Since 2010 I have realized several software-related projects and created a small business developing point-of-sale cash registers.
Since March 2020 I'm acting as a mentor for a local startup accelerator (Gründungsgarage) and supporting ambitious founders and students on their ideas in the area of IT security, data security, secure architecture, privacy and related topics as well as sharing experiences.
Siemens is a global leader in Industry 4.0. With Mindsphere Siemens is creating an open ecosystem for Industry 4.0 big data analysis to improve and optimize workflows, processes and maintenance cycles.
Working with architects and product lines to support Siemens' vision in the Security field and evaluating new/emerging technologies.
I am responsible for finding cybersecurity relevant blind spots in the portfolio and products of Siemens Digital Industries, and defining as well as setting up international and internal research and innovation projects for our site in Graz. These activities require a broad cybersecurity knowledge including the IT and OT (production floor) space.
I was responsible for improving the infrastructure setup and workflows for automated security testing in a highly dynamic environment following a micro-service architecture.
XiTrust provides an on-premise digital signature folder application allowing to sign digital documents in a legally binding way.
I was responsible for solving customer integration challenges and was in constant communication with the customer to identify its requirements and preprocessing the requirements for the development teams.
The first time I was involved with XiTrust, I was working as a software engineer on customer projects, extending their mailing system according to the customers needs.
At IAIK I was doing information security research in the fields of: Cloud Computing, Edge Computing, eGovernment, Distributed Systems and digital signatures. The duties and challenges are manifold. I not only worked on and completed my PhD, but also participted in several key roles in international research projects:
SUNFISH is a secure cloud federation framework, respecting the needs of the public secrot. I was responsible for one technical work package, dealing with and developing the core technologies in the project.
Participated in advancing the current state-of-the-art OASIS-DSS signature profile to be inline with STORK eID requirements.
Cloud for Europe supports public sector cloud use as collaboration between public authorities and industry. The project identifies obstacles, finds innovative solutions and builds trust in European cloud computing. I was responsible for requirement engineering and settling the scene to release the PCP tender.
Secure idenTity acrOss boRders linKed 2.0 contributes to the realization of a single European electronic identification and authentication area. It builds on the results of STORK, establishing interoperability of different approaches at national and EU level, eID for persons, eID for legal entities. I was part of the development team, realizing eID federation functionality.
This site is open-source - here's the source code repository.