Strengthened and modernized the security posture.Designed and improved the Information Security Strategy.Interacting with IT operations and DevOps teams to foster a solid information security posture.Introduced and modernized the ISMS framework and the Information Security Risk methodology.Additionally working together with our blue and red teams to understand where we are likely to be exposed. Setting the security strategy and principles for identifying information security risks, improve stability and information quality. Designing principles for efficient sourcing of IT-security services and how emerging technologies should be supervised in terms of reporting, metrics and KPIs. Implementing controls for mitigating MITRE ATT&CK frameworkCreating framework for and performing Business Impact Assessment Gathering Security Intelligence from both internal and external SOC services which covers Threat and Vulnerability Management; Reporting on current Information Security Threat Landscape; Following up on Compliance adherence; Actively governing Policy and Instruction Life Cycle Management and IT security architectural principles.

Implementing security strategy and principles for identifying information security risks, improve stability and information quality.Designing principles for efficient sourcing of IT-security services and how emerging technologies should be supervised in terms of reporting, metrics and KPIs. Implementing Information Security Business Impact Assessment; Reporting on Security Intelligence which covers Threat and Vulnerability Management; Reporting on current Information Security Threat Landscape; Assuring Compliance adherence; Implementing and documenting Policy Life Cycle Management and IT security architectural principles.

As a Senior Consultant I work with all aspects of Information Security.To illustrate my experience in different competences follows examples of typical areas of work.I have held assignment as Information Security Architect where I foster the development and alignment of identified deficiencies with external and internal regulations and frameworks.I have experience to introduce governance documents such as ISMS, Policies, Guidelines and Instructions.Furthermore I have broad Information Security experience from projects regarding; Risk Management, Development, Penetration testing, Investigations, Production, Business Contingency Planning, Disaster Recovery, GDPR, PCI-DSS, Operational Risk,

Head of ComplianceGroup IT & Infrastructurewhich covers:Compliance with EU and national regulations regarding AML/CTFInternal obligations in terms of IS/IT governanceAdvice and support regarding regulatory interpretations regarding IT InfrastructureCompliance in terms of alignment of Data quality for Risk Data Aggregation and ReportingAdvisory for aligning Processes of material significance with regulationsAdvisory for Outsourcing best practices

Compliance Officer work:Compliance with EU and national regulations regarding AML/CTFCompliance for Social MediaAdvisory for Corporate GovernanceRisk Management for ComplianceRisk Analysis Methodology

Risk Assessment and Risk AnalysisThreat and Vulnerability IdentificationIS/IT Policies and GuidelinesPKI InfrastructureDevelopment of Security solutions

Technical Specialist in regards of CP, CPS, HSM, DR,

Technical Specialist in regards of CP, CPS, HSM, DR

Security Consultancy in Information Security

Responsible for the IT infrastructure of Skandia AFS.

Teaching at the Naval Academy