Recommended expert
Christian (Lorcan) Gebhardt
Deputy Chief Information Security Officer
Experience
Jan 2022 - Dec 2023
2 yearsDeputy Chief Information Security Officer
Gothaer Solutions GmbH
- Deputy lead of the 10-member information security management team in a highly regulated environment (DORA, VAIT, BAIT)
- Direct reporting lines to the CIO of the Gothaer Group and the management board of Gothaer Solutions
- Regular member of the Group Risk Committee and the Compliance Committee
- Managing and coordinating information security processes within the company and with IT service providers
- Leading task forces for handling information security incidents
- Contributing to IT emergency and business continuity management
Sep 2021 - Dec 2022
1 year 4 monthsManaging Director
ArcSin GmbH
- Strategic direction and operational business activities in the field of artificial intelligence and cryptography
- Managing and coordinating various software development projects
- Operating massively parallel processing in distributed systems with a total computing power of approx. 1.5 petaflops
Jan 2020 - Dec 2021
2 yearsInformation Security Officer
Gothaer Systems GmbH
- Contributing to the development of the certified information security management system under ISO 27001, including information risk management in a highly regulated environment (DORA, VAIT, BAIT)
- Developing guidelines and policies as well as designing processes and process controls for information security
- Advising IT projects on information security
- Analyzing and evaluating technical issues
Jun 2017 - Present
8 years 8 monthsManaging Director
Blackfort Technology
- Implementing various projects focused on information security, data protection and enterprise IT architecture in collaboration with partners
- June 2018 to present: Building and operating solutions for vulnerability management. Partner of Tenable and Rapid7, designing vulnerability and patch management, defining governance, and implementing the technical solution on premise, as a cloud solution or as a managed service
- February 2024 to present: DORA implementation project for Nürnberger Versicherung on behalf of Horváth Management Consulting. Adapting the organizational structure, revising policy documents, redesigning processes, implementing ICT risk management, information network, ICT third-party providers, information register, vulnerability, patch and change management, SBOMs, incident management
- April 2023 to present: External Information Security Officer for Variolytics GmbH. Achieved Achilles certification and built an ISMS according to ISO 27001
- March 2021 to December 2023: External Information Security Officer for the official "nora emergency call app" by the federal and state governments and building an ISMS according to BSI IT-Grundschutz
- June 2018 to March 2023: External Information Security Officer for aquatune GmbH and building an ISMS according to ISO 27001
- June 2018 to October 2023: External Data Protection Officer for Praxisklinik Dr. Ksendsowski
Jan 2017 - Dec 2019
3 yearsAudit Specialist
Deutsche Bank Group
- Leading audits in a highly regulated environment (BAIT, MaRisk, ZAG, KRITIS)
- Conducting audit reviews in the information security and IT area on topics like information security management, payments, card-based payment transactions (PKI), network management and security monitoring, physical security of data centers / disaster recovery
- Coordinating audit findings, developing remediation measures, presenting results to management and tracking risk mitigation actions
Nov 2015 - Dec 2016
1 year 2 monthsSenior Consultant
TÜV Trust IT GmbH
- Project management for establishing information security management systems according to ISO 27001 at critical infrastructure companies (IT Security Act)
- Focus on municipal clients in the energy, water, and transport sectors
- Audit lead for information security assessments according to TÜV TRUST IT standards
Nov 2014 - Oct 2015
1 yearIT Security Consultant
exceet Secure Solutions AG
- Technical project management in the Gematik / telematics infrastructure environment
- Requirements analysis, testing, and implementation of components for a public key infrastructure
- Support of software and hardware components (Hardware Security Modules) and development of IT security concepts
Feb 2011 - Oct 2014
3 years 9 monthsIT-Solution Architect – Directory Services & PKI
BWI Informationstechnik GmbH
- Design, further development, and ongoing operation of BWI's directory services
- Coordination of data synchronization across approx. 15 subsystems (including Active Directory)
- Integration of the federal PKI (PKIBw / V-PKI) and responsibility for three registration authorities (LRAs)
- Specialist for disk encryption and smart card authentication
- Responsibility for identity and access management in in-house operation
- Development of service portfolio and service catalog management
Jun 2007 - Jan 2011
3 years 8 monthsWorking Student
BWI Informationstechnik GmbH
- Script development
- Support for service level management
- Design and development in SharePoint Designer
- Small project management tasks
- VIP support and VIP helpdesk for top management
Languages
German
NativeEnglish
AdvancedCertifications & licenses
tenable – Certified MSSP Practitioner
tenable – Partner Sales Associate NESSUS
Certified Technical Sales Associate (IVM)
Rapid7
Insight AppSec Certified Specialist
Rapid7
Certified Information Systems Security Professional
Firearms Proficiency for Professional Weapon Carriers
Certificate 'Testing Mobile Devices'
Certified Information Systems Auditor Exam
ISMS Manager & Auditor according to ISO 27001:2013
Thales nShield Certified Systems Engineer (NCSE)
University Certificate in IT Security
ITIL 2011 Expert
ITIL 2011 – Continual Service Improvement
ITIL 2011 – Managing Across The Lifecycle
ITIL 2011 – Service Operation
ITIL 2011 – Service Transition
ITIL 2011 – Service Design
ITIL 2011 – Service Strategy
University Certificate in Computer Networks
ITIL 2011 Foundation
ARIS RSC – Report Script Customizing
ABA1 – Business Process Modeling with ARIS Business Designer
NeuroModel ExpertUser
Need a freelancer? Find your match in seconds.
Try FRATCH GPT More actions
Similar Freelancers
Discover other experts with similar qualifications and experience
Björn Bausch
Project Manager NIS-2
View Profile
Stephan Selnerat
IT-Security Manager
View Profile
Oliver Frömel
Senior IT Enterprise Security Architect | Project Bank Migration
View Profile
Thomas Ullrich
Senior Consultant / PM Infrastructure Services & Workplace Migration
View Profile
Daniel Jüntgen
Information Security Consultant
View Profile
Pierre Gronau
Ansible Automation, Windows Third Level Support
View Profile
Volker Jung
Interim CISO (Germany, Austria, US, APAC), Auditor
View Profile
Henryk Orantek
Security Consultant
View Profile
Matthias Steinmann
Senior Consultant Security (freelance)
View Profile
Alexander Sänn
Owner and Managing Director
View Profile
Mike Barthel
System and Endpoint Hardening
View Profile
Federico Leefhelm
ISO – Senior Consultant Quality & Information Security
View Profile
Nikolaus Betzler
ICT Risk Management and Information Security
View Profile
Frank Joraschkewitz
Lead Project Manager
View Profile
Christian Heutger
Lead Auditor
View Profile
Fabian Flock
OT Security Champion Europe
View Profile
Valeri Milke
Associate Partner - Information Security Consulting
View Profile
Christian Decker
Managing Director and Senior Consultant
View Profile
Günther Eufinger
Senior Consultant
View Profile
Maxim Ribakowski
Information Security Officer
View Profile
Patrick Günther
Information Security Manager
View Profile
Marco Zehner
Product Owner IT Services / Solution Architect
View Profile
David Bleyer
Acting Partner
View Profile
Mirko Haucke
Cybersecurity Manager
View Profile
Thomas Bössl
Consultant
View Profile
Jörg Hoffmann
Managing Director; Data Protection Officer; Information Security Officer
View Profile
Tobias Greiner
Head of IT D-A-CH (CIO)
View Profile
Rudolf Eggelbusch
Datacenter Engineer, Network & Security Administrator
View Profile
Jörg Iffländer
External Information Security Officer
View Profile
Markus Willems
KRITIS Consultant
View Profile
