Volkmar J. - Consultant

Go to Website

Todtmoos, Germany

Experience

Mar 2023 - Mar 2023

1 month

Germany

Consultant

Bedia Motorentechnik GmbH & Co. KG

Consulting on effort estimation for VDA ISA/TISAX certification
Conducting a 2-day workshop plus preparation and follow-up
Hard skills: TISAX 5.1, ISO 27001:2022, audit, information security
Soft skills: consulting, moderation, presentation

Jan 2023 - Dec 2023

1 year

Wuppertal, Germany

Senior IT Risk Manager

Barmenia Versicherung

Developing and operating operational IT risk management
Monitoring IT risk process and optimizing IT risk database functions
Restructuring IT, information security, compliance, and project risks with data protection, outsourcing, and reputational aspects
Designing and delivering risk management training for key stakeholders
Planning and conducting risk inventory via risk interviews
Reporting IT risks to the board and risk management function
Adapting IT risk database into an enterprise risk database
CISO consulting on risk treatment plan design
Establishing an IT risk management board from IT leadership roles
Hard skills: IT risk management, IT compliance, VAIT, regulations, ISO 27001:2022, information security, Cobit, consulting, JIRA, R2C
Soft skills: communication, planning

Apr 2022 - Dec 2023

1 year 9 months

Germany

Project Risk Manager IT Mega Project

IT-Systemhaus der Bundesagentur für Arbeit

Risk management for a large-scale digital marketing development project
Defining, describing, and announcing the project-specific risk management process
Ongoing direct and indirect identification and aggregation of possible risks through communication with stakeholders and analysis of documents, project artifacts, environment, and tool information
Advising and collaborating with overall and subproject leads, managers, and decision-makers in the mega project environment
Documenting, evaluating, and updating risks and risk candidates in the risk register
Proposing risk treatment strategies and deriving measures and responsibilities with experts and decision-makers or acting as a harmonizing authority
Reviewing measure implementation and effectiveness, and reporting risks to the steering committee; monthly reporting of total project risk assessment to various decision-makers
Hard skills: project management, quality management, IT risk management, IT and information security, data protection, governmental business processes, audit, assessment, R2C
Soft skills: analysis, communication, conflict management, presentation

Sep 2021 - Dec 2021

4 months

Wuppertal, Germany

Senior Consultant IT Risk Management

Barmenia Versicherung

Designing documents for IT risk management
Analyzing guidelines in GRC and VAIT environments
Developing policies, work instructions, and processes for IT risk management integrated into internal control systems (ICS)
Supporting GRC manager on IT governance topics and department setup
Hard skills: IT risk management, IT governance, BSI IT-Grundschutz, information security, Cobit, documentation, VAIT, consulting, organizational change management
Soft skills: design, management consulting

Aug 2021 - Dec 2023

2 years 5 months

Darmstadt, Germany

Senior Strategy & Implementation Consultant VAIT Compliance

Betriebspensionskasse der Firma Carl Schenck AG VVaG

Implementing regulatory IT requirements (VAIT) and IT policies
Gap analysis and assessment of existing structures, organization, processes, technical information networks, IT policies including extensive outsourcing
Consulting, designing, and implementing VAIT-aligned structures, organization, processes, technical networks, IT strategy, IT policies, IT emergency concepts, IDV policies
Introducing IT risk management and key functions, and centralized data management for large outsourcing
Leading regular meetings with function holders, service providers, and board members
Training information security officers and IT risk managers on VAIT requirements
Hard skills: strategy development, strategy implementation, analysis, design, consulting, BaFin VAIT requirements, MaGo (pension funds), information security, ISO 27001, ISO 27031, BSI 200-4, emergency concepts, Cobit, corporate know-how, IT governance, IDV, IT and information risk management, process management, project management, regulations
Soft skills: communication, presentation, management consulting

Oct 2020 - Jul 2021

10 months

Wolfsburg, Germany

Senior Consultant Pilot Projects

CARIAD SE

Organizational setup and content support for a Processes & Compliance cluster
Stakeholder analysis, requirements gathering, and analysis for organizational setup and large project integration
Organizational interface function between brands, line organization, and project
Participating in cross-project working groups on processes, quality, and compliance
Providing compliance support to pilot projects in functional safety, product safety, IT and information security, ASPICE, and process models
Virtual international collaboration across many VW organizations
Hard skills: consulting, stakeholder management, SAFe, JIRA, Confluence, process design, organizational change management, ISO 26262, Automotive Security, ISO 21434, UNECE 155, UNECE 156, ISO 27001, ASPICE 3.1/4.0, engineering know-how
Soft skills: international and agile mindset, English, handling VUCA

Aug 2018 - May 2020

1 year 10 months

Düsseldorf, Germany

Senior Consultant, Moderator

ITERGO GmbH

Implementing GoBD requirements for procedure documentation and individual data processing (IDV) in the group
Strategy design and piloting project execution in the ERGO Group
Developing, planning, and implementing project approaches and quality standards
Identifying relevant systems and IDV and their owners
Designing info events and training materials, planning and delivering training
Planning and moderating workshops with system owners and auditors to compile procedure documentation for all sites
Providing governance and evidence documentation in a central system and site-specific systems
Planning and conducting quality checks and providing quality reports
Advising system owners on quality improvements
Continuously improving methods and approaches in the project, documentation, and quality assurance
Virtual collaboration with consultants, auditors, risk management, business units, and IT organizations
Hard skills: consulting, strategy development, planning, process management, project management, IT development, IT operations, GoBD, compliance, moderation techniques, lean management, corporate group, SharePoint, Skype, IDV, application documentation, technical system documentation, operations documentation
Soft skills: design, communication, planning, judgment, assertiveness, structured approach

Jul 2018 - Sep 2018

3 months

Nuremberg, Germany

Business Auditor

ERGO Direkt Versicherung AG

First audit of system-supported workflow input management
Creating a specific audit program and planning
Conducting the audit and evaluating against requirements with a risk-oriented approach
Reporting audit results in defined formats and documenting actions
Presenting findings to audited areas and coordinating actions and final report
Hard skills: business processes, document management systems, workflow systems, input management, audit, IT audit, risk management, GoBD, TR-RESISCAN, IDW PS 330, interview techniques, internal control system (ICS)
Soft skills: planning, analysis, structured approach, communication, judgment

Mar 2017 - Mar 2018

1 year 1 month

Heerlen, Netherlands

Management Consultant, Process Manager, Change Manager

DocMorris B.V.

Setting up and launching a new business unit for process and project management – Project and Process Management Office
Advising and supporting the department head on strategy development, department setup, and integration into corporate organization
Defining and installing department team and company-wide process team to handle changes with minimal operational risk
Redefining, developing, and relaunching a tool-supported change process for all business process and IT-related changes
Establishing organizational, process, communication, meeting, and interaction structures for integration and operation of the new department
Evaluating, strategizing, planning, executing, and adapting change management process
Defining and introducing criteria, concepts, methods, procedures, processes, roles, and positions in process, project, and portfolio management
Developing and applying company-specific methods to create business process documentation and a detailed cross-company process map
Introducing project standards: objectives and scope, planning, monitoring, reporting, tools, forms, communication, risk management, etc.
Defining department goals, tasks, budget, personnel, and project plans for the following year
Agile project management including planning, marketing and communication, risk management, collaboration with board, management levels, HR, IT, and stakeholders
Hard skills: process management, project management, change management, management consulting, stakeholder management, strategy development, organizational development, team building, matrix organization introduction, documentation, portfolio management, method development, JIRA
Soft skills: analysis, strategic thinking, design, communication, presentation

Nov 2016 - Dec 2016

2 months

Konstanz, Germany

Management Consultant, Assessor/Auditor

Hyperstone GmbH

Method consulting on software and quality standards and creating roadmaps
Analyzing process and quality situation with current and target states, market, industry, and customer requirements, conditions, etc.
Evaluating and deriving suitable quality standards and norms
Gap analysis for ISO 9001:2015 and Automotive SPICE assessment (HIS scope)
Creating quality roadmap with general and specific approach recommendations and profile definition for quality managers
Hard skills: quality management systems, audit/assessment, ISO 9001:2008, ISO 9001:2015, IATF 16949:2016, ISO 26262 Part 11, ASPICE 2.5, VDA 6.3, software development processes, embedded systems, software quality, automotive industry
Soft skills: analysis, strategy development

Jun 2016 - Sep 2016

4 months

Stuttgart, Germany

Operations Organization Expert

Allianz Deutschland AG

Creating, revising, coordinating, and approving group policies
Developing policy content for data protection, IT security, EUC/IDV, workplace infrastructures, and communication
Formal and content design based on minimum criteria like control levels, role and process definitions, and provided description structures
Coordination and changes with subject experts from affected divisions and overarching group units like IT audit and regulatory governance
Hard skills: IT governance, GoBD, data protection, information security, group structures and processes, workplace technologies and applications, internal control systems, IDV, authorization models, compliance design, evidence management
Soft skills: analysis, design, communication, planning

Feb 2014 - Apr 2016

2 years 3 months

Stuttgart, Germany

Head of Process and Quality Management – Process Manager, Project Manager, Quality Manager, Consultant

ELO Digital Office GmbH

Optimizing business processes, ensuring product compliance, evaluating and assessing relevant product standards, norms, and laws
Leading the introduction of an intranet as an information, communication, and documentation platform
Leading the introduction of a multinational product support and service ticket system
Various process optimizations including requirements management, software delivery, product strategy development, and internationalization processes
Compliance review, compliance setup, and white paper creation for FDA 21 CFR Part 11
Evaluating normative and regulatory product requirements and developing implementation strategies
Representing the company and participating in Bitkom e.V. working groups on ECM standards and ECM compliance
Consulting on DMS tenders and creating procedural instructions
Hard skills: identifying and assessing national, European, and US ECM-related norms, standards, and laws; process management; change management; quality management; project management; product life cycle; archiving; product management; document management; enterprise content management; SharePoint; JIRA; JIRA Service Desk; Confluence; agile and incremental project approach; GoBD; TR-RESISCAN; TR-ESOR; ZUGFeRD
Soft skills: analysis, strategy development, communication, team leadership

May 2013 - Jun 2013

2 months

Solothurn, Switzerland

Process Analyst, Technical Writer, Training Coordinator

DePuy Synthes GmbH

SOX IT remediation for SAP Access Control
Analyzing, extending, and developing Standard Operating Procedures (SOPs), work instructions, and control functions
Coordinating training for global rollout

Mar 2013 - Mar 2013

1 month

Frankfurt, Germany

Project Planner

Evonik Business Services GmbH

Planning the implementation of global software portfolio and license management processes
Analyzing and structuring existing software portfolio and license management concept ideas and internal project execution guidelines
Defining work packages, creating detailed project plan, and drafting kickoff presentation

Jun 2012 - Dec 2012

7 months

Leonberg, Germany

Program Quality Manager, SW Quality Manager

Robert Bosch GmbH

Program and software quality management by reintroducing and continuing my QM activities from 2007–09
Updating and expanding the system development life cycle manual
Planning and conducting regular and special audits
Preparing and supporting ASPICE Level 2 assessments

Aug 2010 - May 2012

1 year 10 months

Zürich, Switzerland

Quality Manager Project

Credit Suisse AG

Quality management for projects and programs and lean design for process and life cycle models
Quality consulting, planning, audits/assessments, lean design, and implementation of standard processes

Jun 2010 - Jun 2010

1 month

Rheinbach, Germany

Consultant for Process and Quality Management

Recommind GmbH

Identifying opportunities for global process and quality optimization in agile product development and delivery
Current and target analysis for product development, quality, and delivery processes

May 2009 - Dec 2009

8 months

Kirkel, Germany

Business Analyst

Praktiker Service GmbH

Business concept for inventory valuation under IAS 2 and goods stock valuation
Analyzing and designing goods inventory valuation methods

Jan 2007 - Mar 2009

2 years 3 months

Leonberg, Germany

Project Quality Manager, PMO Lead

Robert Bosch GmbH

Process improvement, quality management, and management coaching
Developing and implementing quality standard CMMI ML2 + ML3 and designing, setting up, and leading PMO

Jun 2006 - Sep 2006

4 months

Darmstadt, Germany

Project Coordinator, Editor-in-Chief

Deutsche Post Retail GmbH

Creating a guidelines catalog for application development participants
Defining requirements, motivating editors, and designing catalog maintenance process

Mar 2006 - May 2006

3 months

Munich, Germany

Consultant and Support for SOX IT Manager

E.ON IS GmbH

Further developing an efficient generic SOX IT control model
Benchmark analysis, best practice identification, workshop moderation

Mar 2006 - Apr 2006

2 months

Munich, Germany

Strategy Consultant, Moderator

MAN AG

Moderating IT workshop “Strategic Basis” for application areas after data center spin-off
Moderation and strategy development

Nov 2005 - Dec 2005

2 months

Darmstadt, Germany

Process Consultant, Project Coordinator

Deutsche Post Retail GmbH

Integrating CMMI project management process area into an ITIL IT operation
Process design and organizational coordination

Jun 2005 - Jul 2005

2 months

Munich, Germany

PM Coach and Support

Infineon AG

Providing process, project, and software metrics according to CMMI
Coaching and supporting PM in CMMI process area “Measurement and Analysis”

Mar 2005 - May 2005

3 months

Munich, Germany

Project Management Coach

Finanz Informatik GmbH & Co. KG

Feasibility study and execution consulting for a complex software development and integration project (interface project)
Coaching project managers, setting up risk management, auditing

Sep 2004 - Jan 2005

5 months

Wiesbaden, Germany

Project Manager

IKANO Bank AB

Relaunch and feature expansion of a customer card as a project continuation
Full project management

Jul 2004 - Aug 2004

2 months

Frankfurt, Germany

Project Management Consultant

DSV Air & Sea GmbH

Sarbanes-Oxley Act (SOX) audit preparation – IT area
Requirements analysis, implementation support, evidence documentation

Feb 2004 - Feb 2004

1 month

Essen, Germany

Assessor, Business Analyst

Dr. Fromme International Consulting

Assessment for introducing accounting and billing software in water and waste management companies in Kosovo
Software assessment

Jan 2000 - Oct 2023

23 years 10 months

Senior Consultant and Manager for Process, Quality and Project Management, IT Audit, Information Security, Compliance as

Jan 1998 - Dec 1999

2 years

Staff Quality Management

Jan 1993 - Dec 1998

6 years

Project Manager IT & Organization

Jan 1991 - Dec 1993

3 years

Project Engineer/Software Developer

Jan 1987 - Dec 1991

5 years

Hardware/Software Development Engineer

Summary

Mostly working in cross-functional roles on implementation, optimization, standardization, and audit topics in compliance, information security/BCM, and project management, as well as serving as moderator, project manager, organizational change manager, and management consultant.

Process management:

Method models
Product life cycle
Project processes
Software development processes
IT service management (ITIL processes)
Business processes
Management system processes
Collaboration with business partners
Organizational interfaces
Organizational structure
Organizational changes
Organizational Change Management (OCM)
Strategy development

Information security/(IT-) Business Continuity Management:

Awareness training
Business impact analyses
Risk analyses and risk management
Protection needs and measure identification
Security concepts
Emergency preparedness concepts
Emergency manual
Disaster recovery

Quality/Compliance:

Implementation, consulting, certification preparation, and gap analyses for standards and norms like ISMS, BCMS, QMS
Quality criteria, measurement, and analysis
Policies and guidelines
IT governance
IT audits
IT assessment
Models
Implementation of regulatory requirements like SOX, GoBD, VAIT, BAIT, NIS2, DORA

Project management: