01/2023
Business
Function
|
–
|
now
Automotive
|
Interim IT Manager, TISAX Implementation Manager
- Interim IT Manager
- TISAX Implementation Manager
- Risk Manager
- Information Security
- GDPR
- Prototype Security
- S4Hana Cloud Administrator
- S4Hana Cloud Security Expert
- Industry 4.0
- O365 Azure Administration
|
08/2022
Business
Function
|
–
|
12/2022
|
Manager
- Risk Management
- Business Plan 2023
- Trainings
- ISMS 27001
|
|
05/2022
Business
Function
|
–
|
07/2022
Bank
|
Information Security Manager
- Update of the specifications based on common standards (ISO27001, MaRisk, BAIT,
etc.)
- Internal audits for ISO27001, SWIFT, etc.
- Information security supplier management
- Support audits against the bank
- Risk management
- Reporting to the high management
- Second line of defence
- Englisch
|
01/2022
Business
Function
|
–
|
04/2022
Fin Tech Bank
|
ISMS Consultant
- Prepare evidence for an audit
- Improvement of ISMS related to ISO 27001
- Implementation of processes and SOP
- English
|
08/2021
Business
Function
|
–
|
10/2021
Tele-communication and KRITIS companies
|
ISMS Manager
- ISMS implementation Manager for ISO27001 and TISAX
- Coordination of security projects
- Consulting to implement new security teams
- Internal Auditor
- KRITIS
- Data Privacy officer for GDPR
- Risk Manager
|
08/2020
Business
Function
|
–
|
06/2021
Tele-communication and datacenter
|
ISMS Manager
- ISMS Manager for ISO27001
- Coordination of security projects
- Consulting to implement new security teams
- Internal Auditor
- KRITIS
- Risk Manager
|
04/2019
Business
Function
|
–
|
06/2020
FinTech
|
Senior Security Consultant
- Implementation Manager or ISMS ISO27001
- Coordination of security projects
- Consulting to implement new security teams
- Internal Auditor for ISO27001 in legal entities outside
Germany
- KRITIS
- Documentation in English
|
10/2018
Business
Function
|
–
|
03/2019
medical devices manufacturer
|
Senior Security Consultant and Data Privacy Officer
- Implementation of Data Privacy (EU-GDPR)
- Implementation of information security management system
- Risk analyses
- Training from employee in German and English
-
|
03/2018
Business
Function
|
–
|
09/2018
TV Station
|
Senior Security Consultant
- Technical evaluation of the IT infrastructure, identification of IT risks with the
business manager
- Structured and systematic improvement of information security
- Planning and coordination of the implementation of prevention and improvement
suggestions including internal training measures
- Integrate information security into business processes
- Measurement and analysis KPI / ISMS processes
- Implementation of the General Data Protection Regulation (EU
GDPR)
|
|
|
|
|
|
|
|
|
01/2017
|
–
|
12/2017
|
Security Consultant
- IT Security provider management
- Risk based implementation IT security Minimum Requirements for 3rd party
provider management
- Update IT-security minimum standards
- Implement the requirements of German law: MaRisk, KWG, GwG and
more
- Expansion IT Security requirement around GDPR/EU-DSGVO
- Stakeholder management
|
Business
|
|
Bank
|
Function
|
|
Information Security Consultant
|
08/2016
|
–
|
12/2016
|
Security Consultant
- Creation processes for ISMS ISO 2700X
- Creation of guidelines
- Stakeholder management
- Implementation of ISMS
- Provider management
- Risk management, -mitigation
|
Business
|
|
Energy company
|
Function
|
|
Information Security Consultant
|
|
|
|
|
05/2016
|
–
|
07/2016
|
Implementation Manager
- Creation of documents for an ISMS
according to ISO 27001: 2013
- Stakeholder Management
- Creation of policies, guidelines, processes
- Control of the production of the documents
- Awareness measures
- Implementation of the ISMS
- Start PDCA actions
- Initiation of the certification
|
Business
|
|
SAP Systemhaus
|
Function
|
|
Implementation Manager
|
|
|
|
|
10/2015
|
–
|
02/2016
|
Information Security Consultant
|
Business
|
|
Mobile Payment
|
- Preparation of documents for information security,
- introduction of a risk analysis,
- introduction of a protection needs analysis,
- training of employees,
|
Function
|
|
Security Consultant
|
|
|
|
Project Security Manager
- Data warehouse security concept:
- Risk analyse.
- Check with company policies.
- Check legal and regulatory requirements.
- Writing concept.
- Security reflection for the global market checks.
- In English, with global contacts.
- Clarification of the measures carried out and the resulting
risks.
- Assessment of risks.
|
04/2015
|
–
|
11/2015
|
Business
|
|
Automotive
|
Function
|
|
Projekt Security Manager
|