Go to Website
  • en
  • de

Alexander N.

Security Expert

Munich, Germany

Experience

Nov 2024 - Jun 2025
8 months
Germany

Security Expert

DAK-Gesundheit

  • Pentest of mobile applications, code review, Gematik audit
  • Development of secure software development methods
  • Creation of security and test concepts
  • Penetration testing, software architecture, analysis of vulnerabilities
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SharePoint, PrimeFaces, Git, security regulations, .NET, AWS, API
  • Tools: MobSF, Frida, Android Studio, Drozer, Objection, Azure
Dec 2023 - Nov 2024
1 year
Nuremberg, Germany

Security Architect / Penetration Tester

Agentur für Arbeit

  • Pentest of web applications and clients
  • Penetration testing, software architecture, analysis of vulnerabilities
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial
  • SharePoint, financials, writing documentation, security policies, software systems, SQL, PrimeFaces, Git, critical infrastructure (KRITIS), security regulations, AWS, API
Sep 2022 - Nov 2024
2 years 3 months
Germany

IT-Security Manager

Investitionsbank Schleswig-Holstein

  • Managing pentests
  • Vulnerability management, SIEM
  • Supporting audits of basic security concepts
  • Evaluation of security concepts
  • Project management
  • Penetration testing, software and API architecture, analysis of vulnerabilities
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SharePoint, PrimeFaces, Git, security regulations, AWS
Jan 2022 - Dec 2022
1 year
Germany

Penetration Tester

DHL

  • Pentest of web and mobile applications, code review, retest of findings
  • Penetration testing, software architecture, analysis of vulnerabilities
  • Confluence, Jira, automation, API, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SQL, PrimeFaces, Git, security regulations, .NET, AWS
  • Tools: Burp, SSLyze, Nessus, Wireshark, MobSF, Frida, Android Studio, Drozer, Objection
Oct 2021 - Oct 2021
1 month
Germany

Auditor

Anonymous client

  • CIS Microsoft Azure Foundations Benchmark (v3) Audit
  • Tools: Azure
Jun 2021 - Dec 2021
7 months
Germany

Penetration Tester and Project Lead

PwC

  • Pentest of mobile applications, code review, Gematik audit
  • Development of secure software development methods
  • Creation of security and test concepts
  • Penetration testing, software architecture, vulnerability analysis
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SharePoint, PrimeFaces, Git, security regulations, .NET, AWS, API
  • Tools: MobSF, Frida, Android Studio, Drozer, Objection, Azure
Apr 2021 - May 2021
2 months
Germany

Pentest Coordinator and Security Engineer

DHL

  • Pentest of web applications, code review
  • Development of secure software development methods
  • Network testing, SIEM
  • Creation of security and test concepts
  • Penetration testing, software architecture, vulnerability analysis
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SQL, PrimeFaces, Git, security regulations, .NET, AWS
  • Tech Stack: Spring Boot, Kotlin, Apache, Jira, AngularJS, Linux, Windows, NetApp, Aruba, Barracuda, Azure, API
Oct 2020 - Apr 2021
7 months

Security Engineer / Penetration Tester

Federal Ministry of the Interior

  • Pentest of web applications, code review, SIEM
  • Development of secure software development methods
  • Creation of security and test concepts
  • Vulnerability Management
  • Penetration testing, software architecture, vulnerability analysis
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SQL, PrimeFaces, Git, security regulations, AWS
  • Tech Stack: Spring Boot, Java, Apache, Jira, AngularJS, Linux, Splunk
Jun 2020 - Oct 2020
5 months
Germany

Penetration Tester, Security Engineer and Auditor

VHV

  • Pentest of numerous web and mobile applications, web services (OWASP, BSI, MITRE ATT&CK)
  • Code review, ISO 27001 audit, SIEM, vulnerability management
  • Consulting on fixing security vulnerabilities
  • Creation of security and test concepts
  • Penetration testing, software architecture, vulnerability analysis
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SQL, PrimeFaces, Git, security regulations
  • Tech Stack: Tomcat, Angular, Java, Linux, SoapUI, iOS, Android, HP servers, Apache, Windows Server
Jan 2020 - May 2020
5 months
Munich, Germany

Penetration Tester and Auditor

Anonymous client

  • Pentest of numerous web and mobile applications, web services and networks (OWASP, BSI, MITRE ATT&CK)
  • ISO 27001 audit
  • Consulting on fixing security vulnerabilities
  • Development of secure software development methods
  • Creation of security and test concepts
  • Penetration testing, software architecture, vulnerability analysis
  • Confluence, Jira, automation, information security, databases, J2EE, JavaServer Faces, JavaServer Pages, Liquibase, Apache, Maven, Mercurial, Oracle Financials
  • Writing documentation, security policies, software systems, SQL, PrimeFaces, Git, security regulations
  • Tech Stack: Angular, Java, Apache, Linux and Windows Server, Cisco switches, Fortinet
Oct 2019 - Dec 2019
3 months
Munich, Germany

Penetration Tester

Anonymous client

  • Penetration tests according to OWASP, BSI, MITRE ATT&CK Framework
  • Code review
  • Consulting on fixing security vulnerabilities
  • Development of secure software development methods
  • Tech Stack: Angular, React, Java, Linux, AWS, iOS, Android
Jun 2019 - Oct 2019
5 months
Germany

Penetration Tester and IT Security Consultant, Auditor

Anonymous client

  • Penetration testing of numerous web and mobile applications, web services (OWASP, BSI, MITRE ATT&CK)
  • Support of IT projects as Project Security Officer
  • ISO 27001 Audit
  • Consulting on fixing security vulnerabilities
  • Development of secure software development methods
  • Creation of security and test concepts
  • Tech Stack: Angular, React, Java, Linux, AWS, iOS, Android
Sep 2018 - May 2019
9 months
Passau, Germany

IT Security Consultant and Auditor

Anonymous client

  • Threat modelling
  • Vulnerability assessment (OWASP, BSI, MITRE ATT&CK)
  • Managed bug bounty program
  • Security awareness testing
  • SIEM
  • ISO 27001 Audit
  • System hardening Industry 4.0 (IT/OT mixed environment)
  • Consulting on fixing security vulnerabilities
  • Support of the project as Project Security Officer
  • Tech Stack: .NET, CentOS, Windows Server, AWS, Sophos Firewall, Jira, Citrix Netscaler, NetApp, VMWare
May 2018 - Aug 2018
4 months
Budapest, Hungary

Penetration Tester

Anonymous client

  • Penetration testing against the infrastructure
  • Web application and web service penetration testing
  • Wireless network testing
  • Consulting on fixing security vulnerabilities
  • Tech Stack: Windows Server, Windows and MacOS clients, React, Sophos Firewall, Cisco routers
Mar 2018 - Apr 2018
2 months
Munich, Germany

Penetration Tester

Anonymous client

  • Penetration testing against the client's infrastructure
  • Web application and web service penetration testing (OWASP, BSI, MITRE ATT&CK)
  • Consulting on fixing security vulnerabilities
  • Tech Stack: MEAN Stack, Linux, F5 Firewall, NetApp
Nov 2017 - Feb 2018
4 months
Munich, Germany

Penetration Tester

Anonymous Client

  • Vulnerability assessment and threat modeling for web applications and the client's e-commerce business (OWASP, BSI, MITRE ATTACK)
  • Advising on fixing security vulnerabilities
  • Magento, Salesforce, Windows Server, Sophos Firewall, Jira
Jan 2014 - Sep 2017
3 years 9 months
Budapest, Hungary

Security Engineer (Penetration Tester) and Web Developer

Vesper Development Ltd.

  • Developing websites and online presence
  • Customer support
  • Automated security analysis
  • Penetration testing
  • System hardening
Aug 2006 - Jan 2014
7 years 6 months
Budapest, Hungary

IT Support and Administration

Niké Ltd.

  • Support in setting up and running a data center

Languages

Hungarian
Native
German
Advanced
English
Advanced

Education

Middlesex University

MBA · United Kingdom

Lorem ipsum dolor sit amet

Diploma · IT And Cyber Security · United Kingdom

Certifications & licenses

Financial Modeling and Valuation Analyst

Google Project Manager Professional

Offensive Security Certified Professional (OSCP)

Certified Ethical Hacker (CEH)

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Valeri M.

DORA Readiness – Gap Analysis and Implementation for Banks

View Profile
Sascha L.

CEO

View Profile
Stanislaus S.

Security Consultant

View Profile
Henryk O.

Security Consultant

View Profile
Dirk M.

Project Lead

View Profile
Ali Y.

Principal Product Security Engineer

View Profile
Matthias S.

Senior Consultant Security (freelance)

View Profile
Christian D.

Managing Director and Senior Consultant

View Profile
Patrick B.

AML Officer

View Profile
Nils K.

Vulnerability Management and Secure SDLC

View Profile
Guido S.

Business Analyst/Requirements Engineer

View Profile
Markus W.

IT security consultant

View Profile
Hermann M.

Managing Consultant Cybersecurity

View Profile
Federico L.

ISO – Senior Consultant Quality & Information Security

View Profile
Gino P.

Compliance Expert

View Profile
fratch Part of Bitkom logo
linkedIncrunchbaseyoutube
  • English
  • Deutsch

2025 © FRATCH.IO GmbH. All rights reserved.