Berlin, Berlin, Germany
I am contributing to make Bewatec ConnectedCare an even more secure solution. Currently, I work very technically on IT security, e.g. hardening cloud systems, conducting internal pentests. With a (bi-national) PhD in computer science and 10+ years working experience in research, industry und International organisations (IARC/WHO in Lyon, France), I have profound knowledge in the field of secure distributed systems. All experience were in multicultural and mostly trilingual (de, en, fr) environments.
Primary contact for IT security, focus on technical security, e.g.: - AWS cloud security (via terraform / python) - shift left security incl. secure development trainings and related tools (SAST, SCA etc.) - conducting internal pentest & organising external ones - several security scanners (vulnerability, cloud, code, etc.) and threat mitigation - phishing campaign simulation, incident process design, security monitoring, training etc. - but also product level workflow analyses Other tasks include organization security tasks, e.g. - defining security related policies & guidelines - interact with 3rd parties & other externals - data protection analyses and define TOMs and other related documents
- Security and risk analyses of architecture, workflows and technologies - Security-relevant certifications & audits (e.g. eIDAS substantial evaluation for part 2/3, ISMS audits) - Preparation/supervision of pentests - Introduction of technical security tools (e.g. vulnerability scanner) - Organization of security training/workshops
- Definition & securing the architecture of the software infrastructure & deployments - Interaction with teams (e.g. product, dev, marketing) to smoothly integrate cool features - Helping to make our employees liking to get up in the morning - Hands-on where needed, no fear of making coffee for you
Responsible for research project of a data traceability platform (DTP) in distributed environments: - ICT research to determine solution that best fits to the project objectives - Architectural R&D solution design - Development (from scratch) of a Blockchain platform (using a federation consensus) - Implementation and test (Gitlab CI) - Performance assessment to verify achievement of project objectives - Steady contact with DevOps for rapid deployment at industrial partners - Conceptualisation of distributed secure and privacy-preserving systems - Planification of research projects - Coordination of partners (worldwide) & student groups
With a role as a coordinator for the digital research infrastructure at the Dietary Exposure Assessment (DEX) group, the major activities are the following: - Bringing in IT expertise into the interdisciplinary and multicultural team involved in international research projects - Conceptualization of distributed research infrastructures - Planification and coordination of joint international research projects - Fostering international IT cooperations and coordination of co-development activities - Evaluation of IT systems and technologies
- Coordination of European project activities (NATHCARE, SPHERA) for the participation of INSA - Planification of research project with the objective to increase distributed system reliability with an approach of complex systems modeling by means of game theory