Rick Grassmann

Interim IT Security Analyst

Rick Grassmann
Munich, Germany

Experience

Jul 2023 - Jul 2025
2 years 1 month
Eschborn, Germany

Interim IT Security Analyst

GLS IT Services GmbH

  • Risk Management
  • Incident Management
  • Security Analysis
  • Secure Coding
  • Information Security Management System (ISMS)
Apr 2018 - Present
7 years 10 months
Munich, Germany

Cybersecurity Expert, Penetration Tester

mgm Security Partners & Rasotec GmbH

  • Penetration tests and security analyses: network infrastructure, Active Directory, cloud, Microsoft 365 (e.g. SharePoint), servers, OS (Linux and Windows), web applications (OWASP Top 10, XSS, SQLi), mobile apps
  • Identification and assessment of vulnerabilities
  • Creating final reports
  • Source code analyses: .NET, Java, Kotlin, Swift, JavaScript
  • Consulting on secure software development
  • Creation of threat models

Skills

  • Networks: Communication Protocols And Network Architectures, Ipv4, Ipv6, Tcp, Udp, Routing, Firewalls, Dns, Tls, Vpn
  • Active Directory: Configuration And Access Rights Management, Ntlm, Kerberos, Smb, Rdp, Ldap, Group Policies
  • Web Applications: Web Application Architectures, Http, Single-page Applications, Rest Apis (Json), Html, Web Frameworks
  • It Security: Concepts, Guidelines, Standards, Isms, Owasp, Bsi Basic Protection, Mitre, Cve, Cvss, Cis Benchmarks
  • Secure Coding: Secure Development Of Web Applications, Password Policies, Login, Password Storage, Handling Sensitive Data, Multi-factor Authentication, Session Management, Measures Against Password Cracking, Measures Against Injection Attacks
  • Operating Systems: Linux And Windows, Extensive Knowledge Of Linux (Ubuntu, Arch, Red Hat, Debian, Kali, Etc.) And Windows
  • Programming: Go, Javascript, Java, .Net, Kotlin, Swift, Web Apps, Mobile Apps, Code Analysis
  • Programming: Python, Bash, Fish, Exploit Development
  • Databases: Mysql/mariadb, Sqlite, Postgresql, Oracle, Mssql, Etc., Web Apps, Exploits
  • Tools: Burp Suite, Zap, Nmap, Nessus, Impacket, Netexec, Metasploit, Etc., Extensive Experience With Pentesting Tools
  • Tools: Latex, Good Skills Using Latex To Create Pentest Reports
  • Cloud: Aws, Azure, Office 365, Entra, Iam, Sharepoint, Entra Id, Aws Lambda, Api Gateway, And Other Services

Languages

German
Native
English
Advanced

Education

Oct 2016 - Mar 2018

TU Kaiserslautern

Master of Science · Physics · Kaiserslautern, Germany

Oct 2012 - Jun 2016

TU Kaiserslautern

Bachelor of Science · Physics · Kaiserslautern, Germany

Sep 2004 - Jun 2012

Herzog-Johann-Gymnasium

Simmern, Germany

Certifications & licenses

OSCP Certificate, Offensive Security Certified Professional

Offensive Security

Need a freelancer? Find your match in seconds.
Try FRATCH GPT
More actions

Similar Freelancers

Discover other experts with similar qualifications and experience

Alexander Nagy
Alexander Nagy

Security Expert

View Profile
Sascha Leitner
Sascha Leitner

CEO

View Profile
Pierre Gronau
Pierre Gronau

Ansible Automation, Windows Third Level Support

View Profile
Christian Decker
Christian Decker

Managing Director and Senior Consultant

View Profile
Erlijn Van genuchten
Erlijn Van genuchten

Science communicator and change manager

View Profile
Patrick Beck
Patrick Beck

AML Officer

View Profile
Matthias Steinmann
Matthias Steinmann

Senior Consultant Security (freelance)

View Profile
Valeri Milke
Valeri Milke

Associate Partner - Information Security Consulting

View Profile
Volker Jung
Volker Jung

Interim CISO (Germany, Austria, US, APAC), Auditor

View Profile
Christoph Holzer
Christoph Holzer

Managing Director; Senior IT Infrastructure & Cybersecurity Consultant

View Profile
Niels Aerts
Niels Aerts

Azure Architect

View Profile
Seyed farhad Miri
Seyed farhad Miri

Senior Product Security Engineer

View Profile
Alexander Sänn
Alexander Sänn

Owner and Managing Director

View Profile
Maryam Mouzarani
Maryam Mouzarani

AI Red Team Engineer

View Profile
Markus Willems
Markus Willems

KRITIS Consultant

View Profile
Martin Wilhelmi
Martin Wilhelmi

Security Auditor

View Profile
Evgenii Trembach
Evgenii Trembach

IT-Cybersecurity Engineer

View Profile
Thomas Bössl
Thomas Bössl

Consultant

View Profile
Gilbert Lintner
Gilbert Lintner

Cyber Security Expert

View Profile
Stefan Radushev
Stefan Radushev

ISO27001 Certification

View Profile
Henryk Orantek
Henryk Orantek

Security Consultant

View Profile
Rudolf Eggelbusch
Rudolf Eggelbusch

Datacenter Engineer, Network & Security Administrator

View Profile
Bernhard Bowitz
Bernhard Bowitz

Senior Security Architect

View Profile
Alagi Mansaray
Alagi Mansaray

Senior Project Manager S4HANA in the energy sector

View Profile
Stanislaus Stelle
Stanislaus Stelle

Security Consultant at Rohde & Schwarz AG

View Profile
Nikolaus Betzler
Nikolaus Betzler

ICT Risk Management and Information Security

View Profile
Samir Soliman
Samir Soliman

Project Manager in the Cybersecurity Department

View Profile
Daniel Jüntgen
Daniel Jüntgen

Information Security Consultant

View Profile
Nils Klawitter
Nils Klawitter

Vulnerability Management and Secure SDLC

View Profile
Ali Yazdani
Ali Yazdani

Principal Product Security Engineer

View Profile