Cobalt.io is Pen Testing as a Service (PTaaS) Platform, with a core of 200+ highly vetted, certified security researchers. Performing penetration testing of web applications, API's and external networks on a freelance basis.Evaluating submissions on clients bug bounty programs as well as providing guidance and advice on technical solutions.Primarily role is working as a lead on Cobalt's web application penetration assessments.https://app.cobalt.io/titanbodo

Norlys is a modern energy and telecom group, whose services include electricity, energy efficiency streamlining, fibre broadband and cable TV. Norlys is a consumer-owned cooperative based in Silkeborg. Norlys have activities throughout the country and more than 700,000 shareholders and with approx. 1.5 million customer relationships. Norlys is Denmark's largest energy and telecommunications group.I am primarily working with ICS/OT security at our electricity distribution company, which is the second largest distribution company in Denmark with 750.000 customers and covering approximately 40 percent of the area of Denmark.

Norlys is a modern energy and telecom group, whose services include electricity, energy efficiency streamlining, fibre broadband and cable TV. Norlys is a consumer-owned cooperative based in Silkeborg. Norlys have activities throughout the country and more than 700,000 shareholders and with approx. 1.5 million customer relationships. Norlys is Denmark's largest energy and telecommunications group.I am responsible for the group's security-related policies as well as awareness initiatives, ICS security and red teaming including social engineering and penetration testing. Also physical security i.e. the protection of the group's physical assets.Below is a short summary of the areas I am working with:- Red Teaming/Purple tests incl. social engineering- OT Security in the Power Grid (Design, Architecture, Controls)- Penetration Testing- Author policies (Based on ISO2700X, IEC62443, CIS top 20)- Implementing policies (Helping our different departments building procedures)- Coordinate awareness and security training across the organization- Building risk assessment tool and performing risk assessments (Including BEK 820 ROS analysis)- Management reporting- Physical security

SE (Norlys) is a modern energy and telecom group, whose services include electricity, energy efficiency streamlining, fibre broadband and cable TV for our 750,000+ customers. My role is to manage all aspects of protecting the organization against cyber attacks and being responsible for the security architecture.Below is a short summary of the areas I am working with:- Red Teaming- Penetration Testing- Vulnerability management - Author policies- Coordinate and manage the security work in the operation and development organizations- Motivate and educate the IT departments about security- Coordinate awareness and security training across the organization- Execute and manage security projects

The EWII Group comprises a number of subsidiaries, each linked to EWII's core areas in the fields of electricity, water, heating and fibre broadband.EWII has approximately 500 employees.My role is to implement, maintain and monitor Information Security at EWII Group and to function as the data protection officer. IT-security across all subsidiaries from SCADA/ICS, production systems, administrative systems and data protection.Below is a short summary of the areas I am working with: - Building IT security strategies for the group- IT-Security policy and security guidelines- Regulation; BEK425, IT-preparedness and disaster recovery.- Getting ready and maintaining GDPR, implementing and monitoring processes and controls- Implementing awareness training- Participating in CAB and advisory for implementation of new systems.- Working with and implementing CIS top 20 controls

Improsec is a fully independent Cyber Security advisory company, with less than 10 employees.I have worked as an external consultant on several projects, customer base is medium to large companies. Work have been performed in the following areas:- Penetration test of SCADA environments, internal networks and web applications. SCADA penetration tests has included PLC's/RTU's and also the SCADA application and servers. Internal penetration testing has been performed as whitebox and blackbox and included segmentation testing, password cracking, windows security, unix security and hacking clients among other tests. Web application testing based on OWASP top 10.- IT Security maturity assessments based on Critical Security Controls and country/business specific regulation.- Assisted in implementing procedures and controls based on regulations and best practices.- Risk analysis of applications and data, also including SCADA environments.

Responsible for FortConsults compliance area, which includes services related to GDPR, IT-Audits, ISO27xxx, Cyber Security Review, Risk & Controls, Data discovery, Maturity assessments and moreAs an external consultant I have don work in the following areas:- Security testing; Internal and External penetration testing, Web application testing, Wireless security testing, PCI Penetration testing and Vulnerability scanning.- Creditcard security; Working with creditcard security for various clients, primary payment providers. How to protect cardholder data during the following phases; transmitting, processing and storage. PCI DSS; Gap analysis, Auditing, Implementing.- Information Security Controls; Implementing information security control, Testing and Auditing information security controls.Effective from May 1st, 2014, FortConsult is part of NCC Group. NCC Group is a leading global provider of independent Escrow and IT Assurance services. As a trusted advisor, NCC Group provide comprehensive end-to-end information assurance for over 15,000 organisations worldwide innumerous countries, including 94 of the FTSE 100 and many Fortune 500 companies. The Group helps companies to make the most efficient use of information and technology and manage the associated risks.NCC Group is a global organisation which employs close to 1000 employees in 20 international locations including the UK, Europe, USA and Australia.

As an external consultant I have don work in the following areas:- Attack and Penetration testing, both internal and external testing.- IT-Audit - 3rd party reporting

Quallity assurance, through IT audits and IT declarations, to support the financial audit. Customer base is medium to large companies, across all sectors. Discovery/Footprinting, Web Application Hacking, Attack and Penetration and Data analytics.

Financial audit, where i have acquired experience with planning and execution of auditing tasks and book keeping. Planning of specific audits to ensure that IT and business systems are protected and controlled. Development and implemention of risk-based audit strategies for the organization in compliance with audit standards, guidelines and best practices.

Education in Object Oriented Programming (Java) and Database Fundamentals.

Military service as ABC Beregner at Sjællandske livregiment