DevSecOps

5/2023 – 2/2024

· Evaluation of company maturity with a focus on IT security (Security maturity model).
· Fix penetration testing discoveries in Golang and PHP.
· Development of a vulnerability management team.
· Proof of Value with various cloud security solutions for AWS.
· Review of architectures for IT security using threat models.
· Threat detection with LAcework.
· Introducing Wiz as a cloud security tool.
· Automation of security tools using Ansible.
· Automating cloud security tools using Terraform.
· Creation and maintenance of GitHub Actions for vulnerability scanning.
· Extension of Jenkins to include vulnerability scanning using Groovy.
· Consolidation of the AWS Architecture for Container Images (AWS ECR).
· Development of a central AWS architecture for security services.
· Incident response for phishing attacks and compromised accesses.
· Development of KPIs for BI (MTTD, MTTR) using Snowflake.
· Develop playbooks for managing orphaned resources with Cloud Custodian.
· Creating post-mortem analyses.
· Supporting a Secure Coding Workshop.
· Extending GitHub Action by a code scanning feature.

Amazon Web Services (AWS), Ansible, Cloud (allg.), Cloud Computing, Code Review, Cyber Security, Docker, Go (GoLang), Penetrationstest, Security Operations Center (SOC), Software Architektur / Modellierung, Vserver (Linux)

11/2021 – 12/2022

· Evaluation of a tool for detecting deviations from compliance rules in the AWS.
· Evaluation of AWS Compliance and Conformance Packs in the context of the rules of the
Bank.
· Extend AWS Lambda function to include encryption with AWS KMS.
· Escalation of employee misconduct.
· Detecting violations of security processes.
· Intervention for incomplete processes.
· Support with the concept for hardening Kubernetes clusters.
· Conceptual work for the use of mTLS for a service mesh.
· Creation of a roadmap for IT security products.
· Supporting penetration tests for products such as GitLab.
· Evaluating fuzzing on Kubernetes.
· Migration of internal services, such as rsyslog, to Kubernetes.
· Connecting the AWS Management Console to Splunk using AWS Lambda in Node.js.
· Modernize the architecture of a Splunk Heavy Forward to a cloud-native approach archi-
tecture.
· Expanding an SOP to include features such as tagging with a focus on security.
· Terraform Code Review.
· Independent familiarization with the AWS Cloud platform.
· Roll out Kubernetes clusters using crossplane.
· Support in the operation of DDOS protection with Myra for Internet banking.
· Securing AWS Firewall Manager against Log4Shell.
· Support in vulnerability management regarding Log4Shell.
· Assist in modernizing cryptography policy.

Continuous Delivery (CDE), DevOps, Cyber Security, Code Review, Node.js, Vserver (Linux), Amazon Web Services (AWS), Kubernetes

9/2016 – 9/2021

· Conducting penetration testing for network and web applications, including REST APIs
· The development of software for penetration testing such as Metasploit modules or DDOS
tools
· Creation and delivery of “Threat Models” workshops
· Hardening of network components against DDOS attacks
· Implementation of the IT-Grundschutz Compendium (BSI-200-1) and ISO 27001 (ISMS)
· Security check of a Kubernets architecture
· Development of an LDAP architecture for Kubernetes
· Automating a process for authentication and authorization Users using a Single Sign-on
(SSO) solution
· IT forensics of IT security incidents
· Incident Response - Management of IT security incidents such as ransom attacks
· Implementation of a site-to-site VPN for AWS environments using Terraform
· Migration of a GPG authentication platform to an SSH based certificate authentication
· ority (CA)
· Providing a video chat platform with Jitsi
· Audit of a platform developed with Privacy by Design.
· Support in the audit of a cryptographic security concept (secp256k1).

DevOps, Cyber Security, Penetrationstest, Cloud (allg.), Amazon Web Services (AWS), DIN EN ISO 27001