IT Security & Infrastructure Expert
Aktualisiert am 10.12.2020
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 01.01.2021
Verfügbar zu: 100%
davon vor Ort: 100%
IT Security
IT Infrastruktur
Projektmanagement
Consulting
Beratung
Next Generation Data Center
IT Transformation
Post Merger Integration
Financial Services
Pharma
Kostenoptimierung
Qualitätssicherung
Teamleitung
IT Strategie
IT Management
IT Prozesse
Penetration Testing
English
Highly fluent
French
Fluent
German
Native
Spanish
Basic knowledge

Einsatzorte

Einsatzorte

Deutschland, Österreich, Schweiz
möglich

Projekte

Projekte

8 Jahre 3 Monate
2016-01 - heute

Organizational projects

Freelance IT Security and Infrastructure Consultant
Freelance IT Security and Infrastructure Consultant
  • Organizational projects (vulnerability management, IT security process design and implementation, gap analysis IT security)
  • Focus on building efficient processes and automation in order to improve a client’s overall security standards (e.g. raising the quality of penetration tests, improve efficiency in closing issues)
  • Penetration testing (local and remote networks, web audits)
  • Analysis and implementation of quality measures to improve client’s IT infrastructure
own company [name on request]
Heilbronn, Germany
8 Jahre 3 Monate
2016-01 - heute

Major relaunches

Managing Director, Web Consultancy
Managing Director, Web Consultancy
  • Major relaunches of corporate homepages, implementing modern web concepts
  • Security audits for corporate homepages
  • Server and infrastructure maintenance
[on request]
Heilbronn, Germany
2 Monate
2019-11 - 2019-12

Penetration Test

IPv4 IPv6 Exploit Techniques ...
  • Device Enumeration
  • Vulnerability Scans
  • Exploits
  • Dokumentation Ergebnisse
  • Beratung zur Prävention neuer Vulnerabilities
nmap Nessus GreenBone OpenVAS MetaSploit BurpSuite Radare Ghidra
IPv4 IPv6 Exploit Techniques Reverse Engineering Vulnerability scanning Network Infrastructure
3 Monate
2019-08 - 2019-10

Gap Analyse Prozesse und Dokumentation ISMS

ISMS ISO27001 BSI Grundschutz
  • Gap-Analyse zwischen vorhandenen Policies und Best Practice (angelehnt an ISO27001 und BSI)
  • Bereitstellung der notwendigen Dokumente und Policies (z.B. Information Security Policy, Access Control Policy, Password Policy, etc.)
    • Konsolidierung vorhandener Dokumente / Policies
    • Erstellung fehlender Dokumente / Policies
    • Streichung überflüssiger Dokumente
  • Eingliederung der Policies in das Unternehmen
ISMS ISO27001 BSI Grundschutz
1 Jahr 9 Monate
2014-04 - 2015-12

consulting and technical projects

IT Security Consultant
IT Security Consultant
  • Project lead for consulting and technical projects
  • Organizational consulting (e.g. implementation of an ISMS, Disaster Recovery Strategy)
  • Conceptual audits (e.g. vulnerability management strategy, gap analysis ISO27001/BSI)
  • Penetration tests and insider threat audits
cirosec GmbH
Heilbronn, Germany
2 Jahre 11 Monate
2011-06 - 2014-04

Analysis of client?s opportunities

Technology Consultant, IT Transformation
Technology Consultant, IT Transformation
  • Analysis of client’s opportunities for running an efficient data center, selling a multi-year IT transformation program for Accenture
  • Project lead for various projects and sub-projects within IT transformation program
  • Build and implement project management office and controlling for IT transformation program
  • Planning and controlling projects over the duration of the entire program in order to maximize savings while ensuring that the program remains within budget limitations (monetary and personnel)
Major German client in the insurance sector
Hanover, Germany
8 Monate
2010-10 - 2011-05

Managing the integration of data warehouses

Technology Consultant, Post Merger Integration
Technology Consultant, Post Merger Integration
  • Managing the integration of data warehouses into new testing infrastructure
  • Designing and integrating new quality assurance processes for newly built test systems and environments, reducing the failure rate from over 60% to under 5%
  • Design, build, and implementation of tools for tracking the status and time-lines of complex dependencies during the loading phase of data migration runs
  • Coordination of data migration runs during Go-Live of Post Merger Integration
Major German client in the banking sector
Frankfurt, Germany
6 Jahre 2 Monate
2004-09 - 2010-10

Design and implementation of the new network infrastructure

System and Network Administrator
System and Network Administrator
  • Design and implementation of the new network infrastructure prior to a physical data center move
  • Responsible for data security and data integrity for a physical data center move
  • Migration of individually managed servers to a distributed configuration system
  • Single point of contact for technical security topics
Rheinische Friedrich-Wilhelms-Universität, Mathematical Institute
Bonn, Germany
14 Jahre 10 Monate
1996-01 - 2010-10

Design, build, and implementation

System and Network Administrator
System and Network Administrator
  • Design, build, and implementation of network infrastructure, servers and management tools
  • Setup and maintenance of client side network
  • Responsible for security audits
TaKo
Wachtberg, Germany

Aus- und Weiterbildung

Aus- und Weiterbildung

10/2010

Rheinische Friedrich-Wilhelms-Universität, Bonn

Diploma in Mathematics

Major in Computational Complexity, Minor in Computer Science

Diploma grade: 1.7

08/2001

Friedrich Ebert Gymnasium, Bonn

International Baccalaureate (Diploma)

06/2001

Friedrich Ebert Gymnasium, Bonn

Abitur in Physics, English, Philosophy and Mathematics

Certificates

ITILv3

Kompetenzen

Kompetenzen

Top-Skills

IT Security IT Infrastruktur Projektmanagement Consulting Beratung Next Generation Data Center IT Transformation Post Merger Integration Financial Services Pharma Kostenoptimierung Qualitätssicherung Teamleitung IT Strategie IT Management IT Prozesse Penetration Testing

Produkte / Standards / Erfahrungen / Methoden

BSI Grundschutz
Ghidra
ISO27001

PROFILE

A strategic and technical IT specialist with over 10 years international exposure and strong interests in IT security and infrastructure, combining management and technical skills in order to successfully deliver major projects for clients

  • Management skills, e.g. project and team lead, budget controlling for IT optimization projects
  • Analytical skills, e.g. building of models and tools to enhance technical and business efficiency
  • Technical skills, e.g. various approved patches for Open Source projects, including kernel drivers for the OpenBSD operating system
  • Quality-oriented, e.g. identified quality issues, initiated and led several quality assurance and peer review initiatives
  • Team player, e.g. successfully coached junior team members, led team satisfaction initiatives

Security

  • ISO2700x and BSI baseline protection (IT Grundschutz)
  • Disaster Recovery
  • UNIX
  • network infrastructure
  • cryptography
  • Vulnerability scanning & exploit techniques
  • User Access Control and Privileged Identity Management

Tools

  • NMap
  • Nessus
  • Qualys
  • CORE Impact
  • GreenBone OpenVAS
  • MetaSploit
  • BurpSuite
  • NetSparker
  • Radare

Technical Skills

  • x86 (32/64 bit) exploits and mitigation
  • Data center and application migration
  • Operating System Kernel development
  • Embedded devices
  • IP networking

Betriebssysteme

BSD
IRIX
Linux
macOS
MS Windows
Solaris
Tru64

Programmiersprachen

C
Go
Java
Perl
PHP
Python
sh
SQL
Swift
x86 Assembler

Datenkommunikation

IPv4
IPv6

Design / Entwicklung / Konstruktion

Reverse Engineering

Einsatzorte

Einsatzorte

Deutschland, Österreich, Schweiz
möglich

Projekte

Projekte

8 Jahre 3 Monate
2016-01 - heute

Organizational projects

Freelance IT Security and Infrastructure Consultant
Freelance IT Security and Infrastructure Consultant
  • Organizational projects (vulnerability management, IT security process design and implementation, gap analysis IT security)
  • Focus on building efficient processes and automation in order to improve a client’s overall security standards (e.g. raising the quality of penetration tests, improve efficiency in closing issues)
  • Penetration testing (local and remote networks, web audits)
  • Analysis and implementation of quality measures to improve client’s IT infrastructure
own company [name on request]
Heilbronn, Germany
8 Jahre 3 Monate
2016-01 - heute

Major relaunches

Managing Director, Web Consultancy
Managing Director, Web Consultancy
  • Major relaunches of corporate homepages, implementing modern web concepts
  • Security audits for corporate homepages
  • Server and infrastructure maintenance
[on request]
Heilbronn, Germany
2 Monate
2019-11 - 2019-12

Penetration Test

IPv4 IPv6 Exploit Techniques ...
  • Device Enumeration
  • Vulnerability Scans
  • Exploits
  • Dokumentation Ergebnisse
  • Beratung zur Prävention neuer Vulnerabilities
nmap Nessus GreenBone OpenVAS MetaSploit BurpSuite Radare Ghidra
IPv4 IPv6 Exploit Techniques Reverse Engineering Vulnerability scanning Network Infrastructure
3 Monate
2019-08 - 2019-10

Gap Analyse Prozesse und Dokumentation ISMS

ISMS ISO27001 BSI Grundschutz
  • Gap-Analyse zwischen vorhandenen Policies und Best Practice (angelehnt an ISO27001 und BSI)
  • Bereitstellung der notwendigen Dokumente und Policies (z.B. Information Security Policy, Access Control Policy, Password Policy, etc.)
    • Konsolidierung vorhandener Dokumente / Policies
    • Erstellung fehlender Dokumente / Policies
    • Streichung überflüssiger Dokumente
  • Eingliederung der Policies in das Unternehmen
ISMS ISO27001 BSI Grundschutz
1 Jahr 9 Monate
2014-04 - 2015-12

consulting and technical projects

IT Security Consultant
IT Security Consultant
  • Project lead for consulting and technical projects
  • Organizational consulting (e.g. implementation of an ISMS, Disaster Recovery Strategy)
  • Conceptual audits (e.g. vulnerability management strategy, gap analysis ISO27001/BSI)
  • Penetration tests and insider threat audits
cirosec GmbH
Heilbronn, Germany
2 Jahre 11 Monate
2011-06 - 2014-04

Analysis of client?s opportunities

Technology Consultant, IT Transformation
Technology Consultant, IT Transformation
  • Analysis of client’s opportunities for running an efficient data center, selling a multi-year IT transformation program for Accenture
  • Project lead for various projects and sub-projects within IT transformation program
  • Build and implement project management office and controlling for IT transformation program
  • Planning and controlling projects over the duration of the entire program in order to maximize savings while ensuring that the program remains within budget limitations (monetary and personnel)
Major German client in the insurance sector
Hanover, Germany
8 Monate
2010-10 - 2011-05

Managing the integration of data warehouses

Technology Consultant, Post Merger Integration
Technology Consultant, Post Merger Integration
  • Managing the integration of data warehouses into new testing infrastructure
  • Designing and integrating new quality assurance processes for newly built test systems and environments, reducing the failure rate from over 60% to under 5%
  • Design, build, and implementation of tools for tracking the status and time-lines of complex dependencies during the loading phase of data migration runs
  • Coordination of data migration runs during Go-Live of Post Merger Integration
Major German client in the banking sector
Frankfurt, Germany
6 Jahre 2 Monate
2004-09 - 2010-10

Design and implementation of the new network infrastructure

System and Network Administrator
System and Network Administrator
  • Design and implementation of the new network infrastructure prior to a physical data center move
  • Responsible for data security and data integrity for a physical data center move
  • Migration of individually managed servers to a distributed configuration system
  • Single point of contact for technical security topics
Rheinische Friedrich-Wilhelms-Universität, Mathematical Institute
Bonn, Germany
14 Jahre 10 Monate
1996-01 - 2010-10

Design, build, and implementation

System and Network Administrator
System and Network Administrator
  • Design, build, and implementation of network infrastructure, servers and management tools
  • Setup and maintenance of client side network
  • Responsible for security audits
TaKo
Wachtberg, Germany

Aus- und Weiterbildung

Aus- und Weiterbildung

10/2010

Rheinische Friedrich-Wilhelms-Universität, Bonn

Diploma in Mathematics

Major in Computational Complexity, Minor in Computer Science

Diploma grade: 1.7

08/2001

Friedrich Ebert Gymnasium, Bonn

International Baccalaureate (Diploma)

06/2001

Friedrich Ebert Gymnasium, Bonn

Abitur in Physics, English, Philosophy and Mathematics

Certificates

ITILv3

Kompetenzen

Kompetenzen

Top-Skills

IT Security IT Infrastruktur Projektmanagement Consulting Beratung Next Generation Data Center IT Transformation Post Merger Integration Financial Services Pharma Kostenoptimierung Qualitätssicherung Teamleitung IT Strategie IT Management IT Prozesse Penetration Testing

Produkte / Standards / Erfahrungen / Methoden

BSI Grundschutz
Ghidra
ISO27001

PROFILE

A strategic and technical IT specialist with over 10 years international exposure and strong interests in IT security and infrastructure, combining management and technical skills in order to successfully deliver major projects for clients

  • Management skills, e.g. project and team lead, budget controlling for IT optimization projects
  • Analytical skills, e.g. building of models and tools to enhance technical and business efficiency
  • Technical skills, e.g. various approved patches for Open Source projects, including kernel drivers for the OpenBSD operating system
  • Quality-oriented, e.g. identified quality issues, initiated and led several quality assurance and peer review initiatives
  • Team player, e.g. successfully coached junior team members, led team satisfaction initiatives

Security

  • ISO2700x and BSI baseline protection (IT Grundschutz)
  • Disaster Recovery
  • UNIX
  • network infrastructure
  • cryptography
  • Vulnerability scanning & exploit techniques
  • User Access Control and Privileged Identity Management

Tools

  • NMap
  • Nessus
  • Qualys
  • CORE Impact
  • GreenBone OpenVAS
  • MetaSploit
  • BurpSuite
  • NetSparker
  • Radare

Technical Skills

  • x86 (32/64 bit) exploits and mitigation
  • Data center and application migration
  • Operating System Kernel development
  • Embedded devices
  • IP networking

Betriebssysteme

BSD
IRIX
Linux
macOS
MS Windows
Solaris
Tru64

Programmiersprachen

C
Go
Java
Perl
PHP
Python
sh
SQL
Swift
x86 Assembler

Datenkommunikation

IPv4
IPv6

Design / Entwicklung / Konstruktion

Reverse Engineering

Vertrauen Sie auf GULP

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das GULP Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.