Responsible for getting information security and information risk management aspects correctly imbedded in new developments and architecture designs (including reference and segment architectures and newly developed operational processes).As part of this job, a new zoning strategy and architecture developed and implemented based on the Jericho model whereby both legacy and new developments like Cloud and Internet first has been taken in account.Other (related) developed security strategies: Encryption, End-user devices (incl. BYOD and Internet based), Office 365, Cloud (SaaS, PaaS, IaaS) and Identity & Access Management (Federated Authentication and Authorization services based on external Identity providers, Active Directory and Azure Active Directory, including access based on SAML and OAuth).Based on this all also secure/zoning designs for Office 365, Microsoft Azure and Amazon AWS delivered and involved in Salesforce deployment initiatives.

Responsible for assuring compliance with all Information Risk related policies and processes. It provides a broad range of assurances across all aspects of information risk & security, including infrastructure, applications, data, tools and processes. It makes use of internal and external resources to understand and report on the state of information risk and security status of the IT operational processes and designs. It is based on formal processes and appraisal systems to ensure that Confidentiality, Integrity, Availability, Legal and Regulatory requirements are implemented and enforced. Next to that the job includes also advisory on Group level regarding all kind of Information Security and Information Technology issues.

Responsible for IT Security Compliance. Monitoring and reporting on compliance, enforce IT Security Policies & Standards. Main activities include• Developing, coordinating and executing an audit program• Managing the step-out process• Technical compliance review and monitoring• Vulnerability and penetration testing• Introducing, implementing & executing consequence management• Supporting the Business regarding implementation of the Trust Domain (infrastructure baselines, standards on Applications, Internet and Data).Providing the technical and process related IT security expertise and take responsibility for the areas related to, but not limited to, the above-mentioned activities. This will include any external & internal perimeter issues, Third Party access, technical and process related compliance issues, infrastructure scope coverage, vulnerability assessment, etc.

Architect of the GI-D Name Service InfrastructureArchitect of the GI-D DHCP InfrastructureDesign of Trust Domain II (the Shell Group Security policy)IT Security Advisor/ConsultantSecurity reviewer of ICT designsDesign of the GI-D Firewall and Web proxy infrastructureDesign of Secure Cell ModelsDesign Active Directory enabled Unix environment with GI based accountsArchitecture of Secure Cell solutionsDesign and Architecture of Windows virtualisation solutions Design of remote access infrastructure for Shell and non-Shell usersArchitecture/Design reviewer

Development of the non-procedural part of the Global Trust Domain concept (the new Shell Group Security policy)Development of a Trust Domain transition strategySecurity Focal Point for the development departmentsDevelopment for an ExtraNet strategyDevelopment of a secure web-hosting infrastructureDevelopment of the Third Party Office strategy and high-level infrastructureDevelopment of a new infrastructure and pricing strategy to route messages between the SSI messaging services and SMTP based external mailboxesInvestigation of new technologiesTechnical, Structural design & Security related consultancy work within and outside SSI

Responsible for the development and support of the telecommunications infrastructure in and from within the NetherlandsResponsibilities: Leading the team also on technical matters and new technology areasRationalisation bandwidth in the TBN network in the NetherlandsRedesign of the Router Backbone networks in the NetherlandsDevelopment of the first Shell Group Internet FirewallDevelopment of the Group-wide Internet & Shell Wide Web servicesDevelopment of Firewall servicesDevelopment of Remote LAN Access services

Information Technology Planner with special responsibility for the introduction of UNIX workstations as part of the KSLA IT infrastructureResponsibilities:Definition, acquirement and development of the general facilities required for the introduction and usage of UNIX workstations in the KSLA IT infrastructureDefinition of the KSLA Workstation and X-terminal StrategyLeading the KSLA UNIX Workstation GroupCo-ordination of the evaluation of workstations and the corresponding implementation of applications in close co-operation with the user communityAdvisor for the KSLA facilities management and network services delivery groupsDevelopment external communication connections (Internet and WWW) on basis of the Shell security guidelines

Project manager and technical advisor in the area of computer scienceSpecialities:Mathematics, Graphics, Parallel Processing & Neural Nets