Personal Profile

My strengths rely on my knowledge in IT technologies, having a network of technology partners and keeping my knowledge up to date with courses and certificates. As a plus my projects the last 10 years where in the medical and life science field, this is field with strict regulations allowing me a deep insight in how companies operate with ISO, ITIL and other regulations.

As Chief Information Security Officer or CISO, I can be responsible for designing the information security landscape to ensure a secure IT environment, and this can be based on ISO 27000 if required. This entails working together with the CIO and different IT teams to incorporate the required security measures, finding and mitigating vulnerabilities and training employees in cyber security and privacy regulations. Knowledge in Ethical hacking is my strength in this area.

As Data Privacy Officer or DPO, I can be responsible to ensure company compliance against the requirements of the GDPR regulation. This entails creating or maintaining the requirements such as subject and data processing registries, creating risk assessment and data impact assessments and ensuring that the necessary data processing contracts are in place with the required partners. Automation and clear communication to data subjects are my key strength points in this area.

As a Infrastructure Manager I can be responsible for drawing out the architecture of new environments, this local or cloud based, and driving the teams and projects implementing the necessary software and services. This is includes change management based on ITIL best practices and maintaining the existing environments and projects. Implementation of data governance and security projects are one of my specialties. I have a very broad knowledge in this field while I'm not limited in one specific field which is my strength in this area.

A combination of the above roles can be offered if it is required for the project, this of course will be discussed and budgeted accordance to the project needs.

For all the above roles this includes, project and change management, creating concrete practical policies with work instructions and clear communication to upper management. My day rate varies in accordance to the role I need to fullfil in an organization.

My personal focus is being a father for my 7 year old son. I love reading, tinkering with electronics and 3D printing, going out for drink with friends and taking a walk with my labrador James.

Availability

My availability varies due to the length of current projectes or contracts, best to contact me for more detailed information.

If you are interested in my profile, please scroll further down to take a look at my knowledge overview and certifications.

If you are interested in my services, please don't hesitate to contact me at my e-mail address [email protected] or on my cellphone.

Work Experience

2018 - 2022

CISO - Chief Information Security Officer and DPO - Data Protection Officer

Cerba Healthcare Belgium & Cerba Research - De IT Consultant


My main project for the moment is providing CISO and DPO consultancy for the medical laboratories of Cerba Healthcare Belgium and the central lab of Cerba Research. In these roles I am in charge for the implementation of ISO27000 and to ensure GDPR compliancy. I perform Risk Assessments and offer my knowledge to the IT Team to further secure the environment.

My main knowledge focus over the last years is security, data privacy regulations, information security and ISO27000 complaince.

  • Implement a full ISMS
  • Implement and maintain an CMDB.
  • Risk Assessments on information assets.
  • Control and security reviews
  • GDPR Data Processor Agreements
  • GDPR Subject registries
  • GDPR Data Impact Analysis
  • GAMP Software validation against GAMP5
  • Knowledge support for technical security implementations

Januari 2008 - Present

Hosting Provider

De IT Consultant


I provide and administrate Linux webhosting and VPS hosting in a own Datacenter, Microsoft Azure or Amazon AWS. This consists of but is not limited to:

  • Installation, configuration, and maintenance of Linux and Windows Servers.
  • Configuration and maintenance of webhosting.
  • Providing web applications.

May 2019 - Present

3D Design and Printing

De IT Consultant


I provide 3D design and modeling for models, molds, prototyping and machincal parts. This consists of but is not limited to:

  • Design of models in Fusion360
  • 3D printing of models in multiple materials on Ulitmaker professional machines
  • Post processing of 3D models

Past Experience

November 2015 - 2018

IT Consultant - System and network engineer

Cerba Healthcare Belgium and BARC, Full-Time

December 2014 - november 2015

IT Consultant - System and network engineer

EDAN - Cegeka Group, Full-Time

September 2009 - november 2014

IT Consultant / administrator

SPHINX-IT, Full-Time

APRIL 2008 - SEPTEMBER 2009

IT Technician

Corilus - Arseus Group, Full-Time

Technical Skills

%

Information Security

Advanced, 4 Years

Specialized in ISO 27000

- Determining full project

- Defining scope

- Creating ISMS

- CMDB and Risk Assessments

- SOA and RSTP statements creation

- Implementation of technical mitigations against found vulnerabilities

%

Data Privacy

Advanced, 4 Years

Specialized in international data privacy regulations

- GDPR, Popi Act and Japanese privacy laws

- Audit and RACI matrix creation

- Defining subject registries with processing legality

- Data Impact Assessments

- Data processing agreements and Standard Contractual Clauses for international data transfer

- Breach investigation and data subject requests handling.

%

Windows Server

Expert, 16 Years

Specialized in Windows Server and the following server applications:

- Starting from Windows Server NT to Windows Server 2016

- Active Directory, DNS and Group Policy management

- File and Print Server, DFS

- WSUS

- Microsoft Exchange 2003 - 2016

- Microsoft SQL 2005 - 2017

- Microsoft SharePoint 2010 - 2016

%

Applications

Expert, 16 Years

Specialized or knowledge with the following applications:

- Microsoft Dynamics NAV 4.0 - 2015.

- Deployment tools like WDS, Kace 2000, Puppet

- Microsoft Office 365 and Office applications 95 to 2016

- Monitoring with Nagios, Zabbix and Kaseya Traverse

- Disaster recovery with Acronis Advanced Backup, Backup Exec and Veeam B&R

- Virtual and containerization with
 - VMware vSphere 4 - 6.5
 - Docker
 - HyperV 2008R2 - 2016
 - Microsoft App-V

%

Linux Server

Advanced, 13 Years

Specialized in Linux Server editions and the following server applications

- Distro's: Debian, Ubuntu, CentOS and RHEL

- Bind

- Apache & Nginx

- MySQL

%

Cloud environments

Advanced, 7 Years

Specialized in the following Cloud environments and its services

- Microsoft Azure

- Amazon AWS

- Rackspace

- Hetzner

%

Network

Advanced, 13 Year

Technical and hands-on knowledge of the following products.

- DHCP

- IP subnetting, routing

- IPsec, SSL and OpenVPN tunnels

- MPLS lines

- SonicWall TZ and NSA series

- Cisco Catalyst & Nexus

- HP Procurve

- Zyxel USG series

%

Ethical Hacking

Medior to Advanced, 7 Years

Technical and hands-on knowledge of the following products.

- Metasploit

- Nmap, Nessus, OpenVAS and Qualis

- CVE hunting and information gathering

- Social engineering

- Email phishing

- End user awareness training

%

Languages

Advanced to Mediocre

I understand the following writen and spoken languages.

- Dutch - Native.

- English - Very good.

- French - notes.

I understand the following computer and scripting languages.

- Bash - Good.

- Powershell - Mediocore.

- HTML & PHP - basic.

- Javascript - basic.

- Yaml, Json & Jsonata - basic.

- TSQL - basic.

- .net - notes.

- python - notes.

Certifications

Data Protection Officer - Data Protection Institute

Achievement Date: 09/2020


Internal Auditor - Amelior

Achievement Date: 01/2019


ISO27001 Foundation

Achievement Date: 01/2019


ITIL Foundations

Achievement Date: 01/2019


MCSA: Microsoft Server 2016

Achievement Date: 12/2018


Cisco CCNA

Achievement Date: 10/2016


Microsoft MCSA

Achievement Date: 04/2013


MCSA: Microsoft Server 2012

Achievement Date: 04/2013


Microsoft MCP

Achievement Date: 09/2012


Microsoft Server 2008 Administrator - 70-646

Achievement Date: 09/2012


Microsoft Server 2008 Active Directory - 70-640

Achievement Date: 01/2012


Microsoft Server 2008 Network Infrastructure - 70-417

Achievement Date: 03/2011

Education and Training

Data Protection Officer Certification Training

Data Protection Institute


Internal Auditor

Amelior


ISO27001 Foundation

Advisera


CISSP Bootcamp

Firebrand


Ethical Hacking

MME bvba


CCNA Advanced bootcamp

Global Knowledge


Sonicwall Advanced networking

Sonicwall


SAN deployment

Fujitsu Siemens


Toegepaste informatica

Ho Gent


Network Administration

KISP


Graphical Design and techniques

VISO