Bianca-beata B. - Consultant

Go to Website

Würzburg, Germany

Experience

Jul 2023 - Present

2 years 4 months

Würzburg, Germany

Consultant

Software Developer

ISO 27001:2022 standard update
Support for migrating from ISO 27001:2017 to ISO 27001:2022
Security analyses and controls
Development of security concepts
Conducting internal audits

Apr 2023 - Present

2 years 7 months

Lead Auditor

Würth IT GmbH und PÜG Prüf- und Überwachungsgesellschaft mbH

Conducting external audits
Conducting audits at energy providers
Conducting audits in the banking sector
Conducting audits in software development

Jan 2023 - Present

2 years 10 months

Bietigheim-Bissingen, Germany

Data Protection Officer

Automotive supplier

Data protection consulting
Preparation of data protection impact assessments
Maintaining and updating processing records
Updating privacy policies
Handling data protection incidents
Conducting data protection training

Mar 2021 - Oct 2021

8 months

Stuttgart, Germany

Consultant

Car manufacturer

IT security management/IT compliance
Security and compliance requirements in the digital workplace product development process
IT security management
Security analyses and controls
Identification and reduction of security and compliance risks
Development of security concepts

Jul 2020 - Jun 2024

4 years

Berlin, Germany

Consultant

Telecommunications company

Introduction of NIS 2 Directive (01/24 – 06/24)
Implementation of NIS 2 Directive
Implementation of measures for preventing and containing cybersecurity incidents
Responding to security incidents
Adapting risk management for AI systems and cybersecurity
Documentation and containment strategies, incident reporting
Risk analysis and security for information systems
Maintaining and restoring backup management and crisis management
IT security, BSI IT baseline protection (07/20 – 12/23)
Conducting baseline protection checks
Conducting risk analyses
Documenting security processes
Contributing to training management (training and awareness)
Support in the Digital Radio BOS / BDBOS area for subprojects
Current-state assessment of information security for Digital Radio BOS
Creating and maintaining security concepts for the Digital Radio BOS area
Creating information security policies for the Digital Radio BOS area

Feb 2020 - Dec 2020

11 months

Munich, Germany

Consultant

Munich Re

Data protection consultant
Order data processing (review of existing contracts, assessment for departments to determine whether a data processing agreement is required, drafting data processing agreements, negotiation with contracting parties, etc.)
Opinions on data protection legal matters
Creation of processing records, review of existing processing records
Conducting data protection impact assessments
Data protection legal review for the implementation of a knowledge platform

May 2019 - Dec 2019

8 months

Stuttgart, Germany

Consultant

Daimler AG

Data protection / IT law consultant
Employee data protection
Order data processing
Creation of processing records
Development of a concept for a Data Protection Impact Assessment (DPIA)
Opinions on data protection legal matters
Development of specialist concepts (e.g., deletion concept)
IT compliance

Dec 2018 - Mar 2019

4 months

Hamburg, Germany

Consultant

Bank

Information security management system consultant
BSI IT baseline protection
Support in implementing the information security management system
Creation of the information security framework
Development of technical concepts and policies
IT compliance
Development of audit programs

Feb 2018 - Nov 2018

10 months

Eschborn, Germany

Consultant

Deutsche Bank AG

Data protection consultant
Support in implementing the General Data Protection Regulation
Employee data protection
Deletion concept
Opinions on data protection legal matters
Compliance
Segregation of duties

May 2017 - Dec 2017

8 months

Grünstadt, Germany

Consultant

Stadtwerke Grünstadt GmbH

Establishment of an ISMS according to ISO 27001 and ISO 27019 under §11 EnWG
Support in project planning
Creation of the information security framework
Development of policies and documentation

Jan 2014 - Dec 2017

4 years

Munich, Germany

Employee

City of Munich

Staff member in the area of social security law

Jan 2011 - Dec 2012

2 years

Timișoara, Romania

Working student

Serban Law Office

Staff member in the field of corporate law
Drafting contracts
Preparing presentations and decision documents on corporate law matters, especially data protection
Developing guidelines and documentation