Profilbild von Anonymes Profil, IT Consultant
verfügbar

Letztes Update: 09.07.2023

IT Consultant

Firma: CALL4TEC
Abschluss: Computer Science / Electrical Engineering
Stunden-/Tagessatz: anzeigen
Sprachkenntnisse: deutsch (Muttersprache) | englisch (verhandlungssicher) | französisch (verhandlungssicher) | niederländisch (verhandlungssicher)

Dateianlagen

MGCVEN042023_080423.docx
MGCVDE042023_080423.docx

Skills

Through my studies in electrical engineering/computer science and my professional experience as a manager in various IT companies for the last 35 years, I bring extensive knowledge from theory and practice. I take on responsibilities and challenges. I am a team player and coach, I enjoy helping colleagues and I develop individual solutions to address business requirements and enable the capabilities.

Projekthistorie

09/2022 - 04/2023
IT Project Manager
Sparda Bank (Banken und Finanzdienstleistungen, 500-1000 Mitarbeiter)

As a consultant and project manager for the Sparda Bank Berlin, I was responsible for the introduction of an ITSM tool based on ITIL4. In addition to the technology / technologies, I was responsible for other work streams in the project such as IT security, IT compliance, IT governance, the organization and execution of several in-house training courses for the management, the operation team and finally the end users. The main modules of the project addressed several audits and revision findings and, in addition to incident management, problem management and change management, also included the topics of CMDB, the creation of a service catalog and self-service portal. My tasks also included advising C-level managers on enterprise architecture, the introduction of Microsoft Azure and Microsoft Office 365. I helped several colleagues as a coach and trainer to establish a service-oriented IT delivery.

01/2021 - 09/2022
IT Consultant
Finanz Informatik Solutions Plus (Banken und Finanzdienstleistungen, 500-1000 Mitarbeiter)

As a consultant and project manager for the FISP, I was responsible for enterprise architecture and recorded all information systems and the structured data (repositories, SAP, databases, PLM,...), the unstructured data (Office documents, images, technical drawings,...) as well as analyzed and managed their life cycle. As a coach and trainer for the different departments and key users, I was heavily involved in the preparation of training documents and in the coordination of processes as well as the definition of roles and last but not least the reporting and coordination with the stakeholders.

In addition, I was responsible for the Active Directory migration and the introduction of Azure Active Directory and AD Connect to use Microsoft cloud services such as MIP, Microsoft Defender and DLP. In the on-prem infrastructure, I designed and administered DFS, WSUS, PKI, Lotus Notes, Kubernetes, identity management, virtualization and printing services based on ITIL with the ITSM team

10/2019 - 07/2021
CISO Consultant
GEA (Industrie und Maschinenbau, >10.000 Mitarbeiter)

As a consultant for data protection and data security, I worked together with the GEA Chief Information Security Officer and other colleagues in the IT department on creating GEA IT security concept for the Microsoft cloud services Office365 and Azure in order to address the following risks:

  1. Data Breaches
  2. Insufficient Identity Crendial Access Management
  3. Account hijacking
  4. Malicious Insiders
  5. Insufficient due diligent
  6. Denial of service
  7. System Vulnerabilities
  8. Abuse and Nefarious Use of the Cloud
  9. Insecure Interfaces and APIs
  10. Shared Technology Vulnerabilities
  11. Advanced Persistent Threats (APTs)
  12. Web UI responsive Clients using Microsoft Blazor.

After creating the concepts, I started implementing Microsoft DLP and AIP to comply with the Classification and handling policy. I focused on the following topics:

  1. Securing all cloud services (MCAS, Azure, O365 Services)
  2. Document security using AIP
  3. Mobile device security using MS Intune, Conditional Access and AIP
  4. Protection of virtualized systems (VDI, Citrix,…)
  5. Improvement of data protection
  6. Creation of data protection impact analysis documents and the mitigation of the identified risks to then be inlined and approved from the Compliance/Legal Department and the DPO.
  7. Identity Governance with Zero trust / Identity foundation with Azure AD
  8. Application Integration with Azure AD
  9. Azure MFA / Conditional Access
  10. Azure AD Risk Based SignIn/Policies
  11. Microsoft MCAS
  12. Integration with PDM /PLM Systems
  13. Integration with SAP to protect data exports
  14. Pass Through Authentication / Microsoft ADFS
  15. Microsoft Intune as an MDM Authority
  16. Microsoft Defender / EndPoint DLP / Microsoft Advanced Threat Protection

Securing service and log entry access through Privileged Identity Management was part of the mitigation plan.

With the IT security functions already integrated in Office 365, I was able to perform the following tasks:

  1. Protection of data centrally and on all end devices Desktop/Mobile/Server.
  2. Discovery of all security risks with the help of "targeted signals," behavioral monitoring "and" machine learning "
  3. Take steps to fix the missing executions between discovery and actions
  4. Interface between local and central teams, management, the legal department, and the providers
  5. Coordination with stakeholders for knowledge transfer and synchronization with the governance structure
  6. Design, review and documentation of the processes, policies, and the governance model
  7. Reporting to management and project teams
  8. Preparation of service quality reports for management using and defining several KPIs
  9. Data governance, data compliance and data security

Furthermore, I was entrusted with the conception and development of a PoC to protect GEA data from unauthorized access. This includes the search, classification, protection, encryption, and control of company data (intellectual property). The users were trained, made aware of how to protect their data, and several tools were evaluated and introduced: Microsoft Azure Information Protection, Digital Guardian, SealPath, Symantec, McAffee, Office 365, Microsoft PowerApps, Power Platform, Microsoft PIM, Microsoft DLP, Microsoft Cloud App Security, Azure Intune, MDM, MAM, Microsoft Teams, and other products.

During the execution of this project, I was technically involved in the client management, rollout, autopilot and the introduction and implementation of Microsoft Teams.

To be able to implement information protection measures, I first had to migrate all on-prem mailboxes to Exchange Online so that the rights management system could be used with the Azure ID and encrypted emails could be decrypted.

The administration of Microsoft security & compliance measures as well as the creation of a data protection impact analysis for all programs belonged to my tasks as well as the creation of the policies for the classification and the protection of the business data.

In the last months of the project, I accompanied the data governance department with the data science / analysis tasks and actively worked with and developed the implementation of new cloud services to prepare and display company data for management using Azure Data Lake, Azure Purview and Refinitive QAI.

10/2019 - 03/2020
IT Project Manager
Deutsche Telekom (Telekommunikation, >10.000 Mitarbeiter)

Design and Development of a PoC based on PowerApps, Azure, Power BI, Microsoft Flow, IoT, Amazon Alexa, Microsoft Teams, Microsoft Planner and Office 365 to simplify the planning and management of meet-ups and to integrate them with other Deutsche Telekom products such as the Smartbox and CloudPBX.

My role included the following tasks:

  1. Identification of all relevant users and access rights for applications in the scope including the creation of shadow accounts in both systems.
  2. Implementation strategy for an Identity and access management including Microsoft Azure AD PIM.
  3. AD accounts, Email, PKI, MAM, MDM
  4. Identification of all relevant assets as well as ensuring adequate protection of data using Microsoft ATP, AIP, Defender and other tools from Azure and office
  5. Communication with the rollout team, business owners and power users.
Web UI Apps using Microsoft Blazor

06/2018 - 10/2019
IT Consultant
Microsoft GmbH (Internet und Informationstechnologie, >10.000 Mitarbeiter)

As a Premier Field Engineer at Microsoft GmbH, I was supporting MunichRE. I worked as an IT consultant and architect to answer their IT questions about Microsoft products and to implement state of the art cloud solutions including app development for a better user experience. I was responsible for the creative and technical introduction, architecture and administration of services such as Microsoft Office 365, cloud file management and rollout projects. The introduction of Skype For Business, Microsoft Azure, Azure AD Services, Microsoft team, Microsoft SharePoint 2019 and the introduction of IAM, ADFS, two factor authenticating, PKI projects, RADIUS were part of my area of ​​responsibility.

For the MunichRe I have developed several apps and applications and designed and reviewed few Azure and Office 365 implementations.

For another client I have developed a GPS tracking system based on IoT Hubs, Events and Azure Functions to track vehicles and to organize the logictics of large-scale companies.

Identity Access Management reviews / Audit with the following topics:

  • Identity Governance with Zero trust / Identity foundation with Azure AD
  • Application Integration with Azure AD
  • Azure MFA / Conditional Access
  • Azure AD Risk Based SignIn/Policies
  • Microsoft MCAS
  • Pass Through Authentication / Microsoft ADFS
  • Microsoft Intune as an MDM Authority
  • Microsoft Defender / EndPoint DLP / Microsoft Advanced Threat Protection
Web Apps using Microsoft Blazor and .net Core

06/2018 - 03/2019
IT Project Lead
Apleona (Sonstiges, 5000-10.000 Mitarbeiter)

As an IT consultant and architect, I'm at Apleona GmbH responsible for strategic IT decisions of the Instrastruktur and application management departments in particular regarding the design and technical consulting for the introduction, architecture and administration of cloud applications such as Microsoft Office 365, cloud file management, linking locations and rollout projects and the integration of multiple systems using an SOA architecture for synchronous and asynchronous data processing. The introduction of the applications Microsoft Office 365, Skype For Business, Microsoft Azure, Azure AD Services, Microsoft team, Microsoft SharePoint 2016 and the introduction of IAM, ADFS, two factor authenticating are part of my area of ​​responsibility.

The design of the IT infrastructure based on Scale Units with Microsoft factory was part of the project based.

Within the project I rolled out Windows 10 and introduced cloud applications.

Additionally I was responsible for SIAM, ITIL processes and was contributing to cost reduction of the operating business by my profound knowledge.

For the better organization of tickets, service requests and incidents I worked for the customer in the implementation of ServiceNow including connection of the suppliers. All IT services were then requested via ServiceNow, approved and forwarded to the fulfillment teams.

07/2018 - 02/2019
IT Project Lead
SwissCom (Telekommunikation, >10.000 Mitarbeiter)

Within the project, I am responsible for the design, architecture and technical project management of an alarm solution. The application consists of telephony systems and applications servers that allow the planning and execution of the alarming scenarios. UI and UX design plays an important role here based on recent Web technologies. In this project, I see myself also as a coach for my colleagues to jointly develop new innovative interfaces with the best up-to-date practices of web development. I was involved in many business analysis and functional requirements meetings. Finally, I was implementing several components as Micro Services. The operation of the application on several different devices (desktops, , smartphones, ipads, headless devices,…), organizing numerous workshops are part of my area of ​​responsibility.

In this project, I was then the product owner and was responsible for the hardware and software and managed the new development of the alerting system. MRP, organization, control, coordination with several departments and the certification of devices including PTR (Prototype trial run) were some areas of my job.

This project included the integration of IoT devices as well to facilitate the management of messages. We used the Azure platform for the implementation of IoT Hubs and events as well as for logging and monitoring.

12/2017 - 09/2018
IT Project Lead
VHV Gruppe (Versicherungen, 5000-10.000 Mitarbeiter)

As part of the digitization project, I was responsible for the harmonization of test levels for the release of the information systems within the home so a 4 Stages of the release process can be gewähleistet. All applications should by harmonizing use the same IAM layer and implement to establish a common access can be ensured. To this end, I have taken the analysis of the business, IT and compliance requirements in the Identity & Access Management (IAM) and derivation of the global IAM strategy. Furthermore, I was responsible for the recording and evaluation of the implemented technical and procedural IAM architecture.

The information systems comprised host systems, open world applications based on Java, PHP, MySql and .NET technologies as well as the SAP system for underwriting and non-underwriting applications in multiple levels of testing.

All tasks and documentaries have been made in Confluence and Jira.

Organizing numerous workshops as part of my area of ​​responsibility.

The project I have designed as scrum master and made sure that Application Security Vulnerabilities identified could be assessed and addressed. The design and concept of lifecycle management process in application lifecycle management and the technical management of the application launches put my key task in this project

In addition to the approximation of release test levels and the 4 Stages in the various systems I have some responsibility in Skype for Business, Office 365, Yammer, Microsoft Azure and Microsoft SharePoint.

I have also taken over as part of the project in the implementation of an IT project compliance, some tasks to ensure a DDoS test planning and a dependency analysis of the assets in a DDoS attack.

The testing used network protocols on vulnerability for a DDoS attack was as much about my role.

Within the project, I was responsible for the design and planning of the Windows 10 client rollouts and Windows 2016 R2

The requirements definition, design, implementation, testing and commissioning of the applications and the harmonization of the levels of testing I have responsibility and implemented based on an ESB to exchange data and to ensure the integration of multiple systems

04/2017 - 05/2018
IT Project Manager
Finanz Informatik (Banken und Finanzdienstleistungen, 1000-5000 Mitarbeiter)

As a project manager / architect, I was in financial computer science point of contact for existing and future customers (financial institutions, federations ...), in particular with regard to the design and technical consultancy in the introduction, architecture and administration of Microsoft SharePoint 2016 as a communications platform. As an architect, I have also collaborated in the design and the creation of private clouds for all employees based on OneDrive with Microsoft closely. Intern in financial computer science I was the contact person for all Microsoft SharePoint questions. The registration on the platform I backed up to external and internal staff with the use of ADFS and two factor authentication.

The introduction of Skype for Business 2015 - On Prem - as well as the online version O365 I have responsibility and with other MS products and technologies (SQL, SharePoint, Azure, Exchange, AD FS, AD, ...) together under one platform.

The scaling of Skype For Business solution and the integration of all financial institutions and umbrella organizations of the new office communications platform was the focus of my tasks. The solution design of various problems in the IAM environment, eg. B. IAM governance, Cloud Identity Management, IAM and the Internet of Things, selection and implementation of IAM solutions, among others PKI, Identity & Access Governance tools 2-factor authentication, access from external and internal secure and unsecure networks for internal and external employees I designed for the project, documented, implemented (MS technologies AD and AD FS) and passed to the operation. An essential part of my tasks was to analyze current processes, identify potential for optimization, to organize workshops and training process of the new processes. Finally, I was responsible for the installation and commissioning of SBCs and audio codecs SBAs.

The preparation of the infrastructure with the corresponding Scale Units Microsoft factory was as much a part of the project based.

Debugging, monitors and testing of pre-determined scenarios and derive the runbooks (APT scenarios) I have shared the responsibility for the project.

Within the project, I was also responsible for the design and planning of the Windows 2016 R2 rollouts

09/2016 - 04/2017
IT Consultant
EVO Payments (Banken und Finanzdienstleistungen, 250-500 Mitarbeiter)

When taking over the department Credit Services of German bank by the US company EVO Payments IT department was transferred to Poland in order to save costs. My task was to supervise the migration of IT solutions including data center from infrastructure to applications. AD, PDC, network and Linux machines. During this transitional phase, several tasks were scheduled by Business Analysis, Reviews, IT audits, IT security and regulatory reviews. The evaluation and documentation of used applications and technology architectures are part of my role and IT consulting my colleagues.

Another object was to establish an Office 365 environment with Project Rooms, team rooms, workspaces, knowledge base and the use of Skype for Business and a new ERP system (MS Dynamics). The processing of the data was performed using this API interfaces and middleware components to read information from multiple systems to orchestrate and display based on a wide variety of devices in the portals on a responsive design. A pilot with Yammer was launched in late March as well. For storing documents migration onedrive was introduced in the frame. The exchange of the data was developed in .NET and realized with WCF and WPF by a separate ESB.

Various support and advisory tasks I have then still done in a standby mode to ensure smooth IT operations.

03/2016 - 09/2016
System Integrator
Postbank (Banken und Finanzdienstleistungen, 1000-5000 Mitarbeiter)

In the unbundling of the German banking sector, it was necessary to replace IT applications DeuBa by new IT solutions. During this transitional phase, several tasks were scheduled by Business Analysis, Reviews, IT audits, IT security and regulatory reviews. The evaluation and documentation of used applications and technology architectures are part of my role and IT consulting my colleagues. IT security tests and reviews on the network level and at the application level with a centralized log management for a better tracking have been carried out within the project. The coordination with the departments to the user provide innovative solutions and portals during a consultation with the backend team to ensure smooth operation were part of my responsibilities.

  1. Managing the review and documentation of the implemented solutions, including analysis, design, implementation, testing and handover to operation.
  2. Architecture of cloud solutions for the data center based on middleware
  3. Using the ISMS tools templates to the management of IT Security to analyze, in cooperation with the Safety Officer and the departments concerned
  4. Management of regulatory banking requirements for the imported solutions
  5. Analysis potential vulnerabilities and problems of products and custom components.
  6. Participation in decision-making bodies and project telcos.
  7. Cost take out targets of IT applications
  8. Minimizing IT operational costs through new IT strategies
  9. Third level support and training of the operators and Power Users
  10. Tuning of security concepts and Network Design
  11. Technical documentation of the solutions introduced
  12. HPM ALM and Remedy, as well as the main auditorium
  13. API and Shell Programming
  14. Data security, printing and Web services for new applications Audit
  15. Means the file replication service
  16. DFS (Distributed File Service)
Piloting of MS Office 365 includes Skype for Business

09/2015 - 03/2016
IT Project Manager
Zürich RE (Versicherungen, 1000-5000 Mitarbeiter)

In September 2015, a well-known insurance companies in the Netherlands, has asked me to modernize an existing application for the insurance market and for use to use with all popular devices. The company has several branches and partners across the country. My role as a manager involved the technical management to design a new technique based on SOA solution, including cloud security (network, hardware, applications) and use with all devices as a client in consultation with all departments and managers

  1. Architecture and design OO
  2. software Reviews
  3. Using Oracle ESB
  4. PL / SQL on the DAL level
  5. Creating a new SOA design using ESBs
  6. Virtualization of IT systems in all branches
  7. IT security concepts for hardware and software level
  8. Architecture of the IT landscape for better cost control.
  9. Abolition of solutions that are not relevant for meeting business objectives.
  10. Support and quality assurance of the application
  11. Organizing and conducting numerous training courses for end users, partners, technicians and sellers
  12. Introduction of Skype for Business and MS Office 365
  13. Introduction of a new ERP system (MS Dynamics).
Design and Implementation of a Microsoft BizTalk Farm

07/2014 - 09/2015
Product Manager
(Telekommunikation, 1000-5000 Mitarbeiter)

In cooperation with the stakeholders I have the scope, design and cost requirements of the project defined based on the business needs. The creation of project documents (functional, technical, end users ...) and the required budget was part of my responsibility. In this project I took over the management of the operational teams to ensure smooth IT operations. Assistance in the creation of .NET / SharePoint / BizTalk RFPs technical solutions and planning, including cost estimates. Last but not least, I took over the technical management, the team handling, code reviews, and Optimization and R & D work on this project.

  1. Management of product life cycle from strategic planning to tactical tasks
  2. Management of mobile product manufacturers from China
  3. ECR / ECO processes
  4. Management of GEO-IP information, including maps
  5. Compliance with legal requirements for telecommunications.
  6. Design and implementation of IT security strategies on the hardware and software level, including the preparation of the product selection matrix based on business requirements.
  7. Specifying market requirements for current and future products through market research
  8. Solutions development teams are (primarily Development / Engineering and marketing communications) to market demands and contracts.
  9. Development and implementation of a company-wide go-to-market plan and the implementation of all departments involved.
  10. Analysis of potential partners for the product.
  11. Implementation of an ESB based on Microsoft technologies and tools (WCF, MSMQ, BizTalk Custom adapter, Microsoft WF, BizTalk 2013R2) and integration with Oracle DB Systems
  12. Implementation of user interfaces based on Web Parts, InfoPath, Winforms, Nintex Workflow 2013 and WPF
  13. Management of design, implementation, operation of end-to-end solutions based on MOSS 2010 and SharePoint Server 2013 using various associated technologies and Microsoft Project Server.
  14. Design / Review of SharePoint 2010 Solutions, SharePoint Knowledge and architecture and operation of enterprise SharePoint implementations
  15. Review of .NET / SharePoint Custom Development includes web parts, workflows, Feature, Solution Packaging and Deployment, Site / Web / ListTemplates, List Item Event Receivers & Brokers, Content Types for Document Library & List, custom actions, timer jobs, Application Pages, Page layouts and Master Page for publishing sites PowerShell administration and server / content manipulation, Custom Forms, Large Scale Enterprise Deployment and Solution Architecture, MOSS by SP2010 migration. Custom simplify provisioning framework to .NET / SharePoint Solution Development, Testing and Deployment like JQuery, AJAX Microsoft, Twitter Bootstrap, DotLiquid templates.
  16. Design, implementation and execution of technical solutions in Microsoft and multi-vendor product environments. Responsible for Day to Day Development and Support of SharePoint environments and installed products
  17. Design & Development of Multilingual Public / intranet sites based on SharePoint.
  18. Experience with SharePoint Migration Project and Knowledge of Content & Custom Solutions (MCMS 2002 / WSS 2003 to MOSS 2007 MOSS by SP2010, SP2013 by MOSS, SP2010 to SP2013).
  19. Interfaces based on SOAP, XML, XSLT, Web Services and UDDI
  20. Determining the cost take out targets
  21. Reducing operating costs through new IT strategies
  22. Service delivery and third-level support
  23. Organizing and conducting numerous training courses for end users, partners, technicians and sellers
  24. IT security and compliance with the safety of the use of ISMS templates
  25. Setup and management of Linux host machines based on Ubuntu and Redhat
  26. Build an Office 365 environment for teams and adapting the template for this, so an Enterprise Collaboration Platform is used in the company
  27. Administration of Linux systems with VOIP applications (Asterisk, Cisco, ...)

01/2010 - 06/2014
Program Manager
Ettisalat (Telekommunikation, 1000-5000 Mitarbeiter)

In January 2010 Ettisalat, a well-known telecom companies in Tunisia, has asked me to provide a time to market platform to manage the growing number of new hl new customers. The company has several branches throughout the country. My role as a manager also included, in addition to the commercial responsibility for the technical management to design a new SOA solution, including cloud security (network, hardware, applications)

  1. carve-out of a department as a new IT company
  2. Management of Chinese partners in the mobile area and visiting the Canton Fair in Guangzhou
  3. ECR / ECO processes Serivce Delivery
  4. Management of a new GEO information system for some customers
  5. Introducing the Cisco Identity Services Engine
  6. Migration from Oracle to MS SQL Data included purification and analysis of used Oracle forms
  7. Check compliance with the legal requirements for the telecommunications industry
  8. Creating a new SOA design using BizTalk as an Integration Platform
  9. Virtualization of IT systems in all branches
  10. IT security concepts for hardware and software level
  11. Architecture of the IT landscape for better cost control.
  12. Abolition of solutions that are not relevant for meeting business objectives.
  13. Managing IT projects with the reduction of risks
  14. Negotiation and management of supplier contracts, review of software contracts
  15. Organizing and conducting numerous training courses for end users and partners
  16. Managing the budgets of IT projects
  17. Reducing operational costs through new IT strategies
  18. Managing the billing backend based on Linux and Oracle DB
  19. Administration of Linux systems with VOIP applications (Asterisk, Cisco, ...)

Reisebereitschaft

Weltweit verfügbar
Ab sofort
Profilbild von Anonymes Profil, IT Consultant IT Consultant
Registrieren