Steffen Müller
Principal Consulting Partner - Freelancing
Experience
Feb 2023 - Present
2 years 6 monthsFrankfurt am Main, Germany
Principal Consulting Partner - Freelancing
Microfin
Advisory
Jan 2023 - Sep 2023
9 monthsBerlin, Germany
Senior Security Advisor (vCISO) & Enterprise Security Architect (vTISO)
ING DiBa Holding Germany
Advisory
Aug 2022 - Dec 2022
5 monthsBonn, Germany
Senior Security Advisor & Security Architect
Deutsche Post / DHL
Advisory
Aug 2022 - Oct 2022
3 monthsCologne, Germany
Senior Security Advisor/Enterprise Security Architect for group-wide program Gothaer@Cloud
Gothaer Versicherungen
Interim
May 2021 - Jul 2022
1 year 3 monthsCologne, Germany
Senior Security Advisor/TISO Cloud Transformation
Gothaer Versicherungen
Advisory
Feb 2021 - Jul 2021
6 monthsHamburg, Germany
Senior Security Advisor & Security Architect PAM & PKI
Hamburg Commercial Bank
Advisory
Mar 2020 - Dec 2020
10 monthsFrankfurt, Germany
Senior Security Advisor & Security Architect PKI
Kreditanstalt für Wiederaufbau (KfW)
Advisory
Dec 2019 - Mar 2020
4 monthsBonn, Germany
Senior Security Advisor & Security Architect
Deutsche Post / DHL
Advisory
Nov 2018 - Sep 2019
11 monthsLudwigshafen, Germany
Lead Security Architect PKI
BASF
Advisory
Aug 2018 - Oct 2018
3 monthsFrankfurt, Germany
Consultant TPAM (Total Privileged Access Management)
Kreditanstalt für Wiederaufbau (KfW)
Advisory
Apr 2018 - Jun 2018
3 monthsSenior Security Advisor & Security Architect
Deutsche Post / DHL
Advisory
May 2017 - Jan 2018
9 monthsBonn, Germany
Senior Security Architect & Advisor; Senior Security Advisor & Security Architect All-IP; Senior Security Advisor & Security
Deutsche Post / DHL
Advisory
May 2017 - May 2017
1 monthOffenbach, Germany
Senior Information Security Manager
Hessische Landesbank, HeLaBa
Advisory
Feb 2017 - May 2017
4 monthsBonn, Germany
Senior Security Advisor & Security Architect
Deutsche Post / DHL
Advisory
Nov 2016 - Dec 2016
2 monthsSenior Security Advisor & Risk Manager
Deutsche Post / DHL
Advisory
Aug 2016 - Oct 2016
3 monthsGermany
Senior Security Advisor & Risk Manager
Magenta Mannheim for CSL Behring
Advisory
Jan 2016 - Jan 2016
1 monthEschborn, Germany
Senior Security Specialist & Advisor
British Telecom
Interim
May 2014 - Oct 2015
1 year 6 monthsEschborn, Germany
Senior Security Architect & Advisor
Deutsche Bank
Interim
Oct 2010 - Apr 2014
3 years 7 monthsFrankfurt, Germany
Global MITSA TISO
Deutsche Bank
Interim
Jun 2010 - Oct 2010
5 monthsBonn, Germany
IS Management, Senior Consultant – Project Security Manager
Deutsche Telekom
Advisory
Feb 2010 - May 2010
4 monthsBonn, Germany
Senior Security Consultant – Regional Security Manager
Deutsche Telekom
Interim
Oct 2008 - Dec 2009
1 year 3 monthsFrankfurt, Germany
Senior Security Consultant & IT Risk Advisor
European Central Bank - ECB
Interim
Mar 2007 - Sep 2008
1 year 7 monthsBonn, Germany
Senior Security Consultant & Consulting Auditor
Deutsche Post / DHL
Interim
Sep 2006 - Mar 2007
7 monthsEschborn, Germany
Senior Security Consultant (Governance) & Consulting Auditor
Deutsche Bank
Interim
May 2006 - Aug 2006
4 monthsWalldorf, Germany
Senior Consultant – Project Security Manager
Intercomponentware - SAP
Advisory
Dec 2005 - Mar 2006
4 monthsWiesbaden, Germany
Senior Consultant – Project Security Manager
Hessian Center for Data Processing
Interim
Jun 2004 - Nov 2005
1 year 6 monthsDarmstadt, Germany
Senior Consultant Networks & Security
Eumetsat
Advisory
May 2004 - May 2004
1 monthZürich, Switzerland
Senior Consultant Networks & Security
Telekurs Financial
Advisory
Apr 2003 - Jan 2004
10 monthsFrankfurt, Germany
Senior Consultant Networks & Security
Star Alliance
Advisory
May 2001 - Jan 2003
1 year 9 monthsWiesbaden, Germany
Technical Co-Project Manager
DBV-Winterthur Holding AG
Advisory
Jan 2000 - Mar 2001
1 year 3 monthsFrankfurt am Main, Germany
Lead Consultant/System Integrator
Telecash
Advisory
Jun 1999 - Dec 1999
7 monthsWiesbaden, Germany
Lead Consultant/Technical Project Assistant
DBV-Winterthur Holding AG
Advisory
Summary
Steffen Müller has been deeply rooted in IT since 1980 and has worked since 1999 as a freelance information security officer (vCISO) for clients in heavily regulated industries. In the area of ISM (Information Security Management) and GRC (Governance, Risk & Compliance), he supports CISOs, CTOs, project or program managers as a professional point of contact and sparring partner. With his deep technical background, he also acts as a TISO (Technical Information Security Officer) or as a strategic advisor for the implementation support of security-relevant infrastructures in the role of Enterprise Security Architect. As a mediator between service providers, departments, and the client’s executive management, he plays a central interface role.
Industry focuses:
- Heavily regulated environments such as:
- Banks
- Insurance companies
- Telecommunications/ISPs
- IT service providers
- Logistics
- Chemicals
- Pharmaceuticals
- Aviation
Expertise:
- Strategic information security planning: developing and maintaining the security strategy and program in line with business goals.
- Risk management: identifying, assessing, and prioritizing risks; developing risk mitigation strategies.
- Compliance management: ensuring adherence to relevant laws, regulations, and standards (e.g. GDPR, NIS2, DORA).
- Security assessments and audits: planning and conducting internal and external security audits.
- Incident management: developing and implementing processes to detect, investigate, and respond to security incidents.
- Awareness and training: launching training programs to increase security awareness among employees.
- Advisory and leadership: acting as a consultant for management and leadership teams on all information security matters.
- Technology monitoring: monitoring and evaluating security technologies and cybersecurity trends to continuously improve the security architecture.
- Coaching junior information security professionals
Management style / working method:
- Solution-oriented and cooperative approach
- Reliability, openness, straightforwardness, commitment
- Confident presence and strong presentation skills
Languages
German
NativeEnglish
Advanced Education
Aug 1989 - Aug 1992
Lorem ipsum dolor sit amet
Technical Assistant Computer Science · Computer Science
Certifications & licenses
CCSP (Certified Cloud Security Professional)
ISC2
Prince2 Practitioner (Project Manager)
Axelos
CISA (Certified Information System Auditor)
ISACA
CISSP (Certified Information System Security Professional)
ISC2
Need a freelancer? Find your match in seconds.
Try FRATCH GPT More actions
Similar Freelancers
Discover other experts with similar qualifications and experience
