IOT | LLM/AI, Cybersecurity Architecture, Penetration Testing, Mentoring
- Verfügbarkeit einsehen
- 0 Referenzen
- auf Anfrage
- 1058AM Amsterdam
- Weltweit
- ru | kk | en | de | nl
- 25.02.2025
Kurzvorstellung
Qualifikationen
Projekt‐ & Berufserfahrung
1/2023 – 11/2023
TätigkeitsbeschreibungDesign, architecture and implementation of the microchips secure manufacturing line system.
Eingesetzte QualifikationenCyber Security, System Architektur, Systems Engineering
1/2019 – offen
TätigkeitsbeschreibungVarious system and security architecture related projects at EV/EVCS industries. Including system redesign, cryptography implementation, compliance and secure posture assessments, penetration testing
Eingesetzte QualifikationenKryptographie, Compliance management, Cyber Security, System Architektur, Systems Engineering
1/2005 – 1/2019
Tätigkeitsbeschreibung
● Risk Assessment & Threat Modelling: Masterful in identifying design and technical vulnerabilities, and in fortifying systems against cyber threats.
● Process Improvement: Skilled in streamlining IT/IoT/manufacturing and security processes for cost reduction and enhanced efficiency.
● System Architecture: Experienced in designing scalable, efficient, maintainable and secure systems based on standards and best engineering and security practises.
● Team Development & Leadership: Experienced in building and leading teams of security experts.
● Security Analysis, Preparedness, Penetration tests and Ethical Hacking: Proficient in evaluating security postures and preparing for evolving challenges.
● Secure SDLC & Software Design and Development: Experienced software and system architect with extensive hands-on expertise in Python, JavaScript, and TypeScript.
● Risk and Damage Assessment: Evaluating risks and current business processes and assets to assess potential damage.
● Targeted Security Assessments: Conducting thorough assessments to identify and address security vulnerabilities.
● Threat Minimization: Identifying and reducing financial and reputational damage from security threats.
● Information Leak Prevention: Minimising the risks of valuable information leakage.
● Team Mentoring: Fostering cohesive teams and robust cybersecurity practices.
● Cost Reduction: Streamlining IT and security processes to reduce costs.
● Development Security Preparedness: Training developers to maintain robust information
systems security.
● Security Posture Improvement: Enhancing the ability to respond to cybersecurity threats.
● Framework Creation: Establishing frameworks for secure process and project
implementation.
● System Architecture Development: Expertly design and redesign systems within IT/OT and
IoT domains, extensively utilising microservices, containerization, and virtualization to enhance critical system factors.
Cyber Security, System Architektur
Über mich
Helping ensure OT/(I)IoT/robotics systems, AI systems, web apps, and APIs are robust and secure against attacks and malfunctions.
System Architecture Assessment and Code Review:
Conducting thorough reviews of existing or planned systems to identify security vulnerabilities, resilience issues, LLM/AI security risks, operational risks, bottlenecks, and cost inefficiencies.
Technical Architecture Consulting:
Identifying system and security requirements, assessing risks, and recommending the best technology stacks, platforms, solutions, cryptography and network protocols tailored to specific business needs.
Applied Cryptography Consulting:
Advice on selecting optimal cipher suites and network protocol security levels, guiding implementation, procedures, and the structure of key
infrastructures (PKI, symmetric key infrastructure). Assist in designing cryptographic strong protocols within resource-limited environments and in the development of secure cold, warm, and hot key storage solutions. Help with designing TPM and HSM keys storing, related key management procedures and protocols.
Standards Consulting:
Advise, perform gap analysis and assist in the compliance process of industry standards such as ETSI EN 303 645, IEC 62443, RED, Cyber Resilience Act (CRA), and
NIS2 to ensure that products and systems are compliant.
Secure SDLC & Software Design and Development:
Helping establish and manage secure software development processes from the beginning, focusing on security.
Vulnerability and Incident Management:
Helping establish and manage security programs related to cybersecurity incidents and vulnerabilities. Helping establish and manage bug bounty programs, security triage, continuous threat modelling, risk management practices
and disaster recovery plans.
Technical Risks and Damage Assessments:
Evaluating risks and current business processes to identify potential damage, ensuring thorough vulnerability analysis.
Weitere Kenntnisse
Actively develop software using Python 3.8+, TypeScript/JS, Rust. Familiar with C#, and C/C++ , PHP, Java, GoLang. Familiar with Machine Learning (ML), big data, blockchain, low level AI-concepts, and Machine Vision. Experienced with AWS and GCP clouds, linux, *nix systems, familiar with hypervisors, VMs, Docker and containerisation in general, network protocols (Modbus, MQTT, OPC, ) and networks, complex network infrastructures (data-diodes, isolated and semi-isolated layers), (industrial) firewalls and routers.
Persönliche Daten
- Russisch (Muttersprache)
- Kasachisch (Muttersprache)
- Englisch (Fließend)
- Deutsch (Grundkenntnisse)
- Niederländisch (Grundkenntnisse)
- Europäische Union
- Schweiz
- Vereinigte Staaten von Amerika
Kontaktdaten
Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.
Jetzt Mitglied werden