-----
Personal focus on projects with the following areas:
1) Splunk Phantom (Senior Positions/Solutions Architect Professional Services) and Splunk Enterprise (Admin Certification in Progress)
2) SOAR in general (Palo Alto Networks Demisto, Siemplify)
3) Penetration testing (junior level) - teaming with senior penetration testers would be beneficial
4) Incident Response + Digital Forensics, SOC Analyst
5) Security Management/Risk Management
6) Security Architecture Development, ISO27k1 etc.
-----
Experience from various projects in international environments as project lead, team lead and project member with international colleagues in:
- SIEM/Logmanagement + UseCase Development + UseCase Management (ArcSight, Splunk + Use Case Framework)
- Cyber Defense Services - 1st/2nd Level + Incident Handler/Manager
- Transforming CDC Operations Processes and Runbook development (Alarm/Incident Management)
- SOAR - Trusted Advisory Services (PoCs and Project Management) SOAR - Implementation of solutions - Siemplify, Splunk Phantom, Demisto, Resilient
- Metrics and Reporting (KPIs)
- Deception Technology - Implementation and Advisory Services (PoCs and Project Management)
- Intruder Hunting with Deception Technology - Cymmetria MazeRunner
- Inhouse trainer for Splunk Phantom (Basic and Advanced/Power User Training)
Knowledge in
1) SOX
2) PCI DSS
Personal Interests:
1) Security Transformation, Security Architecture, CDC Management, Risk Management, Security Strategy, Incident Management
2) Penetration Testing, CDC Technology, IT Forensics
Languages:
German - mother tongue
English - fluent (spoken and written)
Degree:
B.Eng - Engineering & Management
M.Eng - Electrical Engineering and Information Technology
Certifications:
GCIH - GIAC Certified Incident Handler
Splunk Power User
ICO ISMS Security Officer according to ISO/IEC 27001:2013
Programming and Scripting Languages:
C/C++
C#, .NET
VBS/VBA
Python