BSI IT-Grundschutz, BSI C5, NIS2, DORA, ISO 27001, NIST CTF Cloud & Container Security, IaC, CI/CD (Aqua Security) OT Security (Nozomi) SOC
Aktualisiert am 06.06.2024
Profil
Mitarbeiter eines Dienstleisters
Remote-Arbeit
Verfügbar ab: 01.06.2024
Verfügbar zu: 100%
davon vor Ort: 50%
Skill-Profil eines fest angestellten Mitarbeiters des Dienstleisters

Einsatzorte

Einsatzorte

Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

8 Monate
2023-10 - 2024-05

Sicherheitskonzept für Softwareprodukt

Consultant Informationssicherheit Kubernetes Bare Metal VMware ...
Consultant Informationssicherheit
As part of the development of a special software system in the field of lawful interception, a security concept was developed with requirements from the BSI basic protection catalogue. The special feature was the system architecture of the software, which was built entirely on bare metal Kubernetes and still had to fulfil the security requirements of a high protection requirement.
Kubernetes Bare Metal VMware Cillium EE Security Konzepte DevSecOps
1 Jahr 11 Monate
2022-01 - 2023-11

OT Security Monitoring Rollout

OT Security Consultant
OT Security Consultant

Responsibilities: Evaluation of different passive OT Security Monitoring solution based on a pre-defined requirements catalog, including security features and detection capabilites, OT protocol support, physical requirmenents. Conducting different Proof-of-values in different production sites. Creating a decision-making basis for an international rollout of an OT security solution for top-management.

German car manufacturer
5 Monate
2023-05 - 2023-09

OT Asset Discovery and Security Modernization

OT Security Consultant
OT Security Consultant

Implementation of an OT asset discovery solution including vulnerability management to detect devices in production and to analyze their communication relationships. Based on this: Implementation of a network segmentation including network access control and firewalling concept for 2 customer sites. Implementation of vulnerability management and transfer of the entire project into a managed service.

Electronic device manufacturer
3 Jahre 1 Monat
2020-01 - 2023-01

ISMS implementation

Team Lead Information Security
Team Lead Information Security

Responsibilities: Implementation of an ISMS based on BSI IT-Grundschutz and specific German law enforcment requirements for a large German Police IT-system. This included all phases of the BSI-200 methodology, which also included 

  • Risk analysis
  • Classification of the IT environment
  • Threat analysis
  • Risk classification
  • Documentation of implemented technical measures ( Overall over 1200 requirements were identified and implemented to technical measures.)

Verinice
Public Sector
4 Monate
2019-06 - 2019-09

Elasticsearch SIEM PoC and Installation

IT Security Consultant
IT Security Consultant
Planning and implementation of an Elasticsearch based SIEM platform for Private Cloud environment with extended security requirements due to external and internal regulations.
KRITIS
Deutschland
1 Monat
2019-05 - 2019-05

Container Security Solution Planning and Rollout

Planning and implementation of a Container Security solution giving the customer detailed information about the current status of secure images during build, ship and run phase of containers in a Kubernetes based enviroment.

Conducting a two day Training with different stakeholders of the customer
Certification Authority
Schweiz
2 Monate
2019-04 - 2019-05

Implementation of a Container Security Solution

IT Security Consultant
IT Security Consultant

 Planning and implementation of a Container Security solution giving the customer detailed information about the current status of secure images during build, ship and run phase of containers in a Kubernetes based enviroment.

Conducting a three day Training with different stakeholders of the customer
Enterprise IT
Deutschland

Aus- und Weiterbildung

Aus- und Weiterbildung

3 Jahre 7 Monate
2009-04 - 2012-10

Informatik Studium

Master of Science, Hochschule Darmstadt
Master of Science
Hochschule Darmstadt
IT Security

Position

Position

Senior Consultant für OT Security, Informationssicherheit, SOC und SIEM Beratung, CISO as a Service

Branchen

Branchen

Public

Health Care

Automotive

Banking

Insurance

Einsatzorte

Einsatzorte

Deutschland, Schweiz, Österreich
möglich

Projekte

Projekte

8 Monate
2023-10 - 2024-05

Sicherheitskonzept für Softwareprodukt

Consultant Informationssicherheit Kubernetes Bare Metal VMware ...
Consultant Informationssicherheit
As part of the development of a special software system in the field of lawful interception, a security concept was developed with requirements from the BSI basic protection catalogue. The special feature was the system architecture of the software, which was built entirely on bare metal Kubernetes and still had to fulfil the security requirements of a high protection requirement.
Kubernetes Bare Metal VMware Cillium EE Security Konzepte DevSecOps
1 Jahr 11 Monate
2022-01 - 2023-11

OT Security Monitoring Rollout

OT Security Consultant
OT Security Consultant

Responsibilities: Evaluation of different passive OT Security Monitoring solution based on a pre-defined requirements catalog, including security features and detection capabilites, OT protocol support, physical requirmenents. Conducting different Proof-of-values in different production sites. Creating a decision-making basis for an international rollout of an OT security solution for top-management.

German car manufacturer
5 Monate
2023-05 - 2023-09

OT Asset Discovery and Security Modernization

OT Security Consultant
OT Security Consultant

Implementation of an OT asset discovery solution including vulnerability management to detect devices in production and to analyze their communication relationships. Based on this: Implementation of a network segmentation including network access control and firewalling concept for 2 customer sites. Implementation of vulnerability management and transfer of the entire project into a managed service.

Electronic device manufacturer
3 Jahre 1 Monat
2020-01 - 2023-01

ISMS implementation

Team Lead Information Security
Team Lead Information Security

Responsibilities: Implementation of an ISMS based on BSI IT-Grundschutz and specific German law enforcment requirements for a large German Police IT-system. This included all phases of the BSI-200 methodology, which also included 

  • Risk analysis
  • Classification of the IT environment
  • Threat analysis
  • Risk classification
  • Documentation of implemented technical measures ( Overall over 1200 requirements were identified and implemented to technical measures.)

Verinice
Public Sector
4 Monate
2019-06 - 2019-09

Elasticsearch SIEM PoC and Installation

IT Security Consultant
IT Security Consultant
Planning and implementation of an Elasticsearch based SIEM platform for Private Cloud environment with extended security requirements due to external and internal regulations.
KRITIS
Deutschland
1 Monat
2019-05 - 2019-05

Container Security Solution Planning and Rollout

Planning and implementation of a Container Security solution giving the customer detailed information about the current status of secure images during build, ship and run phase of containers in a Kubernetes based enviroment.

Conducting a two day Training with different stakeholders of the customer
Certification Authority
Schweiz
2 Monate
2019-04 - 2019-05

Implementation of a Container Security Solution

IT Security Consultant
IT Security Consultant

 Planning and implementation of a Container Security solution giving the customer detailed information about the current status of secure images during build, ship and run phase of containers in a Kubernetes based enviroment.

Conducting a three day Training with different stakeholders of the customer
Enterprise IT
Deutschland

Aus- und Weiterbildung

Aus- und Weiterbildung

3 Jahre 7 Monate
2009-04 - 2012-10

Informatik Studium

Master of Science, Hochschule Darmstadt
Master of Science
Hochschule Darmstadt
IT Security

Position

Position

Senior Consultant für OT Security, Informationssicherheit, SOC und SIEM Beratung, CISO as a Service

Branchen

Branchen

Public

Health Care

Automotive

Banking

Insurance

Vertrauen Sie auf GULP

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das GULP Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.