Recommended expert

Oliver Frömel

Senior IT Enterprise Security Architect | Project Bank Migration

Oliver Frömel
Karlsruhe, Germany

Experience

Jan 2020 - Dec 2023
4 years

Senior IT Enterprise Security Architect | Project Bank Migration

Deutsche Bank AG (Retail Bank)

  • Merger/insourcing project in the banking sector; transferring all data, users and processes from one bank to the parent company.
  • IT security architect in the Chief Security Office as part of a merger/insourcing project for Postbank.
  • Created a concept for clustering all applications to be migrated regarding risk profile, protection needs and compliance.
  • Considered ISMS based on ISO27001 (Deutsche Bank) and BSI Basic Protection (Postbank).
  • Reviewed and adjusted protection needs analyses, risk assessments and risk management processes.
  • Led consulting for all subprojects on IT security architectures and concepts according to integration patterns (batch, online/web services, MQ).
  • Prepared new components for review and approval by decision-makers.
  • Served as subject matter expert for technical and content-related IT security questions.
  • Supported all vertical streams (Sales & Channels, Investments, Lending, Finance, Enterprise) in documentation and architecture presentations.
  • IT security risk management: answered review questions, analyzed deviations from the standard and carried out threat assessments.
  • Lead security architect in CSO to align action plans for risk mitigation and validate residual risks.
  • Prepared identified risks and non-compliances for the risk management units.
Jan 2020 - Dec 2021
2 years
Milan, Italy

Senior IT Solution & Integration Architect | Project AIMS++ (Allianz Input Management System)

Allianz Deutschland & Allianz Italia

  • Local implementation of the global standard system Allianz Input System (AIMS++) in Italy.
  • Architecture tasks for integrating the global solution into the Italian IT landscape.
  • Consulting on integrating a cloud-based solution into existing legacy systems.
  • Advising on web service design and the use of architecture patterns from the parent company.
Jan 2020 - Dec 2021
2 years

Senior IT Enterprise Security Architect | Security Design Authority

Deutsche Bank AG

  • Review and voting for the CSO Identity & Access area at the Security Design Authority (SDA) for global projects.
  • Voting member of the CSO Security Design Authority in the Chief Security Office.
  • Reviewed global projects for compliance with identity & access policies.
  • Identified non-compliances with internal and regulatory IT security requirements.
  • Advised projects and coordinated with other CSO units.
  • Supported risk assessments and described mitigating measures.
  • Reviewed and approved action plans, milestones and evidence to close security gaps.
Jan 2017 - Apr 2020
3 years 4 months
Eschborn, Germany

Senior IT Enterprise Security Architect | Lead Security Architect Outsourcing

Deutsche Bank AG

  • Outsourcing project for Deutsche Bank Italy (Deutsche Bank Italia S.p.a).
  • Lead security architect in the integration architecture area.
  • Structured the project regarding IT security aspects and developed a documentation methodology.
  • Created overall IT security architectures and concepts (batch, online/web services, MQ).
  • Served as subject matter expert for technical and content-related IT security questions.
  • Supported vertical streams in preparing documentation and architectures.
  • Performed technical cryptographic analyses of protocols and implementations for single sign-on between the bank and provider.
  • Conducted vulnerability analysis and documented non-compliances.
  • Coordinated action plans to address identified risks.
Jan 2016 - Dec 2017
2 years
Frankfurt, Germany

Senior Architect and Senior Consultant | Merger of WGZ BANK & DZ BANK and Application Landscape

DZ Bank

  • Consulting in the context of the merger of WGZ BANK and DZ BANK.
  • Responsible for concept development to provide a joint target infrastructure for messaging and migration.
  • Created, reviewed and ensured quality of documents with external vendors and internal departments.
  • Advised on preparing the Lotus Domino application landscape for migration to a future infrastructure.
  • Responsible for application analysis and qualification for potential replacement by other technologies.
  • Project support and consulting for a third-party service provider.
  • Contributed to solution designs and concept studies for the project portfolio.
Jan 2015 - Dec 2023
9 years
Eschborn, Germany

Senior IT Enterprise Security Architect | IT Security Risk Review

Deutsche Bank AG

  • IT security architecture in an enterprise context and professional consulting.
  • Responsible for establishing the IT Security Architecture department in the retail and corporate banking area.
  • Supported Change The Bank (CTB) and Run the Bank (RTB) projects with security concepts and processes.
  • Responsible for international business, global wealth management, and Postbank re-integration.
  • Consulting on IT security in the Postbank deconsolidation project.
  • Conducting reviews of IT security concepts for applications.
  • Risk analysis and qualification according to operational risk management (ORM).
Jan 2015 - Dec 2016
2 years

Senior Architect and Senior Consultant | Email Archiving (GDPdU)

DZ Bank

  • Consulting on the requirements for GDPdU-compliant email archiving.
  • Responsible for designing and proof of concept of a legally compliant, company-wide archiving solution.
  • Design and documentation of a proof of concept using the d3 software from d.velop.
  • Quality assurance of documents and coordination with business units and vendors.
Jan 2015 - Dec 2015
1 year

Senior Architect and Senior Consultant | Misaddressing Analysis

DZ Bank

  • Analysis and solution design for misaddressing in an environment with cascaded address books.
  • Project driven by data protection and audit requirements.
  • Analysis of technical processes, restrictions, and root causes for misdeliveries in a large interconnected system.
  • Design of a multi-level solution based on name adjustments.
  • Coordination of solution implementation with IT service providers and advice on user communication.
Jan 2014 - Dec 2015
2 years
Eschborn, Germany

Senior IT Enterprise Security Architect | Core Banking System Migration to SAP

Deutsche Bank AG

  • Created an end-to-end security concept for the retail core banking system migration to SAP (Project Magellan).
  • Designed a layered model (frontend, middleware, integration, backend) with corresponding security patterns.
  • Developed security context diagrams for application clusters.
  • Supported the SAP roles and permissions team in visualizing access.
  • Contributed to creating a target operating model for authentication and authorization.
  • Coordinated with IT risk/governance, domain/solution architecture, and security architecture.
Jan 2014 - Dec 2014
1 year

Senior Architect and Senior Consultant | Lotus Notes Logon / AD Synchronization

DZ Bank

  • Project to synchronize Lotus Notes logon with Windows Active Directory.
  • Architectural and consulting role for an audit assignment to synchronize password policies.
  • Designed a solution using Notes Shared Login (NSL) in conjunction with Lotus Domino policies.
  • Designed, tested, and piloted in coordination with IT service providers.
  • Ensured quality assurance.
Jan 2012 - Dec 2013
2 years

Senior Architect and Senior Consultant | Messaging Infrastructure Provider Transition (Fiducia -> Atos)

DZ Bank

  • Architect role for the provider transition of the messaging infrastructure for over 5000 users worldwide.
  • Quality assurance of the provider concepts for transition and transformation.
  • Supporting the client in translating between functional, contractual, and administrative tasks.
  • Ensuring the client's interests in dealings with the service providers.
Jan 2012 - Dec 2013
2 years
Fulda, Germany

Senior Architect and Consultant, Project Lead | Archive Rollback Project and Return to Standard Archiving Methods

EDAG

  • Rolling back about 9TB of email archive data from the Infinite Mailbox for Lotus Domino (IML) solution.
  • Architecture, design, and tool development for the archive rollback.
  • Upgrading Lotus Domino archive servers to version 8.5.3.
  • Migrating attachments into DAOS (Domino Attachment and Object Store).
  • Providing a status-driven application for restoring all archive data.
  • Removing archive references in the source mail databases.
Jan 2011 - Dec 2013
3 years
Bonn, Germany

Senior Architect and Senior Consultant | Migration Project to Lotus Domino 8.5

BWI Systeme

  • Infrastructure migration to Lotus Domino and Notes 8.5 as part of the client migration to Windows 7.
  • Infrastructure analysis and optimization of a highly automated environment for over 140,000 end users.
  • Implementation of an archiving solution for mail-in databases including operations integration.
  • Project management for cross-consortium infrastructure changes.
  • Designing test and preparation phases within the Lotus environment.
  • Designing new tools to identify client releases and automate user migrations.
  • Reviewing backup and recovery mechanisms with IBM TSM/TDP.
  • Designing a portal solution to automate database restorations.
  • Updating IT security and functional concepts.
Jan 2010 - Dec 2012
3 years

Senior Architect and Senior Consultant | Messaging Infrastructure Provider Transition (LH Systems -> Fiducia)

DZ Bank

  • Architect for the provider transition of the messaging infrastructure for over 5000 users.
  • Creating detailed designs for architecture, transition, and transformation.
  • Designing the restoration of 2TB of email archive data and migration into a document management system.
  • Testing, piloting, and performing the rollback directly in the target system.
  • Mediating between the client's interests and the IT service provider.
Jan 2009 - Dec 2011
3 years
Berlin, Germany

Senior Consultant | Infrastructure Migration & Lotus Domino 8.5 Release Upgrade

DRV Bund (Deutsche Rentenversicherung Bund)

  • Infrastructure migration and release upgrade from Lotus Domino R6 to R8.
  • Consulting and architectural support for about 25,000 users and 80 Domino servers.
  • Administrative support and coaching throughout the project.
  • Quality assurance of platform-specific implementation details.
  • Creating a concept for archiving and quota management, considering new Domino features.
Jan 2007 - Dec 2008
2 years
Cologne, Germany

Technical Project Management, Implementation Leader, Senior Architect | Unix Hardening Project (Implementation)

EDS / Privatbankhaus Sal. Oppenheim & Cie. KG

  • Coordinating the implementation of defined hardening measures on Unix systems (Solaris, AIX, Linux).
  • Defining operational standards and procedures for security monitoring.
  • Advising on modern security architectures and best practices.
  • Implementing role-based security models for application management.
  • Integrating into internal transition projects for operational handovers.
  • Developing scripts for software package analysis and file permissions analysis.
  • Defining roles and responsibilities to ensure sustainability.
Jan 2006 - Dec 2007
2 years
Cologne, Germany

Project Manager, Senior Consultant, Senior Business Analyst | Unix Hardening Project (Analysis & Design Phase)

EDS / Privatbankhaus Sal. Oppenheim & Cie. KG

  • Designing concepts for defining technical hardening measures for Unix servers.
  • Considering BSI Basic Protection, ISO27001, and SIZ catalogs.
  • Supporting the definition of processes for patch management and protection needs determination.
  • Creating cross-platform Unix shell scripts for data collection.
  • Assisting in the rollout of standard tools for compliance management (ePCM) and system administration (Opsware).
  • Preparing specifications and project plans.
  • Piloting the hardening measures.
Jan 2004 - Dec 2010
7 years

Senior Consultant | Archiving Solution 'Content and Compliance Management Solution'

Various Clients

  • Supporting the architecture and implementation of the enterprise archiving solution C²MS based on AXSOne.
  • Architecting and implementing demo environments at Sun Microsystems.
  • Developing comparison papers and defining reference architectures.
  • Advising on legal-compliant archiving and compliance.
  • Conducting load and performance tests on various platforms.
  • Developing migration strategies.
Jan 2003 - Present
23 years 1 month
Karlsruhe, Germany

Senior Consultant and Senior Enterprise Architect

Freelance

  • Working on IT projects in medium to very large environments in a wide range of roles from operations through project management to enterprise architectures and management consulting.
  • Architecting and implementing high-availability environments, service design during provider transitions.
  • Handling various IT security tasks from IT enterprise security, IT security solution architecture, IT security risk reviews, IT security governance, and IT security audits to cyber security.
  • Leading a global support team, managing support contracts with clients worldwide with regular on-site assignments.
  • Covering the full range of projects with groupware (Lotus Domino).
Jan 2003 - Dec 2017
15 years

Senior Architect, Senior Consultant, Technical Presales, Global Support Team Leader, Implementation Leader | Archiving Solution

Various Clients

  • Focusing on the email archiving solution Infinite Mailbox for Lotus Domino (IML).
  • Analyzing client infrastructures for archiving and offloading solutions.
  • Setting up proof-of-concept installations worldwide.
  • Analyzing Lotus Domino architecture, topology, performance, as well as storage and network infrastructures.
  • Performing hardware sizing and selecting storage equipment.
  • Conducting capacity planning, trend analysis, and TCO assessments.
  • Leading global support team (2003 – 2010) for WIPRO/India and Sun Microsystems.
  • Performing troubleshooting for clients worldwide.
  • Clients include: AGES, Department of Justice Victoria (AU), DZ BANK, EDAG, GfK, Lufthansa Systems, msg Systeme, PwC, Rohde & Schwarz, Techniker Krankenkasse.
Jan 1998 - Present
28 years 1 month

Senior Architect, Senior Consultant, Technical Presales, Team Leader Global Support, Implementation Leader | Groupware & Lotus

Various Clients

  • Architecture, specification and implementation of highly available Lotus Domino infrastructures (500 – 100,000 users).
  • System analysis of existing Domino infrastructures for mail and applications.
  • Strategy consulting and quality assurance for outsourcing projects.
  • Designing disaster-tolerant architectures and access models.
  • Platform migrations to higher-availability operating systems (e.g., Windows to Solaris).
  • Conducting proof-of-concept projects, tests, and pilot projects.
  • Designing data backup concepts and system monitoring solutions.
  • Developing operation manuals, emergency plans, and process definitions.
  • Planning and conducting workshops and training sessions.
  • Clients include: BWI Systeme, Credit Suisse, Deutsche Bahn AG, DRV Bund, DFS Deutsche Flugsicherung, DZ BANK, EDAG, EDS, Fiducia IT AG, Lufthansa Systems, PwC, Rohde & Schwarz, Sun Microsystems, and T-Systems.
Jan 1997 - Dec 2003
7 years
Karlsruhe, Germany

Team Leader

PRS GmbH (later iunctio GmbH / Prodacta AG)

  • Managing approximately 20–30 employees in Karlsruhe and at client sites, as well as a branch in Riga, Latvia with about another 20 employees.
  • Administration of a heterogeneous client-server infrastructure.
  • Responsibilities included computer assembly and maintenance, network administration, and server administration (AIX, OS/2, Solaris, Microsoft Windows, Linux).
  • Introducing and implementing Linux and Solaris as replacements for AIX and OS/2.
  • Implementing a Linux-based security infrastructure (DMZ, firewall, intrusion detection [IDS], VPN) across multiple sites and countries.
  • Establishing an internal Certificate Authority (CA) and issuing server and client certificates using open-source software.
  • RAS (Remote Access) solutions (modem, ISDN, VPN).
  • Network-to-network connection via WAN/VPN with the development department in Riga, Latvia.
  • Senior consultant and architect for network architecture and administration, system architectures, security analysis and consulting, as well as Lotus Domino architecture, implementation, and support.

Summary

With more than 30 years of Unix experience (early adopter of Linux, when Linus Torvalds made the floppy images available on the university network), a solid university education in data security topics as well as telematics and all kinds of networking subjects, I have enjoyed nearly 25 exciting years in global projects in the fields of insourcing/outsourcing, enterprise architecture, IT security, archiving, groupware, and other platform- and infrastructure-related topics. Through many years of close collaboration with Sun Microsystems and Lotus/IBM, I got to know, shaped, and supported various Unix dialects and many large customer infrastructures from the late 1990s onward – always focusing on highly available, scalable/elastic, and secure environments for mission-critical infrastructures. These long and extensive experiences in infrastructure, architecture, and IT security now allow me to offer solid consulting "from bottom to top" in enterprise environments. In recent years, I have refocused on information security, helping to build an IT security architecture function and significantly shaping both architecture and risk analyses as a senior expert in an international environment. Competent stakeholder communication at all levels and a passion for documentation are also the results of my many years of experience.

Skills

It Security

  • It Enterprise Security, Security Architectures And Information Security Based On Bsi Basic Protection, Iso27001/27002 And Other Standards From The 270xxx Series, And Related Catalogs (E.g. Nist Csf, Cobit, Cis/sans, Csa, Pci-dss) As Well As Industry Best Practices
  • It Security Architecture With A Focus On Integration Into Enterprise Architecture And Business Processes
  • It Security Reviews And Audits Against Specified Standards And Company Policies
  • Information Security Architecture And Consulting In Regard To Dora And Nis2 (Risk Analysis, Risk Management, Third Party Risk Assessment And More)
  • It Service Continuity Management (Itscm), Business Continuity Management (Bcm)
  • Support For Establishing It Security Architecture Functions In Companies
  • Almost 10 Years Of Experience In Various It Security Roles In Kritis-regulated Banking Environments
  • Consulting On It Security Governance Tasks
  • Creation, Review And Updating Of Policies, Procedures, Guidelines And Other Reference Documents To Structure And Govern Information And It Security
  • It Security Threat Assessments, Mapping According To Risk Grids, Followed By Risk Management Based On The Client's Risk Appetite
  • Information Security Risk Management
  • Consulting On Penetration Tests And Source Code Reviews Regarding The Results To Put Them Into The Company Context, Assess Specific Risk And Define Appropriate Countermeasures
  • Cryptography And Related Data Security Topics
  • Unix Hardening, Unix Security
  • Security In The Context Of Cloud Computing / Security & The Cloud
  • "Why" Questioner With A "Criminal Mind Fantasy" And The Ability To Engage And Raise Awareness Among All Participants At All Levels For The Necessity Of It Security Measures
  • Information Security "Top-down" From Business Requirements To Technical Implementation

Enterprise Architecture

  • High-availability And Very High-availability Architectures
  • Unix Architectures, Unix Consulting
  • It Infrastructure Analysis & Concept Development
  • Requirements Analysis In Complex Environments
  • Outsourcing And Migration Projects, It Provider Transitions
  • Development And Definition Of Service Level Concepts And Frameworks
  • Enterprise Strategy With A Focus On Architecture And It Security

Groupware & Archiving

  • Information Lifecycle Management
  • Compliance And Legally Compliant Archiving Of All Company Data
  • Messaging (Architectures, Implementation)
  • Outsourcing And Migration Projects, It Provider Transitions
  • Architecture, Consulting, Implementation, Troubleshooting, Support, Training

Languages

German
Native
English
Advanced
Italian
Advanced
French
Intermediate

Education

Oct 1991 - Jun 1999

University of Karlsruhe (TH)

Diplom-Informatiker · Computer Science · Karlsruhe, Germany

Certifications & licenses

TeleTrust Information Security Professional

E.I.S.S. (European Institute for System Security)

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Christian Decker
Christian Decker

Managing Director and Senior Consultant

View Profile
Marco Zehner
Marco Zehner

Product Owner IT Services / Solution Architect

View Profile
Lothar Hinsche
Lothar Hinsche

Solution Manager for PoC investigation and replacement and refinement of an existing cloud and IoT power plant control system

View Profile
David Bleyer
David Bleyer

Acting Partner

View Profile
Stephan Selnerat
Stephan Selnerat

IT-Security Manager

View Profile
Frank Joraschkewitz
Frank Joraschkewitz

Lead Project Manager

View Profile
Peter Fleischer
Peter Fleischer

Subproject Manager and Solution Architect - Microsoft 365 Transformation

View Profile
Christian Gebhardt
Christian Gebhardt

Deputy Chief Information Security Officer

View Profile
Pierre Gronau
Pierre Gronau

Ansible Automation, Windows Third Level Support

View Profile
Andreas Fischer
Andreas Fischer

Project Manager & Portfolio Owner for Infrastructure (Automotive)

View Profile
Dirk Behringer
Dirk Behringer

Senior Consultant Database Administration and SQL

View Profile
Tobias Greiner
Tobias Greiner

Head of IT D-A-CH (CIO)

View Profile
Gilbert Lintner
Gilbert Lintner

Cyber Security Expert

View Profile
Alagi Mansaray
Alagi Mansaray

Senior Project Manager S4HANA in the Energy Sector

View Profile
Patrick Günther
Patrick Günther

Information Security Manager

View Profile
Federico Leefhelm
Federico Leefhelm

ISO – Senior Consultant Quality & Information Security

View Profile
Luca Pacor
Luca Pacor

ERP Program Manager

View Profile
Björn Bausch
Björn Bausch

Project Manager NIS-2

View Profile
Matthias Steinmann
Matthias Steinmann

Senior Consultant Security (freelance)

View Profile
Martin Bausewein
Martin Bausewein

IT Architect

View Profile
Andreas Antoni
Andreas Antoni

Project Manager for Network and Infrastructure Project Migration EU/US/MEX

View Profile
Daniel Jüntgen
Daniel Jüntgen

Information Security Consultant

View Profile
Stanislav Stolberg
Stanislav Stolberg

Interim CTO / IT Consultant (Cloud & App Security · AI & Web3)

View Profile
Miguel Skirl
Miguel Skirl

Senior System and Cloud Engineer

View Profile
Jürgen Fey
Jürgen Fey

AR/VR/XR Architect

View Profile
Zakaria Aoune
Zakaria Aoune

Vice President Technology

View Profile
Stephan Lewering
Stephan Lewering

Managing Director

View Profile
Steffen Müller
Steffen Müller

Principal Consulting Partner - freelancing

View Profile
Nikolaus Betzler
Nikolaus Betzler

ICT Risk Management and Information Security

View Profile
Thomas Hartung
Thomas Hartung

Project Manager & Tender Manager

View Profile