Recommended expert

Björn Bausch

Project Manager NIS-2

Björn Bausch
Limburg, Germany

Experience

Apr 2024 - Dec 2024
9 months

Project Manager NIS-2

Chemicals Group

  • Basic NIS-2 impact assessment
  • NIS-2 registration
  • Conducting a current state analysis
  • Creating the requirements specification
  • Monitoring the implementation of NIS-2 compliance
  • Establishment of reporting procedures in the context of NIS-2
  • Risk analysis and security for information systems
  • Handling security incidents
  • Maintenance and recovery, backup management, crisis management
  • Supply chain security, interfacility security, third-party security
  • Security in development, procurement and maintenance, vulnerability management
  • Evaluating the effectiveness of cybersecurity and risk management
  • Cybersecurity and cyber hygiene training
  • Cryptography and encryption
  • Personnel security, access control and asset management
  • Multi-factor authentication and continuous authentication
  • Secure communication (voice, video and text)
  • Secure emergency communication
Oct 2023 - Apr 2024
7 months

Data Protection Auditor

Deutsche Messdienstgesellschaft mbH

  • Document reviews (privacy policies, information notices, guidelines, records of processing activities, data processing agreements, IT policies, confidentiality agreements, declarations of commitment, data protection incidents)
  • Reviewing internal and external audit reports and the DSMS
  • Interviews with relevant stakeholders
  • Use of questionnaires and checklists
  • Site visits
  • Preparing a detailed audit report on EU GDPR compliance
Jul 2023 - Dec 2023
6 months

Data Protection Auditor

Techem Energy Service GmbH

  • Document reviews (privacy policies, information notices, guidelines, records of processing activities, data processing agreements, IT policies, confidentiality agreements, declarations of commitment, data protection incidents)
  • Reviewing internal and external audit reports and the DSMS
  • Interviews with relevant stakeholders
  • Use of questionnaires and checklists
  • Site visits
  • Preparing a detailed audit report on EU GDPR compliance
Dec 2022 - Dec 2023
1 year 1 month

Data Protection Auditor

Techem Mess- und Wassertechnik

  • Document reviews (privacy policies, information notices, guidelines, records of processing activities, data processing agreements, IT policies, confidentiality agreements, declarations of commitment, data protection incidents)
  • Reviewing internal and external audit reports and the DSMS
  • Interviews with relevant stakeholders
  • Use of questionnaires and checklists
  • Site visits
  • Preparing a detailed audit report on EU GDPR compliance
Sep 2020 - Feb 2021
6 months

Senior Project Manager EU GDPR

Energy service provider, North Rhine-Westphalia

  • Setting up an EU GDPR project structure
  • Technical coordination of various project streams and departments
  • Status tracking and reporting at executive level
  • Stakeholder management
  • Sparring partner for business units and IT
  • Leading workshops for current state analysis, concept and recommendations for implementing the EU GDPR
Jan 2018 - Dec 2024
7 years

External Data Protection and Information Security Officer, Project Manager, Whistleblowing Officer

Various public institutions and medium-sized companies

  • Appointed as external Data Protection Officer and Information Security Officer
  • Led kick-off workshops and gap analyses
  • Conducted current state analyses
  • Managed projects and led project teams
  • Introduced and operated a data protection management system (DSMS) under EU GDPR
  • Introduced and operated an information security management system (ISMS) under ISO 27001 and BSI IT-Grundschutz
  • Training and awareness sessions
  • Created records of processing activities (RoPA)
  • Conducted risk analyses under BSI 200-3 and emergency management under BSI 200-4
  • Created data protection and information security concepts and documentation
  • Conducted data protection audits
  • Advised on automation opportunities, AI, and NIS-2
Jan 2018 - Dec 2024
7 years

External Data Protection Officer and EU GDPR Project Manager

Techem Group

  • EU GDPR project manager
  • External corporate data protection officer
  • Led kick-off workshops including defining preparations for subprojects
  • Data protection management according to EU GDPR
  • Developed and implemented various data protection concepts (e.g. deletion policies, data processing agreements, IT guidelines, data breach)
  • Supported and conducted data protection audits
  • Ensured compliance with GDPR, the new BDSG, TKG, TMG, and the IT Security Act
  • Training and gathering internal requirements of the works council (Techem AT)
  • Prepared for ISO/IEC 27001 certification for Techem AT
Aug 2017 - Dec 2024
7 years 5 months

Managing Director and External Data Protection Officer

b-pi sec GmbH

  • Disciplinary and professional leadership
  • Data protection
  • Data protection projects
  • Data protection management under EU GDPR
  • Compliance with BDSG, TKG, TMG, and the IT Security Act
  • Implemented ISMS according to ISO 27001 and BSI IT-Grundschutz
  • Vulnerability management
  • Forensic analyses
  • IT security implementations
  • Conducted current state analyses in data protection and information security
  • Expert witness activities
  • Lecturer
  • Consulting on automation and AI, including machine learning
May 2017 - Dec 2017
8 months

External IT Security Audit Consultant

KfW Bankengruppe

  • Project preparation and organization for IT security audits
  • Supported the execution and follow-up of audits
  • Led kick-off workshops and result presentations
  • Mediated between auditor and audited organizational unit
  • Conducted preliminary and on-site data protection checks
  • Initiated and validated risk analyses for findings
  • Data protection management under EU GDPR
Jan 2016 - Jan 2017
1 year 1 month

Head of Digital Forensics & Cyber Security and External Data Protection Officer

Cyber Security Consulting Firm

  • Established and led the Digital Forensics & Cyber Security department
  • Vulnerability management
  • Forensic analyses
  • IT security implementations
  • Conducted current state analyses
  • Expert witness activities
  • Executed data protection projects and managed data protection under EU GDPR
  • Introduced ISMS according to ISO 27001 and BSI IT-Grundschutz
  • Lecturer
Dec 2015 - Jan 2019
3 years 2 months

Head of Data Protection & Compliance

Verband Europäischer Sachverständiger und Gutachter e.V.

  • Support in setting up current IT security topics and data protection projects
  • Trainer in data protection and compliance
  • Forensics
  • Regional Manager RLP & NRW
  • Seminar development
Mar 2010 - Dec 2015
5 years 10 months

IT Manager

BBK Braun-Gillette Krankenkasse

  • Overall responsibility for the IT department
  • Migrating the server environment to a new data center
  • Creating workflows
  • Disciplinary and technical management
  • System migrations with IT security in mind
  • Data protection management according to BDSG, TKG, TMG, IT Security Act
  • Introducing new backup solutions and DMS (d.velop d.3)
  • Employee training and documentation
  • Setting up server systems
  • Implementing BI (COGNOS) and custom analyses
  • Introducing nationwide CMS software
  • Developing authorization concepts
  • Escalation management and cloud strategy
Jul 2009 - Nov 2009
5 months

Consultant Network Engineer

Syzygy Deutschland Media & Werbeagentur

  • Planning and implementing VMware projects
  • Team leadership
  • ESX4 rollout and VM support
  • Internal training
  • Planning and organizing backup topics
  • Implementing Symantec Veritas Backup Exec 12.5
  • Network planning and support
  • Installing and maintaining Windows servers
  • Remote maintenance
  • Consulting on sourcing and cloud strategies
Mar 2008 - Mar 2009
1 year 1 month

Management Consultant

IT-Strategieberatung

  • Project management for complex IT implementations and BlackBerry integrations
  • Deploying AVAYA phone systems, video conferencing systems, and backup solutions
  • IT strategy and management for international real estate companies and law firms
  • Planning and conducting IT trainings
  • Proposal management, budget planning, and controlling
  • Managing service providers
  • Maintaining and migrating complex Microsoft environments
  • Implementing firewalls and VPNs
  • Consulting on sourcing and cloud strategies
Sep 2005 - Mar 2008
2 years 7 months

Head of IT (Interim Manager)

Insurance

  • Integrating the IT department into the group
  • Designing the IT infrastructure
  • Hardware and software distribution, as well as work time planning
  • Staff management and organizational planning
  • Creating system documentation
  • Conducting user seminars and trainings
  • Consulting on sourcing and cloud strategies
Sep 2001 - Jun 2005
3 years 10 months

Senior Consultant

Deutsche Bahn AG

  • Management, operation and further development of the intranet and internet application OPEN
  • Planning and configuration of IT and communication systems
  • System administration and troubleshooting
  • User and system consulting
  • Creation of system documentation
  • Organization and delivery of seminars and training
  • Implementation of the evaluation module EvaSys
  • Consulting on e-learning and cloud strategies

Summary

Björn Bausch is the owner of a consulting firm for data protection, information security and compliance. At the same time, he is an absolute expert in these three core competencies.

In addition to advising clients as an external data protection and information security officer, he regularly gives specialist presentations or acts as a keynote speaker.

Mr. Bausch has over 20 years of relevant professional experience in the IT environment, during which he has led a variety of projects in information security, data protection and regulation.

Developing and supporting the implementation of DSMS and personal ISMS systems is as natural to Mr. Bausch as guiding teams in implementing measures and projects.

Skills

  • Experience As It Manager

  • Data Protection Auditor

  • Data Protection Officer

  • It Expert

  • It Auditor

  • Consulting Level: Partner

  • Skills: Data Protection Officer, Information Security Officer, Ciso, Auditor

  • Ms Office 365

  • Excel

  • Word

  • Powerpoint

  • Ms Exchange

  • Teams

  • Sharepoint

  • Visio

  • Ms Project

  • Sap Erp

  • Isms / Dsms

  • Vmware

  • Avaya

  • D-velop D.3

Languages

German
Native
English
Advanced

Certifications & licenses

Auditor (DEKRA)

DEKRA

BAIT / KAIT / VAIT - Supervisory requirements

BSI IT Baseline Protection Practitioner

Compliance Officer (TÜV)

TÜV

Data Protection: EU GDPR & New BDSG

KBW

IT Expert for Systems and Technology

Data Protection Specialist (DEKRA)

DEKRA

Whistleblower Protection Officer

ISO 27001 Foundation (PECB)

PECB

IT-Forensic-Analyst

PRINCE2

Quality Seal Continuing Education Hessen e.V.

Weiterbildung Hessen e.V.

IT Forensic Expert

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Alexander Sänn
Alexander Sänn

Owner and Managing Director

View Profile
Stephan Selnerat
Stephan Selnerat

IT-Security Manager

View Profile
Maxim Ribakowski
Maxim Ribakowski

Information Security Officer

View Profile
Lucas Löcken
Lucas Löcken

Consultant in Information Security, Data Protection and Business Continuity Management

View Profile
Nikolaus Betzler
Nikolaus Betzler

ICT Risk Management and Information Security

View Profile
Christian Gebhardt
Christian Gebhardt

Deputy Chief Information Security Officer

View Profile
Markus Willems
Markus Willems

KRITIS Consultant

View Profile
Ina Rothe
Ina Rothe

Consultant

View Profile
Christian Heutger
Christian Heutger

Lead Auditor

View Profile
Volker Jung
Volker Jung

Interim CISO (Germany, Austria, US, APAC), Auditor

View Profile
Jörg Hoffmann
Jörg Hoffmann

Managing Director; Data Protection Officer; Information Security Officer

View Profile
Henryk Orantek
Henryk Orantek

Security Consultant

View Profile
Pierre Gronau
Pierre Gronau

Ansible Automation, Windows Third Level Support

View Profile
Jörg Iffländer
Jörg Iffländer

External Information Security Officer

View Profile
Daniel Jüntgen
Daniel Jüntgen

Information Security Consultant

View Profile
Bianca-beata Blaj
Bianca-beata Blaj

Consultant

View Profile
Sandra Klinkenberg
Sandra Klinkenberg

Webinar Leader - Blackout Prevention and Preparation

View Profile
Günther Eufinger
Günther Eufinger

Senior Consultant

View Profile
Federico Leefhelm
Federico Leefhelm

ISO – Senior Consultant Quality & Information Security

View Profile
Fabian Flock
Fabian Flock

OT Security Champion Europe

View Profile
Thomas Kaufmann
Thomas Kaufmann

Data Protection and Information Security Consultant

View Profile
Dirk Meissner
Dirk Meissner

Project Manager AOS

View Profile
Burkhard Hinz
Burkhard Hinz

Consultant for Data Protection, AI, Compliance and Organizational Development

View Profile
Friederike Balaz
Friederike Balaz

Information Security Manager

View Profile
Thomas Ullrich
Thomas Ullrich

Senior Consultant / PM Infrastructure Services & Workplace Migration

View Profile
Klaus Kilvinger
Klaus Kilvinger

Consultant and Trainer, Managing Partner

View Profile
Marcus Zink
Marcus Zink

Data Protection Officer

View Profile
Matthias Steinmann
Matthias Steinmann

Senior Consultant Security (freelance)

View Profile
Stefan Laubmeister
Stefan Laubmeister

Freelance Lecturer

View Profile
Thomas Martini
Thomas Martini

Consultant / System Administrator / IT Analyst

View Profile