Skip to content

Welcome to our project and assignment resources page!

We specialise in:

  • Consulting Information Security ISO/IEC 27001
  • Consulting Identity and Access Management
  • Consulting Cyber Security
  • Auditing (Anti-corruption ISO 37001 and Information Security ISO/IEC 27001)
  • Managed Services in Governance, Risk, Compliance

We have a pool of consultants; you can browse through below, where you can view their different profiles (CVs). From this you will receive a good idea of their capabilities, competence and experience. For reasons of integrity we have omitted their names.

If there is a profile, which you find of interest please do contact us and we will be more than happy to start a dialogue. Our consultants are either EU-citizens or holders of an EU working permit (Blue Card).

We are flexible, have placed consultants in different countries; that means we have a lot of international experience and we are therefore open to different solutions based on your requirements.

Please browse through the different profiles below

Lets start talking!

Your Enfina Security Team

CONSULTANT A

SENIOR INFORMATION & CYBER SECURITY CONSULTANT

SUMMARY

Experienced practitioner with 35+ years in banking, consulting and training.  Specialized in Identity & Access Management including role mining & definition.  Segregation of Duties and Identity & Access Governance.  International project / project management experience including managing of global teams.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • Certified Lead Privacy Implementer and Data Protection Officer
  • Certified ISO/IEC 27001 Lead Implementer

PROFESSIONAL SKILLS

  • Identity & Access Management
  • Segregation of Duties
  • Business Process Analysis
  • Anti-Money Laundering
  • Know Your Customer (KYC)
  • Data Privacy

LANGUAGE SKILL

  • German (Native), English (Fluent), Czech (Advanced)

PROJECT EXPERIENCE

  • Implementation of IAM tools & processes
  • Business and process requirement development and setting to implement new IAM tools
  • Segregation of Duties and Identity & Access Rights
  • Setup and expansion of a German bank incl. reporting and AML/KYC guidelines
  • IAM & security definition and implementation during the fusion of two insurance companies;
    conversion of SOX relevant and information security requirements into IAM
  • Implementation of Business Continuity Management
  • Business development and line management
  • Complex sales and high-level personnel & management training

CONSULTANT B

PRINCIPAL/LEAD CONSULTANT
INFORMATION SECURITY & INFORMATION RISK MANAGEMENT

SUMMARY

Senior Consultant for Information Security, Information Risk Management and Identity & Access Management incl. Segregation of Duties.  Has worked in IT Security and Information Security since 1999.  Studied at the FH Giessen-Friedberg and finished in 1995 as Diplom-Informatiker (FH).

PROFESSIONAL EDUCATION AND CERTIFICATES

  • ISO 27001 Lead Auditor
  • CISM, CRISC, Cyber Security Practitioner
  • Lead Implementer ISO27001
  • Certified Lead Privacy Implementer

PROFESSIONAL SKILLS

  • Information Security
  • Identity & Access Management / SoD
  • Information Risk Management
  • IT Governance
  • Data Privacy
  • Business Process Analysis

LANGUAGE SKILLS

German (Native), English (Fluent)

PROJECT EXPERIENCE (extract)

  • Identity & Access Management (IDAM)
  • Operational Risk Management
  • Creation of systematic IT Risk Management methodology
  • Implementation of a Social Media policy
  • Europe-wide rollout of X.509 certificates to secure the email traffic

 

CONSULTANT C

SENIOR CONSULTANT
IDENTITY ACCESS MANAGEMENT AND AML/KYC

SUMMARY

Experienced practitioner over 40 years in banking and consulting – in Germany as well as international.   Experienced with Islamic Banking in Arabic countries as well as with requirements and best practice of Anti Money Laundering and Know Your Customer in international banking.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • KPMG certificates in Audit/Accounting& Management

PROFESSIONAL SKILLS

  • Anti-Money Laundering
  • Identity & Access Management
  • Segregation of Duties
  • Know Your Customer (KYC)
  • Business Process Analysis
  • Universal Bank (Retail & Wholesale Banking)

LANGUAGE SKILLS

  • German (native)
  • English (fluent)

PROJECT EXPERIENCE (extract)

  • AFC - Anti financial Crime through Name List Screening
  • Segregation of Duties and Identity and Access Rights
  • Business Analysis re WM-Data Service for a Banking System
  • HGB accounting, Asset Wealth Management to cover pension obligations
  • Project Manager as per CMMI/QMS Securitization of loans for sale to SPV
  • Interim Manager New Product Committee Investment Banking Committee
  • Business Analysis in IAS/IFRS Reporting
  • Business Analysis Islamic Banking
  • Business and process requirements to implement Custody System

CONSULTANT D

SENIOR CONSULTANT –PROJECT MANAGER
INFORMATION SECURITY & BUSINESS CONTINUITY, AUDITOR

SUMMARY

20 years of ICT hands-on experience.  5 years Director of IT and Infrastructure Department at ZIS Serbia (HYPO Group Subsidiaries).  Successfully leading multi-role and multi-cultural teams through large scale and long-term projects.  Bringing innovation and process standardization to large financial, pharmaceutical and Telco corporations.  Projecting and follow-up on 7-figure budget management (e.g. Data Centre). ISO standardization Evangelist.  Cloud Standardization Specialist.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • Certified Information Security Management Systems Auditor
  • Lead Auditor ISO 27001:2013
  • Certified Business Continuity Management Implementer ISO 22301:2012

PROFESSIONAL SKILLS

  • Project Management
  • Business Continuity Management Implementation
  • Business Process Analysis
  • ITIL v3 / ISO 20000
  • IT Audit
  • Information Security Implementation/Audit

LANGUAGE SKILLS

  • German (Native)
  • English (Fluent)
  • French (Advanced)

PROJECT EXPERIENCE (extract)

  • Implementation ISO 27001/GDPR Compliance
  • Outsourced Business Continuity Manager / Information Security Officer for continuous maintenance of implemented ISO Standards
  • Digitalization and implementation of e-Gov
  • Maturity Level Assessment based on ITIL v3.
  • GAP Assessment in relations to ISO 27001 and local regulations
  • Development and implementation of Integrated Management System which covers: IT Service Management, Business Continuity Management
  • Implementation of Business Continuity Management
  • Development and implementation of internal IT audit methodology

CONSULTANT E

SENIOR CONSULTANT - PROJECT MANAGER
ICT PROCESSES & STRATEGY

SUMMARY

Experienced practitioner with 35 years in ICT Support, Data Migration, Banking Systems, ICT Project Management, International ICT Consulting, Judicial ICT Systems and Strategies, IPA Projects design & Implementation.  Educated in Yugoslavia and USA, Bachelor of Science and Master of Science degrees, Electrical & Computer Engineering.  Started career in ICT Support Management, later expanded to ICT Project Management, worked internationally, in many countries in Europe, Canada and Asia.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • PECB Certified GDPR Implementer

PROFESSIONAL SKILLS

  • ICT Support
  • Public Services Business Reform
  • ICT Project Management
  • ICT strategies in National Judicial Systems
  • Business Process Analysis
  • Data Protection &Privacy

LANGUAGE SKILLS

  • English (fluent)
  • German (conversational)

PROJECT EXPERIENCE (extract)

  • National Customs ICT strategy, EU Accession
  • Business Process & Information Improvement with new ICT tools
  • Analysis & Proposal for Myanmar National Justice ICT strategy
  • National Justice ICT Strategy
  • Design & implementation of National Justice ICT Systems
  • Y2K Technical Advisor to World Bank
  • Design & Implementation of Federal Government Web Portal
  • Reform of Czech National Savings Bank
  • Management of national ICT support organization

CONSULTANT F

SENIOR CONSULTANT
AUDITOR IT SECURITY

SUMMARY

Experienced system engineer, with more than 13 years of professional experience in the IT industry, from implementing large-scale Telco systems, to software design, development and implementation of scalable and host-based security tools, policies and procedures.  Experience with machine learning, particularly for and distributed applications.  Great experience with Linux OS & environment, virtualization, cloud computing and provisioning of applications and virtual servers.  Large experience in IT security, with both network-based anomaly detection and fingerprinting regular host/network/domain behaviour.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • Certified Ethical Hacker, Ethical hacking and Countermeasures, EC-Council
  • MSc, Faculty for Electrical Engineering & Information Technologies
  • BC, Faculty of Electrical Engineering, Department of Computer Technology, Automatics and Informatics
  • Certified Internal Auditor for ISO 9001:2008 and ISO 14001:2004

PROFESSIONAL SKILLS

  • Cloud computing
  • Internet & network security
  • Virtualization & provisioning
  • System & network administration
  • Business Process Analysis
  • Software design & architecture
  • Linux, *BSD
  • Machine learning, anomaly detection
  • Python, Shell scripting
  • Develops, SaltStack, Monitoring

LANGUAGE SKILLS

  • English (Fluent)

PROJECT EXPERIENCE (extract)

  • Software & database development, mobile & web applications like Polyglot learning system or CCTV system
  • Design and Implementation of online simulation software, Implementation of E-Learning platform
  • Management and Implementation of ISO:9001 and ISO:14001 certification in the company.

CONSULTANT G

SENIOR CONSULTANT
PROJECT MANAGER

SUMMARY

Experienced practitioner, self-starter with entrepreneurial spirit, more than 25 years in banking, consulting and training.  Project Manager (agile/traditional), Co-Founder of an Open Source based Enterprise Project Management system.  Has worked with both European and US based clients.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • Diploma Computer Science (Dipl-Inf. FH)
  • Certified bank specialist (“Bankkaufmann/Bankfachwirt”)

PROFESSIONAL SKILLS 

  • Project Management (Agile, PRINCE2, PMBOK)
  • Implementation of Business Systems & Methodologies
  • Full-Stack SW Developer
  • International Software Roll-outs
  • Business Process Analysis
  • Requirement Engineering

LANGUAGE SKILLS

  • German (Native)
  • English (Fluent)
  • Spanish (Fluent)

TOOLS & SW DEVELOPMENT

  • LAMP stack (Linux, Apache, MySQL, PHP) and several PHP & JS frameworks (ExtJS, jQuery), PostgreSQL, PL/PGSQL, OpenACS, tcl/tk

PROJECT EXPERIENCE (extract)

  • Main responsible or leading roles in more than 50 Software Roll-Out Projects.
  • Director Application Development (designed, developed and implemented an IT solution to conduct internet surveys), established an IT department with 6 employees, functioned as a mediator in an American/German company merger
  • Documented more than 200 business processes in coordination with representatives of several banks and banking organizations, assisted in various BPR projects in the banking sector
  • Performed costs/benefits analysis of a computer-based office communication system for an industry leader in the food industry

CONSULTANT H

SENIOR CONSULTANT
INFORMATION SECURITY AND GDPR

SUMMARY

A PMP certified professional with great experience from auditing, implementation and project management in information security, risk management, GDPR and IT services.  Has worked in the private, public as well as financial sectors.  Also has a solid background in training and adapting organisations to new ISMS processes and strategies.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • ISO22301/27001 & ISO9001 Lead Auditor
  • ISO20000 Foundation
  • Project Management
  • Key Compliance and Information Security Expert
  • Security and Privacy Expert
  • Risk Management Expert
  • IT Service Management Expert

PROFESSIONAL SKILLS

  • Certified Information Security Lead Risk Manager & Lead Privacy Implementer
  • PMP – Project Management Professional
  • CMC - CISA – CISM

LANGUAGE SKILLS

  • English (Fluent)
  • French & Spain (Advanced)

TOOLS

  • Project Management: MS Project

PROJECT EXPERIENCE (extract)

  • Experienced in risk assessment, evaluation and information security management in public, private and financial organizations
  • Experienced in auditing effectiveness of risk controls particularly of policies and procedures for identity management and Segregation of duties (SoD)
  • Experienced in implementation and operations of ISMS
  • Experienced in training and coordination of risk exercises in organizations
  • Experienced in Privacy Impact Assessment and Privacy Risk Assessment

CONSULTANT I

SENIOR CONSULTANT
INFORMATION SECURITY

OVERVIEW/SUMMARY

IS experienced in IT Management and IT Governance, with a focus on the finance industry.  Furthermore is an expert Segregation of Duties; additionally has also held the role of a TISO Technical Information Security Officer within the German banking sector.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • InformatikerIn Technische Universität Darmstadt
  • Certified ISO27001 Lead Implementer ISO/IEC 27001 LI– PECB
  • IT Governance & Compliance Practitioner (ITGCP) - ISACA

PROFESSIONAL SKILLS 

  • Information Security Management
  • ISO 2700x Family of standards
  • COBIT 5

LANGUAGE SKILLS

  • German (native)
  • English (fluent)

PROJECT EXPERIENCE (extract)

  • Governance and consulting and risk assessments ISO 27001 (Finance Industry)
  • Segregation of Duties (Finance Industry)
  • IT Governance - Compliance Gap Analyse (Finance Industry)
  • DSGVO and Date Record Management (Finance Industry)

CONSULTANT J

SENIOR CONSULTANT
SERVICE AND SECURITY MANAGEMENT

OVERVIEW/SUMMARY

Is an ITIL and IS certified consultant with professional experience in the telecoms- and finance industries.  Has a lot of experience communicating with management and stakeholders to solve issues and to report to give status reports on project progress.  Also has the ability to design and develop training packages, which are then delivered transferring experience and knowledge.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • Tele-Communication Engineer
  • ITIL®Foundation certification
  • PECB - Certified Information Security Implementer / ISO 27001
  • PECB - Certified Lead Privacy Implementer / ISO 29100

PROFESSIONAL SKILLS

  • ITIL based Service Management (Incident Management)
  • Security Management and Remediation (based on DB IT Security Framework)
  • Project Management and Team Coordination of technical projects

LANGUAGE SKILLS

  • German (native)
  • English (fluent)

SPECIAL TOOLS

  • Network Technologies: TCP/IP, DNS, DHCP, WINS, Telecom Systems
  • Operating Systems: MS Windows Server (Active Directory)
  • Programming Languages: Siemens HiPath Systems, SQL

PROJECT EXPERIENCE (extract)

  • IT Security Controls Management: Management and mitigation of security related issues (Finance Industry)
  • Project and Support Manager: Leading, planning and implementation of heterogeneous IT infrastructures (Finance Industry)
  • Project Management Leading of several IT infrastructure projects, as integrating Telecommunication Technologies within the IT environment (Aviation Industry)

CONSULTANT H

SENIOR CONSULTANT
INFORMATION SECURITY

OVERVIEW/SUMMARY

Experienced Compliance and Information Security Analyst within banking and commerce industry; including large banking groups and other financial services.  CS has extensive project management and change management experience.  Roles have included Operational risk, Finance and the Chief Information Security Office of large banking groups.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • PECB Certified ISO/IEC 27001 Lead Implementer (2017)
  • FASSET - NQF Level 8 - Professional Post-Graduate Qualification: Corporate and Governance Practice (2009)
  • AGA (SA) - Associate General Accountant (South African Institute of Chartered Accountants) (1997)
  • ACIS Associate of the Institute of Chartered Secretaries

PROFESSIONAL SKILLS

  • Compliance and Sarbanes Oxley Auditor

LANGUAGE SKILLS

  • English (native)
  • German (advanced

PROJECT EXPERIENCE (EXTRACT)

  • Creating a concept for ISO27005 Risk Management with special focus on Compliance Risks (Bulgarian law).
  • Business Analyst - ensuring the review and relevance checks over Segregation of Duties in line with regulatory and business policies and requirements.
  • Facilitated financial reporting, regulatory reporting and operational risk assessments (including change risk) across finance and related business processes.
  • Validated and quality assured financial and risk data for the Financial Reporting Control Framework Project
  • Performed the annual SOX testing reviews including factual accuracy assessment of processes
  • Implementation of SOX 404

CONSULTANT L

SENIOR CONSULTANT
INFORMATION-SECURITY, CYBER SECURITY & FORENSICS

SUMMARY

Experienced consultant with a demonstrated history working in the Information Security industry.  Skilled in Enterprise Risk Management, ISO 27001, Computer Forensics and Information Assurance.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • Bsc Building Engineering, Bath University (1989 - 1994)
  • Leyton SixthForm College (1987 - 1989)
  • CISSP - CISA Certified
  • Certified Forensic Investigation Practitioner
  • Qualys Qualified Administrator
  • IronPort Support Engineer

PROFESSIONAL SKILLS

  • Information Security Risk Management
  • Endpoint Malware Detection
  • Digital Forensics
  • Cyber & Information Security and Regulatory Consulting
  • Pentest Reviews
  • Vulnerability Management
  • Data Leakage Prevention

LANGUAGE SKILLS

  • English (native)

PROJECT EXPERIENCE (extract)

  • Information Risk Management - Business Impact Analysis for new and existing projects
  • ISO27001 Information Security Risk Assessment incl. analysis of Identity and Access policies
  • Incident Planning Training and Event Management
  • ISO27001 Information Security Assessment
  • Threat and Vulnerability Management

CONSULTANT M

SENIOR CONSULTANT
INFORMATION-SECURITY, CYBER SECURITY & FORENSICS

SUMMARY

Experienced consultant in auditing of personal data protection management systems.  Experienced in Risk Management, development and implementation of Information Security Management Systems compliant with ISO 27001 using cost effective methodologies fulfilling minimal requirements.

PROFESSIONAL EDUCATION AND CERTIFICATES

  • B.Sc. in Electrical Engineering
  • ICMCI Certified Management Consultant – CMC
  • PECB Certified ISO 21500 Lead Project Manager
  • PECB Certified ISO 9001 Implementer – Quality management system
  • ECQA Certified IT Security Manager and E-Security Manager
  • ITSM Internal Auditor according to ISO 20000:2005 (CIS Macedonia)
  • Certified ISO 27001 Lead auditor – Information Security management system

LANGUAGE SKILLS

  • English (native)

PROJECT EXPERIENCE (extract)

  • Implementation of Information Security and Privacy Compliance
  • Development and realization of Risk management training based on ISO 31000
  • Auditing of information assets, managing personal data, legal compliance, risk management, IT security incidents, disaster recovery and supplier’s management
  • Implementation and maintenance of Information Security Management System based on ISO 27001