Josef Pilz - Project Manager for Implementation of a SIEM Solution

Inzersdorf im Kremstal, Austria

Experience

Jan 2024 - Dec 2025

1 year

Germany

Project Manager for Implementation of a SIEM Solution

Deutsche Bundeswehr

Project manager for building a SIEM solution while adhering to a strictly predefined ITSM process of the Bundeswehr.
Implementation of a SIEM solution in compliance with BSI and NIS requirements of the German federal administration (BSI = Federal Office for Information Security, NIS = Network and Information Security).
Special implementation process of the German Armed Forces and BWI (BWI = IT service provider of the Bundeswehr).
Acquisition of ITSM processes.
Organizational distribution of the project team across Germany.
Taking over an ongoing project until Go-Live.
Team size: 5-20 people.
Tools: Kubernetes, OpenSearch, Office, Jabber, Webex, SharePoint, Confluence, Jira.

Jan 2021 - Dec 2023

2 years

Austria

Project Manager for SIEM/SOC Implementation

INIQA/UITS

Planning and implementation of a SIEM/SOC system (BSI basic protection) for 18 European countries – phased rollout and management of FMA-relevant topics and findings.
Introduction of SIEM/SOC in the company – Austria and group-wide.
Implementation of various regulatory requirements and FMA audit findings, AD trust requirements, company-wide network segmentation, shared services, whitelisting, password management system.
Planning and execution of failover tests (FMA requirement) to maintain Business Continuity Management including documentation.
Development and implementation of SIR processes in the company.
Adaptation of helpdesk processes for SIEM/SOC.
Establishment of an agile SIR team (hybrid), creation of SMEs (role definitions).
Introduction of an agile collaboration model (Kanban).
Improvement of SIR processes based on operational experience.
Creation of playbooks and documentation.
Preparation for rollout of processes to other countries.
Development of threat modeling for cloud and applications.
Analysis and evaluation activities for DORA.
Introduction of new security processes (BSI basic protection).
Adjustment of existing processes in the helpdesk and security environment.
Introduction of agile processes parallel to the project (Lean PM).
Planning and implementation of projects with external partners.
Planning and implementation of projects (traditional, hybrid) – Lean PM reporting, risk and stakeholder management.
Controlling of external implementation teams.
Creation, introduction and optimization of processes for SIEM/SOC.
Development of playbooks for respective SIR processes.
Coaching and training of team members in agile methods.
Building an agile security team (Kanban).
Team size: 5-20 people.
Technologies & Tools: Azure DevOps, Cloud (AWS, Azure), Miro, Confluence, Jira, ServiceNow, AD, network technologies.

Jan 2020 - Dec 2022

2 years

Austria

Project Lead / Scrum Master

Zürich Versicherung

Scrum Master for introduction of a new core insurance system. Modules for customer management, policies, claims, billing, brokers and commissions on the mainframe to be replaced by new systems.
Project language: English.
Software implementation across multiple streams – cross-functional teams (life, sales, central services, new core system).
Agile coaching.
Removal of impediments, promotion of collaboration in teams and support in methodological work.
Controlling of external development teams.
Adaptation of agile processes to current standards.
Organization and facilitation of Scrum ceremonies (planning, retrospectives, reviews, refinements).
Conducting dailies, backlog maintenance, dashboard, refinements.
Monthly reporting preparation for Product Owners.
Coaching of PO and team in agile processes and quality by:
Defining Definition of Readiness (DoR) and Definition of Done (DoD).
Precise planning to ensure deliverables.
Establishing cross-team alignment meetings.
Team size: 5-10 people.
Technologies & Tools: Azure DevOps, Mural, Java, Active Directory (PG LDAP), Confluence, Jira.

Jan 2019 - Dec 2020

2 years

Austria

Project Manager and Scrum Master

Implementation of ECM based on OpenText in the government sector.
Project manager for implementing various data storage and management concepts for ECM on OpenText.
Scrum Master for delivering various developments in OpenText.
Implementation and adjustment of existing support processes.
Project leadership for various ECM projects (Lean PM).
Implementation of various BPM processes using AWP (OpenText).
Creation of digitization concepts around ECM.
Establishing quality standards for digitization in the company (governance, compliance, collaboration, etc.).
Convincing management and staff of new collaboration methods and adjusting business processes.
Project leadership (Lean PM) – Kanban, Scrum in delivery.
Consulting on concept development and execution.
Communication interface between business units and management.
Organizing periodic meetings, steering committees with clients.
Leading workshops with business units to adapt existing and new processes to the new system landscape, including optimization.
Improving quality of agile structures and processes by:
Defining Definition of Readiness (DoR) and Definition of Done (DoD).
Team size: 5-30 people.
Technologies & Tools: OpenText (AWP, Content Server, Content Manager, PowerDocs, OTDS), Citrix, Jira, Miro.

Apr 2014 - Aug 2014

5 months

Austria

Project Coach and Resource Planner / Consultant for Project Processes and Portfolio Management, Resource Planner

Prinzhorn Holding

Introduction of MS Project 2013 as a PM tool.
Use of SharePoint for reporting, task and issue management.
Planning multiple parallel projects in Project 2013.
Assigning resources, identifying resource conflicts.
Supporting subproject managers in tool usage.
Introducing MS Project 2013 and SharePoint as planning and communication tools during live projects.
Gaining user acceptance of tools.
Consulting on use of Project 2013 and SharePoint as project management and communication tools.
Resource planning of ongoing projects in Project 2013 (SAP implementation, introduction of Infor as BI system).
Concept development for portfolio management.
Consulting on project plan adjustments based on actual skills and competencies of project staff.
Building report management with MS Project 2013 and SharePoint (burndown charts, status reports, critical chain, etc.).
Advising project managers and subproject managers on using MS Project and SharePoint as reporting tools; interpreting reports and project progress.
Documenting work packages, creating KPIs to secure deliverables in SharePoint.
Risk management for ongoing projects (prioritization, likelihood, mitigation).
Creating various templates for project status reporting (project status; resource availability and utilization; critical chain, etc.).
Supporting test management (test planning, coordination and controlling); defect management (prioritization, assigning defects to owners, retest planning).

Jan 2014 - Dec 2020

6 years

Austria

Project Manager and Quality Manager

UniCredit Services GmbH

Transition of Bank Austria’s print and mail center to new D2D and POST providers.
Planning and implementation of a new ID scan release as part of KYC.
Project management for outsourcing the print and mail line to an external provider and integration with existing banking systems.
Migration of host and ad-hoc prints to new external sites via automated workflows, ensuring secure data transfer, business continuity and SLA compliance.
Defining service and incident processes in coordination with partners; developing and implementing service processes to maintain SLAs based on ITIL and ITSM.
Controlling external providers and development teams.
Gathering requirements for the new target landscape while preserving existing business processes of all units.
Creating architecture for data transfer under strict security measures.
Ensuring lossless and high-performance data transfer.
Defining OLAs and SLAs.
End-to-end incident process across the workflow in collaboration with external partners.
High level of automation.
Connecting external staff to BA systems via Citrix.
Project management using corporate-wide processes.
Requirements engineering – eliciting development requirements to ensure correct functionality after migration.
Gathering functional requirements for print management to guarantee delivery to recipients.
Gathering and adjusting existing processes to maintain workflows without additional effort.
Creating an architecture concept for data transfer meeting business and security requirements.
Implementing various automated and encrypted file transfer workflows for host files (AFP) and individual files (PDFs) to two legally distinct partner systems.
Automations to ensure data integrity.
Ensuring business continuity across workflows with multiple external partners and defining incident and change processes.
Defining and implementing service processes (ITIL, ITSM).
Defining OLAs and SLAs for collaboration.
Establishing streamlined and rapid incident processes.
Quality assurance of business requirements through acceptance-related KPIs.
Performance analysis of existing processes and scalability.
Analysis, evaluation and execution of performance, scalability and security tests to validate and ensure SLAs.
Creating an automated control system for invoice verification.
Risk management; implementing mitigation measures.
Release management, preparing deployment processes, after Go-Live support.
Team size: 5-30 people.
Technologies & Tools: HP-ALM, HP Service Manager, Citrix, Active Directory (PG LDAP), LMS system, Windows Server 2012, CA ControlMinder, AFP, Ricoh Process Director, AIX, vFiler (NAS).
Implementation of a library management system and migration of archived data, plus digitization for KYC (Customer Identification Program) and CDD (Customer Due Diligence).
Gathering requirements for the new library system to:
Establish a new electronic DMS & lending system.
Integrate with FileNet (DMS) and external archive systems.
Prepare integration with new inbound systems (document scanning).
Implementing KYC requirements for CDD.
Defining and implementing processes for archive & DMS system.
Creating a proof of concept for a new library/archive system.
Tendering and vendor selection for external archive systems.
Implementing new archive systems and integration with DMS (FileNet).
Creating and implementing new processes for managing data and documents for KYC and CDD.
Implementing interfaces to FileNet (form management).
Organizing release management for the digitization program in coordination with the bank.
Quality assurance of requirements with the bank.
Migrating existing archive systems to the new library system.
Vendor selection for external archive systems and library software.
Implementing security measures for new systems.
Gathering requirements for the new library system to enable quick document retrieval, lean lending processes and support current and planned digitization.
Gathering requirements for interfaces of existing systems.
Vendor selection process (KPI creation) in collaboration with procurement.
Quality assurance of business requirements by defining acceptance KPIs.
Drafting cooperation agreements with external partners in coordination with legal.
Defining OLAs and SLAs, adjusting bank and UBIS business processes; developing and implementing service processes to maintain SLAs based on ITIL and ITSM.
Implementing and verifying security requirements.
Communicating with various providers (VTS, etc.) following corporate communication processes.
Creating necessary processes for archive operations.
Implementing, testing and adjusting processes.
Ensuring processes function organizationally and technically based on defined KPIs.
Performance analysis of ongoing processes and scalability.
Analysis, evaluation and execution of performance, scalability and security tests to validate and ensure SLAs.
Release management, preparing deployment processes, after Go-Live support.
Team size: 3-25 people.
Technologies & Tools: HP-ALM, HP Service Manager, IBM FileNet, Active Directory (PG LDAP), LMS system, Windows Server 2012, CA ControlMinder.
Introduction of scan software for validating national and international IDs as part of KYC (including mobile devices) – provider: IDscan.
Gathering requirements for the scanning software including mobile device integration.
Gathering requirements for adapting the existing customer management system for flexible scanner usage (fixed and/or mobile).
Coordinating requirements with the external provider.
Implementing new server environment with external provider (VTS).
Implementing and testing third-party scan software for ID validation.
Planning pilot and nationwide rollout of hardware and software.
Implementing cross-border security concept with Germany and Italy including security tools – Envision.
Implementation of internal and external service processes.
Helpdesk training.
Defining SLAs.
Integration with FileNet.
Collaboration with external providers in the UK and Turkey.
Working with virtual teams in Germany and Austria.
Gathering bank requirements to ensure correct processing of scans and result data.
Quality assurance of business requirements through acceptance KPIs.
Creating and implementing service management processes in-house and 3rd level support with external provider.
Communicating with various providers (VTS, etc.) following corporate communication processes.
Analysis, evaluation and execution of performance, scalability and security tests to validate and ensure SLAs.
Project controlling, status reports, preparing steering committee briefings.
Release management, preparing deployment processes, after Go-Live support.
Team size: 3-15 people.
Technologies & Tools: HP-ALM, HP Service Manager, IBM FileNet, Active Directory (PG LDAP), IDScan, DB2, MS-SQL, C#, Envision, Windows Server 2012.
Stream Lead for Program Quality Management and Release Management in the dIPS – digital Initiation Programming Services program for Bank Austria and UCS in the context of KYC.
Leading test and quality management for a program on digitization of data, inbound mail scanning, archiving and workflow management.
Test manager for inbound mail scanning & data archiving.
Quality assurance of KYC (CIP & CDD) requirements in coordination with the bank.
Establishing test and quality management for an international program to maintain CIP and CDD as part of KYC.
Collaborating with distributed teams of different cultures, languages and project management methods.
Developing concepts for quality management in the dIPS Smart Office program – inbound mail scanning, document management, archiving.
Supporting planning and management of agile software projects.
Analyzing requirements and adjusting business processes.
Quality assurance of business requirements via acceptance KPIs.
Performance analysis of ongoing processes and scalability.
Analysis, evaluation and execution of performance, scalability and security tests to validate and ensure SLAs.
Developing quality management concepts for the dIPS Smart Office program.
Planning and executing quality management in the program (lead).
Creating various test strategy concepts within the program including defect tracking in HP-ALM.
Planning and implementing incident & change management processes.
Release management, preparing deployment processes, after Go-Live support.

Jan 2013 - Dec 2015

2 years

Austria

Project Lead

R-Solution

Project leadership for a software project – core banking system.

Jan 2013 - Dec 2015

2 years

Austria

Project Manager, Methodology Manager, Scrum Master

Valida

Leadership of software and infrastructure projects; Scrum Master for multiple projects, agile methods coaching (Scrum).
Replacement of Fabasoft as workflow management and CRM system; building a master data management system.
Analysis of existing processes and development of alternative processes to increase efficiency and shorten lead times.
Building a web portal for data submissions and creating new business processes.
Redesign of data submission processes for different clients.
Analysis and redesign of monthly customer data processing.
Redevelopment of all interfaces to MDM.
Development of migration and synchronization tools.
Redevelopment of interfaces to the legacy system and satellite systems (SOA).
Development of interfaces to the output management system – Invaris.
PoC – development platform for external suppliers via Hyper-V.
Redevelopment of the data submission system (workflow for client data submissions).
Coaching of project owners on Scrum.
Building a wiki in Confluence.
Taking over ongoing projects; implementing various special requirements from the project sponsor (change requests).
Planning, execution and controlling of software and infrastructure projects.
Continuous risk management.
Communicating and implementing changes resulting from change requests.
Establishing communication structures across distributed locations.
Weekly reporting to the project sponsor.
Organizing and moderating steering committee meetings (monthly).
Coaching project owners on Scrum methodology.
Selecting and recruiting developers and testers.
Implementing issue and defect tracking workflows and systems in Jira.
Managing and tracking issues and defects across all projects.
Building a knowledge base in Confluence.
Team size: 3 teams of 7-10 members (BA, developers, testers) – distributed locations.
Technologies & Tools: Java, Eclipse, Spring, JSP, Servlets, Hibernate, Maven, Jenkins, Tomcat, Sonargraph (SonarJ), JBoss, .NET, C#, C++, Microsoft TFS, V-Cobol, DB2, PostgreSQL; SOA, Scrum methodology, Citrix, XenApp, VMware, Hyper-V, Confluence, Jira, HP-ALM, Tosca, DocuWare, Invaris.