As Principal I am responsible for the strategic development of the Risk & Security team as well as the capacities and competencies of the team and the consultants in the team.I am still also helping organizations to get a better picture and understanding of the threats they face and their own risk profile, mostly through maturity assessments using NIST CSF, and risk assessments based on the ISO27005 methodology. Also helping organizations with governance and compliance tasks… Show more As Principal I am responsible for the strategic development of the Risk & Security team as well as the capacities and competencies of the team and the consultants in the team.I am still also helping organizations to get a better picture and understanding of the threats they face and their own risk profile, mostly through maturity assessments using NIST CSF, and risk assessments based on the ISO27005 methodology. Also helping organizations with governance and compliance tasks ranging from GDPR counselling, updating data processor agreements, auditing data processors, doing internal audits, helping them deal with external audits and getting their ISAE3000 done by collecting internal evidence. Working with the NIS2 directive which includes measuring the maturity and readiness of the organizations and then helping them understand the requirements that the directive imposes on them, as well as assisting them with their preparedness exercises. Show less

Approved as a trainer for PECB, and certified to teach the following certifications: NIS2 Lead ImplementerISO27001 lead implementerISO27001 lead auditorISO27005 lead risk managerISO27701 Lead ImplementerLead Cyber Security ManagerData Protection Officer. Teaching mostly on-site through Globeteam

Helping organizations to get a better picture and understanding of the threats they face and their own risk profile. This is done through maturity assessments using NIST CSF, and risk assessments based on the ISO27005 methodology. Also helping organizations with governance and compliance tasks ranging from GDPR counselling, updating data processor agreements, auditing data processors, doing internal audits, helping them deal with external audits and getting their ISAE3000 done by… Show more Helping organizations to get a better picture and understanding of the threats they face and their own risk profile. This is done through maturity assessments using NIST CSF, and risk assessments based on the ISO27005 methodology. Also helping organizations with governance and compliance tasks ranging from GDPR counselling, updating data processor agreements, auditing data processors, doing internal audits, helping them deal with external audits and getting their ISAE3000 done by collecting internal evidence. Working with the NIS2 directive which includes measuring the maturity and readiness of the organizations and then helping them understand the requirements that the directive imposes on them, as well as assisting them with their preparedness exercises. Show less

Teacher in NIS2.I have designed and teach a class on the NIS2-directive. This class goes through the directive, but has a focus on the practical implementation of th erequirements..I use a teaching method that is more like workshops, where the participants get to interact with each other and work on problems as well as discuss and give input on the problems they each face.

Teacher in NIS2.I have designed and teach a class on the NIS2-directive. This class goes through the directive, but has a focus on the practical implementation of th erequirements..I use a teaching method that is more like workshops, where the participants get to interact with each other and work on problems as well as discuss and give input on the problems they each face.

Teacher in Data Protection.We are a duo team that teaches in the data protection regulations. This includes the articles, but has a focus on the practical use and application of the rules in the every day life of the organizations.We use a teaching method that is more like workshops, where the participants get to interact with each other and work on problems as well as discuss and give input on their actual GDPR challenges.

We have founded the Danish DPO-Association that works to promote a common understanding of compliance with the Data Protection Regulation and databeskyttelsesloven (the Danish Data Protection Act)As the vice-chairman I represent the organization in many events and sometimes give statements to the press, as well as doing presentations on events.