Andreas’ consulting activities are focused on the organizational and technical aspects of information security and include:
- Secure business processes
- Information security management systems (ISMS)
- ISO27001 gap analysis and certification advisory
- Information risk management
Andreas’ research currently focuses on support activities during cyber crisis on a national level.
Andreas worked for over 20 years in the IT area, in software development, service and project management but also in IT management. Over the last 10 years he focused on information management and information security. In this area he worked as internal auditor, information architect and consultant. He is a Certified Information Systems Auditor and Certified Data Privacy Expert (geprüfter Datenschutzexperte).