IT Security Expert and Technical Project Lead
- Verfügbarkeit einsehen
- 0 Referenzen
- 90‐250€/Stunde
- 81371 München
- auf Anfrage
- ru | de | en
- 18.10.2018
Kurzvorstellung
Qualifikationen
Projekt‐ & Berufserfahrung
5/2004 – 7/2015
Tätigkeitsbeschreibung
• Identity Management Solution (MS FIM) worldwide (Project Manager, Architect and Technical Lead).
o Managed up to 15 internal and external resources throughout different phases of the project. Project budget $500K+
o IM processes review, remediation and identities (employee, contractors and temps) lifecycle automation
o Responsible for architecture and deployment during multiple phases of the project
o Global multi-domain Active Directory identity management automation
o MS Azure/O365 migration support. Account provisioning and mailbox licensing automation
o SAP HR integration
o SAP GRC web service provisioning workflow integration to provide for full SAP accounts lifecycle management
o Notifications and approval workflows
o Operational processes design and handover coordination
o Training for support teams
o MS AD LDS, Flexera, IET (SMT) and other systems integration
------------------------------
• Public Key Infrastructure (MS PKI) worldwide (Project Manager, Architect and Technical Lead)
o Managed the project team of internal and external resources. Team size up to 10 people dependent on the project phase).
o MS FIM CM Implementation for certificate lifecycle management (PM, Architect and Technical Lead)
------------------------------
• Privilege Management Solution – Avecto PrivilegeGuard (DefendPoint) based (Project Manager, Architect and Technical Lead)
o Project team – 5-10 people. Project budget $200K+
o Evaluated and made the product decision
o Evaluated rights and privilege requirements across the organization (hundreds of business applications)
o Designed and implemented process based elevation policy
o Created operational procedures for privileged access requests
o Project result – fully eliminated the risk of local admin rights while having maintained business applications functionality through policy based targeted process auto- (or on-demand) elevations
------------------------------
• Intrusion Detection and Prevention systems in EMEA (Project Manager, Architect and Technical Lead)
o Managed internal and external (MSS resources) throughout different phases of the IDS program within Tech Data
o SiteProtector infrastructure
o IBM/ISS Proventia IDS (G/GX) systems (25 sensors)
o Policy design
o Supporting Operational processes
o IBM SOC coordination
------------------------------
• Symantec Endpoint Protection deployment in EMEA (PM, Architect and Technical Lead)
------------------------------
• McAfee mail security (former MXLogic) service deployment (PM and Technical lead). Project included full evaluation of comparable competitive services (e.g. MessageLabs)
------------------------------
• Developed IM Security Standard and deployed Instant Messaging Secure gateway solution - Symantec IM Manager (PM, Architect and Technical Lead)
------------------------------
• Symantec Enterprise Manager (SEM) for compliancy reporting (PM, Architect and Technical Lead)
------------------------------
• Country ECOM solutions migration and consolidation to central systems (PM, Architect and Technical Lead)
------------------------------
• Deployed EMEA logging infrastructure (Syslog based)
------------------------------
• Deployed EMEA vulnerability scanning infrastructure
------------------------------
• Performed review and clean-up of numerous Cisco ASA/PIX based firewalls in country offices
------------------------------
• Analyzed traffic flows and developed the rule-set for managed CheckPoint firewall protecting corporate ERP, EDI and ECOM Productive Systems
------------------------------
• Active Directory design in EMEA (Architect)
------------------------------
• Tech Data’s new ECOM Data Center logical design (Architect). Primary responsible for Active Directory services up to go-live.
Microsoft SQL Server Reporting Services (SSRS), Reporting, Access, McAfee (allg.), Symantec (allg.), Symantec Endpoint Protection, SAP Sicherheit (allg.), Check Point (allg.), Cisco Firewalls, IT Sicherheit (allg.), IDS (Intrusion Detection System), Firewalls, SAP HR / SAP HCM, SAP GRC
3/2004 – 4/2004
TätigkeitsbeschreibungSupported Microsoft Infrastructure
Eingesetzte QualifikationenMicrosoft Windows (allg.)
5/2003 – 9/2003
TätigkeitsbeschreibungResponsible for IT Security in Accenture's GNOC (Global Network Operations Center)
Eingesetzte QualifikationenCheck Point (allg.), IT Sicherheit (allg.), Ipsec, Certified Information Systems Security Professional (CISSP)
Zertifikate
Weitere Kenntnisse
• Public Key Infrastructures (PKI)
• Cisco ScanSface/CWS
• Avecto PrivilegeGuard / Defend
• Digital Forensic
• Firewalls (CheckPoint, Cisco ASA, MS ISA/TMG)
• Client and server security. Systems hardening
• Identity Management systems (FIM, SAP GRC)
• RSA SecureID
• SAP Security
• MS ISA/SQUID/NetAppliance Proxy solutions
• Cisco ASA/PIX, Cisco ACS, Cisco Works
• WLAN Security
• Video Conferencing Systems (Polycom and Tandberg)
• Protocols knowledge (TCP/IP, OSI model protocol stack)
• 802.1x, VPN, IPSEC, DNS, SecurID, RADIUS, TACACS+, DHCP
• Project management (PRINCE2)
Persönliche Daten
- Deutsch (Fließend)
- Englisch (Fließend)
- Russisch (Muttersprache)
- Tschechisch (Gut)
- Europäische Union
- Schweiz
Kontaktdaten
Nur registrierte PREMIUM-Mitglieder von freelance.de können Kontaktdaten einsehen.
Jetzt Mitglied werden