I started programming in Basic at the age of 9, and a year later it became printing programs and address management. Even if nobody could have guessed it at the time, this laid the foundation for my later career very early on.

 

At the age of 14, I switched to an x386 system and was able to explore the Internet some time later. The focus here was no longer on programming but on learning and understanding IT systems using the information available online at the time.

 

I learned a lot quickly and recognized my newly awakened passion, namely IT security. The years went by and IT security was still a passion of mine. Unfortunately, at some point I had to realize that there were still no opportunities to study something in this direction. So I opted for a solid and down-to-earth apprenticeship as a businessman.

 

In my training company, I already took on responsibility for large parts of IT during my training.

After I had successfully completed my training, I changed companies.

 

After just 4 months at the new company, the management put me in charge of the IT department. I held this position until my next important change.

​

After a year, I moved to Höltl Retailvision in Bad Hersfeld, a milestone because anyone who wanted to work here had to assemble their computer themselves (with assistance). The founder and manager of the company was one of the last apprentices of Konrad Zuse, the inventor of the computer. It was also in Bad Hersfeld that Konrad Zuse invented the Z22, the first computer with magnetic memory, and the world's first computers were mass-produced in Bad Hersfeld, which is perhaps why the computer gene was passed on to me.

 

Back to Höltl Retailvision. The first few weeks were characterized by training and education, because from then on my new field of work was merchandise management systems and checkout solutions. I also took on my first position as Product Manager for a management merchandise module and discovered the fascination of working with scoring values. (Will be relevant again later.)

 

During this time, I worked a lot with databases and got to know the possibilities and advantages. But unfortunately, that wasn't exactly what I had in mind as a career. So I started to complete my Microsoft Certified Systems Administrator (MCSA) and Microsoft Certified Systems Engineer (MCSE) qualifications at weekend and evening classes.

​

A few months after completing my training, I decided to quit my job and become self-employed.

​

Said and done!

​

That was in 2003.

​

Since then, I have continued my training in IT security, penetration testing, IT forensics and information security in order to be able to provide comprehensive, far-sighted and qualified advice.

​

During my work as an information security consultant in 2010/2011, I developed the world's first concept for scoring value-based prioritization of SIEM IT security incidents for an international client. Nowadays better known as Risk-based Alerting. My understanding of and fascination with scoring values helped me here.

 

In addition to my professional passion, there are others, one of which is the German Federal Agency for Technical Relief (THW), where I am deployed as a drinking water treatment team leader, and at the same time I am very involved in European civil protection and am part of the EU Technical Assistance Support Team (TAST) module as an IT and communications expert. In 2015, I completed the European Commission's Technical Expert qualification as part of the European Civil Protection Mechanism.

 

Extract from qualifications.

• EU Digital Operational Resilience Act (DORA)

• EU Network & Information Security Directive 2 (NIS2)

• Wertpapier- / Securities-Compliance

• Betrugsbekämpfung / Fraud Prevention

• Anti-Bribery and Corruption Training

• Information Security Awareness Foundational Assessment, United Nations Department of Safety and Security (UNDSS)

• Information Security Awareness Advanced, United Nations Department of Safety and Security (UNDSS)

• Information Security Awareness Additional, United Nations Department of Safety and Security (UNDSS)

• ISACA Certified Information Security Manager (CISM)

• EC-Council Certified Security Analyst (ECSA)

• EC-Council Licensed Penetration Tester (LPT)

• Linux Professional Institute Certification I (LPIC I)

• CompTIA LINUX+ (L+)

• Cisco Certified Entry Networking Technician (CCENT)

• Novell Certified Linux Administrator (NCLA)

• Certified Ethical Hacker (CEH)

• Computer Hacking Forensic Investigator (CHFI)

• ISC² Certified Information Systems Security Professional (CISSP)

• Microsoft Access Datenbankprogrammierung

• HTML Programmierung

• Microsoft Certified Systems Administrator (MCSA)

• Microsoft Certified Systems Engineer (MCSE)

• Microsoft Certified Systems Administrator Messaging (MCSA+M)

​

​