Zurich, Switzerland
Summary I've got profound experiences gained as a information and cyber security consultant with a track record of incident prevention & detection excellence, responsive market leadership and new business and product development in the SaaS (security as a service) market. Product Ownership - CERT/CSIRT services for organisations with critical infrastructures • Analysis and structured collation of client requirements and establishment of distribution channels within the Swiss financial sector and energy sector. Preparation of an acquisition strategy for Cybercrime Security Services • Over 10 years of product management experience from conception to launch, managing product solutions with multiple cross-functional stakeholders • Design and implementation of market entry strategies (SWITCH-CERT Services for Banks, Energy) and experience in risk and compliance frameworks (FINMA Guidance, IKT Minimalstandard, NIST CSF, DORA) • Development of new service modules including brochures and sales presentations for cyber security technologies that are constantly adjusted in line with the current threat landscape Computer emergency response activities (detection, incident and response) • Identifying threats specific to Switzerland from our own monitoring and malware analysis • Threat Intelligence processed and enhanced in tactical, operational and strategic terms • Immediate assessment and evaluation of all kinds of cyber security incidents Partner management – success through collaboration • Identification of strategic partnerships for shared provision of CERT services aimed at the Swiss financial market (main ISP provider and banking information technology provider in Switzerland) • Pioneering role and extensive experience in managing and moderating trusted communities at the highest level of trust Leading national centre of expertise for threat intelligence, detection and incident response • Correlating and supplementing our own threat intelligence with information from a wide range of national and international sources in our global network (Netflow, Sinkholing and Threat Hunting. • Immediate evaluation and assessment of all kinds of cyber security incidents according cyber kill chain. • Observing a domain abuse process with phishing and malware distribution - *.ch TLD. • Development of Ransomware Defense in Depht Workshop and successful commercialisation
Michael is engaged as a senior information & cyber security consultant and product owner and works for Switch-CERT. The Switch Computer Emergency Response Team (CERT) is a leading and independent centre of excellence for information security. Nowadays, as a multi-sector CERT, the team provides CERT services for universities, the domain registry, banks, industry, logistics and the energy sector. Michael got profound experiences gained as an information and cyber security consultant with a track record of consultative excellence, responsive market leadership and new business and product development in the SaaS (security as a service) market. Other areas of expertise include incident response, threat intelligence & detection, highly trusted community building, security consulting, product development and leadership @ Switch. Switch-CERT supports Swiss organisation with critical infrastructures in the fight against cybercrime and has extensive experience on the front line.
International certification by the Swiss Association for Quality SAQ for members of Swiss boards of directors. As a current or prospective board member, you will systematically develop the skills that will enable you to carry out this demanding activity. In particular, you will learn the tools for efficient financial and strategic management. Identifying and closing gaps in your knowledge will help you to recognise and minimise any liability risks. In addition to teaching you the legal requirements, this course also provides you with an overview of common practices in business.
• Security architecture, design, concepts, product concepts • Risk assessments, security analysis and threat modeling • Assessments and updates of ISMS and compliance requirements • Ansering of different WTO GATT RFP's (focus - network security). • Digital certificate services, secure collaboration, digital signature • Single Sign On, Identity and Access Management, Remote Access Infrastructure • Project management, pre-sales consulting, sales and contracting
- Security Architecture - Authorization and Access Control for Global Client Facing Applications - Security Engineerig - Remote Access Control Solutions - Global Access Control - Location Aware Access Control & Data Access Control Solutions