Erfahrener IAM Architect & Projektleiter für die Bereiche Identity & Access Governance (inbesondere One Identity Manager), CIAM, Machine ID Protection
Aktualisiert am 19.02.2019
Profil
Freiberufler / Selbstständiger
Verfügbar ab: 01.04.2019
Verfügbar zu: 95%
davon vor Ort: 100%
Arabisch
Muttersprache
Deutsch
fließend
Englisch
fließend

Einsatzorte

Einsatzorte

Schweiz, Deutschland, Österreich
nicht möglich

Projekte

Projekte

3 Monate
2018-10 - 2018-12

Conducting a security risk assessment for a cloud environment used for smart buildings

Team lead
Team lead
  • Leading a team to conduct a cloud risk assessment and helping the client to better manage the associated risks
  • Review existing assessments that might have been previously conducted
  • Review relevant documents including the risk assessment questionnaire, the risk categories and their prioritization
  • Identify relevant stakeholders, schedule interviews and send invitations
  • Perform interviews with identified stakeholders to answer questions related to the risk assessment and document results
  • Identifing red flags and making recommendation for risk mitigation measures
Insurance
11 Monate
2018-02 - 2018-12

Leading a team

Manager - Cyber Risk
Manager - Cyber Risk
  • Leading a team to provide different services in the area of Identity and Access Management adding value to client's cyber strategy, cyber security, cyber vigilance and cyber resilience
  • Supporting our clients in improving their strategies, development and operation in the area of Identity and Access Management
  • Supporting our customers in the analysis of current IAM infrastructure and proposing recommendations to improve security, user experience as well as alignment with standards and trends
  • Supporting our clients in the selection of appropriate technologies and products to fulfill business and technical requirements
Deloitte GmbH
Frankfurt / Germany
10 Monate
2018-02 - 2018-11

Next generation IAM program: IAG, CIAM, IAM@IoT and PAM/PIM

Engagement Manager & IAM Program Architect
Engagement Manager & IAM Program Architect
  • Leading a team conducting a pre-study to shape the next generation IAM program, which covers Identity Administration & Governonce, Consumer IAM, IoT and authentication of the future as an expert providing the client with outside view
  • Analyzing current IAM landscape and identifying strengths and weaknesses as well as the pain points
  • Supporting the client in the RFI, PoC and RFP processes
  • Proposing action alternatives and quick wins, taking into consideration existing solutions in the market as weH as IAM trends
  • Proposing a global IAM reference framework and future projects
Chemical Industry, Oil and Gas
Germany
3 Jahre 1 Monat
2015-01 - 2018-01

Design, Development and Rollout of IAM services

IAM Architect
IAM Architect
  • Responsible for the alignment of the customer's business, operational and security requirements and translation of those requirements into technical IAM capabilities
  • Defining processes roadmap of IAM, IAM Design & Architecture
  • Organizing workshops with different departments and supporting the security awareness program of the customer by organizing different trainings on how to deal with roles, entitlements and their assignments to identities
  • Guiding a team of developers using the One Identity Manager solution
  • Guiding a team of developers using agile methods and frameworks (e.g., Scrum) to manage the product developmen
Banking & Finance Services
Frankfurt - Germany
5 Monate
2017-08 - 2017-12

Support CIAM architecture & proof of concept

IAM Architect
IAM Architect
  • Supporting the client in the design of B2B Customer IAM infrastructure enabling him to be a provider of cloud-based consumer IAM services
  • Conducting a proof of concept using ForgeRock Identity Platform
  • Alignment of dedicated protocols and processes to IAM standards like SAML, OAuth 2.0, OpenID Connect and SCIM
Telecommunication
Switzerland
7 Monate
2015-02 - 2015-08

Evaluation and analysis of the IT infrastructure and the IdM Solution

Strategy Consultant
Strategy Consultant
  • Evaluation and analysis of the IT infrastructure and the IdM Solution
  • Performing a SOWT analysis, identification of risk and pain points
  • Proposing Quick Wins and presentation of strategic alternatives

Transportation & Logistics
Germany
4 Jahre 7 Monate
2009-03 - 2013-09

Developing enhanced approaches/architectures

Researcher - Information Security
Researcher - Information Security
  • Member of the Secure Services Research Department
  • Developing enhanced approaches/architectures on verifiable security needed especially in outsourcing scenarios (cf. Cloud Computing) using the concepts of trusted computing
  • Developing a framework which allows the use of functions from the Trusted Platform Module (TPM) in business process engines, such as the Java based Apache ODE
  • Developing an approach to support the practicability of trusted computing using another paradigm of hash functions based on public key cryptography (i.e., Chameleon Hashing)
  • Structuring and conducting the seminar Security Policies, as well as supervising different master and bachelor graduation projects at Darmstadt University of Technology
Center for Advanced Security Research
Darmstadt / Germany
8 Monate
2008-06 - 2009-01

Developing a concept

Graduate Student / Prototype-Developer
Graduate Student / Prototype-Developer
  • Developing a concept for non-functional concerns in the Business Process Management lifecycle and their enforcement at runtime
  • Conducting a survey about current BPM Suites in order to evaluate concepts used for modeling non-functional and quality issues
SAP AG
Darmstadt / Germany
1 Jahr
2007-06 - 2008-05

Developing a web-based groupware

Software Developer
Software Developer
  • Developing a web-based groupware using Web 2.0 technologies, Zend framework, MySQL and PHPMyAdmin based on MVC model
Zakoa GmbH
Frankfurt / Germany
4 Jahre 8 Monate
2002-10 - 2007-05

Risk & crisis management

Intern (part-time)
Intern (part-time)
  • Risk & crisis management, outage management, disaster recovery
  • Changing business and IT processes in order optimize the reaction time and reaction quality of employees in case of disaster
  • Web and database development
  • Organizing and performing trainings for MS office suite
Deutsche Bank AG, HessenWasser GmbH, TU Darmstadt
Germany

Aus- und Weiterbildung

Aus- und Weiterbildung

1 Monat
2018-11 - 2018-11

ITIL Foundation v.3

Certified in ITIL Foundation v.3, Learning Tree International
Certified in ITIL Foundation v.3
Learning Tree International
1 Monat
2018-11 - 2018-11

Certified in the Governance of Enterprise IT (CGEIT)

Certified in the Governance of Enterprise IT (CGEIT), ISACA
Certified in the Governance of Enterprise IT (CGEIT)
ISACA
1 Monat
2017-05 - 2017-05

CyberArk Privileged Account Security (PAS)

CyberArk Privileged Account Security (PAS), CyberArk University
CyberArk Privileged Account Security (PAS)
CyberArk University
1 Monat
2016-06 - 2016-06

Certified Information Systems Security Professional (CISSP)

Certified Information Systems Security Professional (CISSP), Issued by ISC2
Certified Information Systems Security Professional (CISSP)
Issued by ISC2
4 Jahre 6 Monate
2009-03 - 2013-08

Promotion in Information Security: Dr.-Ing.

Dr.-Ing., TU Darmstadt
Dr.-Ing.
TU Darmstadt
  • Security architectures for trustworthy business processes
  • Trusted Computing (integrity measurement concepts, remote attestation, etc.)
  • Behavior compliance control for remotely executed critical computations (e.g., in cloud computing)
1 Monat
2009-03 - 2009-03

Certificate IT Security

Certificate IT Security, Centre for IT Security (DZI) / Germany
Certificate IT Security
Centre for IT Security (DZI) / Germany

Certified in the following domains:

  • Symmetric Cryptography
  • Public Key Infrastructures (PKI)
  • Introduction to Cryptography
  • Multimedia Security
6 Jahre 4 Monate
2002-10 - 2009-01

Informatik-Studium: Dipl.-Inform.

Diplom Informatiker, TU Darmstadt
Diplom Informatiker
TU Darmstadt
  • IT Security and Public Key Infrastructures (PKI)
  • Software and Web Engineering and Peer-to-peer Systems
  • Business Process Management

Kompetenzen

Kompetenzen

Aufgabenbereiche

Identity and Access Management
IT Security
Machine Identity Protection
Trusted Computing

Produkte / Standards / Erfahrungen / Methoden

Dell One Identity Manager
ForgeRock
Sailpoint

WHY ME?

Information security and risk management have become key criteria for successful digitalization in the administration and business sectors. With me on your side, you have a person, who has solid theoretical and practical expertise in various fields of information security. My excellent education, international experience as well as my strong management and communication skills will make a big contribution towards the success of your organization in this mobile and digitalized world.

SKILLS

  • STRIDE Threat Classification
  • DREAD Risk Assessment Risk
  • Analysis Standard 200-3
  • Business Continuity Plan
  • One Identity Manager CyberArk
  • ACL, RBAC, ABAC, MAC jTPM, Emulator, vTPM PGP, PKI
  • VPN, Firewall, IDS/IPS Forgerock OpenIDM Java
  • .Net, PHP
  • Microsoft Office

Teaching Activities

04/2009 - 09/2012

Darmstadt University of Technology, Darmstadt / Germany

Teaching assistant

Course content:

  • Cryptography (Introduction, Encryption, Key Exchange and Management, Hash Functions, Digital Signatures, Identification, Secret Sharing, PKI)
  • Authentication, Access Control, Security Models
  • Trusted Computing (TPM, Integrity Measurement, Remote Attestation, Trusted Software Stack)
  • Biometrics
  • Network Security, Software Security
  • Security Evaluation

04/2010 - 09/2010

Security Policies (Research Seminar)

Darmstadt University of Technology, Darmstadt / Germany

Seminar content and activities:

  • Guiding students in selecting and analyzing research papers
  • Policy languages (SecPAL, XACML, Usage Control)
  • Policy Visualization

Programmiersprachen

.NET
Java
PHP

Datenbanken

MS SQL Database
MySQL

Design / Entwicklung / Konstruktion

BPMN

Einsatzorte

Einsatzorte

Schweiz, Deutschland, Österreich
nicht möglich

Projekte

Projekte

3 Monate
2018-10 - 2018-12

Conducting a security risk assessment for a cloud environment used for smart buildings

Team lead
Team lead
  • Leading a team to conduct a cloud risk assessment and helping the client to better manage the associated risks
  • Review existing assessments that might have been previously conducted
  • Review relevant documents including the risk assessment questionnaire, the risk categories and their prioritization
  • Identify relevant stakeholders, schedule interviews and send invitations
  • Perform interviews with identified stakeholders to answer questions related to the risk assessment and document results
  • Identifing red flags and making recommendation for risk mitigation measures
Insurance
11 Monate
2018-02 - 2018-12

Leading a team

Manager - Cyber Risk
Manager - Cyber Risk
  • Leading a team to provide different services in the area of Identity and Access Management adding value to client's cyber strategy, cyber security, cyber vigilance and cyber resilience
  • Supporting our clients in improving their strategies, development and operation in the area of Identity and Access Management
  • Supporting our customers in the analysis of current IAM infrastructure and proposing recommendations to improve security, user experience as well as alignment with standards and trends
  • Supporting our clients in the selection of appropriate technologies and products to fulfill business and technical requirements
Deloitte GmbH
Frankfurt / Germany
10 Monate
2018-02 - 2018-11

Next generation IAM program: IAG, CIAM, IAM@IoT and PAM/PIM

Engagement Manager & IAM Program Architect
Engagement Manager & IAM Program Architect
  • Leading a team conducting a pre-study to shape the next generation IAM program, which covers Identity Administration & Governonce, Consumer IAM, IoT and authentication of the future as an expert providing the client with outside view
  • Analyzing current IAM landscape and identifying strengths and weaknesses as well as the pain points
  • Supporting the client in the RFI, PoC and RFP processes
  • Proposing action alternatives and quick wins, taking into consideration existing solutions in the market as weH as IAM trends
  • Proposing a global IAM reference framework and future projects
Chemical Industry, Oil and Gas
Germany
3 Jahre 1 Monat
2015-01 - 2018-01

Design, Development and Rollout of IAM services

IAM Architect
IAM Architect
  • Responsible for the alignment of the customer's business, operational and security requirements and translation of those requirements into technical IAM capabilities
  • Defining processes roadmap of IAM, IAM Design & Architecture
  • Organizing workshops with different departments and supporting the security awareness program of the customer by organizing different trainings on how to deal with roles, entitlements and their assignments to identities
  • Guiding a team of developers using the One Identity Manager solution
  • Guiding a team of developers using agile methods and frameworks (e.g., Scrum) to manage the product developmen
Banking & Finance Services
Frankfurt - Germany
5 Monate
2017-08 - 2017-12

Support CIAM architecture & proof of concept

IAM Architect
IAM Architect
  • Supporting the client in the design of B2B Customer IAM infrastructure enabling him to be a provider of cloud-based consumer IAM services
  • Conducting a proof of concept using ForgeRock Identity Platform
  • Alignment of dedicated protocols and processes to IAM standards like SAML, OAuth 2.0, OpenID Connect and SCIM
Telecommunication
Switzerland
7 Monate
2015-02 - 2015-08

Evaluation and analysis of the IT infrastructure and the IdM Solution

Strategy Consultant
Strategy Consultant
  • Evaluation and analysis of the IT infrastructure and the IdM Solution
  • Performing a SOWT analysis, identification of risk and pain points
  • Proposing Quick Wins and presentation of strategic alternatives

Transportation & Logistics
Germany
4 Jahre 7 Monate
2009-03 - 2013-09

Developing enhanced approaches/architectures

Researcher - Information Security
Researcher - Information Security
  • Member of the Secure Services Research Department
  • Developing enhanced approaches/architectures on verifiable security needed especially in outsourcing scenarios (cf. Cloud Computing) using the concepts of trusted computing
  • Developing a framework which allows the use of functions from the Trusted Platform Module (TPM) in business process engines, such as the Java based Apache ODE
  • Developing an approach to support the practicability of trusted computing using another paradigm of hash functions based on public key cryptography (i.e., Chameleon Hashing)
  • Structuring and conducting the seminar Security Policies, as well as supervising different master and bachelor graduation projects at Darmstadt University of Technology
Center for Advanced Security Research
Darmstadt / Germany
8 Monate
2008-06 - 2009-01

Developing a concept

Graduate Student / Prototype-Developer
Graduate Student / Prototype-Developer
  • Developing a concept for non-functional concerns in the Business Process Management lifecycle and their enforcement at runtime
  • Conducting a survey about current BPM Suites in order to evaluate concepts used for modeling non-functional and quality issues
SAP AG
Darmstadt / Germany
1 Jahr
2007-06 - 2008-05

Developing a web-based groupware

Software Developer
Software Developer
  • Developing a web-based groupware using Web 2.0 technologies, Zend framework, MySQL and PHPMyAdmin based on MVC model
Zakoa GmbH
Frankfurt / Germany
4 Jahre 8 Monate
2002-10 - 2007-05

Risk & crisis management

Intern (part-time)
Intern (part-time)
  • Risk & crisis management, outage management, disaster recovery
  • Changing business and IT processes in order optimize the reaction time and reaction quality of employees in case of disaster
  • Web and database development
  • Organizing and performing trainings for MS office suite
Deutsche Bank AG, HessenWasser GmbH, TU Darmstadt
Germany

Aus- und Weiterbildung

Aus- und Weiterbildung

1 Monat
2018-11 - 2018-11

ITIL Foundation v.3

Certified in ITIL Foundation v.3, Learning Tree International
Certified in ITIL Foundation v.3
Learning Tree International
1 Monat
2018-11 - 2018-11

Certified in the Governance of Enterprise IT (CGEIT)

Certified in the Governance of Enterprise IT (CGEIT), ISACA
Certified in the Governance of Enterprise IT (CGEIT)
ISACA
1 Monat
2017-05 - 2017-05

CyberArk Privileged Account Security (PAS)

CyberArk Privileged Account Security (PAS), CyberArk University
CyberArk Privileged Account Security (PAS)
CyberArk University
1 Monat
2016-06 - 2016-06

Certified Information Systems Security Professional (CISSP)

Certified Information Systems Security Professional (CISSP), Issued by ISC2
Certified Information Systems Security Professional (CISSP)
Issued by ISC2
4 Jahre 6 Monate
2009-03 - 2013-08

Promotion in Information Security: Dr.-Ing.

Dr.-Ing., TU Darmstadt
Dr.-Ing.
TU Darmstadt
  • Security architectures for trustworthy business processes
  • Trusted Computing (integrity measurement concepts, remote attestation, etc.)
  • Behavior compliance control for remotely executed critical computations (e.g., in cloud computing)
1 Monat
2009-03 - 2009-03

Certificate IT Security

Certificate IT Security, Centre for IT Security (DZI) / Germany
Certificate IT Security
Centre for IT Security (DZI) / Germany

Certified in the following domains:

  • Symmetric Cryptography
  • Public Key Infrastructures (PKI)
  • Introduction to Cryptography
  • Multimedia Security
6 Jahre 4 Monate
2002-10 - 2009-01

Informatik-Studium: Dipl.-Inform.

Diplom Informatiker, TU Darmstadt
Diplom Informatiker
TU Darmstadt
  • IT Security and Public Key Infrastructures (PKI)
  • Software and Web Engineering and Peer-to-peer Systems
  • Business Process Management

Kompetenzen

Kompetenzen

Aufgabenbereiche

Identity and Access Management
IT Security
Machine Identity Protection
Trusted Computing

Produkte / Standards / Erfahrungen / Methoden

Dell One Identity Manager
ForgeRock
Sailpoint

WHY ME?

Information security and risk management have become key criteria for successful digitalization in the administration and business sectors. With me on your side, you have a person, who has solid theoretical and practical expertise in various fields of information security. My excellent education, international experience as well as my strong management and communication skills will make a big contribution towards the success of your organization in this mobile and digitalized world.

SKILLS

  • STRIDE Threat Classification
  • DREAD Risk Assessment Risk
  • Analysis Standard 200-3
  • Business Continuity Plan
  • One Identity Manager CyberArk
  • ACL, RBAC, ABAC, MAC jTPM, Emulator, vTPM PGP, PKI
  • VPN, Firewall, IDS/IPS Forgerock OpenIDM Java
  • .Net, PHP
  • Microsoft Office

Teaching Activities

04/2009 - 09/2012

Darmstadt University of Technology, Darmstadt / Germany

Teaching assistant

Course content:

  • Cryptography (Introduction, Encryption, Key Exchange and Management, Hash Functions, Digital Signatures, Identification, Secret Sharing, PKI)
  • Authentication, Access Control, Security Models
  • Trusted Computing (TPM, Integrity Measurement, Remote Attestation, Trusted Software Stack)
  • Biometrics
  • Network Security, Software Security
  • Security Evaluation

04/2010 - 09/2010

Security Policies (Research Seminar)

Darmstadt University of Technology, Darmstadt / Germany

Seminar content and activities:

  • Guiding students in selecting and analyzing research papers
  • Policy languages (SecPAL, XACML, Usage Control)
  • Policy Visualization

Programmiersprachen

.NET
Java
PHP

Datenbanken

MS SQL Database
MySQL

Design / Entwicklung / Konstruktion

BPMN

Vertrauen Sie auf GULP

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das GULP Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.