Skills: TCP/IP, ATM, Frame Relay.

Skills: BSI - IT-Grundschutz, ISO 17799, Netzwerk, COBIT, ITIL.

Skills: Sicherheit, Kryptografie, Netzwerk, Programmiersprachen.

Review and update of the Target Application Architecture for 2012 on the basis of an architecture reference model, business principles and IT goals. Development of a project implementation plan (high risk milestones, project dependencies) to meet the requirements of the defined target architecture. Elaboration of recommendations and rules to operationalize the roadmap. Final board level presentation. Means: Questionnaires, Focused Interviews, Strategy Workshops with PMs, PMO and technical experts Role: Enterprise Architect

Rightshore project with Capgemini India, responsible for the final delivery of the master data administration and access control part of a custom developed software product based on Microsoft Sharepoint 2007 and MS SQL 2005, functional / non-functional requirements specification, test plan definition, test case specification and execution for the main stream application as well as data migration application (unit test, system test, integration test, UAT), data migration planning, team coordination, status reporting, user training preparation and execution, Role: Domain Manager, Data Migration Lead, (alternate) PM

Rightshore project with Capgemini India, Elaboration of detailed functional (use cases, interfaces, logical data model, user interfaces, information security classification) and non-functional requirements for an analysis application by means of workshops and presentations as well as coordination of off-site Indian team, Role: Business Analyst, alternate PM

Responsible for the evaluation of several web gateway security solutions (Bluecoat Proxy SG, Ironport S350, McAfee SWG, Aladdin eSafe GW, Secure Computing Webwasher, Websense Enterprise) and comparison with the existent internet perimeter infrastructure regarding security controls and implementation costs. Focus areas: network security, identity and access management (incl. SSO, centralized access management), high availability (Cache Load Balancing, Content switching), URL screening, content filtering, SSL scanning, Role: Project Lead

Responsible for designing and supporting the implementation of a MPLS VPN network including Provider Edge and Customer Edge routers (Cisco 7600, 6500, 2800) considering confidentiality, integrity and availability services (QoS), verification of QoS parameters with IxChariot Software from IXIA (Quality assurance), recommending security controls based on best practices (NIST), Role: IT Security expert

Development of a detailed technical guideline to perform a web application security test according to OWASP and ÖNORM 17700 including recommendations on mitigating critical security issues, Role: team member security team

Planning and enforcement of a penetration test on the basis of the guideline “A penetration testing model” published by the german Federal Office for Information Security. Conduction of technical (sniffing, mail spoofing, trojan horses, vulnerability assessment etc.) and social engineering attacks, Role: Tiger Team Member

Evaluation of several endpoint security solutions (e.g. Cisco Security Agent, McAfee Entercept) and development of a deployment strategy for the installation of approximately 3000 Cisco Security Agents, Role: IT-Security expert

Responsible for the implementation (Managed C++, .NET, MySQL) of an integrated, centralized firewall documentation tool (Cisco PIX, Checkpoint FW-1) in order to meet regulatory requirements, Role: Software Developer

Execution of performance tests on network infrastructure components (Checkpoint NGX, Cisco PIX, Phion Netfence) with regards to encryption and VoIP (SIP, SCCP, H.323) followed by a recommendation of performance enhancements

Establishment of a site-to-site VPN with products like Checkpoint FW-1 NG, Checkpoint Edge, Cisco PIX 501 and Sonicwall SOHO-3 and giving recommendations on security controls regarding VPNs