Top Angebote Seminare mit bereits angemeldeten Teilnehmer bei it-schulungen.com.

#ITPFL-2478

Senior Security Consultant/Engineer

A.K.
Registrieren Sie sich jetzt kostenlos
um Ihre Anfrage versenden zu
können!

Oder loggen Sie sich ein!
Anfrage senden

Freelancerdetails
akademischer Grad keine Angabe
Verfügbar ab aktuell verfügbar
Verfügbarkeit vor Ort: Keine Angabe
Interesse an Festanstellung Nein
Bietet Schulungsleistungen an Nein

Vorstellung

Einsatzort

 

Regionen & Länder: D0, D1, D2, D3, D4, D5, D6, D7, D8, D9,

 

 

 

Österreich, Schweiz, Einsatzort unbestimmt

 

 

Städte:

Heidelberg 50 km

 

 

 

Frankfurt am Main 50 km

 

 

 

Position

 

 • Senior Pentester

 

 

 

• Senior Security Engineer

 

• Senior Security Architect

 

 

Profil

Projekterfahrung:

06/2016 - heute

 

2 Jahre 2 Monate

 

 

Senior Consultant and Projects Management

 

 

Rolle: Senior Consultant

 

Einsatzort: Eschborn

 

 

Projektinhalte:

 

 

 

 

Migration of the local infrastructure to Office365

 

 

 

• Assessment of the current infrastructure, planning of the

 

migration, rollout, project management.

 

• Technology affected: Linux, pfSense, Windows Server

 

2012R2(Hyper-V, AD, NPS(VPN+WiFi)), Client OS – MacOS(+iOS),

 

 

Kerio Connect/Controll, Office365.

Migration of the local telephony to Skype for Business.

 

 

 

• Assessment of the current infrastructure, planning of the

 

migration, rollout, project management.

 

• Technology affected: Linux, pfSense, Windows Server

 

2012R2(Hyper-V, AD, MSSQL Server 2014, Skype for Business

 

 

2015), Asterisk, SIP trunk, QoS, Client OS – MacOS(+iOS),

 

 

 

 

Office365.

 

 

 

 

Projects Management for Deutsche Bank AG, Eschborn

 

 

 

(Banking)

 

Position: CISO SPOC

 

Duties:

 

• Delivery APT compliancy and concurrently management of the

 

testing process from start to finish for an assigned number of

 

production and development applications.

 

• All communication to ITAO’s in regards to testing

 

and requirements.

 

• Management the entire testing workflow through completion and

 

compliancy of the asset. (Test request, scope of test, SOW,

 

quotes, testing environment, accounts/access, reports, findings

 

review, compliancy)

 

• Walking/guidance of ITAO’s through the entire testing process

 

and provides all assistance required for the testing to take

 

place, including training of APT tracker

 

• Allocation of penetration tests to Deutsche Bank approved

 

penetration test vendors.

 

• Approval of the scope and the estimated effort required for a

 

penetration test.

 

• Reviewing and monitoring the quality of penetration tests

 

and reports.

 

• Approval of third party penetration test reports and uploading

 

these test results and finding to the APT Tracking Tool

 

• Management of the retest process with the APT vendor

 

Kenntnisse: Linux, pfSense, Windows Server, iOS, MacOS, Office365, Asterisk, SIP

 

trunk, QoS

 

 

 

 

05/2010 - 05/2016

 

6 Jahre 1 Monat

 

 

Security consultant, Senior Systems Engineer and Head

 

of Admin Department

 

 

Rolle: Security consultant, Senior Systems Engineer, Head of Admin Dep.

 

Kunde: Ameria GmbH (IT Services)

 

Einsatzort: Heidelberg

 

 

Projektinhalte:

 

 

• Design and implementation of the environment for the customer

 

projects based on hybrid environment with Linux, Windows, and

 

virtualization based on Hyper-V and VMware

 

• Product development – hardware part, Procurement,

 

Infrastructure design, development and deployment

 

• Rollout management, establishing support process and tools

 

• Engineering and Support Teams management

 

• Project management

 

• Security Consulting: Security risks assessment and management,

 

 

Vulnerability Assessment and Scanning, Security Policy

 

Development and enforcement, Security Compliance, Security

 

assessment of software, infrastructure and product

 

 

• TÜV Compliance (EU, USA, CANADA)

• CE Compliance

Project name: “COWORKING”, Software Development company.

 

 

 

• Goal: Buildup redundant network and wireless infrastructure for

 

500+ workers and establish connection(IPSec) with branches (7)

 

 

of the company which located over the EU and USA.

 

 

 

• Role: Solution Architecture and realization and Project Management

 

• Hardware: Mikrotik(Router/Firewall), Lancom(Enterprise

 

Wireless)

 

 

• Technologies, protocols and standards: IPsec, OSPF, NAT, PAT,

Firewall, QoS, AD, NPS, WPA2 Enterprise, VLAN.

 

 

Project name: “IS”, Health Insurance company.

 

• Goal: Buildup complete Server, Storage and Network infrastructure

 

 

for the main office and brunches(15), migrate old data to new

 

 

 

infrastructure.

 

• Role: Solution Architecture, realization of the network and storage

 

part, Project management.

 

• Hardware: Cisco, Dell, Synology. Software: Microsoft.

 

• Technologies, protocols and standards: IPsec, OSPF, PBR, NAT,

 

 

PAT, Firewall, QoS, VALN, AD, Storage Cluster, HA, Hyper-V,

Windows Server 2012 R2, Terminal Server(250+ users),

 

 

 

Connection

 

Broker.

 

Project name: “Virtual Interactive Promoter”

 

• Design the hardware and software solution for management,

 

remote control and administration of the product based on

 

Windows Embedded 8.1 and Intel VPro technology.

 

• Security code testing, penetration testing, review, reporting

 

and management

 

• Hardware prototyping and design, Solidworks

 

• Communication with the manufacturing factory, approval of the

 

drawing data for manufacturing. Team work with external product

 

designer

 

• Requirements for the FAT (Factory Acceptance Test)

 

• Product documentation

 

• TÜV Compliance (EU, USA, CANADA)

 

• Preparation and testing of the hardware in accordance to the

 

 

relevant norms for the necessary world markets

 

 

• Communication with TÜV laboratory during certification process,

 

resolving the problems they found

 

Project name: “PMI AppStore”, Philip Morris International

 

• Design and Implementation of the redundant Server

 

infrastructure for maintaining of the product(AppStore) based

 

on windows solutions, LB from F5 and CDN Akamai.

 

• Information Security Compliance

 

• Security compliance with IS requirements of PMI

 

• Security code testing (OWASP), review, reporting and

 

management.

 

 

• Information Security incident management

 

 

 

• Vulnerability assessment and management

 

• Contact person for security audits from the client side

 

Project name: “Travista”, development of www.travista.de

 

Project Management

 

Kenntnisse: Linux, Windows, Hyper-V, VMware, Mikrotik, Lancom, IPsec, OSPF, NAT,

 

PAT, Firewall, QoS, AD, NPS, WPA2 Enterprise, VLAN, Dell, Cisco, Synology

 

 

 

 

05/2009 - 05/2010

 

1 Jahr 1 Monat

 

 

System and network administrator(DevOPS)

 

 

Rolle: System and network administrator(DevOPS)

 

Kunde: Ameria GmbH (IT Services)

 

Einsatzort: Heidelberg

 

 

Projektinhalte:

 

 

• Planning, configuration, deployment and maintenance production

 

and dev servers for the customer applications based on PHP,

 

Java (Tomcat/Jboss), Python, Ruby and .NET

 

• Planning, deployment and maintenance of backup procedures for

 

production systems

 

• Monitoring and support 24/7 servers and client’s services

 

• Hardening of the Linux/Windows infrastructure

 

• Support of the development teams

 

• Hardening of the local infrastructure

 

Kenntnisse: PHP, Java, Python, Ruby, .NET, Linux, Windows

 

 

 

 

05/2007 - 04/2009

 

2 Jahre

 

 

System and Network administrator and Head of Support

 

Department

 

 

Rolle: System and Network administrator, Head of Support Department

 

Kunde: ISP Ardinvest (Internet Service Provider)

 

Einsatzort: Simferopol, Crimea/Ukraine

 

 

Projektinhalte:

 

 

• Network and Linux/FreeBSD Servers administration

 

• Support/troubleshooting, monitoring of network performance and

 

services 24/7

 

• Management of Customer Support Department (25000+ customers).

 

• Direct business client support

 

Kenntnisse: Linux, FreeBSD

 

 

 

 

06/2006 - 04/2007

 

11 Monate

 

 

System and Network administrator

 

 

Rolle: System and Network administrator

 

Kunde: ISP REISE (Internet Service Provider)

 

Einsatzort: Simferopol, Crimea/Ukraine

 

 

Projektinhalte:

 

 

• Network and Linux/FreeBSD Servers administration

 

• Support/troubleshooting, monitoring of network performance and

 

services 24/7.

 

• Customer Support (1500+ customers)

 

Kenntnisse: Linux, FreeBSD

 

 

 

 

09/2003 - 05/2006

 

2 Jahre 9 Monate

 

 

System and Network administrator

 

 

Rolle: System and Network administrator

 

Kunde: Tavrida National V.I. Vernadsky University (Educational Services)

 

Einsatzort: Simferopol, Crimea/Ukraine

 

 

Projektinhalte:

 

 

• Planning and implementation of the Local Area Network at

 

Student City

 

• Network and Linux Servers administration.

 

• Support/troubleshooting, monitoring of network performance and

 

services 24/7

 

• Students Support

 

Kenntnisse: Linux

 

 

 

 

Branchenerfahrung:

 

 

• IT Services

 

• Internet Service Provider

 

• Educational Institution

 

• Banking

 

• etc.

 

 

 

 

Kompetenzen

 

 

 

Apache

 

Atlassian

 

JIRA/Confluence

 

AudioCodes SBC

 

AWS EC2 Planning, Migration, and Management

 

Azure

 

BGP

 

Bind

 

Cisco UC

 

Clockwork

 

COBIT

 

Courier

 

DHCP

 

DNS

 

Dovecot

 

EIGRP

 

Fail2Ban

 

FreeRADIUS

 

GLBP

 

Graylog2

 

HAProxy

 

HSRP

 

Hyper-v

 

IGMP

 

Intel vPro

 

IPFW

 

IProute2

 

IPSec

 

Ipset

 

Iptables

 

ISC-DHCP

 

ISO27000 requirements, risk assessment, risk

 

management, controls, auditing

 

Jboss

 

Jenkins

 

Linux/Unix Debian/Ubuntu, RHEL/CentOS, FreeBSD

 

Logstash

 

mdadm

 

Microsoft Exchange 2003-2013

 

Microsoft Lync 2010-2013

 

Monit

 

MPD

 

MRTG

 

MSSQL Server 2008,2012,2014

 

MySQL

 

Nessus

 

Networking Cisco, Juniper, HP, Dell, D-link, Mikrotik,

 

Huawei, Lancom, UBNT

 

Nginx

 

NIST 800

 

Office 365 Planning, Migration, and Management

 

OpenVAS

 

OpenVPN

 

OpenVPN

 

OSI model

 

OSPF

 

OWASP

 

Packet Filter

 

PBR

 

PHP-FPM/fcgi

 

Postfix

 

PostgreSQL

 

PPTP

 

PRTG

 

PSTN Gateway Ferarri, CISCO, AudioCodes SBC, Asterisk

 

QoS

 

Redmine

 

Retina

 

RIP

 

SFTP/FTP/SMB servers

 

SIP-trunk

 

Skype for Business

 

Snmpd

 

SNORT

 

Squid

 

Subversion

 

Suricata

 

TCP/IP stack

 

Thin

 

Tomcat

 

Tripware

 

Tripwire

 

VLAN

 

VMware

 

VoIP

 

VVRP

 

WAF Akamai

 

WEBrick

 

Windows (xp, 7, 8, 8.1, 10) for Workstations und

 

Embedded

 

Windows Server 2000-2016 (AD, DNS, DHCP, PXE, IS, SCCM,

 

SCOM, SCDPM, Terminal Server)

 

Zabbix

 

ZAP

 

• Long-term experience within enterprise IT Infrastructure

 

design, and implementation projects

 

• Experience with migration of the hybrid infrastructures to

 

the virtual environment (Hyper-v, VMware) and cloud (Office

 

365, Azure, AWS EC2), planning, project management and

 

implementation.

 

• Planning and Implementation Enterprise VoIP solutions based

 

on Microsoft UC solutions (Lync, Skype for Business), Cisco

 

UC, AudioCodes SBC.

 

• Experience with migration of analog Telephony to Enterprise

 

VoIP solutions, project management and implementation.

 

• Enterprise IT Security design, implementation and

 

management.

 

Personal

 

• Self-motivated fast learner with strong communication and

 

team leading skills

 

• Driving to utilize professional skills and abilities in

 

Information Security, Network and Infrastructure

 

Architecture and Consulting within the company and achieve

 

professional growth while being resourceful, innovative and

 

flexible

 

• Willing to work as a key player in challenging and creative

 

environment to fulfil mutual benefits

 

 

 

 

Sprachkenntnisse English business fluent

 

 

 

German intermediate, B1

 

Russian mother tongue

 

Ukrainian mother tongue

 

 

 

 

Schwerpunkte

 

 

 

Focus

 

• Project management

 

• Security Consulting, Penetration Testing

 

• Security risks assessment and management

 

• Design and implementation security controls

 

• IT Security audit and monitoring

 

• Design and implementation of enterprise IT Infrastructures

 

• Migration of IT Infrastructure, planning, rollout

 

Sprachkenntnisse
Deutsch
Fortgeschritten
Englisch
Profi
Russisch
Profi
Kenntnisse & Fähigkeiten
Access
Grundkentnisse
Amazon Web Services
Grundkentnisse
ASP.NET
Grundkentnisse
Asterisk
Grundkentnisse
C
Grundkentnisse
C++
Grundkentnisse
CISCO
Grundkentnisse
Cloud Computing
Grundkentnisse
Cloud-Entwicklung
Grundkentnisse
COBIT
Grundkentnisse
DevOps
Grundkentnisse
EC2
Grundkentnisse
Exchange 2013
Grundkentnisse
Exchange 2016
Grundkentnisse
Exchange Server 2003
Grundkentnisse
FAST Search
Grundkentnisse
FreeBSD
Grundkentnisse
FreeRADIUS
Grundkentnisse
git
Grundkentnisse
HP-UX
Grundkentnisse
Hyper-V
Grundkentnisse
Hyperion Planning
Grundkentnisse
IOS
Grundkentnisse
ISO-27000-Reihe
Grundkentnisse
IT-Service & Support & Rollout
Grundkentnisse
Java
Grundkentnisse
JBoss
Grundkentnisse
Juniper
Grundkentnisse
Linux
Grundkentnisse
LINUX DEBIAN
Grundkentnisse
Lync 2013
Grundkentnisse
Lync Server 2010
Grundkentnisse
Mac OS
Grundkentnisse
Microsoft Azure
Grundkentnisse
MySQL
Grundkentnisse
Nginx
Grundkentnisse
Office 365
Grundkentnisse
Personalentwicklung
Grundkentnisse
PHP
Grundkentnisse
PostgreSQL
Grundkentnisse
Python
Grundkentnisse
Ruby
Grundkentnisse
Ruby on Rails
Grundkentnisse
Seminare
Grundkentnisse
SOLIDWORKS
Grundkentnisse
Solr
Grundkentnisse
SQL Azure
Grundkentnisse
SQL Server
Grundkentnisse
STORAGE
Grundkentnisse
Subversion
Grundkentnisse
Synapse
Grundkentnisse
System Center 2012 Configuration Manager (SCCM2012)
Grundkentnisse
System Center Configuration Manager 2007- SCCM
Grundkentnisse
System Center Data Protection Manager 2007 - SCDPM
Grundkentnisse
System Center Operations Manager 2007 - SCOM
Grundkentnisse
Tomcat
Grundkentnisse
Ubuntu
Grundkentnisse
UNIX
Grundkentnisse
VoIP
Grundkentnisse
Windows Server 2012
Grundkentnisse
Word 2010
Grundkentnisse
Zabbix
Grundkentnisse