Cyber Security Analyst

Profil Foto
Verfügbarkeit einsehen
  Weltweit
de  |  en  |  hi
  auf Anfrage
  76227 Durlach
 16.10.2018

Kurzvorstellung

I have over 30 years of IT development , in Telecom Networking, and Cyber Security experience, gain from Intel, NSN, Nokia, Ericsson, and Siemens.

Ich biete

IT, Entwicklung
  • Cyber Security
    5 Jahre, 1 Monat Erfahrung
Forschung, Wissenschaft, Bildung
  • Informatik
Technik, Ingenieurwesen
  • Prüftechnik (allg.)
  • Konstruktionstechnik (allg.)
  • Nachrichtentechnik
  • Funktechnik

Fokus
  • networking

Projekt‐ & Berufserfahrung

Cyber Security SW Architecture Consultant
Visteon Electrons - Karlsruhe Germany August 2015, Karlsruhe
12/2014 – 12/2017 (3 Jahre, 1 Monat)
Automobilindustrie
Tätigkeitszeitraum

12/2014 – 12/2017

Tätigkeitsbeschreibung

I am Cyber Security SW Architecture Consultant, responsible for all aspects of Threat Vulnerabilities Analysis solution and planning. I define security Architecture concepts, implementations support, and resolution of issues for Connected Secure Car.
Responsible for complete development of Network Security measures, performing discovery, detection, and disruption activities, reporting, and providing analysis of all threat landscape and hardening of security concepts using various tool for vulnerability priority. Provide processes for embedded real time Automotive System Security architecture design technical lead, on VIP, SoC system architectures with sub-systems employing blocks such Zone Models, Firewall concept, Intrusion protection, as cryptographic engines Root of Trust using security and cryptographic standards, and systems implementation using (NIST, PKCS, FIPS-140, ISO).
I defined PKI based services, Certificate, Encryption and implemented PKI Certificate Policies for End-2-End security for clients to establish a Root Of Trust in development and production, including General Data Protection Regulations(GDPR).
Focused on security architecture model Optimization in context of Integrity, Confidentially, and Authenticity for Autonomous Automotive Infotainment security solutions, SoC, CryptoCell, Cryptographic Hash Engine, digital Key Signatures, Encryption controls, OWASP, Penetration/scalability Test, Trusted Execution Environment, with Amazon backend Cloud web services(AWS, MS Azure), all within Public Key Infrastructure(PKI) Services , IEM, X509 based certficate, SecOC, Secure Boot, and Secure loading. All within Cockpit, Instrument Clusters, Virtualization (VMWare, Hyper-V) and head-up displays(HuD) – as well as core technologies such as augmented reality(AR) and artificial intelligence, on STAR 2/3 architecture.

I Translate assessment results into an Information Security Specification (Security plan). I develop and manage the IT Security policy standards and baselines for conforming to Policy Framework to prevent IDS, IPS(Snort, Suricata,Sourcefire), Web Application Firewalls for Cloud Connected services within Network Topology, ISO 27001, ISO 21434, ISO 26262, ASIL and ISO/IEC SPICE Processes.
Both High Level and Detail Threat system analysis were carried out for Embedded SoC memory protection, OS Virtualization, and Network Cloud infrastructure solutions for End to End, Network Connected attacks and ASLR. All the development was done within DevOps Continuous Delivery toolchain (Puppet, Chef) environment, and CANoe, CAPL, and PROVEtech.

I supported and acted as point of contact for Penetration Testing specification and standardized Hypervisor security platform for Virtualization using both VMware, and Xen. The multi OS’s (AUTOSAR, Linux, INTEGRITY) were running on SoC, ARM Trusted Firmware Execution Environment(TEE) using Cloud services, IPSec, SSL/TLS communication, on high availability infrastructure. Common tools like JIRA, Eclipse, Maven, Jenkins, Junit, CANoe.DIVA, ZenZefi (certificate and key management), and CANdela for Secure Diagnostics, and Access Rights Management. All within DevOps, Agile environment.

Eingesetzte Qualifikationen

Cyber Security, Cyber Security Practitioner (CSP), Adaptive Software Development (ASD), Feature Driven Development (FDD)


Cyber Security Analyst
Delphi - Europe Germany Nov 2013 – Aug 2015, Hildesheim
12/2012 – 12/2015 (3 Jahre, 1 Monat)
Innere und Äußere Sicherheit
Tätigkeitszeitraum

12/2012 – 12/2015

Tätigkeitsbeschreibung

I am Network Security Architect Lead. Responsible for defining Cloud Platform backend Infrastructure Security, availability, with full Network Security solutions, Data Centre hosting environment Servers based on vSphere, VCloud, EMC, HP Cloud System Matrix, MS Azure and Amazon Cloud backend AWS Servers.

Provisioning of Data Storage managed by NetAPP Data Migration and Virtualisation of OTA Cloud hosting environments, IaaS, PaaS, and SaaS. I setup and configure Data Centres, with all related routers and switches, CheckPoint Firewall, load balancing and F5, in Cloud Foundry compliance toolset.

I participate in migration WAN/LAN Troubleshooting, Root Cause Analysis, management, availability, Load balancing, and capacity planning . The Blade system is based on Cisco, using Virtualization VMware Hypervisor, HP, Microsoft, Cisco ASA, Junipers Firewall SRX 240, and EX series for VLAN Routing Switching of all IP traffic.

I specified and reviewed Amazon backend Cloud web services(AWS), MongoDB, SIEM to prevent Secure system Boot, Secure Network vulnerabilities all within Public Key Infrastructure(PKI). Use of SIEM together with AccelOps to prevent security blind spots.

I define and implement Security Identity Management solutions, and define Java Management API optimisation of solutions, including firewalls(Juniper), Reverse Proxy, Remote Access, DHCP, DNS, IP addressing, VPN, IPS, LAN/WAN technologies switching, routing, load balance for Broadband Remote Access Routes(BRAS)/BNG . In Continuous Integration and Configuration environment for ecommerce business analysis for end customers.

During project following tools and technologies were used for this Infotainment Telematics’ project, CAN bus, CAN-based fault diagnosis, Vector tools CANoe and CANalyzer Connect car, CAN, CANopen, AUTOSAR, Cloud, DevOps , MIL, DTC , ECU , Security Control SSLv2 , CAN OBD Dongle APN, API development Integration REST/SOAP, MIL, Linux, Android, QNX Integrity.

I Configured setup with Juniper firewalls (Netscreen) , .NET, administration and configuring Cisco, Junipers routers. I provided 2nd Level Support when required. I have certifications as CCNP, CCNA and JNCIA.

Eingesetzte Qualifikationen

Big Data, Datawarehouse / DWH, Cyber Security


Network Engineer
Intel Mobile Communications - Munich August 2010, Munchen
10/2010 – 12/2011 (1 Jahr, 3 Monate)
Telekommunikation
Tätigkeitszeitraum

10/2010 – 12/2011

Tätigkeitsbeschreibung

I am Senior Network Engineer responsible for Network Planning Optimisation mobile/fixed Networks RF 4G/LTE , 3G , 2G, CS/PS solutions for RAN Core Network, and for OS Virtualization of Cloud Datacentre . I participate in Firewall/Load Balancer Configurations, IP routing protocols, architecture and configuration of clusters DHCP, DNS, NAT, VPN, IP MPLS, SSL, SNMP, Security Switched Network environment for products based on Transmission, and Network protocols.

My network a new Data Centre (Superblade) Cluster design with load balancing for redundancy across fire zones, and to integrate this to existing VLANS, Layer 2 Layer 3 STP, routing MPLS, and BGP, VPN, Juniper ME/EX Junos, Cisco Firewalls Switches & Routers , gateways and Infiniband fabrics , KVM Storage using BGP. I participate in diagnostic and debugging.

Involved in a task for Cloud Hostinng Virtulization solution in a DataCentre based on Juniper MX/EX router with optimised Clusters for Load balancing ACE, F5 running in Super Bladeswitching technology. Using BMC Atrium for development, management and configuration. Switching technology 4500 + 37XX series: Layer 2: 802.1x, Layer 3 vpc. was used for this project.

I participate in detail technical analysis and documentation of IP converge networks and related Network and Transmission protocols for GSM, NGN, IMS, UTRAN, and LTE , IP/MPLS, BFGP, . I support development,configurations, IOT Testing, and Trouble shooting using trace logs of MSS, MGW, HLR, and STP.The applications for which I was responsible were deployed on Vendors coming from NSN, Ericsson, Alcatel Lucent,Cisco IOS, Cisco Switching/Routing Catalysts CAT6k5, Juniper, and Checkpoint. Protocols used during the projects were SIP, IP,H232, MGCP, BGP, OSPF, VoIP, STP, IS-IS over IP/MPLS L2, and VPN (SSL, IPSec) Firewalling.

During the project I used the following development and test tools: Solaris, Linux, C, C++,, Clearcase, CME, CM Synegy, Eclipse, DebugMux, Python, Tcl, Perl, Lauterbach , Windows Mobile , ClearQuest Test Manager, SDE, Tootls, QA Tools and Ethereal (Wireshark) Trace analysis. Agilent Signaling analyzer for Wireless/network traffic, together with Rhode Schwarz Testers.

In the Access Network Juniper Firewall Routers were used for VPN concentrators. , CheckPoint (Network Security) Cisco HighEnd Router(6500/7600).Other Cisco network devices were Routers & Catalysts, Call Manger CUCM, CUBE, CCM 7, VLAN, IPSec Security and DCN were deployed towards NGN , SBC, IMS(CSCF,MGC,MGW), SS7, DNS, SIP Bluecoat Proxy servers.

Eingesetzte Qualifikationen

Telnet (Telecommunication Network)


Senior System Development and Test Engineer
Belgacom Brussels Belgium Aug 2008 July, Brussels
8/2008 – 10/2010 (2 Jahre, 3 Monate)
Telekommunikation
Tätigkeitszeitraum

8/2008 – 10/2010

Tätigkeitsbeschreibung

I am Senior Test Engineer responsible for Test Coordination of all IOT QA/ UAT System verification/certification, and Integration for NGN, ISUP SS7, VoIP (IPv6) , PSTN, , 2G, 3G, LTE Stack, IMS, HSPA, WCDMA, GSM, IPSec, DNS, STP, MGW, ACME SBC, SIP solution on Fix and Mobile Core Networks.

I participate in deeper technical analysis of networks, development, ACME SBC configurations, IOT Testing, and Trouble shooting. The applications for which I was responsible were deployed on Vendors coming from NSN, Ericsson, Alcatel Lucent, Cisco IOS, Cisco Switching/Routing Catalysts CAT6k5,CAT7k, Juniper, and Checkpoint. Protocols used during the projects were SIP, IP, BGP, OSPF, VoIP, STP, IS-IS over IP/MPLS L2, and VPN (SSL, IPSec) Firewalling.

I Participate in Acceptance Testing which is based on TMap with defined Test Scenarios and automated Test scripts using HP Quality Centre for modelling and execution. Afterwards, I make decision in certification of the product solutions. I have main intefrace with various technical teams and with external vendors.

I Plan and Coordinate deeper technical issues to all Vendors during implementation migration phase for Mobile Core, NGN, and IMS System Acceptance, Fault Management, Software Release Management (License Key Management). With the IMS core I have involve with configuring Acme SBC, BGF, CSCF Function HSS, MGCF/SGF for PSTN, core networks.

I fully Validated IP Stack Protocols, and feature(s) that are related to it (Functional, Endurance, Performance, Interoperability IOT), define KPIs using OSS and developed automated test cases (using Perl Python) in order to increase number of tested combinations. Decided on what equipment is needed and testing as close as possible to a real customer setup by using available test tools in the Lab environment.

Scope of IOT testing for Mobile covered full RRC/RLC , MAC/MAC-hs level test cases.
Participate in end to end solutions together with other technical experts of the project implementation teams, product lines and 3rd party suppliers. In case of issues evolving , I proceed to arbitrage of the issues by determining the responsible (IP-PABX or Network VoIP platform Vendor) in order to come to a resolution for the problems
I used the following RT SW development and test tools: C, C++, Linux, Clearcase, CME, CM Synegy, Eclipse, DebugMux, Python, Tcl, Perl, Lauterbach , Fido, Platform Assistant, .NET, C#, Windows Mobile , ClearQuest Test Manager, SDE, Tootls, QA Tools and Ethereal (Wireshark) Trace analysis. Agilent Signaling analyzer for Wireless/network traffic, together with Rhode Schwarz.

Design, implementation and Validation testing was done using TMAP, Agile SCRUM methodology for this project


Development Test and Integration Engineer
Ericsson Nurnberg Germany October 2006 Aug, Nurnburg
10/2006 – 8/2008 (1 Jahr, 11 Monate)
Telekommunikation
Tätigkeitszeitraum

10/2006 – 8/2008

Tätigkeitsbeschreibung

Responsible for Managing and Developing a detailed Product Test Strategy for the applications, to test Automation within the IT Program. To Develop Test Plans and review Release against Completion Criteria. Some of the input was coming from RFCs, and OMA SyncML SOA Specs, other input from DOORS.

Provided System test/integration verification , and release support for Portal SW applications. Tests were mainly for Content Management systems based on BEA WebLogic Integration.

I performed testing for RTOS 3G, UMTS, IMS, HSPA, LTE and VoIP services. My development tasks included module development using OOA/OOD C, C++ Implementation Migration/Porting Testing, Integration and Verification of Platform and the Application suites SW. This was based on in house Codecs, DSP, ARM process.

Proposed a Strategy for efficient usage of performance loading tools like QA load, LoadRunner. Together with Enterprise application performance tuning involving BEA WebLogic tuning, JMS Tuning, MQ and Oracle database tuning. I wrote the necessary LoadRunner scripts and Java code to realize the proposal recommend.

I used the following SW development and test tools: OOAD, C++, Linux Java, JSP, UML, JDK, MS Visual Studio, Eclipse, Clearcase, DOORS, CME, CM Syngery, Eclipse, PL/SQL, XMLSpy, DebugMux, Lauterbach , Fido, Toad, Toad, CVS, , Windows Mobile/ CE, and Ethereal (Wireshark) for Trace analysis.


System Engineer - Development Test and Validation
Nokia Siemens Networks - Ulm Germany Mar 2005, Ulm
3/2005 – 10/2006 (1 Jahr, 8 Monate)
Telekommunikation
Tätigkeitszeitraum

3/2005 – 10/2006

Tätigkeitsbeschreibung

Test and Integrat Lead Engineer responsible for System Enigneering and Validation. My daily project management tasks include: develop and maintain project plans and schedules. Identify interdependencies across projects and propose how they should be managed. To manage project resources. issue resolution, risk mitigation, and escalation. Project forecast and tracking. The application were Telecom 2G GSM, UMTS HSPA, and LTE .

My tasks also include testing and integration, and release support for Portal SW applications. Tests were mainly for Content Management systems based on BEA WebLogic Integration.

Proposed a Strategy for efficient usage of performance loading tools like QA load, LoadRunner. Together with Enterprise application performance tuning involving BEA WebLogic tuning, JMS Tuning, MQ and Oracle database tuning. I wrote the necessary LoadRunner scripts and Java code to realize the proposal recommend.


SW Development Engineer
Nokia - Helsink Finland Jan 2002 Jan 2005, Helsinki
1/2002 – 1/2005 (3 Jahre, 1 Monat)
Telekommunikation
Tätigkeitszeitraum

1/2002 – 1/2005

Tätigkeitsbeschreibung

SW development engineer responsible for component development, and integration. All verification was performed on site and on customer locations. I support all development Test and Integration tasks. I used C, C++, Java, on Linux OS platform.

I also lead a team development team, responsible to ensure that assigned project plans are maintained and priority/visibility are delivered on-time, in line with the scope definition and according to budget.

Other daily tasks include participating in J2EE SW Design, Develop, Test and Integrataton. SW. This SW was a browser based client applications using J2EE BEA WebLogic application Servers in a J2EE/Oracle/Solaris environment. . The application were design using Rational Rose, UML, XML, and RUP.

Application were developed using Java, JDBC, JMS, Servlets, JSP, ANT, JUnit, Spring Framework, Hibernate, HTML and JavaScript, LDAP, SQL, and Oracle

The testing included all Portal Functional testing , J2EE BEA Weblogic based Performance testing , and Content Validation testing. The automatic testing which was used on this project utilized the following tools and utilities(QA Load, QA Runner, LoadRunner(scripting), WinRunner, Test Director, Junit, and HttpUnit).

All testing was performed according to the Internal Test Process. I assisted in defined and implemented a SW Development and Internal Test Process. including the Test Plan and the Test Process Plan Specifications.

My Project responsibilities include creation of Release Test Plan, coordination, Build, Integration of all Global SW development and test activities , to ensure Quality and the Release of the product.

On other projects,I have been responsible for Managing and Developing a detailed Product Test Strategy for the applications, to test Automation within the IT Program. To Develop Test Plans and review Release against Completion Criteria. All applications were devloped in J2ME, RUP and Sun Solaris, IIS, Windows NT 4, LAN/WAN Network Environment.

In addition my role was to provide Network Test and Configuration guidelines and to implement these. All System Test, UAT and Bug Management was done using Ration Rose Tools. I was responsible as a main contact point for all Support services after the delivery.
The network supported all Windows MultiMedia Technologies including Video Streaming Unicast/Multicast. All Codecs/Video, Encoding/Decoding, Windows Media Formats and including file extensions (wma, wmv, asf, asx, wmz etc),were supported over the network.

Test Automating was done for all Functional and non-Functional tests for all applications to determine Stability, Performance and Scalibility.


Zertifikate

M.Sc
Juni 1998

Ausbildung

Software Engineer
(M.SC - Oxford university)
Jahr: 1998
Ort: Oxford

Qualifikationen



QA Test, Integration , IOT, Validation, Team Leading 10 Years
SW System Specification, Test Specifications, ISTQB 7 Years
System/Functional Testing, Integration, Test Executions, and Acceptance 8 Years BGF Acme SBC, CSCF , HSS, MGCF/SGF , PSTN, and 2G/3G Mobile 4 Years
QALoad, QARunner, LoadRunner, WinRunner, Quality Centre (QC) 2 Years
Cisco Call Manager V7.x, V8.x, CUBE, Routers, Gateways Firewalls 2 years
Avaya CM 5.x, SM, Alcatel F700 R7.x , F750 R9.x , ITIL 2 Years
Cisco Voip PABX, CUME , CheckPoint & ISG Juniper Firewalls, VLAN 2 years
Cisco Secure Manager, NetScreen Security Manager 3 Years
BGP, OSPF, EIGRP, QoS, VoIP, VPN (SSL, IPSec), Firewalling 2 Years
Sun Solaris, Unix, C, C++, Unix Shell Programming 12 Years
J2SE, J2EE, J2ME, CLDC MIDP, Java, XML, C#, .NET, JavaScript 4 Years
GSM, GPRS(L2/L3: RLC/MAC, MM/GMM), 3G UMTS (Protocols) 3 Years
BEA WebLogic, JSP, Servlet, JDBC, RMI , Java Web Server 3 Years
3G, 3GPP R5, IMS, SIP, RNC, CS, PS Core Networks 3 Years
WiMAX BTS, IP Routing, IPSec, HSDPA, HSUPA , SOA, SyncML 3 Years
Apache Tomcat Web Server, WiMAX BTS, IPSec, HSDPA, HSUPA 3 Years
Object Oriented (OO) Analysis and Design, C++, ASN.1, GDMO..... 12 Years
BroadBand IP, Routing/Signalling Protocols, BGP-4, OSPF, IS-IS , RIP 3 Years
IPv4, IPv6 , VPN, UMTS, 3G, MPLS, DiffServ 3 Years
SDH, ATM, IP , ISDN, PSTN, DSL, xDSL 8 Years
Telecommunications, PDH, SDH, ITU, ISO, TMN , POTS, ISDN, V5.2 .. 8 Years
Software Process Improvement (SPI), QA, ISO9001, IEEE, CMM .... 6 Years
TTCN/Telelogic, Rational RequisitePro 3 Years.
Distributed Network Management, OSI Stacks, CMISE, LAN, X25 (DCN) ...... 7 Years
Rumbaugh, Shlaer-Meler, Booch Rational Rose/C++, QAC++, OODBMS .... 2 Years
Project Management, Team Leading 3 Years
HP UX, APIs, XMP/XOM, CMOT, CMISE , UML, Rational Rose, SDL/SDT 4 Years
Structured Analysis/Design, Formal Methods: Z, Yourdon(real time), SSADM .. 4 Years
Secure Communications, Bridge Routers, TCP/IP 5 Years
OSF Motif, Windows, HpopenView 6.x ..... 3 Years
Oracle Database (RDBM), V8.0, SQL*Plus, PL/SQL, ProC ...... 4 Years
Test tools, Test bed, Generic Test Harness, PowerPilot, TestNet 6 Years
MS Office 98, Windows NT 4.0 Microsoft Project 3 Years
ClearCase Multisite, Unix/Sun Solaris 6 Years
OS Symbian 7.0, Series 60, Series 90, EPOC C++, MMS 4 Years
Metrowerks CodeWarrior, CM Synergy PVCS 2 Years
Linux, OmniTracker, Catapult, and Pegasus , DOORS, SOAP 3 years
Rational Suite: RUP, Rational Rose(UML), Robot, ClearCase, ClearQuest 4 Years
IN, JAIN, NGIN/IMS, X-CSCF AS, IVR 3 Years
Linux, OmniTracker, Catapult, and Pegasus , DOORS, SOAP 3 years
GNU Tool chain, Eclipse IDE, Lauterbach, Win CE 4 Years
Cygwin, Moses, SDE, SDK, SDP, SIP, RTP, CME, Windows Mobile OS 2 Years
Cisco CCM 7.1, Avaya CM , IP-PABX, NGN, VoIP SIP Trunking , SS7 3 years
Agilent Signaling analyzer, Rhode Schwarz 2 Year
LLDM LTE MA Trace Analysis, 3GPP TS 24.008, TS 25.331 2 Years
IRAT IOT , Artemis, Mobile Analysier (2G 3G LTE Stack Analysis) 3 Year

Über mich

I have deep telecom IT development Test Exp.

Persönliche Daten

Sprache
  • Deutsch (Grundkenntnisse)
  • Englisch (Fließend)
  • Hindi (Fließend)
  • Urdu (Muttersprache)
Reisebereitschaft
Weltweit
Arbeitserlaubnis
  • Europäische Union
Profilaufrufe
2551
Alter
61
Berufserfahrung
35 Jahre und 4 Monate (seit 06/1983)
Projektleitung
10 Jahre

Kontaktdaten

Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.

Jetzt Mitglied werden »