Maxim Ribakowski - Information Security Officer

Q: Where is Maxim based?

Maxim is based in Rüdersdorf, Germany .

Q: What languages does Maxim speak?

Maxim speaks the following languages: German (Native), Russian (Native), English (Advanced), French (Elementary), Ukrainian (Elementary) .

Q: How many years of experience does Maxim have?

Maxim has at least 15 years of experience. During this time, Maxim has worked in at least 7 different roles and for 9 different companies . The average length of individual experience is 2 years and 8 months . Note that Maxim may not have shared all experience and actually has more experience.

Q: What is Maxim's latest experience?

Maxim's most recent position is Information Security Officer at Horváth AG .

Q: What companies has Maxim worked for in recent years?

In recent years, Maxim has worked for Horváth AG , T60 Consulting GmbH , Testvolt AG , Bitwala GmbH , and LucaNet AG .

Q: Which industries is Maxim most experienced in?

Maxim is most experienced in industries like Information Technology (IT) , Professional Services , and Banking and Finance . Maxim also has some experience in Government and Public Administration .

Q: Which business areas is Maxim most experienced in?

Maxim is most experienced in business areas like Information Technology (IT) , Quality Assurance (QA) , and Project Management . Maxim also has some experience in Audit , Legal and Compliance , and Human Resources (HR) .

Q: Which industries has Maxim worked in recently?

Maxim has recently worked in industries like Information Technology (IT) , Banking and Finance , and Professional Services .

Q: Which business areas has Maxim worked in recently?

Maxim has recently worked in business areas like Information Technology (IT) , Quality Assurance (QA) , and Project Management .

Recommended expert

Rüdersdorf, Germany

Experience

Jan 2023 - Dec 2024

2 years

Information Security Officer

Horváth AG

Managing the Information Security program per ISO27001:2022, BAIT, BSI 200-1/4
Creating and updating IT policies and guidelines
Communicating with C-level and the board (weekly, monthly, quarterly reports on incidents, risks, measures, audits, strategic and staffing plans)
Coordinating external and internal audits (JAP, BAIT, BaFin)
Risk management (monitoring remediation measures, assessing new risks, planning and reporting countermeasures)
Incident management (analyzing security-related incidents, monitoring and planning countermeasures and improvements)
Training employees on incidents, internal policies and emergency procedures
Business Continuity Management (review and update of the BIA, emergency plans, recovery concepts, test results)
Managing communication between departments as a mediator
Managing and auditing external service providers (IT, cloud services; SOC 1/2, ISAE 3402 Type 1/2, C5 reports, on-site audits)

Jan 2023 - Dec 2024

2 years

Access Identity Management

T60 Consulting GmbH

Leading a team of four specialists in Identity and Access Management
Managing workflows and ensuring timely achievement of goals
Coordinating and delegating tasks, monitoring progress and compliance with legal requirements
Policy management (developing and implementing policies, guidelines and standards: authorization concept, SoD policy, onboarding/offboarding, IT resources, emergency access)
Training and supporting the secure use of access credentials and IT systems
Coordinating with IT, information security, data protection, legal and HR for appropriate access rights
Supporting internal and external reviews

Jan 2023 - Dec 2023

1 year

Information Security Officer

Testvolt AG

Preparing for ISO 27001:2022 and ISO 22301:2019 certification
Developing and reviewing ISMS documentation (security concepts, policies, work instructions)
Conducting training on information security, data protection and ISO standards
Auditing information security of service providers
Implementing an Information Security Management team (3 members)
Planning, coordinating and managing IT audits (year-end, insurance, partners)
Collaborating closely with IT, legal, HR and product development

Jan 2021 - Dec 2023

3 years

IT-Security Officer

Bitwala GmbH

Implementing a GRC tool (selection, training, centralization and optimization of risk management, improved customer and partner services)
Collaborating closely with IT, legal, compliance, HR and product development
Designing IT policies in accordance with ISO 27001:2022, BAIT, MaRisk, GDPR, NIST
Managing the Information Security program with standardization and automation across IT infrastructure, cloud, development, encryption, backups, cyber security, access management, and data protection
Conducting security checks of business partners (ISO 2700x, SOC 1/2, ISAE 3402 Type 1/2, C5, on-site audits)
Centralized risk management and incident management through the GRC tool
Business Continuity Management (emergency scenarios, test monitoring)
Internal audits according to ISO 27001 and BAIT (planning, preparation, training, execution)
Managing external audits
Security Champions program to drive internal motivation and development in information security management and data protection
Preparing the CISO role for Nuri Bank GmbH

Jan 2018 - Dec 2021

4 years

Information Security Officer

LucaNet AG

Leading and developing an agile team (5 members) in information security management
Managing workflows, coordinating and delegating tasks
Central coordination and communication of security requirements
Collaborating closely with executive directors of all branches, IT, legal, HR and product development
Overseeing the group-wide IT security strategy
Preparing and managing certifications for ISO 27001 and ISAE 3000 / SOC Type 1/2 for financial SaaS services
Conducting training on information security and data protection
Risk management as well as internal and external audits
Coordinating and managing suppliers and partners
Building and improving the emergency management system (BCMS) according to ISO 22301
Project leadership and management

Jan 2018 - Oct 2018

10 months

Cyber Security Manager

Capgemini Outsourcing Services GmbH

Organization and further development of security concepts based on ISO/IEC 27001 and IT baseline protection for the public sector and BAIT for the financial sector
Advising on GDPR for app development (IT industry)
Auditing data centers
Implementing legally required documents for GDPR and ISMS (financial industry)
Handling tenders and pre-sales activities
Project management and coordination
Ongoing development and improvement of the ISMS according to ISO 27001 and BSI 100-1/4

Jan 2015 - Dec 2017

3 years

Consultant IT Compliance

Controlware GmbH

Risk analysis according to ISO 27005 in conjunction with ISO 31000 (financial industry)
Audits according to ISO/IEC 27001 (energy provider)
Customer IT compliance audits according to BAIT (financial industry)
Data protection audits (telecommunications industry)
Advising on ISO/IEC 27001 implementation (energy provider)
Advising on BSI IT baseline protection based on ISO 27001 (public sector)
Preparation for ISO/IEC 27001 certifications (data center)
Strategic and conceptual consulting on information security management (SaaS)
Training on information security, data protection, and ISO standards (public sector)
Development of security concepts according to BSI, BaFin, BNetzA, and international standards (financial industry)
IT compliance project management and coordination

Jan 2012 - Dec 2015

4 years

IT Quality & Security Manager

Telehouse GmbH

Conducting certifications for data centers according to ISO 27001, ISO 22301, ISO 9001, SOC 1/2, and PCI DSS
Interacting with internal and external stakeholders from various backgrounds
Central coordination and communication of security requirements to HR, IT, developers, support, and sales
Coordinating suppliers and partners
Leading teams in data protection, information security, and SOC
Risk management, as well as internal and external audits
Business continuity management
Project management and coordination

Jan 2010 - Dec 2012

3 years

Deputy Data Protection Officer

Altran AG

Strategic coordination of data protection tasks with internal and external IT and HR staff, legal department, sales, and executive management
Establishing an ISMS according to ISO 27001
Acting as the company's data protection officer
Implementing the data protection concept
Conducting awareness activities on data protection and information security
Preparing data protection reports
Creating and revising internal policies on information security
Adjusting general terms and conditions and corporate rules
Conducting supplier audits

Industries Experience

See where this freelancer has spent most of their professional time. Longer bars indicate deeper hands-on experience, while shorter ones reflect targeted or project-based work.

Experienced in Information Technology (14 years), Professional Services (8 years), Banking and Finance (3.5 years), and Government and Administration (1 year).

Information Technology

Professional Services

Banking and Finance

Government and Administration

Business Areas Experience

The graph below provides a cumulative view of the freelancer's experience across multiple business areas, calculated from completed and active engagements. It highlights the areas where the freelancer has most frequently contributed to planning, execution, and delivery of business outcomes.

Experienced in Information Technology (13 years), Quality Assurance (12 years), Project Management (12 years), Audit (8.5 years), Legal (4 years), and Human Resources (3 years).

Information Technology

Quality Assurance

Project Management

Audit

Legal

Human Resources

Languages

German

Native

Russian

Native

English

Advanced

French

Elementary

Ukrainian

Elementary

Education

LL.B · Information Law

Certifications & licenses

Data Protection Officer

ITIL Implementer

Lead Auditor ISO 22301

Lead Auditor ISO 27001

Profile

Created

January 2025

Last Update

February 2025

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Maxim based?

Maxim is based in Rüdersdorf, Germany.

What languages does Maxim speak?

Maxim speaks the following languages: German (Native), Russian (Native), English (Advanced), French (Elementary), Ukrainian (Elementary).

How many years of experience does Maxim have?

Maxim has at least 15 years of experience. During this time, Maxim has worked in at least 7 different roles and for 9 different companies. The average length of individual experience is 2 years and 8 months. Note that Maxim may not have shared all experience and actually has more experience.

What roles would Maxim be best suited for?

Based on recent experience, Maxim would be well-suited for roles such as: Information Security Officer, Access Identity Management, IT-Security Officer.

What is Maxim's latest experience?

Maxim's most recent position is Information Security Officer at Horváth AG.

What companies has Maxim worked for in recent years?

In recent years, Maxim has worked for Horváth AG, T60 Consulting GmbH, Testvolt AG, Bitwala GmbH, and LucaNet AG.

Which industries is Maxim most experienced in?

Maxim is most experienced in industries like Information Technology (IT), Professional Services, and Banking and Finance. Maxim also has some experience in Government and Public Administration.

Which business areas is Maxim most experienced in?

Maxim is most experienced in business areas like Information Technology (IT), Quality Assurance (QA), and Project Management. Maxim also has some experience in Audit, Legal and Compliance, and Human Resources (HR).

Which industries has Maxim worked in recently?

Maxim has recently worked in industries like Information Technology (IT), Banking and Finance, and Professional Services.

Which business areas has Maxim worked in recently?

Maxim has recently worked in business areas like Information Technology (IT), Quality Assurance (QA), and Project Management.

What is Maxim's education?

Maxim holds a Bachelor in Information Law.

Does Maxim have any certificates?

Maxim has 4 certificates. Among them, these include: Data Protection Officer, ITIL Implementer, and Lead Auditor ISO 22301.

What is the availability of Maxim?

Maxim is immediately available full-time for suitable projects.

What is the rate of Maxim?

Maxim's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.