Christian Gebhardt - Deputy Chief Information Security Officer

Q: Where is Christian based?

Christian is based in Cologne, Germany and prefers 100% remote projects.

Q: What languages does Christian speak?

Christian speaks the following languages: German (Native), English (Advanced) .

Q: How many years of experience does Christian have?

Christian has at least 18 years of experience. During this time, Christian has worked in at least 8 different roles and for 8 different companies . The average length of individual experience is 2 years . Note that Christian may not have shared all experience and actually has more experience.

Q: What is Christian's latest experience?

Christian's most recent position is Deputy Chief Information Security Officer at Gothaer Solutions GmbH .

Q: What companies has Christian worked for in recent years?

In recent years, Christian has worked for Gothaer Solutions GmbH , ArcSin GmbH , Gothaer Systems GmbH , and Blackfort Technology .

Q: Which industries is Christian most experienced in?

Christian is most experienced in industries like Information Technology (IT) , Insurance , and Healthcare . Christian also has some experience in Government and Public Administration , Banking and Finance , and Energy .

Q: Which business areas is Christian most experienced in?

Christian is most experienced in business areas like Information Technology (IT) , Project Management , and Audit . Christian also has some experience in Operations , Customer Service , and Product Development .

Q: Which industries has Christian worked in recently?

Christian has recently worked in industries like Insurance , Information Technology (IT) , and Healthcare .

Q: Which business areas has Christian worked in recently?

Christian has recently worked in business areas like Information Technology (IT) , Project Management , and Product Development .

Recommended expert

Cologne, Germany

Experience

Jan 2022 - Dec 2023

2 years

Deputy Chief Information Security Officer

Gothaer Solutions GmbH

Deputy lead of the 10-member information security management team in a highly regulated environment (DORA, VAIT, BAIT)
Direct reporting lines to the CIO of the Gothaer Group and the management board of Gothaer Solutions
Regular member of the Group Risk Committee and the Compliance Committee
Managing and coordinating information security processes within the company and with IT service providers
Leading task forces for handling information security incidents
Contributing to IT emergency and business continuity management

Sep 2021 - Dec 2022

1 year 4 months

Managing Director

ArcSin GmbH

Strategic direction and operational business activities in the field of artificial intelligence and cryptography
Managing and coordinating various software development projects
Operating massively parallel processing in distributed systems with a total computing power of approx. 1.5 petaflops

Jan 2020 - Dec 2021

2 years

Information Security Officer

Gothaer Systems GmbH

Contributing to the development of the certified information security management system under ISO 27001, including information risk management in a highly regulated environment (DORA, VAIT, BAIT)
Developing guidelines and policies as well as designing processes and process controls for information security
Advising IT projects on information security
Analyzing and evaluating technical issues

Jun 2017 - Present

8 years 9 months

Managing Director

Blackfort Technology

Implementing various projects focused on information security, data protection and enterprise IT architecture in collaboration with partners
June 2018 to present: Building and operating solutions for vulnerability management. Partner of Tenable and Rapid7, designing vulnerability and patch management, defining governance, and implementing the technical solution on premise, as a cloud solution or as a managed service
February 2024 to present: DORA implementation project for Nürnberger Versicherung on behalf of Horváth Management Consulting. Adapting the organizational structure, revising policy documents, redesigning processes, implementing ICT risk management, information network, ICT third-party providers, information register, vulnerability, patch and change management, SBOMs, incident management
April 2023 to present: External Information Security Officer for Variolytics GmbH. Achieved Achilles certification and built an ISMS according to ISO 27001
March 2021 to December 2023: External Information Security Officer for the official "nora emergency call app" by the federal and state governments and building an ISMS according to BSI IT-Grundschutz
June 2018 to March 2023: External Information Security Officer for aquatune GmbH and building an ISMS according to ISO 27001
June 2018 to October 2023: External Data Protection Officer for Praxisklinik Dr. Ksendsowski

Jan 2017 - Dec 2019

3 years

Audit Specialist

Deutsche Bank Group

Leading audits in a highly regulated environment (BAIT, MaRisk, ZAG, KRITIS)
Conducting audit reviews in the information security and IT area on topics like information security management, payments, card-based payment transactions (PKI), network management and security monitoring, physical security of data centers / disaster recovery
Coordinating audit findings, developing remediation measures, presenting results to management and tracking risk mitigation actions

Nov 2015 - Dec 2016

1 year 2 months

Senior Consultant

TÜV Trust IT GmbH

Project management for establishing information security management systems according to ISO 27001 at critical infrastructure companies (IT Security Act)
Focus on municipal clients in the energy, water, and transport sectors
Audit lead for information security assessments according to TÜV TRUST IT standards

Nov 2014 - Oct 2015

1 year

IT Security Consultant

exceet Secure Solutions AG

Technical project management in the Gematik / telematics infrastructure environment
Requirements analysis, testing, and implementation of components for a public key infrastructure
Support of software and hardware components (Hardware Security Modules) and development of IT security concepts

Feb 2011 - Oct 2014

3 years 9 months

IT-Solution Architect – Directory Services & PKI

BWI Informationstechnik GmbH

Design, further development, and ongoing operation of BWI's directory services
Coordination of data synchronization across approx. 15 subsystems (including Active Directory)
Integration of the federal PKI (PKIBw / V-PKI) and responsibility for three registration authorities (LRAs)
Specialist for disk encryption and smart card authentication
Responsibility for identity and access management in in-house operation
Development of service portfolio and service catalog management

Jun 2007 - Jan 2011

3 years 8 months

Working Student

BWI Informationstechnik GmbH

Script development
Support for service level management
Design and development in SharePoint Designer
Small project management tasks
VIP support and VIP helpdesk for top management

Languages

German

Native

English

Advanced

Certifications & licenses

tenable – Certified MSSP Practitioner

tenable – Partner Sales Associate NESSUS

Certified Technical Sales Associate (IVM)

Rapid7

Insight AppSec Certified Specialist

Rapid7

Certified Information Systems Security Professional

Firearms Proficiency for Professional Weapon Carriers

Certificate 'Testing Mobile Devices'

Certified Information Systems Auditor Exam

ISMS Manager & Auditor according to ISO 27001:2013

Thales nShield Certified Systems Engineer (NCSE)

University Certificate in IT Security

ITIL 2011 Expert

ITIL 2011 – Continual Service Improvement

ITIL 2011 – Managing Across The Lifecycle

ITIL 2011 – Service Operation

ITIL 2011 – Service Transition

ITIL 2011 – Service Design

ITIL 2011 – Service Strategy

University Certificate in Computer Networks

ITIL 2011 Foundation

ARIS RSC – Report Script Customizing

ABA1 – Business Process Modeling with ARIS Business Designer

NeuroModel ExpertUser

Profile

Created

January 2025

Last Update

January 2026

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Christian based?

Christian is based in Cologne, Germany and prefers 100% remote projects.

What languages does Christian speak?

Christian speaks the following languages: German (Native), English (Advanced).

How many years of experience does Christian have?

Christian has at least 18 years of experience. During this time, Christian has worked in at least 8 different roles and for 8 different companies. The average length of individual experience is 2 years. Note that Christian may not have shared all experience and actually has more experience.

What roles would Christian be best suited for?

Based on recent experience, Christian would be well-suited for roles such as: Deputy Chief Information Security Officer, Managing Director, Information Security Officer.

What is Christian's latest experience?

Christian's most recent position is Deputy Chief Information Security Officer at Gothaer Solutions GmbH.

What companies has Christian worked for in recent years?

In recent years, Christian has worked for Gothaer Solutions GmbH, ArcSin GmbH, Gothaer Systems GmbH, and Blackfort Technology.

Which industries is Christian most experienced in?

Christian is most experienced in industries like Information Technology (IT), Insurance, and Healthcare. Christian also has some experience in Government and Public Administration, Banking and Finance, and Energy.

Which business areas is Christian most experienced in?

Christian is most experienced in business areas like Information Technology (IT), Project Management, and Audit. Christian also has some experience in Operations, Customer Service, and Product Development.

Which industries has Christian worked in recently?

Christian has recently worked in industries like Insurance, Information Technology (IT), and Healthcare.

Which business areas has Christian worked in recently?

Christian has recently worked in business areas like Information Technology (IT), Project Management, and Product Development.

Does Christian have any certificates?

Christian has 23 certificates. Among them, these include: tenable – Certified MSSP Practitioner, tenable – Partner Sales Associate NESSUS, and Certified Technical Sales Associate (IVM).

What is the availability of Christian?

Christian is immediately available full-time for suitable projects.

What is the rate of Christian?

Christian's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.