Development Engineer Cybersecurity
(Automobil und Fahrzeugbau, 1000-5000 Mitarbeiter)
Skills
Altium
•Blockchain
•C/C++
•Cybersecurity Architecture Design
•Cybersecurity Concept
•Cybersecurity Monitoring
•Cybersecurity Process development
•Computer architecture
•Incident Response
•Microcontroller Architecture
•Python
•Product development
•Raspberry Pi
•TARA
•UDS
•VKMS
Nationality German
•Vulnerability Analysis
•Vulnerability Management
•Automotive SPICE
•ISO/SAE 21434
•ISO/IEC 27001
•ISA/IEC 62443
•NIST SP 800-53
•Blockchain
•C/C++
•Cybersecurity Architecture Design
•Cybersecurity Concept
•Cybersecurity Monitoring
•Cybersecurity Process development
•Computer architecture
•Incident Response
•Microcontroller Architecture
•Python
•Product development
•Raspberry Pi
•TARA
•UDS
•VKMS
Nationality German
•Vulnerability Analysis
•Vulnerability Management
•Automotive SPICE
•ISO/SAE 21434
•ISO/IEC 27001
•ISA/IEC 62443
•NIST SP 800-53
Projekthistorie
04/2023
-
bis jetzt
•Performing ISO21434-based TARA security analyzes for components, especially Linux kernels
•Development & review of security concept and architecture
•Support in requirements analysis/gathering and coordination with the customer
•Design and implementation of cybersecurity elements such as secure boot, security in BSP, boot loader and Linux kernel as well as IDS etc.
•Collaboration with embedded architecture, system definition of complex multiprocessor systems and E/E systems.
•Collaboration with Secure Execution Environments such as Trusted Execution Environment (TEE), Trusted Applications (TAs) and Key Provisioning
•Secure software development for Android and Linux based platforms
•Secure software development according to ISO 21434 and ASPICE Level 2
•Cybersecurity Process Refinement: Cybersecurity Monitoring, Organizational Incident Response, Vulnerability Management
•Vulnerability Management and Vulnerability Analysis based on the NIST SP 800-53
•Development & review of security concept and architecture
•Support in requirements analysis/gathering and coordination with the customer
•Design and implementation of cybersecurity elements such as secure boot, security in BSP, boot loader and Linux kernel as well as IDS etc.
•Collaboration with embedded architecture, system definition of complex multiprocessor systems and E/E systems.
•Collaboration with Secure Execution Environments such as Trusted Execution Environment (TEE), Trusted Applications (TAs) and Key Provisioning
•Secure software development for Android and Linux based platforms
•Secure software development according to ISO 21434 and ASPICE Level 2
•Cybersecurity Process Refinement: Cybersecurity Monitoring, Organizational Incident Response, Vulnerability Management
•Vulnerability Management and Vulnerability Analysis based on the NIST SP 800-53
07/2021
-
bis jetzt
Cybersecurity analyst
Nord CS GmbH
(Internet und Informationstechnologie, 10-50 Mitarbeiter)
• Analyzing potential threats for permission blockchains
• Utilizing different cryptographic primitives for authentication
• Requirements creation based on blockchain
• Developing Cordapp by JAVA to run Cordapp
• Building a testing Network based on Corda
• Supporting HW/SW teams to develop the products based on ISO/SAE 21434 standard
• Performing/evaluating threat analysis and risk assessment
• Design cyber security concept for the product
• Utilizing different cryptographic primitives for authentication
• Requirements creation based on blockchain
• Developing Cordapp by JAVA to run Cordapp
• Building a testing Network based on Corda
• Supporting HW/SW teams to develop the products based on ISO/SAE 21434 standard
• Performing/evaluating threat analysis and risk assessment
• Design cyber security concept for the product
11/2022
-
03/2023
Cybersecurity Architect
(Automobil und Fahrzeugbau, 1000-5000 Mitarbeiter)
Creation of an Actual-State analysis of the existing cybersecurity requirements.
•Creation of a security risk analysis for the BMW and Audi infotainment systems.
•Evaluation of threat scenarios with the help of Yakindu Security Analyst.
•Definition of measures in case of threats based on the previously assessed.
•Threat scenarios an Attack tree creating
•Creation of technical security requirements according to ISO/SAE 21434 and Automotive SPICE.
•Creation of a cybersecurity concept according to ISO/SAE 21434, UNR 155, UNR 156, and Automotive SPICE.
•Creation of detailed technical documentation.
•Process refinement and definition as per ISO/SAE 21434 and Automotive SPICE
•Vulnerability Analysis and Cybersecurity Monitoring
•Creation of a security risk analysis for the BMW and Audi infotainment systems.
•Evaluation of threat scenarios with the help of Yakindu Security Analyst.
•Definition of measures in case of threats based on the previously assessed.
•Threat scenarios an Attack tree creating
•Creation of technical security requirements according to ISO/SAE 21434 and Automotive SPICE.
•Creation of a cybersecurity concept according to ISO/SAE 21434, UNR 155, UNR 156, and Automotive SPICE.
•Creation of detailed technical documentation.
•Process refinement and definition as per ISO/SAE 21434 and Automotive SPICE
•Vulnerability Analysis and Cybersecurity Monitoring
01/2019
-
07/2022
Android App developer (Freelancer)
• Developing apps for android based on Java
• Creating testbench and validating the potential failures by Java and Python
• Creating Demos and prototypes for Android apps
• Creating testbench and validating the potential failures by Java and Python
• Creating Demos and prototypes for Android apps
05/2021
-
12/2021
Online Coordinator
Seltrax Solutions GmbH
* Assist with management of digital assets on various content
platforms
* Analyze data across multiple vendors
platforms
* Analyze data across multiple vendors
08/2016
-
04/2021
Branch Manager
Hoberg GmbH
* Prepare financial statements for the head office.
* Monitor expenses of the branch
* Monitor expenses of the branch
Zertifikate
ISA/IEC 62443
ISA
2024
TISAX
TÜV SÜD
2024
Automotive Cybersecurity Engineer (ISO/SAE 21434)
TÜV NORD Mobilität GmbH & Co. KG
2023
Reisebereitschaft
Weltweit verfügbar
