freiberufler Enterprise Mobility & IAM Architect auf freelance.de

Enterprise Mobility & IAM Architect

zuletzt online vor 8 Tagen
  • 130€/Stunde
  • 82229 Seefeld-Hechendorf
  • Umkreis (bis 200 km)
  • de  |  en
  • 18.03.2020

Kurzvorstellung

Mit meiner langjahrigen Berufserfahrung berate ich Unternehmen (DAX) bei der Auswahl und Einführung von Technologien aus den Schwerpunktbereichen Identity & Access Management, sowie Enterprise Mobility Management.

Qualifikationen

  • Azure Active Directory
  • B2B Identity Management
  • Enterprise Mobility Management
  • Hybrid Identity Management
  • Identity & Access Management
  • Infrastructure Design & Strategy
  • Microsoft Office 3654 J.
  • Projektmanagement (IT)4 J.

Projekt‐ & Berufserfahrung

Lead Architect
Kundenname anonymisiert, Herzogenaurach
4/2017 – 12/2019 (2 Jahre, 9 Monate)
Konsumgüterindustrie
Tätigkeitszeitraum

4/2017 – 12/2019

Tätigkeitsbeschreibung

Lead architect for design and build of Office 365 / modern app cloud security; design of new IAM strategy based on Microsoft Identity platform
Client: international manufacturer of sports articles with HQ in Herzogenaurach (DAX)
- Design, PoC and introduction for multi-vendor conditional access for trusted managed devices to Office 365 (40.000 users: corporate iOS, macOS and Windows 7/10 devices) based on VMware Identity Manager, ADFS, Azure AD Premium, SCCM/GPO, JAMF Pro and VMware Workspace ONE UEM  user story presented on Microsoft Identity Customer Onsite Event London, 2019
- Development of global IAM roadmap & strategy (“IAM solution guide”) based on Microsoft Identity platform: design and piloting of secure app integration blueprints, includes secure and VPN-free access to on-prem web services
- Development of B2B strategy (access for external users to corporate apps) and support of Microsoft Teams PoC
- Design and preparation of global Azure MFA user enrollment (40.000 users)
- Strategy development of secure IAM for retail users on shared iOS devices
- Customer representation in regularly Microsoft Identity Onsite Events in London with the Microsoft Identity engineering team lead by Alex Simons

- Design, implementation and introduction of password less “MobileSSO” for Office 365 and other cloud services based on VMware Workspace ONE (Identity Manager) for corporate iOS devices (30.000 devices); pilot of “MobileSSO” for Android Enterprise
- Solution design and integration of Azure MFA for Citrix Web Frontend, Atlassian Jira/Confluence and other web-based services (secured by F5 BigIP)
- Design and implementation of MobileSSO for legacy Kerberos-based on-premises web services based on F5 BigIP APM
- Design and PoC of conditional access for macOS based on JAMF/Intune integration/Azure AD Premium
- PoC of Azure AD based SAML-Integration of Atlassian tools (Crowd, Jira and Confluence) incl. B2B support
- Design and PoC of Android Enterprise for corporate devices / BYOD, managed by VMware WSONE UEM
- PoC security key authentication to Azure AD (FIDO2, incl. Hybrid Azure AD Join)
- Design strategy to eliminate legacy auth to Office 365 services, build reports to monitor progress (Azure Log Analytics, Power BI)

Eingesetzte Qualifikationen

Projektmanagement (IT), System Architektur, Microsoft Office 365

Lead Architect
Kundenname anonymisiert, München
3/2015 – 3/2017 (2 Jahre, 1 Monat)
Versicherungen
Tätigkeitszeitraum

3/2015 – 3/2017

Tätigkeitsbeschreibung

Lead Architect for design and build of international Enterprise Mobility Services “powered by AirWatch”
Client: Insurance, international, HQ Munich (DAX)
- Analyze mobile use cases and operation models (COBO/COPE/BYOD)
- Evaluate mobile platforms iOS, Android und Windows 10 Mobile for use cases
- Develop evaluation criterias and shortlist EMM solution
- Installation PoCs with VMware AirWatch, Good Dynamics and Citrix XenMobile
- Design & implementation of AirWatch system for 40.000 iOS devices
- Security concepts COBO/COPE/BYOD for iOS, Android & W10M
- Design of S/MIME gateway (in cooperation with VMware), implementation of automatic deployment and management of user certificates through self-service portal
- Implementation of certificate-based authentication to Exchange 2007/2013 ActiveSync (KCD)
- Implementation of cert-based SSO to Intranet services
- Mobile access to VDI (Citrix XenApps)
- Design of load balanced environment/HA (sizing for 40.000 devices)
- Design of AirWatch migration to new datacenter
- data leakage prevention concept for mobile usage of Office 365
- Performing AirWatch upgrades up to version 9.0.1 and training of international operations team
- Blueprint of MobileSSO for iOS based on VMware Identity Manager

Eingesetzte Qualifikationen

Projektmanagement (IT), System Architektur, Vmware, Microsoft Office 365

Ausbildung

Communication Science, main focus: online media subsidiary subjects: Computer science, Marketing and
Magister Artium
1997
München

Über mich

Since nearly 30 years I am working as independent consultant. As lead architect my project history covers design and introduction of complex enterprise mobility systems for large international companies. In recent years I have branched out into developing cloud security strategies for DAX companies and institutes in the financial and insurance sector - enterprises facing the challenges of secure identity and access management in a hybrid application landscape whilst enabling collaboration with other companies from a modern digital workplace. I am member of the Microsoft Identity Advisors.

Holding a master’s degree in communication and computer sciences, I excel at presenting concepts and strategies to different stake holders covering all technical and management levels. My presentations and documentations reflect my profound experience as specialized author for numerous IT publications. Successful modern strategies and comprehensive solutions require not only an interdisciplinary perspective towards standards and potentially applicable products but also interface work between participating IT departments like security, modern workplace & client management, cloud services, app development, network and end-user support in order to successfully establish an accepted solution. My extensive and long-standing project experience enables me to master these tasks.

To draw hands-on experience from latest technology, I own and operate a solution lab, based on VMWare vSphere technology located in a Munich datacenter. The lab is utilized for projects to develop and “PoC” the integration of hybrid solutions in the areas of cloud security, identity and access management (IAM as well as enterprise mobility. Integrated products available at the lab are for example Office 365, Azure AD Premium as part of the Microsoft Identity platform, Microsoft Endpoint Manager (“Intune”), Microsoft Cloud App Security (CASB) and Identity Governance, VMware Workspace ONE UEM (“AirWatch”) with VMWare Identity Manager, MobileIron Core and JAMF Pro. Part of the standard environment are also on-prem services like Active Directory/ADFS, Windows CA, Exchange and F5 BigIP. This set of services is an extendable starting point to evaluate all aspects of hybrid on-prem/cloud solutions as well as test migration from a traditional on-prem to modern cloud-based solutions with always “mobile first” in mind.

Weitere Kenntnisse

Microsoft Office 365, Azure Active Directory, Microsoft Identity Platform, PIM, Identity Governance, Enterprise Mobility Managment, iOS, Android Enterprise, Windopws 10, IAM, PKI, MFA, Conditional Access, VMWare Workspace ONE UEM, AirWatch, MobileIron, Microsoft Intune, F5 BigIP, VMware Identity Manager

Persönliche Daten

Sprache
  • Deutsch (Muttersprache)
  • Englisch (Fließend)
Reisebereitschaft
Umkreis (bis 200 km)
Arbeitserlaubnis
  • Europäische Union
Profilaufrufe
2677
Alter
55
Berufserfahrung
33 Jahre und 11 Monate (seit 01/1991)
Projektleitung
10 Jahre

Kontaktdaten

Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.

Jetzt Mitglied werden