Wirtschaftsinformatiker

• Analysis of findings:

• Detailed review of vulnerabilities identified by BaFin in vulnerability management during §44 KWG audit

• Assessment of potential impacts on institute's security and stability

• Prioritization of findings by risk level and urgency

• Development of action plan:

• Creation of comprehensive plan to address identified vulnerabilities

• Definition of concrete measures, responsibilities and timelines

• Consideration of regulatory requirements

• Implementation of measures:

• Execution of planned measures to address vulnerabilities

• Documentation of implementation steps and effectiveness

• Involvement of relevant internal and external stakeholders

• Proof of effectiveness:

• Conducting effectiveness checks

• Creating report on measure effectiveness and regulatory compliance

• Submission of report to BaFin

Project goal: Improving cybersecurity through vulnerability agent deployment for early detection and remediation of vulnerabilities to minimize cyber attack risks

Project scope:

• Selection and implementation: Choosing suitable vulnerability agent and integration into existing IT infrastructure
• Rollout planning: Creating detailed rollout plan covering all locations
• Training: Conducting training for IT staff
• Test phase: Conducting test phase to verify agent functionality
• Global rollout: Successive agent rollout across all locations
• Continuous monitoring and maintenance: Ongoing IT security monitoring and agent maintenance

• Implementation of DORA and NIS-2 requirements:

• Implementation of comprehensive ICT risk management system

• Conducting regular resilience tests

• Management of ICT third parties

• NIS-2 specific requirements:

• Application of risk-based approach in implementing IT security measures

• Compliance with incident reporting obligations

• Cooperation with other companies and authorities in cybersecurity

• Identification of vulnerabilities and security gaps in personnel, processes and technology
• Conducting realistic attack simulations and scenarios (phishing campaigns, penetration tests, social engineering, DDoS simulation, Active Directory attack)
• Testing effectiveness of existing security measures and security team's response capability
• Remediation of vulnerabilities: Implementation of recommendations
• Improvement of security measures: Adaptation of security strategies, policies and processes
• Employee training: Raising awareness of cyber threats and strengthening security consciousness

• Assessment of current scanner infrastructure and functionalities
• Definition of cloud-based scanner requirements (performance, scalability, security)
• Selection of suitable cloud provider and scanner solution
• Creation of detailed migration plan
• Proof-of-concept execution
• Cloud environment setup and scanner installation
• Scanner configuration for specific requirements
• Integration with existing systems
• Development of automation mechanisms
• Comprehensive testing
• Vulnerability remediation and configuration optimization
• Documentation and training materials creation
• Data and configuration migration
• Parallel operation of old and new systems
• Old system decommissioning

• Inventory: Recording and analysis of existing ISMS documentation, policies, processes and technical measures
• Gap analysis: Comparison of current state with ISO 27001 requirements, identification of gaps and vulnerabilities
• Risk assessment: Evaluation of identified risks regarding potential impacts
• Action planning: Development of action plan to close identified gaps and minimize risks
• Reporting: Creation of comprehensive audit report with gap analysis results, risk assessment and action plan

• Planning: Development of detailed audit plan defining objectives, scope and methodology
• Execution: Conducting audit including data collection, interviews and document analysis
• Reporting: Creating audit report summarizing findings including identified risks and vulnerabilities
• Follow-up: Tracking implementation of audit recommendations

• Scope definition:

• Determining critical IT assets for vulnerability scanning

• Defining types of scans to be conducted

• Tool selection:

• Selecting appropriate vulnerability scanners and analysis tools

• Configuring tools for specific requirements

• Scan execution:

• Planning and conducting vulnerability scans

• Documenting all vulnerabilities

• Analysis and assessment:

• Analyzing scan results for severity and potential risk

• Prioritizing vulnerabilities based on criticality

• Reporting and recommendations:

• Creating comprehensive vulnerability report with detailed descriptions and remediation recommendations

• Presenting report to management

• Analysis and assessment: Regular evaluation of IT infrastructure and processes to identify vulnerabilities and risks
• Risk management framework development and implementation
• Policies and procedures creation and updates
• Training and awareness programs
• Regular reporting on IT risk management status
• Collaboration with other departments and external partners

• Analysis and assessment: Identifying current and potential vulnerabilities in IT systems and processes
• Design and implementation of security measures to strengthen First Line of Defense
• Threat defense mechanisms for cyber attacks and malware
• Incident response process development
• Training and awareness programs
• Continuous monitoring and adaptation of First Line of Defense

• Review of current cyber security strategy
• Analysis of cyber threat situation
• Cyber security checks based on ISACA, NIST Framework, U.S. Banking Regulators
• Integration of cyber security controls into FFIEC Assessment Tool
• IS risk assessment (ISO31000)
• ISMS, policies, and strategies adaptation

• Ensuring compliance with Gematik and KRITIS requirements for electronic health card
• Data center area audit at EQUINIX data center

• Inventory:

• Analysis of existing ISM documentation

• Assessment of current security measures

• Stakeholder interviews

• Gap analysis:

• Comparison with ISO 27001:2013 requirements

• Gap identification and documentation

• Risk assessment:

• Impact assessment of identified gaps

• Gap prioritization

• Action plan:

• Detailed gap analysis report

• Risk assessment

• Remediation plan

• Budget planning

• Infrastructure assessment: Evaluating security of AWS services (EC2, S3, VPC, IAM)
• Application assessment: Analyzing security of AWS-hosted applications
• Data assessment: Reviewing sensitive data protection
• Compliance assessment: Evaluating compliance with security standards
• Automated and manual testing
• Documentation and reporting

• Detailed audit report with vulnerability and risk identification
• Recommendations for identified vulnerability remediation
• Cloud infrastructure security improvement
• Cloud security policy creation

• Analysis of penetration test results and measure distribution coordination
• Security documentation creation and alignment including presentation

Assessment of:

• Security policies and procedures for information security, data protection and emergency management
• Technical infrastructure including network security and security software
• Data management and GDPR compliance
• Web applications and mobile apps security
• Risk management process
• Compliance with regulations and industry standards
• Security organization and personnel qualifications

SOC establishment including:

• Conception and planning:

• Requirements analysis

• SOC design including personnel, processes, technology

• Location selection

• Implementation:

• Technology procurement (SIEM, threat intelligence, IDS/IPS)

• Process definition for monitoring and incident response

• Team recruitment and training

• Operations:

• 24/7 infrastructure monitoring

• Incident response

• Continuous improvement

• Business requirements analysis
• IT Service Continuity Management strategy creation
• Business Impact Analysis (BIA) execution
• Measure planning and BCM strategy development

• Process design and documentation including interfaces to other processes
• Security incident classification and prioritization guidelines
• Security analysis execution

• Java application development using J2EE technologies
• Interface design and implementation
• Unit and integration testing
• Bug fixing and performance optimization
• Collaboration with developers, architects and product owners