Personal Profile

I am an (Information) Security, Data Privacy and IT Professional with 12 years of experience in the industry, allowing me to have a deep technical knowledge and knowledge about regulations, standards and the necessary expertise to work in regulated environments.

p>My strengths rely on my knowledge in IT technologies, having a network of technology partners and keeping up to date with international data privacy regulations, allowing me to build the overall IT security strategy and required regulations requirements and framing it in the company wide picture.

As Chief Information Security Officer (CISO) I am responsible for designing the information security landscape to ensure a secure IT environment (based on ISO 27000). This entails working together with the CIO and different IT teams to incorporate the required security measures, finding and mitigating vulnerabilities and training employees in cyber security and privacy regulations.

As Data Privacy Officer (DPO) I am in charge to ensure company compliance against the requirements of the GDPR regulation. This entails the requirements against subject and data processing registries, creating risk assessment and data impact assessments and ensuring the necessary data processing contracts are in place with the required partners. Automation and clear communication to data subjects are my key strength points in this area.

For both roles this includes, project management, creating concrete practical policies and clear communication to upper management.

My personal focus is being a great father for my 6 year old son and a good spouse to my wonderful wife. I love reading, tinkering wiht electronics and 3D printing, going out for drink with friends and talking a walk with my labrador James.

Profesional Profile

2018 - Present

CISO - Chief Information Security Officer and DPO - Data Protection Officer

Cerba Healthcare Belgium & Cerba Research - De IT Consultant


My main project for the moment is providing CISO and DPO consultancy for the medical laboratories of Cerba Healthcare Belgium and the central lab of Cerba Research. In these roles I am in charge for the implementation of ISO27000 and to ensure GDPR compliancy. I perform Risk Assessments and offer my knowledge to the IT Team to further secure the environment.

My main knowledge focus over the last years is security, data privacy regulations, information security and ISO27000 complaince.

  • Implement a full ISMS
  • Implement and maintain an CMDB.
  • Risk Assessments on information assets.
  • Control and security reviews
  • GDPR Data Processor Agreements
  • GDPR Subject registries
  • GDPR Data Impact Analysis
  • GAMP Software validation against GAMP5
  • Knowledge support for technical security implementations
  • If you are interested in my profile, please scroll further down to take a look at my knowledge overview and certifications.

    If you are interested in my services, please don't hesitate to contact me through the webform on this page on the left or at my e-mail address [email protected] .

Work Experience

2018 - Present

CISO - Chief Information Security Officer and DPO - Data Protection Officer

Cerba Healthcare Belgium & Cerba Research - De IT Consultant


My main project for the moment is providing CISO and DPO consultancy for the medical laboratories of Cerba Healthcare Belgium and the central lab of Cerba Research. In these roles I am in charge for the implementation of ISO27000 and to ensure GDPR compliancy. I perform Risk Assessments and offer my knowledge to the IT Team to further secure the environment.

My main knowledge focus over the last years is security, data privacy regulations, information security and ISO27000 complaince.

  • Implement a full ISMS
  • Implement and maintain an CMDB.
  • Risk Assessments on information assets.
  • Control and security reviews
  • GDPR Data Processor Agreements
  • GDPR Subject registries
  • GDPR Data Impact Analysis
  • GAMP Software validation against GAMP5
  • Knowledge support for technical security implementations

Januari 2008 - Present

Hosting Provider

De IT Consultant


I provide and administrate Linux webhosting and VPS hosting in a own Datacenter, Microsoft Azure or Amazon AWS. This consists of but is not limited to:

  • Installation, configuration, and maintenance of Linux and Windows Servers.
  • Configuration and maintenance of webhosting.
  • Providing web applications.

May 2019 - Present

3D Design and Printing

De IT Consultant


I provide 3D design and modeling for models, molds, prototyping and machincal parts. This consists of but is not limited to:

  • Design of models in Fusion360
  • 3D printing of models in multiple materials on Ulitmaker professional machines
  • Post processing of 3D models

Past Experience

November 2015 - 2018

IT Consultant - System and network engineer

Cerba Healthcare Belgium and BARC, Full-Time

December 2014 - november 2015

IT Consultant - System and network engineer

EDAN - Cegeka Group, Full-Time

September 2009 - november 2014

IT Consultant / administrator

SPHINX-IT, Full-Time

APRIL 2008 - SEPTEMBER 2009

IT Technician

Corilus - Arseus Group, Full-Time

Technical Skills

%

Information Security

Advanced, 2 Years

Specialized in ISO 27000

- Determining full project

- Defining scope

- Creating ISMS

- CMDB and Risk Assessments

- SOA and RSTP statements creation

- Implementation of technical mitigations against found vulnerabilities

%

Data Privacy

Advanced, 2 Years

Specialized in international data privacy regulations

- GDPR, Popi Act and Japanese privacy laws

- Audit and RACI matrix creation

- Defining subject registries with processing legality

- Data Impact Assessments

- Data processing agreements and Standard Contractual Clauses for international data transfer

- Breach investigation and data subject requests handling.

%

Windows Server

Expert, 11 Years

Specialized in Windows Server and the following server applications:

- Starting from Windows Server NT to Windows Server 2016

- Active Directory, DNS and Group Policy management

- File and Print Server, DFS

- WSUS

- Microsoft Exchange 2003 - 2016

- Microsoft SQL 2005 - 2017

- Microsoft SharePoint 2010 - 2016

%

Applications

Expert, 11 Years

Specialized or knowledge with the following applications:

- Microsoft Dynamics NAV 4.0 - 2015.

- Deployment tools like WDS, Kace 2000, Puppet

- Microsoft Office 365 and Office applications 95 to 2016

- Monitoring with Nagios, Zabbix and Kaseya Traverse

- Disaster recovery with Acronis Advanced Backup, Backup Exec and Veeam B&R

- Virtual and containerization with
 - VMware vSphere 4 - 6.5
 - Docker
 - HyperV 2008R2 - 2016
 - Microsoft App-V

%

Linux Server

Advanced, 8 Years

Specialized in Linux Server editions and the following server applications

- Distro's: Debian, Ubuntu, CentOS and RHEL

- Bind

- Apache & Nginx

- MySQL

%

Network

Advanced, 8 Year

Technical and hands-on knowledge of the following products.

- DHCP

- IP subnetting, routing

- IPsec, SSL and OpenVPN tunnels

- MPLS lines

- SonicWall TZ and NSA series

- Cisco Catalyst & Nexus

- HP Procurve

- Zyxel USG series

%

Languages

Advanced to Mediocre

I understand the following writen and spoken languages.

- Dutch - Native.

- English - Very good.

- French - notes.

I understand the following computer and scripting languages.

- Bash - Good.

- Powershell - Mediocore.

- HTML & PHP - basic.

- Javascript - basic.

- Yaml, Json & Jsonata - basic.

- TSQL - basic.

- .net - notes.

- python - notes.

Certifications

Data Protection Officer - Data Protection Institute

Achievement Date: 09/2020


Internal Auditor - Amelior

Achievement Date: 01/2019


ISO27001 Foundation

Achievement Date: 01/2019


MCSA: Microsoft Server 2016

Achievement Date: 12/2018


Cisco CCNA

Achievement Date: 10/2016


Microsoft MCSA

Achievement Date: 04/2013


MCSA: Microsoft Server 2012

Achievement Date: 04/2013


Microsoft MCP

Achievement Date: 09/2012


Microsoft Server 2008 Administrator - 70-646

Achievement Date: 09/2012


Microsoft Server 2008 Active Directory - 70-640

Achievement Date: 01/2012


Microsoft Server 2008 Network Infrastructure - 70-417

Achievement Date: 03/2011

Education and Training

Data Protection Officer Certification Training

Data Protection Institute


Internal Auditor

Amelior


ISO27001 Foundation

Advisera


CISSP Bootcamp

Firebrand


Ethical Hacking

MME bvba


CCNA Advanced bootcamp

Global Knowledge


Sonicwall Advanced networking

Sonicwall


SAN deployment

Fujitsu Siemens


Network Administration

KISP


Graphical Design and techniques

VISO