Freelancer profile translated to English.

Description

I have designed and operationally implemented cybersecurity programs for international companies in the automotive, financial, and telecommunications industries – from cloud security architecture and identity & access management to security operations (SOC).

Solid experience in applying common standards and frameworks (including ISO 27001, NIST CSF, BSI-Grundschutz) as well as in managing penetration tests, SIEM/SOC implementations, and incident response processes. My focus is on securing hybrid cloud environments, risk analysis, and integrating compliance requirements into complex infrastructures.

Languages

German
Native or bilingual
English
Fluent

Workplace preferences

Can work on-site

Langen (up to 50km)

Oldenburgische Landesbank
IT Security Engineer / Consultant
BANKING AND INSURANCE
October 2025 - Today (8 months)
• Analysis and evaluation of security alerts and reports in the SIEM system IBM QRadar (26 use cases, approx. 250 alerts/reports per day)
• Identification of false positives and detection and evaluation of security-relevant incidents
• Technical further development and documentation of the alerting chain
• Traceable documentation and escalation of security-critical events according to project-specific requirements
• Verification of the correct integration, readability, and interpretation of log files to reduce false alarms
• Derivation and implementation of measures for risk minimization based on analysis results
• Independent creation of use case reports and alerts in Cortex XDR based on existing log data
• Consulting on the system change from IBM QRadar to Cortex XDR, including conceptual and technical support
• Targeted optimization of SIEM processes to increase detection quality and efficiency in security monitoring Technologies: Cortex XDR, IBM QRadar
Cortex XDR SIEM Linux System Administration Solaris IBM Qradar
Taschen GmbH
IT Security Expert
August 2025 - October 2025 (2 months)
• Identification of the company's specific requirements and goals for SIEM
• Development of a detailed implementation plan for the SIEM system
• Implementation of security policies and rules for threat detection and response
SIEM IT Security Linux Wazuh Cybersecurity Incident Management
chargecloud GmbH
Security (Engineer) Officer
October 2024 - November 2025 (1 year and 1 month)
• Design of secure infrastructure, network, and application architectures
• Creation of reference architectures and best security practices for internal teams
• Securing web applications according to OWASP Top Ten
• Integration of security controls and solutions into system design and development
• Conception and integration of vulnerability scanners into the existing infrastructure (Tenable Nessus)
• Active vulnerability management through identification, assessment, and remediation of security vulnerabilities, as well as the definition and implementation of corresponding security policies
• Integration and implementation of SIEM and EDR in hybrid cloud environments (Elastic, Wazuh, Security Onion AWS, Hetzner)
• Configuration and log source connection to the SIEM
• Development and implementation of use cases for the SIEM tool to improve threat detection and adapt to specific business requirements
• Conception and drafting of policies regarding security standards for the ISMS (ISO27001, NIS2, CIS v8)
• Implementation and management of firewall security solutions (PfSense), network security monitoring (IDS/IPS - Suricata, Snort)
• Network Design
• Threat Intelligence
• Planning and review of the current network segmentation Technologies: Ansible, Terraform, Elastic, Gitlab, Suricata, Snort, PfSense, Tenable Nessus, Sumo Logic, Wazuh, Linux, Docker, AWS Cloud, Hetzner Cloud, ISO27001, CIS v8
SIEM Docker IT Architecture Terraform Ansible