Entwickler/IT Security Specialist

J. is a Senior IT-Security Architect with expertise since 2006. Specialized in SOC/SIEM operations, Penetration Testing (Mobile, Web, Infra), and GRC. Started in SW Development (Banking, Portals) and was Global Lead Mobile Security at a tech giant.

• Corporate Security
• Cyber Security Engineer
• IT Architekt Informationssicherheit
• IT Sicherheit (allg.)
• Mobile Software Engineer
• Reverse Engineering
• Salesforce.Com2 J.
• Security Operations Center (SOC)2 J.
• Sicherheit von Webanwendungen2 J.
• Softwareentwicklung (allg.)

Software Development starting in 1998 to becoming a leading Cyber Security Strategist and Architect. This unique technical lineage, built within critical sectors like Banking and Insurance, allows me to understand systems and vulnerabilities from the code level up, powering all subsequent security efforts.

My experience has positioned me at the intersection of technical offensive security and executive compliance. I’ve guided some of the world's most sensitive organizations, including providing application security testing for a Global Intergovernmental Organization (like the UNHCR) and performing deep source code audits and penetration tests for a Central Bank. During my tenure as the Global Lead for Mobile Application Security at a major technology company (like Salesforce) , I was responsible for securing millions of users, managing complex incident handling with SOC/SIEM, and providing the final security sign-off for critical product releases. Furthermore, I directed multi-year projects for international financial institutions, successfully achieving critical standards like PCI DSS/ISO Certification.

Today, as a CTO of a consulting company, my specialization lies in high-demand consulting areas for large corporations, including DAX40-level clients. This encompasses architecting and operationalizing SOCs and delivering full-scope security services across major enterprise platforms and Cloud environments. My work includes defining IT security strategy, establishing robust Threat Modeling , conducting comprehensive Security Audits , and ensuring organizational adherence to GRC standards. I provide the necessary deep technical insight—proven by hands-on experience in Configuration Hardening and Source Code Audit —combined with the executive guidance required to build and operate resilient defense structures.

My expertise is defined by my hands-on technical depth and exposure to mission-critical systems in highly regulated sectors. My technical foundation spans a wide array of languages, including C, C#, Java, Go, Python, and Rust , allowing me to conduct detailed Source Code Audits and ensure Secure Development across multiple platforms. I routinely apply my skills in Reverse Engineering and Binary Analysis to complex issues, supported by extensive experience in Forensic Investigations.

I have led key projects across major, sensitive sectors, achieving specific security goals through targeted analysis. This includes multiple internal product security audits for a "Big Four" Accounting Company, performing security analysis based on IT compliance frameworks for an International Insurance Company , and conducting application penetration tests for a Central Bank. Whether defining security based on developed network threat models, performing Denial of Service tests to evaluate business continuity, or delivering IT-Security Architecture guidance, my focus remains on achieving measurable security maturity and operational resilience.