About me

Education

Certifications

  • ISC² Certified Information Systems Security Professional (CISSP), including all 3 concentrations:
    • Information Systems Security Architecture Professional (ISSAP)
    • Information Systems Security Management Professional (ISSMP)
    • Information Systems Security Engineering Professional (ISSEP)
  • ISC² Certified Secure Software Lifecycle Professional (CSSLP)
  • ISACA Certified Information Security Auditor (CISA)
  • ISACA Certified Information Security Manager (CISM)
  • SANS GIAC Global Industrial Cyber Security Professional (GICSP)
  • SANS GIAC Global Response Industrial Defense (GRID)
  • SANS GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
  • SANS GIAC Penetration Tester (GPEN)
  • SANS GIAC Web Application Penetration Tester (GWAPT)
  • SANS GIAC Assessing and Auditing Wireless Networks (GAWN)
  • SANS GIAC Mobile Device Security Analyst (GMOB)
  • ISA99/IEC62443 Cybersecurity Fundamentals Specialist (ISA)
  • Certified ISO 27001 Information Security Manager (CIS Cert)
  • Certified ISO 27001 Information Security Auditor (CIS Cert)
  • TÜV Trusted Security Auditor (TSA)
  • CDIT – Certified Data & IT Security Expert (Incite)
  • Certified Data Protection Expert (Incite)
  • Certified Data Protection Officer (CIS Cert)
  • EC-Council Certified Ethical Hacker (CEH)
  • ITIL V3 Foundations Service Management Certification
  • Red Hat Certified Engineer, Microsoft Certified Systems Engineer (MCSE), Oracle Certified Professional
  • Certified SCRUM Master
  • Certified Project Manager (IPMA Level C)
  • … and some more

Memberships and voluntary activities

  • OVE – Austrian Association for Electrical Engineering:
    • Chairman of working group MR 65 Industrial Automation & Control System Security
    • Deputy chairman of TSK MR 65 (national mirror committee IEC TC 65 – IEC 62443, IEC 61508, etc.)
    • Member of the board of the “Society for Information and Communication Technology” (GIT)
    • Head of the “Cyber Security” working group at GIT
  • ISA – International Society of Automation
    • ISA99 Committee – ISA/IEC 62443 Development
  • Austrian Standards
    • AG 001.27 Information security, cybersecurity and privacy protection (ISO JTC 1 SC 27 – ISO 2700x)
    • AG 001.18 Data Protection
    • AG 001.41 Internet of Things, Komitee 001 Informationstechnologie
  • (ISC)2 – International Information Systems Security Certification Consortium – Austrian Chapter – Board Member
  • ISACA – Information Systems Audit & Control Association – Austrian Chapter
  • SANS InstituteGIAC (Global Information Assurance Certification) Advisory Board
  • CSP – Cyber Security Platform of the Austrian Federal Government (BKA)
  • OCG – Austrian Computer Society
  • IT Security Experts Group – Austrian Federal Economic Chamber
  • TeleTrusT – Federal Association for IT Security e.V. (Germany)
  • Hauptverband der allgemein beeideten und gerichtlich zertifizierten Sachverständigen (Association of sworn and court-certified experts

Career milestones

  • Senior Security Architect and Teamlead Security Professional Services at T-Systems Austria, the Austrian subsidiary of Deutsche Telekom
  • Establishment of a research group for applied IT security research at the AIT Austrian Institute of Technology, Austria’s largest non-university research institution – applied IT security research in the areas of Smart Grid and Industrial Security, High Assurance Cloud Computing, National Cyber Defense
  • System architect and project manager at Austrian Research Centers (later AIT) in the application domains Biogenetics, eHealth, Satellite Remote Sensing, Sensor Networks and eGovernment
  • Technical consultant and project manager at Fabasoft AG, management and implementation of software development and infrastructure projects for systems in the areas of enterprise content management, electronic file management, CRM and eGovernment
  • IT consulting and software development for small and medium-sized enterprises as freelance consultant