His work focuses mainly on information security governance with special focus on the interconnection between business requirements and information security risks leading to secure business processes.
His core consulting activities comprise:
- Project Management
- Secure business processes
- Information security management systems (ISMS)
- Internal Control Systems
- ISO27001 gap analysis and certification advisory
- Information risk management
- Security awareness
He received a master’s degree in Business Informatics from the University of Vienna and gained several industry certificates, such as CISA and CISM during his security related work in the last years.