HeroLab as a speaker on international company events and congresses

Kunde

usd AG, Neu-Isenburg

4 Jahre

2015-01 - 2018-12

Strategic business planning

Head of Security Analysis & Pentests, Authorised Signatory

Rolle

Head of Security Analysis & Pentests, Authorised Signatory

Projektinhalte

Responsible for analyst teams and development team
Strategic business planning
Market analysis, building business partnerships and customer acquisition at senior management level (business development)
Successfully leading cross-functional teams from the areas penetration testing, forensic analysis, vulnerability management, secure coding and code reviews
Representing usd as a speaker on international company events and congresses
Performing security audits (e.g. penetration tests, forensic analysis, PCI PA-DSS)

Kunde

usd AG, Neu-Isenburg

2 Jahre

2013-01 - 2014-12

Performing security audits

Head of Security Analysis & Pentests

Rolle

Head of Security Analysis & Pentests

Projektinhalte

Responsible for technical analyst team
Performing security audits (e.g. penetration tests, forensic analysis, PCI DSS, PCI PA-DSS)
Responsible for successfully introducing and establishing vulnerability management and penetration testing processes for key accounts
Significant improvements in quality management and process optimizations in the 1elds of penetration testing, vulnerability management and forensic analysis

Kunde

usd AG, Neu-Isenburg

2 Jahre 7 Monate

2010-06 - 2012-12

Design and implementation

Security Consultant

Rolle

Security Consultant

Projektinhalte

Design and implementation of global standards for penetration testing, scanning, vulnerability management and forensic analysis
Performing security audits (e.g. penetration tests, forensic analysis)
Provide consulting services to and certify companies across Europe according to international standards (e.g. PCI DSS, PCI PA-DSS)

Kunde

usd AG, Langen

Rolle

working student

Projektinhalte

VBA & Access programming
Bid proposal management of Siemens and external products

Kunde

Siemens AG, Frankfurt

2 Jahre 5 Monate

2001-08 - 2003-12

Planning and implementation of security services

working student

Rolle

working student

Kunde

SLS-Guard-Service, Neuberg

Aus- und Weiterbildung

12/2001 ? 03/2010
University, Darmstadt ? Technische Universit�t Darmstadt
Successful completion of studies in Computer Science with the�graduation as Diplom-Informatiker

08/1992�? 06/2001
Secondary School, Frankfurt ? Gymnasium Ziehenschule
University entrance quali1cation

Trainings and Certifications

09/2020

Payment Card Industry Professional (PCIP)

03/2018
Certified Information Security Manager (CISM)

04/2017 - 09/2020
Approved Scanning Vendor (ASV)

02/2014
Certified Information Systems Auditor (CISA)

12/2013
Training ?vom Kollegen zum Vorgesetzten? (from associate to�supervisor) Haufe Academy

04/2012�? 04/2020
Payment Card Industry Payment Application Qualified Security�Assessor (PCI PA-QSA)

10/2011 - 09/2020
Payment Card Industry Qualified Security Assessor (PCI QSA)

03/2011
Certified Ethical Hacker (CEH)

06/2010
Certificate ?IT-Security? from ?Center for Advanced Security�Research Darmstadt? (CASED)

Kompetenzen

Top-Skills

Sicherheitsanalyse IT-Audit Vulnerability Management Penetrationstest PCI DSS Informationssicherheit Schwachstellenmanagement SIEM SoC Incident Management IT-Compliance Security Awareness CERT PCI PA-DSS Pentest Systemh�rtung Netzwerkarchitektur Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) ISO 27001

Produkte / Standards / Erfahrungen / Methoden

Core Competencies

Leadership
Team Building
Market Insights
Information Security
Persuation
Business Development
Technical Analysis
Client Outreach
Solution Provider

IT–Skills

Security audits and penetration tests

Open Web Application Security Project (OWASP)
Open Source Security Testing Methodology Manual (OSSTMM)
BSI - Study A Penetration Testing Model
NIST Technical Guide to Information Security Testing and Assessment

Information security and compliance

ISO/IEC 27001 and 27002
BSI IT-Grundschutz (BSI 100-1, 100-2)
Payment Card Industry Data Security Standard (PCI DSS)
Payment Card Industry Payment Application Data Security Standard (PCI PADSS)

Application security

Security in the software development life cycle (SDLC)
Secure Coding
Code-Review procedures
Change Control

Office

MS-Office
OpenOffice
LATEX

Network architecture

Segmentation
Firewalls
IDS/IPS

Server operation

Hardening
File Integrity Monitoring (FIM)
Logging
Security Information and Event Management (SIEM)

Directory services

Microsoft ADS
OpenLDAP and SSO-procedures

Betriebssysteme

Linux

Windows

Programmiersprachen

bash

HTML

Java

JSP

Python

Ruby

VBA

Visual Basic

XML

Datenbanken

Microsoft Access

Microsoft SQL

MySQL

Oracle

Branchen

Finanzsektor

Reisebranche

IT-Dienstleister

e-Commerce

Aviation

Hotellerie

Einsatzorte

St�dte

Frankfurt am Main (+100km)

Remote-Arbeit

m�glich

Projekte

Rolle

Owner

Projektinhalte

Freelancer
IT Security Consulting
Performing security audits (e.g. penetration tests, forensic analysis, best practices)

Kunde

on request, Bad Vilbel

1 Jahr 9 Monate

2019-01 - 2020-09

Strategic business planning

Head of usd HeroLab, Authorised Signatory

Rolle

Head of usd HeroLab, Authorised Signatory

Projektinhalte

Responsible for analyst teams, development team & internal IT (in total over 80 people)
Strategic business planning
Market analysis, building business partnerships and customer acquisition at senior management level (business development)
Successfully leading cross-functional teams from the areas penetration testing, forensic analysis, vulnerability management, secure coding and code reviews
Representing the usd HeroLab as a speaker on international company events and congresses

Kunde

usd AG, Neu-Isenburg

4 Jahre

2015-01 - 2018-12

Strategic business planning

Head of Security Analysis & Pentests, Authorised Signatory

Rolle

Head of Security Analysis & Pentests, Authorised Signatory

Projektinhalte

Responsible for analyst teams and development team
Strategic business planning
Market analysis, building business partnerships and customer acquisition at senior management level (business development)
Successfully leading cross-functional teams from the areas penetration testing, forensic analysis, vulnerability management, secure coding and code reviews
Representing usd as a speaker on international company events and congresses
Performing security audits (e.g. penetration tests, forensic analysis, PCI PA-DSS)

Kunde

usd AG, Neu-Isenburg

2 Jahre

2013-01 - 2014-12

Performing security audits

Head of Security Analysis & Pentests

Rolle

Head of Security Analysis & Pentests

Projektinhalte

Responsible for technical analyst team
Performing security audits (e.g. penetration tests, forensic analysis, PCI DSS, PCI PA-DSS)
Responsible for successfully introducing and establishing vulnerability management and penetration testing processes for key accounts
Significant improvements in quality management and process optimizations in the 1elds of penetration testing, vulnerability management and forensic analysis

Kunde

usd AG, Neu-Isenburg

2 Jahre 7 Monate

2010-06 - 2012-12

Design and implementation

Security Consultant

Rolle

Security Consultant

Projektinhalte

Design and implementation of global standards for penetration testing, scanning, vulnerability management and forensic analysis
Performing security audits (e.g. penetration tests, forensic analysis)
Provide consulting services to and certify companies across Europe according to international standards (e.g. PCI DSS, PCI PA-DSS)

Kunde

usd AG, Langen

Rolle

working student

Projektinhalte

VBA & Access programming
Bid proposal management of Siemens and external products

Kunde

Siemens AG, Frankfurt

2 Jahre 5 Monate

2001-08 - 2003-12

Planning and implementation of security services

working student

Rolle

working student

Kunde

SLS-Guard-Service, Neuberg

Aus- und Weiterbildung

12/2001 ? 03/2010
University, Darmstadt ? Technische Universit�t Darmstadt
Successful completion of studies in Computer Science with the�graduation as Diplom-Informatiker

08/1992�? 06/2001
Secondary School, Frankfurt ? Gymnasium Ziehenschule
University entrance quali1cation

Trainings and Certifications

09/2020

Payment Card Industry Professional (PCIP)

03/2018
Certified Information Security Manager (CISM)

04/2017 - 09/2020
Approved Scanning Vendor (ASV)

02/2014
Certified Information Systems Auditor (CISA)

12/2013
Training ?vom Kollegen zum Vorgesetzten? (from associate to�supervisor) Haufe Academy

04/2012�? 04/2020
Payment Card Industry Payment Application Qualified Security�Assessor (PCI PA-QSA)

10/2011 - 09/2020
Payment Card Industry Qualified Security Assessor (PCI QSA)

03/2011
Certified Ethical Hacker (CEH)

06/2010
Certificate ?IT-Security? from ?Center for Advanced Security�Research Darmstadt? (CASED)

Kompetenzen

Top-Skills

Produkte / Standards / Erfahrungen / Methoden

Core Competencies

Leadership
Team Building
Market Insights
Information Security
Persuation
Business Development
Technical Analysis
Client Outreach
Solution Provider

IT–Skills

Security audits and penetration tests

Open Web Application Security Project (OWASP)
Open Source Security Testing Methodology Manual (OSSTMM)
BSI - Study A Penetration Testing Model
NIST Technical Guide to Information Security Testing and Assessment

Information security and compliance

ISO/IEC 27001 and 27002
BSI IT-Grundschutz (BSI 100-1, 100-2)
Payment Card Industry Data Security Standard (PCI DSS)
Payment Card Industry Payment Application Data Security Standard (PCI PADSS)

Application security

Security in the software development life cycle (SDLC)
Secure Coding
Code-Review procedures
Change Control

Office

MS-Office
OpenOffice
LATEX

Network architecture

Segmentation
Firewalls
IDS/IPS

Server operation

Hardening
File Integrity Monitoring (FIM)
Logging
Security Information and Event Management (SIEM)

Directory services

Microsoft ADS
OpenLDAP and SSO-procedures

Betriebssysteme

Linux

Windows

Programmiersprachen

bash

HTML

Java

JSP

Python

Ruby

VBA

Visual Basic

XML

Datenbanken

Microsoft Access

Microsoft SQL

MySQL

Oracle

Branchen

Finanzsektor

Reisebranche

IT-Dienstleister

e-Commerce

Aviation

Hotellerie

Vertrauen Sie auf GULP

Im Bereich Freelancing

Im Bereich Arbeitnehmer�berlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Name E-Mail-Adresse Ihre Frage

Telefonnummer Unternehmen

Ich habe die Datenschutzbestimmungen gelesen und bin damit einverstanden.

Das GULP Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.