You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Freelancer profile translated to English.
Back to original language

About Jörg

I am a freelance information security consultant with over 30 years of IT experience. My focus is on implementing and optimizing ISMS according to ISO/IEC 27001, preparing for audits, and GRC topics. As a long-standing IT executive, I combine strategic expertise with technical depth, always pragmatically, solution-oriented, and on equal footing with my clients.
Service Portfolio
ISMS & Compliance
- Implementation and operation of ISMS according to ISO/IEC 27001
- Preparation for internal and external audits (incl. gap analyses)
- Support in complying with TISAX, NIS2, and other requirements
IT Security Consulting
- Security concepts for SMEs (e.g., DIN SPEC 27076)
- Risk analyses, determination of protection needs, action planning
- Penetration test support & vulnerability management
Business Continuity & Crisis Management
- Implementation of BCM systems according to ISO 22301
- Planning and execution of emergency drills
- Incident response & forensic coordination
Governance & Strategy
- Development of security-relevant GRC structures
- Consulting on secure digital transformation & cloud security
- License, contract & software asset management
Awareness & Policies
- Training and employee awareness
- Development of security policies & guidelines
3. Professional Focus Areas
- ISMS (ISO/IEC 27001, BSI Basic Protection)
- IT Governance & GRC (incl. COBIT)
- Strategic IT Management & IT Architecture
- Project management of security-relevant IT projects
- Cloud Security & Microsoft 365 Security
- BCM & IT emergency planning
- Incident Response & Forensic Coordination
- Audit preparation & compliance management
4. Selected Project Experiences
- Establishment of an ISO/IEC 27001 compliant ISMS for a retail company
- Project management of data center outsourcing & modernization
- Interim IT management for operational stabilization
- Deputy head of the corporate crisis team
- Coordination and analysis of a real cyberattack
  • German

    Native or bilingual

Remote only
Primarily works remotely

Experience

  • ResKontIS, RESilienz - KONTinuität - InformationsSicherheit
    Self-employed Information Security Manager
    CONSULTING AND AUDITS
    August 2025 - Today (1 year)
    Rotenburg an der Fulda, Germany
    I founded ResKontIS to empower companies of all sizes to use information security as a success factor – pragmatically, efficiently, and sustainably.

    With over 30 years of experience in technology, management, and information security, I support organizations in building robust structures that ensure confidentiality, integrity, and availability, while also strengthening business continuity.

    My focus is on implementing and further developing ISMS according to ISO/IEC 27001, Business Continuity Management, cyber resilience, and audit preparation. As a certified auditor & lead implementer, I help to effectively and practically implement regulatory requirements such as NIS2, TISAX, or GDPR.

    ResKontIS stands for trustworthy, independent consulting with measurable added value – security without unnecessary complexity, but with sustainable impact.
    Introduction and Development of Information Security Management Systems (ISMS) Consulting on Regulatory Requirements and Compliance (e.g., NIS2, TISAX, KRITIS) Audit Management and Internal Audit Business Continuity and Cyber Resilience Management Consulting and Awareness Promotion
  • tegut… gute Lebensmittel GmbH & Co. KG, Fulda
    Head of GRC, Focus on Information Security
    RETAIL (SMALL BUSINESS)
    May 2023 - July 2025 (2 years and 2 months)
    Fulda, Germany
    Responsibility for risk management as well as preparation and support for internal and external audits. Establishment of an ISMS according to ISO 27001 and management of structured vulnerability management.
  • tegut… gute Lebensmittel GmbH & Co. KG, Fulda
    Member of Corporate Crisis Team, Deputy Head since 2019
    RETAIL (SMALL BUSINESS)
    March 2011 - July 2025 (14 years and 4 months)
    Fulda, Germany
    Crisis team member with experience in managing crises, including the Corona pandemic and cyberattacks, including planning and execution of realistic crisis drills.

Recommendations

Be the first to recommend Jörg

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Education

  • Wholesale and industrial clerk
    Industrie- und Fahrzeugbedarf GmbH IFAG
    1983
    zum Großhandelskaufmann
  • Training as an organizational programmer
    EDV-Bildungsinstitut der GBS
    1989
    Ausbildung zum Organisationsprogrammierer

Certifications

  • ISO/IEC 27001 Auditor
    PECB
    2025
  • ISO/IEC 27001 Lead Implementer
    PECB
    2025

Skill set

Categories