Freelancer profile translated to English.

Description

As ISB as a Service, I protect your organization with an ISMS according to ISO 27001. Prevention, detection, and response guarantee optimal protection against cyberattacks – NIS-2 compliant and innovative.

As your external Information Security Officer, I offer you not only comprehensive technical and organizational security solutions but also the necessary flexibility to continuously adapt your IT security strategy to new challenges. My goal is to support you in achieving the highest level of security that protects your business processes and sustainably secures your organization against cyber threats. Let's take your IT security to the next level together and shape the future of your organization securely.

Industry field of expertise

Languages

German
Native or bilingual
English
Fluent
Italian
Native or bilingual

Workplace preferences

Can work on-site

Hamburg (up to 50km)

Energie
Consulting and Implementation of Azure Security Services
ENERGY AND UTILITIES
March 2024 - Today (2 years and 3 months)
Hamburg, Germany
In this project, I advised and supported a waterworks company in the implementation of Azure Security Services. The goal was to optimize the security of the Azure environment and meet compliance requirements.

Consulting and Implementation of Azure Security Services:
Implementation and optimization of Azure Security Services such as Azure Defender for Cloud and Azure Sentinel for monitoring and ensuring cloud security.
 Threat Modeling and Risk Assessment:
Conducting threat modeling and risk assessments to identify potential security vulnerabilities and develop appropriate countermeasures.
 Application of Cloud Security Frameworks:
Consulting on the application of relevant cloud security frameworks and standards, including BSI-IT-Grundschutz, CIS Benchmarks, and ISO 27001, to strengthen the waterworks' security policies.
 Creation of Documentation:
Creating comprehensive documentation that details the scope of the contract and the implemented security measures, ensuring compliance with banking supervisory regulations such as MaRisk and BAIT.
Microsoft Azure ISO27001 Cloud Security Microsoft Sentinel BSI Grundschutz CIS Benchmarks Cloud Security
Energie
Integration of Azure Security Center and Azure Sentinel for Security Monitoring
ENERGY AND UTILITIES
January 2024 - Today (2 years and 5 months)
Hamburg, Germany

In this project, I led the integration of Azure Security Center and Azure Sentinel for centralized security monitoring and threat detection for a waterworks company.

 Setup of Azure Security Center:
Implementation and configuration of Azure Security Center to monitor and improve the security posture of Azure resources.

 Integration of Azure Sentinel:
Setup and configuration of Azure Sentinel as a central Security Information and Event Management (SIEM) solution for detecting, analyzing, and responding to threats.

 Creation of Security Policies:
Development and implementation of security policies and practices to ensure compliance and minimize security risks.

 Endpoint Protection and EDR:
Implementation of Endpoint Detection and Response (EDR) solutions to monitor and secure endpoints against threats.

 Mobile Device Management (MDM):
Integration and management of Microsoft Intune to implement MDM solutions and ensure the security of mobile devices in conjunction with Microsoft Defender.

 Training and Knowledge Transfer:
Conducting training and knowledge transfer for the IT team to optimize the use and management of the integrated security solutions.

This project demonstrates my familiarity with Azure Services, particularly Azure Security Center and Azure Sentinel, as well as my experience in implementing and managing EDR and MDM solutions for comprehensive security monitoring and threat detection.
EDR MDM Compliance IT Compliance Compliance Management SIEM Azure Sentinel Threat Detection
Versicherung
Development of a Comprehensive IT Security Concept
CIVIC AND SOCIAL ORGANIZATIONS
January 2024 - Today (2 years and 5 months)
Hamburg, Germany
In this project, I led the development and implementation of an IT security concept for an insurance company. The focus was on ensuring network security and compliance with legal requirements.
Security Concepts Compliance Management IT Compliance