IT System and Security Engineer

Hardware

• Hpe Proliant Server
• Dell Poweredge Server
• Fujitsu Primergy Server

Cryptography

• Ssl/tls
• X.509
• Pki (Microsoft Adcs)
• Safenet Storagesecure Appliance
• Utimaco Safeguard Lan Crypt
• Data-at-rest Encryption With Gemalto/safenet Protectfile
• Gemalto/safenet Keysecure Appliance Incl. Hsm
• Thales Ciphertrust (Transparent Encryption)
• Utimaco Enterprise Security Key Management (Eskm)
• Bloombase Storesafe Enterprise Storage Security

Security

• Vulnerability Management, Detection And Response (Vmdr)
• Vulnerability Assessment (Va)
• Endpoint Detection And Response (Edr)
• Extended Detection And Response (Xdr)
• Cloud Detection And Response (Cdr)

Security Tools

• Ping Castle
• Metasploit
• Rapid7 Nexpose
• Tenable Nessus
• Qualys Cloud Platform
• Crowdstrike Falcon
• Openvas
• Cyberark Endpoint Privilege Manager
• Wireshark
• Wsus

Secure Networking

• Openvpn
• Wireguard
• Pfsense

Cloud Services

• Azure
• Microsoft 365

Clustering

• Microsoft Cluster Server

Operating Systems/hypervisor

• Windows Server 2012 (R2)/2016/2019/2022
• Windows 7/8/8.1/10/11
• Microsoft Hyper-v
• Vmware Esx 2/3.x/4.x/5.x/6.x/7.x
• Hci
• Xen
• Backtrack/kali Linux
• Ubuntu Desktop/server

Programming/scripting Languages

• C
• Visual Basic
• Vbscript
• Powershell
• Windows Scripting Host

Protocols

• Tcp/ip, Snmp, Dhcp, Dns, Wins
• Ntp, Telnet, (S)ftp, Http(s), Ipsec
• Fibre Channel, Iscsi
• Ssl, Tls

Standards/methods/frameworks

• Pci Dss
• Itil
• Bsi It-grundschutz
• Iso 27001/27002
• Cis (Center For Internet Security) Benchmark

Applications

• Checkmk It Infrastructure Monitoring
• Microsoft Public Key Infrastructure (Pki) And Certificates
• Vmware Vsphere
• Vmware Workstation/player
• Veeam Backup & Replication
• Microsoft Exchange
• System Center Virtual Machine Manager (Scvmm)
• System Center Data Protection Manager (Scdpm)
• System Center Operations Manager (Scom)
• Microsoft Threat Management Gateway (Tmg)
• Hpe Oneview
• Windows Server Update Services
• Netapp Snapdrive
• Laps

Focus Areas

• System And Security Architect Specializing In Windows
• System And Security Engineer Specializing In Windows
• (Partial) Project Manager
• Creation Of Feasibility Studies, Product Selection, And Conducting Proof-of-concepts
• Design, Planning And Implementation Of Windows Infrastructure Projects (Active Directory, Group Policy, Role Modeling, Dns, Dhcp, Wins) Also For High-security Environments Like Pci Dss Or Sina-it
• Vulnerability Analysis (Vulnerability Assessment)
• Hardening Of System Environments With Cis Benchmarks
• Design And Implementation Of High-availability Solutions With Microsoft Cluster Server And Other Products
• Virtualization And Consolidation Projects Based On Microsoft Hyper-v And Vmware Vsphere
• Scripting With Vbscript And Powershell
• Implementation Of Data Encryption And Key Management Solutions For Sensitive Data (E.g., For Pci Dss Environments)
• Preparation Of Rfps (Request For Proposal) For Tenders
• Data Center Transition And Transformation

Industry Knowledge

• Banks And Savings Banks
• Service Providers
• Insurance
• Aerospace
• Information Technology
• Industrial
• Government Agencies
• Media
• Public Sector
• Logistics

Services

• Consulting
• Project Management And Coordination
• Design And Analysis
• Proof-of-concept
• Third-level Support