Fachlicher Schwerpunkt dieses Freiberuflers

• Netzwerksicherheit, Cyber Security & Cloud Security • Schwachstellen- und Risiko-Assessments • Risk & Compliance Management

verfügbar ab
12.09.2019
verfügbar zu
100 %
davon vor Ort
60 %
PLZ-Gebiet, Land

D3

D5

D6

Städte
Weilburg
100 km
Kontaktwunsch

Ich möchte bevorzugt für Projekte in diesen Einsatzorten kontaktiert werden.

Kommentar

Projekte im nördlichen Rhein-Main-Gebiet (Eschborn, Bad Homburg, Königstein, Oberursel) bevorzugt. Alternativ idealerweise mögliche Remotetätigkeit.

Projekte

08/2015 - 06/2019

3 Jahre 11 Monate

Firewall and Information Security Governance

Rolle
Compliance und Risk Consultant
Kunde
major German bank
Projektinhalte
  • Firewall and Information Security Governance of global banking internal and B2B/B2C external network connectivity
  • Risk Assessment and Compliance Management of inter-network connectivity in regards to business, policy & regulatory requirements
  • Voting Member of Security Architecture Committee to support and govern newly introduced global bank projects and technologies from Network and Data flow point of view

03/2013 - 07/2015

2 Jahre 5 Monate

Identification, Threat & Risk Assessment

Rolle
Security Problem Manager
Kunde
major German bank
Projektinhalte
  • Identification, Threat & Risk Assessment of vulnerabilities and security flaws within the global bank infrastructure
  • Development and enforcement of solutions and countermeasures for successful remediation or mitigation of risks
  • Collaboration with Incident Management and business stakeholders to improve maturity of best practices (i.e. SDL & ALM) and system landscape

01/2012 - 02/2013

1 Jahr 2 Monate

Global Remote Access solution

Rolle
Project Manager
Kunde
major German bank
Projektinhalte
  • Conception of global remote access solution for several service providers based on bank policies, standards and regulatory requirements
  • Evaluation of vendor access requirements, tools & services based on least-privilege principle
  • Integration and Go Live of solution and pilot user operation

06/2012 - 12/2012

7 Monate

Application Penetration Testing Management

Kunde
major German bank
Projektinhalte
  • Management of external Penetration Test vendors
  • Support and Quality Assurance during preliminary and execution of penetration tests for bank internal and external applications
  • Assessment of Application Penetration Test Reports, evaluation of vulnerabilities and risks considering bank standards and legal & regulatory requirements, review and support of mitigating measures

11/2011 - 12/2012

1 Jahr 2 Monate

Risk Assessment & Compliance Evaluation, Security Audits

Kunde
major German bank
Projektinhalte
  • Accountable execution of risk analysis and evaluation of adherence to compliance standards for Voice over IP services and products
  • Audits with scope on risk assessment processes i.e. for Voice Recording environment, Audio & Video installations and Mobile Connectivity solutions

04/2011 - 07/2011

4 Monate

Conception & design

Rolle
Project Manager
Kunde
Medium-sized international industrial enterprise
Projektinhalte
  • Conception & design including dimensioning and feasibility study of firewall environment for foreign branch of an industrial enterprise
  • Design, implementation and operation of Juniper SSG firewall incl. web filter and antivirus

10/2010 - 05/2011

8 Monate

Wide Area Network design and implementation

Rolle
Subject Matter Expert
Kunde
Medium-sized international industrial enterprise
Projektinhalte
  • Wide Area Network design and implementation of enterprise branches to headquarter
  • Carrier coordination and Escalation Management
  • Integration & optimization of availability and performance monitoring

02/2009 - 07/2009

6 Monate

Technical project management

Rolle
Technical Project Manager
Kunde
major enterprise in food industry
Projektinhalte
  • Technical project management for migration and centralization of a running Internet proxy service for 20,000 users for an international major enterprise in the food industry
  • Optimization of proxy policies and web filter to increase service performance and safeguarding of security policies
  • Resource management of Bluecoat proxy platform for safeguarding of availability and efficiency of proxy service

08/2007 - 11/2007

4 Monate

Reverse Proxy and Mail web access implementation

Rolle
Consultant
Kunde
International automotive supplier
Projektinhalte
  • Reverse Proxy and Mail web access implementation
  • Providing development and execution support during integration of a Microsoft ISA Server and Outlook Web Access Frontend to deliver a secure webmail solution
  • 3rd level support of Outlook Web Access frontend

12/2006 - 04/2007

5 Monate

Design, implementation and roll out

Rolle
VPN Rollout Sub Project Manager
Kunde
International automotive supplier
Projektinhalte
  • Design, implementation and roll out of Cisco VPN platform and Cisco VPN RAS clients in context of performance optimization

Kompetenzen

Produkte / Standards / Erfahrungen

Cyber Security & Risk Management Professional

Insightful, results-driven and pragmatic IT Security professional with 15+ years of experience in Network & Information Security, Cyber Security, Risk Assessments and Compliance Management. International and intercultural project management competence. Valued mediator between stakeholders of different business, operation and control function areas with strong security background. Holistic awareness on business vs. regulatory / security needs from technical and management perspectives.

Core Qualifications & Credentials

  • Network Security, Cyber Security & Cloud Security
  • Vulnerability & Risk Assessments
  • Risk & Compliance Management
  • Security Incident & Security Problem Management
  • ISO2700x, COBIT, ITIL frameworks and Best Practices
  • Multi-national and intercultural collaboration and project management competence

Aus- und Weiterbildung

03/2016 - 03/2016

1 Monat

Certifified Information Systems Auditor (CISA)

Abschluss
Certifified Information Systems Auditor (CISA)
Institution, Ort
ISACA

02/2014 - 02/2014

1 Monat

Certified Information Systems Security Professional (CISSP)

Abschluss
Certified Information Systems Security Professional (CISSP)
Institution, Ort
ISC²

10/1999 - 09/2002

3 Jahre

Wirtschaftsinformatik

Abschluss
Diplom-Wirtschaftsinformatiker (DH)
Institution, Ort
DHBW Mannheim

Ausbildungshistorie

  • Dipl.-Wirt.-Inf. (DH)
  • Certified Information Systems Security Professional (CISSP)
    • Certified Information Systems Auditor (CISA)

    ×
    ×