Profilbild von Anonymes Profil, Security Engineer/ Architect - SOC/SIEM
nicht verfügbar bis 10.03.2024

Letztes Update: 22.02.2024

Security Engineer/ Architect - SOC/SIEM

Abschluss: B.Sc.
Stunden-/Tagessatz: anzeigen
Sprachkenntnisse: deutsch (Muttersprache) | englisch (verhandlungssicher) | französisch (Grundkenntnisse)

Schlagwörter

Informationssicherheit Intrusion Detection System Zero Trust Network Access Jenkins Künstliche Intelligenz Amazon Web Services Penetration Testing Microsoft Azure Burp Suite Cloud-Sicherheit + 32 weitere Schlagwörter anzeigen

Dateianlagen

security-marc_311023.docx
security-marc_081123.pdf

Skills

AWS, Ansible, AI, AD, ADD, Burp Suite, Cisco, Cloud Security, complex network, Computer Networking, IT Security, security architecture, CI/CD, DevSecOps, Google Cloud, IAM, PAM, Okta, One IDentity, Omada, OAuth, Keycloak, Docker, Kubernetes, Jenkins, Informatics, IDS, Intrusion Detection Systems, intrusion detection and prevention, Jenkins, machine learning algorithms, Metasploit, microservices, Azure, Nessus, network design, network security, network segmentation, OpenFlow, industrial control systems, QRadar, Qualys, red team, SDL, SDLU, SIEM, Snort, penetration testing, Splunk, static code analysis, SOC Design, Security Threat Modeling (STM), Terraform, vulnerability assessments, Zero Trust Network Access, ZTNA

Projekthistorie

10/2017 - 11/2023
IT Security Architect/ Advisor
Consultancy (Wirtschaftsprüfung, Steuern und Recht, >10.000 Mitarbeiter)

  • Part of a unit specialiszing in SOC, SIEM, IoT, and OT Security Experts
  • Architected and deployed a cloud-native security framework for a digital production platform in the automotive industry.
  • Orchestrated the setup and management of a Next-Gen SIEM solution, utilizing AI and machine learning algorithms for advanced threat detection and behavior analytics.
  • Implemented and customized threat intelligence feeds to enrich SIEM data and enhance incident response capabilities.
  • Developed and executed a comprehensive cloud access control strategy, including IAM roles and policies, with a focus on Zero Trust principles on an enterprise level; collaboration with the vendor’s engineering team as well as IAM and PAM specialists on the client’s side
  • Make or buy and vendor selection with the team for a global PAM solution implementation
  • Collaborated on DevSecOps initiatives to embed security into the CI/CD pipeline, integrating tools like Jenkins, Terraform, and Ansible, across teams in Europe, India and US.
  • Conducted regular penetration testing and vulnerability assessments, employing automated scanning tools such as Nessus and Qualys.
  • Designed and documented security architecture patterns aligned with Cloud Security Best Practices, emphasizing containerization and microservices.
  • Led a team of security analysts in threat hunting, utilizing machine learning algorithms to detect anomalies in network and system behavior.
  • Spearheaded IoT and OT security initiatives, ensuring the secure integration and management of IoT devices and industrial control systems.
  • Collaborated with engineers to implement security best practices for IoT device onboarding for several shop floors on a global scale and secure OT network segmentation.
  • Part of a Digital Twin effort for a Machine Manufacturing Company from Japan

10/2013 - 06/2017
Security Engineer
Optical System Manufacturing (Pharma und Medizintechnik, >10.000 Mitarbeiter)

  • Part of the network & security department, responsible for over 10.000+ end user devices spread over three continents
  • Engineered a robust network segmentation strategy using SDN (Software-Defined Networking) technologies to ensure granular access control.
  • Conducted comprehensive red team exercises, emulating real-world attackers, and used tools like Metasploit and Burp Suite to identify vulnerabilities and test defenses.
  • Managed and tuned intrusion detection and prevention systems (IDS/IPS) using Snort and Suricata, enhancing network threat detection and response.
  • Actively participated in the integration of security orchestration and automation, utilizing SOAR platforms to streamline incident response workflows.
  • Implemented a Zero Trust Network Access (ZTNA) solution, utilizing software-defined perimeters and identity-based authentication.
  • Collaborated with the SOC team to configure custom correlation rules in the SIEM, leveraging security analytics and threat intelligence feeds to improve detection.
  • Contributed to the development of a Security Development Lifecycle (SDL) process, incorporating DevSecOps practices and static code analysis.
  • Played a key role in the deployment and customization of EDR (Endpoint Detection and Response) solutions, bolstering endpoint security.
  • Conducted in-depth training for junior team members, sharing knowledge and expertise in network security practices, threat analysis, and incident response.

08/2009 - 10/2013
(Junior, Senior & Lead ) Network Engineer
(Internet und Informationstechnologie, 1000-5000 Mitarbeiter)

  • Completed a comprehensive network engineering traineeship program, gaining hands-on experience in network design, configuration, and troubleshooting.
  • Acquired skills in designing and implementing software-defined networking (SDN) solutions, including OpenFlow and Cisco ACI.
  • Collaborated with senior network engineers to troubleshoot complex network issues and optimize performance.
  • Developed proficiency in next-generation firewall management, enhancing network security and threat mitigation.

Reisebereitschaft

In der Stadt Berlin mit einem Radius von 100 km verfügbar
Profilbild von Anonymes Profil, Security Engineer/ Architect - SOC/SIEM Security Engineer/ Architect - SOC/SIEM
Registrieren