Skills:
Skills:
Skills:
Skills:
For this client, I took over the planning and redesign of the Symantec Endpoint Protection infrastructure with over 10,000 Windows and Linux endpoints, including modeling and adjustment of policies to compliance requirements as well as administration and management of the endpoint security solution. Anti-malware protection, incident response, forensic analyses, malware analyses, lifecycle and patch management, report generation and collaboration with the involved departments in 2nd and 3rd level support were other focuses of my activities. SQL jobs and scripts were also tested and adapted for functionality.
In this project, I managed the existing Hyper-V Data Center and McAfee Endpoint Security with ePO. In parallel, I fully redesigned the infrastructure with the goal of migrating the on-premise McAfee Endpoint Security solution to Microsoft Defender in the endpoint security area. I handled strategy planning and implementation, created presentations with product comparison matrices, conducted workshops to convey Defender Suite technology combinations and demonstrated the reduction of attack surfaces achieved by using Microsoft Defender 365 Suite products. Securing Microsoft 365 services as well as policy configuration and system hardening were other key activities.
Skills:
Since 2016, I have worked for Sparkassen Finanz Informatik in the areas of cybersecurity/defense, compliance, information security management, business continuity, cloud security, Azure Entra ID, IT service management, audits, regulations, license management, product lifecycle, security infrastructure design and support.
As part of planning and implementing a Microsoft Azure security architecture, I followed these structured steps:
Additional activities arising from these efforts included:
In vulnerability management, I administered the Qualys platform, planned scans, generated reports and managed escalations to stakeholders for mitigation.
I prepared and supported security audits for regulatory compliance requirements and implemented resulting findings.
Other interesting tasks included:
Skills:
In this project within the VW Governance, Risk and Compliance and IT Operations units at Wolfsburg and Braunschweig, I managed:
Skills:
My core responsibilities included centralized management of McAfee ePolicy Orchestrator servers and their system infrastructure, API scripting, SQL scripting, migrations and updates, policy/task/antivirus/intrusion/firewall rule automation, vulnerability and system encryption management, IT disaster planning and management, enforcement and reevaluation of corporate policies, as well as report creation and test environment setup. Recently completed was the migration from McAfee ePolicy Orchestrator version 4.x to 5.x to build a tenant-independent central antivirus management system and migrate existing ePO servers and managed systems to the new environment despite heterogeneous system landscapes. A new client deploys Symantec Endpoint Protection on ~5000 units, which we replaced and migrated to McAfee VirusScan and Move AV in close collaboration with server/virtualization, network/firewall, database and security/change management teams under ITIL-compliant approvals. The migration to a new data center and network zone concept required intensive testing and preparation to ensure communication between ePO server, database and endpoints (port openings for vulnerability manager, agent handler, VMware vSphere, MSSQL). I also introduced McAfee Move Antivirus Multiplatform, evaluated and promoted it to production. To address performance issues and growing exclusions on virtualized endpoints while preparing for a VDI infrastructure, we coordinated with departments and clients, resulting in a 30-50% performance gain and policy compliance improvements. The ePO 5 migration also impacted the underlying SQL Server 2005 installations. We chose Microsoft SQL Server 2008 R2 on Windows Server 2008 R2 Cluster for high availability to meet availability, scalability, tenant-independence and future-proof requirements. I now manage and administer the SQL servers, configuring ODBC, users, security, roles, permissions, maintenance plans, and special parameters, and handle disaster recovery. I monitor performance with PowerShell, Management Studio and SQL Monitor, analyze IPsec traffic with Wireshark, create reports for departments, management and clients. Daily, I use McAfee Vulnerability Manager for compliance, vulnerability analysis and network protection, conduct audits, produce comprehensive reports, maintain product documentation and knowledge base. I update endpoints with VirusScan Enterprise and Move AntiVirus, run custom scans, review logs, handle incident response, resolve issues, identify root causes, monitor new vulnerabilities and threats, and manage ePO server lifecycle, licenses and certificates. I create users and permission sets, configure server/client tasks and policies and automated responses, define SiteAdvisor Enterprise policies for web portals, build SCCM deployment packages with Installation Designer, escalate issues to McAfee support, and evaluate signature updates and new products in test environments.
Skills:
From January 2011 to December 2012, I worked freelance in 2nd/3rd level support for Unisys in Munich. The project covered support for the Bavarian judiciary, including the State Ministry, and preparation and migration from Windows XP / MS Office 2003 / Server 2003 to Windows 7 / MS Office 2010 / Server 2008 R2. I provided technical and administrative support to various specialist groups for project-related challenges, including user and role management, Group Policy Object maintenance and enhancement in Active Directory, and cross-site integration of authorities. I handled client/server patch and release management and monitored and ensured maximum availability of network components using Nagios and Microsoft System Center products. BSI basic protection guidelines formed part of the SLAs and incident management. Other focus areas included file and print server administration, Exchange administration, data security and recovery, and SQL database server administration. I was also involved in designing the technical infrastructure for virtualization solutions (VMware, Citrix) and upcoming Windows 8 client and server systems.
Skills:
Together with the security team, I migrated McAfee ePolicy Orchestrator from 3.x to 4.x, including policies, tasks, agents and antivirus components. I integrated, customized and maintained the ePolicy Orchestrator system structure to the global Active Directory schema, created and assigned client/server tasks, performed user audits, and configured server and authentication parameters. I responded to, analyzed and assessed security incidents and resolved issues in production. I also administered SQL Server 2005/2008, handled database migrations, installations and configurations of additional instances, monitored and tuned existing databases, and managed backups and security. I provided ITIL-based incident, change and request management, technical support for administrative staff at domestic and international sites, and created documentation, reports and statistics for departments and management, and conducted user training.
Skills:
Parallel to the Brose Automotive project, I:
This project required parallel operation of the old domain alongside the new domain with user access to both. We implemented a bidirectional trust and a DFS namespace configured for data synchronization via Robocopy jobs. The project also included defining and rolling out Group Policies, deploying printers via PushPrinterConnect.exe in client logon scripts, providing RemoteApps on terminal servers, migrating clients and users with ADMT (preserving old user SIDs for CRM authentication), implementing a new backup concept for HP Tape Library on CA Arcserve Backup 12.5 on Server 2008, and user support and documentation.
Skills:
In this project, I served as an IT system technician in the central emergency call center of Germany's largest private security services provider (~19,200 employees at 85 sites) during its merger with the second-largest player. The global group has over 260,000 employees. I integrated nationwide LAN, WAN, WLAN and FC network segments into the central data center architecture, managing all active and passive network components. I optimized office processes characterized by heterogeneous file formats and led the development of a Drupal-based CMS wiki. I migrated and managed clients and servers from Windows 2000/XP to XP/Vista and Windows Server 2000/2003 to 2003/2008, including VMware ESX Server 3.5 migrations and high-availability configuration. I provided 24x7 first, second and third level support (ticket management with OTRS) and monitored the infrastructure with Nagios and GFI Network Server Monitor. I supported Active Directory, Group Policy, print management, remote site monitoring, Microsoft Office users, and application delivery via Citrix Metaframe on Windows Server terminal farms. I oversaw network security with Symantec, McAfee, TrendMicro, SonicWall and Cisco products. I administered, reported and backed up MS SQL Server 2000/2005/2008. I consistently demonstrated a motivated, independent and team-oriented approach to improve workflows and contribute to growth, leveraging strong communication skills for successful project outcomes.
Skills:
Discover other experts with similar qualifications and experience