Profilbild von Dirk Meissner IT Projektleiter / CISO aus Schleithal

Dirk Meissner

verfügbar

Letztes Update: 03.02.2024

IT Projektleiter / CISO

Abschluss: Finance & Controlling
Stunden-/Tagessatz: anzeigen
Sprachkenntnisse: chinesisch (Grundkenntnisse) | deutsch (Muttersprache) | englisch (verhandlungssicher) | französisch (verhandlungssicher)

Dateianlagen

240201-Profile-Dirk-Meissner-with-project-list_030224.pdf

Skills

Standards:
  • ISO 20000, 27xxx, 31000, 32675, 38500
  • BSI 100-x / 200-x, C5, KRITIS,
  • NIST 800-x, CSF, RMF
  • CIS Controls
  • EU DORA, NIS2, AI Act , CRA, DGA, GDPR
  • ITIL V4
  • COBIT 5 / 2019
  • META / TOGAF Enterprise Architecture
  • ITPM

Skills/Experience:
  • IT-Audits (COBIT, ISO, BSI, NIST, CIS, TISAX)
  • Cyber/Information Security Management (COBIT, ISO, BSI, NIST, CIS, VDA -ISA)
  • IT Governance, Risk and Compliance (COBIT, ISO, BSI, NIST)
  • IT-strategy, -organisation and -architecture
  • International (IT) Program/Project Management
  • IT Workplace / Cloud / Office365
  • Data Privacy Solutions

Solutions:
  • Information Security Management System (ISMS)
  • Data Loss/Leakage Prevention (DLP) / Enterprise Information Protection
  • Cloud Security / Cyber Security (AWS, Azure)
  • Endpoint Protection / Endpoint Detect and Response (EDR)
  • Security Information and Event Management (SIEM)
  • Security Operations Center (SOC) / Managed Detect and Response (MDR)  
  • DevOps Security
  • Cloud Computing / Azure Cloud / Office 365
  • Technical Continuity Management (TCM) / Business Continuity Plan (BCP)

Projekthistorie

01/2022 - bis jetzt
Information Security / Cloud Vendor Auditor
DCSO GmbH (Internet und Informationstechnologie, 50-250 Mitarbeiter)

Cloud Vendor Assessments (CVA) based on DCSO defined security domains (NIST/ISO)

01/2020 - bis jetzt
Implementation of ISMS according to ISO2700x and NIST CSF
Ottobock SE (Pharma und Medizintechnik, 5000-10.000 Mitarbeiter)

- Define and implemnent an Information Security Management System according ot ISO27xxx and NIST CSF
- Setup Security Incident Response / MDR Team with 24/7 operations
- Conduct Business Impact Analysis

01/2023 - bis jetzt
Security Matter Expert BMW Cloud Security
BMW AG (Automobil und Fahrzeugbau, >10.000 Mitarbeiter)

- Define security concept for all relevant applications running on the platform.
- Connect applications to BMW central SOC / Splunk.
- Regular Pen tests, IAST / SAST / DAST scans.
- Assure compliance with BMW regulations.

12/2022 - 08/2023
Interim IT-Security Manager EMEA
Evident Scientific Europe GmbH (Pharma und Medizintechnik, 1000-5000 Mitarbeiter)

Interim CISO with full line function responsibility
- Conduct ISO 27001 Assessment
- Implement 3rd party risk management 
- define IT-Security policies 
- Support DPO

07/2019 - 09/2022
Datenschutzbeauftragter / Data Protection Officer
Linkando GmbH (Internet und Informationstechnologie, 10-50 Mitarbeiter)

Data Protection Officer of Linkando GmbH:
- Audit of Linkando Cloud solution based on GDPR requirements
- Contact person for all GDPR related topics

10/2021 - 01/2022
Information Security Assessment Cloud Data Center
Bechtle AG (Internet und Informationstechnologie, >10.000 Mitarbeiter)

- Conduct ISO 27001:2021 control assessment.
- Conduct BSI C5 control assessment.
- Define risk-based technical and organizational measurements to improve overall Cyber Security maturity level and resilience.

01/2020 - 03/2021
Senior Consultant Information Security BMW AWS Cloud
Ottobock SE (Pharma und Medizintechnik, 5000-10.000 Mitarbeiter)

Implenentation of an ISMS according to ISO2700x with complimentary NIST CSF Controls
Setup of a Security Incident Response Teams with 24/7 operations
Condut a Business Impact Analyse

01/2018 - 04/2019
Allianz Partners AIT Coordinator APAC Region
Allianz SE (Versicherungen, >10.000 Mitarbeiter)

Background:

  • Allianz Information Transition (AIT) projects are mandatory for all Allianz Entities worldwide.
  • Including DCC (Data Centre), AVC (Virtual Client), GM (Global Mail), AGN (Network), AGN Security Services

Tasks:

  • Responsible for the alignment of the different project pillars
  • Responsible for the overall project budged controlling
  • Responsible for the alignment between projects and local CIO´s for whole APAC region 
  • Responsible for the steering of the project execution

Achievements:

  • Successful rollout of AGN, AGN security services and GM in 2018
  • Rollouts for AVC and DCC in 2019

03/2016 - 12/2018
Allianz Virtual Client (AVC) Program Manager
Allianz SE (Versicherungen, >10.000 Mitarbeiter)

Background:

  • Allianz Virtual Client (AVC) is the mandatory Workplace solution for all Allianz OEs worldwide with 140K users.
  • Annual program budget approximate 20M Euro
  • Program started in 2013

Tasks:

  • Profit and Lost responsibility for AVC program
  • Align with Organization Entities (OEs) the rollout plan for AVC
  • Escalation counterpart for management of OE
  • Steer rollout preparation and rollout execution
  • Responsible for the AVC architecture team, package factory, Engineering department, Rollout team, PMO, Finance team with over 70 staff members (internals and externals)
  • Reporting to top management of Allianz SE

Achievements:

  • Customization of AVC solution to fit 24/7 operation model of Allianz Partners
  • Rollout of AVC to over 70K users in Europe and APAC till end of 2018

01/2015 - 12/2018
CISO / IT Sicherheitsbeauftragter BSI
ZfP Südwürttemberg (Öffentlicher Dienst, 5000-10.000 Mitarbeiter)

Background:

  • Zentrum für Psychatrie is a public healthcare organization with several thousand employees.
  • Need information security officer to define and implement information security concept.
  • Security concept based on BSI 100-x and ISO 27xxx
  • Setup and maintain ISMS

Tasks:

  • Create internal security organization for over 20 locations/business units in Germany
  • Define information security policy according to BSI and ISO standards and consult the management in all topics related to information security
  • Execute audits and follow-up audit findings

Achievements:

  • BSI 100-1/2 and ISO27xxx information security concept
  • IT-Emergency concept based on BSI 100-4
  • Handover of ISMS end of 2018 to successor

01/2015 - 12/2015
Senior Security Consultant
BMW AG (Automobil und Fahrzeugbau, >10.000 Mitarbeiter)

Background:

  • BMW Group need new IT-Security blueprint for all SAP systems worldwide

Tasks:

  • Collect and align all IT-Security relevant requirements within BMW Group
  • Create a new SAP IT-Security concept as blueprint
  • Test new SAP IT-Security concept in production and define worldwide rollout plan

Achievements:

  • New SAP IT-Security concept created
  • Proof of concept with one productive SAP system in Munich
  • Create worldwide rollout plan and align with all relevant parties
  • Handover to Rollout Manager

Zertifikate

CDPSE
2021
CISA
ISACA
2015

Reisebereitschaft

Weltweit verfügbar
Weltweit Einsetzbar, Wohnorte in Strasburg/Frankreich, München/Deutschland, Bangkok/Thailand, Shanghai/China
Profilbild von Dirk Meissner IT Projektleiter / CISO aus Schleithal IT Projektleiter / CISO
Registrieren