About me

I am an IT security specialist with over eight years of experience in the banking sector. My career started in VPN operations and moved into the security team, DevOps, server administration and cyber threat intelligence. On the blue team side I focus on monitoring, incident response, secure application design and hardening systems, working with a SOC toolchain (SIEM/XDR/SOAR/UEBA).

In my DevOps role I have developed more than ten middleware services and tools to interconnect security systems and automate workflows, using languages such as Python, PHP, TypeScript and C#. To keep up with fast-changing attack schemes I joined the CTI team to collect, analyze and share threat intelligence and feed it back into our defenses.

I see myself as a security-focused generalist who cares about clear documentation, enjoys explaining complex issues in plain language and keeps learning new technologies to turn them into practical defenses. I like working at the intersection of security, operations and development, helping teams turn abstract risks into concrete improvements.

Outside of work I spend my time bouldering, doing woodworking and DIY projects, running a small home network lab, building electronics and enjoying cooking and grilling with a good beer. I am also passionate about hi-fi systems for music and home cinema and have started building my own speakers.

What i'm doing

  • Solution Manager

    Managing a small team responsible for designing and operating security solutions, coordinating with stakeholders and keeping services stable and reliable.

  • Security analyst

    Handling indicators of compromise by triaging alerts, enriching IOCs and working with other teams to contain incidents and reduce risk.

  • Blue team

    Strengthening defenses by tuning detections, closing monitoring gaps and continuously improving the overall security posture.

  • Cyber threat intelligence Officer

    Collecting and analyzing threat intelligence, turning external and internal findings into briefings, IOCs and detection use cases for the security teams.

  • Application & system hardening

    Hardening servers and applications through secure configuration, patching, access control and security baselines, with a focus on Linux environments.

  • Programming & development

    Developing middleware services and small front- and back-end tools that connect security systems and support daily operations, using Python, PHP, TypeScript and C#.

  • Automation & tooling

    Automating repetitive tasks and building helper scripts and tools in Python and on Linux to make security workflows faster and more reliable.

  • Security awareness & phishing campaigns

    Designing and running internal phishing simulations and follow-up trainings to raise security awareness and change user behavior.

  • Documentation & guidelines

    Creating and maintaining clear documentation, runbooks and guidelines so that processes, playbooks and solutions are understandable and repeatable.

Resume

Working Experience

  1. DevOps, CTI team, Security Analyst, Erste Digital

    2021 — present

    Developed 10+ middleware solutions as a DevOps engineer and member of a CTI team. Investigating security alerts and incidents as a security analyst, automating and operating security-related infrastructure, and analyzing cyber threat intelligence to provide actionable recommendations for improving defenses.

  2. Security Analyst, Solution Manager, S-IT Solutions

    2018 — 2021

    Worked as a security analyst and server administrator/solution manager, hardening and maintaining servers while supporting the design and operation of security-focused infrastructure solutions.

  3. VPN Engineer, S-IT Solutions

    2017 — 2017

    Operated and improved the company’s VPN infrastructure, ensuring secure and reliable remote access for internal and external users.

  4. Network Engineer, MCO-IT

    2016 — 2017

    Part-time employment for setting up networks end-to-end, including laying cables, configuring network devices, writing technical documentation and developing supporting software/tools.

  5. Mobile Network Field Service Technician Assistant, A1

    2011 — 2011

    Responsible maintaining mobile base stations and antenna sites to diagnose, repair and maintain radio and network equipment, ensuring stable mobile coverage.

Education

  1. University of Applied Sciences - St. Pölten

    2014 — 2017

    Studied at the University of Applied Sciences St. Pölten with a focus on IT security, including secure system design, network and application security, as well as red teaming and penetration testing.

  2. Red Cross - Vienna

    2012 — 2013

    Emergency medical technician (Rettungssanitäter) with the Red Cross, providing pre-hospital emergency care and safe patient transport in urgent and non-urgent situations.

  3. Higher technical college - Spengergasse

    2007 — 2012

    Graduated from HTL Spengergasse with a focus on network engineering, gaining solid experience in designing, implementing, configuring and securing network and server infrastructures.

Certifications & Trainings

  1. ITILv3 Foundation

    PeopleCert

    ITIL v3 Foundation certification validates a basic understanding of IT service management best practices, covering key concepts, processes, and roles across the IT service lifecycle.

  2. Cisco Certified Network Associate

    Cisco

    CCNA certification is widely recognized in the IT industry as the foundational step for careers in IT positions and networking roles.