CyberSecurity Executive (CISO) / Security Project Manager / Interims Management

CISO-level leadership from strategy to operations — strengthening cyber resilience, protecting value chains and supporting business transformation

• CISO
• Cyber Security8 J.
• ISO27001
• Certified Information Security Manager6 J.
• CRA
• Datenschutz
• ISMS
• KRITIS
• NIS2
• Projektleitung / Teamleitung (IT)

I am a senior cybersecurity leader and Fractional CISO supporting organisations in building effective, scalable and business-aligned security capabilities. My focus is not only protection, but enabling growth — helping companies win customers, enter regulated markets and operate confidently under real-world threat conditions.

I work across strategy, governance and operations. This includes defining security strategies, establishing security organisations and processes, guiding leadership through regulatory requirements, and improving operational resilience. Unlike purely advisory roles, I typically stay involved through implementation and stabilisation to ensure measurable results.

My background covers international environments, distributed teams and complex stakeholder structures. I regularly operate between executive management, IT, engineering, legal and business units, translating risk into decision-relevant language and turning security from a technical topic into a management instrument.

Typical engagement scenarios include:
• Building or restructuring a security program
• Preparing organisations for certifications or regulatory oversight
• Supporting leadership during rapid growth or organisational change
• Establishing risk management and reporting that drives decisions
• Improving cooperation between security, IT and product teams
• Acting as interim security leadership or sparring partner for management

I combine strategic perspective with pragmatic execution. My approach is to reduce complexity, prioritise what actually matters, and implement solutions that remain workable after the engagement ends.

Rather than maximising control frameworks, I aim to create security that the organisation can realistically operate — stable, explainable and aligned with business objectives.

My expertise covers enterprise cybersecurity leadership across strategy, risk management and operational execution. I have led and supported organisations in establishing security programs, improving resilience, and preparing for regulatory and customer scrutiny in international environments. My work spans governance design, security operating models, incident preparedness, third-party risk, and integration of security into technology and business processes. I am particularly experienced in translating complex risk into management-level decisions and implementing pragmatic controls that are sustainable beyond the project phase.