I’m currently working as Snr. IT Security Engineer at BEWATEC ConnectedCare and contribute significantly to the IT security of the ConnectedCare platform. I am the contact person for all IT security issues and bring security & data protection into the company and to the patients.
Before
I was involved as IT Security Analyst at Verimi in the areas of security, risk & workflow analysis as well as technology & architecture security (e.g. vulnerability scans, coordination of pentests). Before my position at Verimi I was, worked as researcher at the INSA de Lyon in applied research projects with international industrial partners. My work focused on research & development activities (particularly the architectural design & development of a distributed infrastructures, data traceability, security and reputation) as well as fostering relations with international IT partners.
I was developing a blockchain based data processing platform for data traceability (particularly big data und machine learning models), data anonymization & privacy-preserving analytics in a project with a big industrial partner. For the realization I used only modern & free technologies, some of them are Java / Maven / Gitlab (+ CI) / Spring (Boot, Data etc.) / Apache Cassandra / Apache Kafka / Swagger REST) / Angular2 / TypeScript etc. The R&D activity comprised the whole software development lifecycle starting from research, vision, specification, software development up to the deployment with modern technologies such as Docker / Kubernetes / AWS etc.
In Science
Previously, I gained several experiences as researcher and IT specialist at the Dietary Exposure Assessment (DEX) group of the International Research Agency for Research on Cancer (IARC), an institute of the WHO in Lyon, France, as well as postdoctoral researcher at the INSA de Lyon where I was implied in several European projects (e.g. Nathcare, Sphera).
The PhD thesis was conducted in a bi-national supervision (cotutelle de thèse) at the University of Passau (Prof. Kosch) and INSA de Lyon (Prof. Brunie) within the MDPS doctoral college, which evolved to the International Research and Innovation Center in Intelligent Digital Systems (IRIXYS). During the PhD, I adopted a game theoretic approach to communication systems in order to ensure a secure collaborative operation of complex distributed system. In more detail it enables the analysis of the strategic choices of rational selfish individuals. During the PhD in the French-German doctoral college I got the wonderful possibility to combine my scientific curiosity and interest in other cultures and languages.
Expertise
Certifications
EC-Council
Ethical HackerEncryption SpecialistSOC Analyst
Other
Datenschutzbeauftrager (TÜV) gemäß DSGVO und BDSG-neu (TUEV-NORD) [Certificate] – more info see course description (German-only)
Professional Experience
With specialization in secure distributed systems I gained experiences coordination, analysis, research & development activities in French, German and international institutes, all being international & multicultural environments:
Seit 07/2020: Senior IT Security EngineerBEWATEC ConnectedCare, Berlin, Germany
Overall planning and implementation of IT security, e.g. development of security concepts, planning and monitoring of pentests, shift left security, training.
2019 – 2020: IT Security AnalystVerimi, Berlin, Germany
Security & risk analyses, product security improvements (including vulnerability scanner, pentests coordination),
security-relevant certifications & audits (e.g. eIDAS substantial part 2/3), raising awareness for IT security safety.
2018 – 2019: Head of IT ArchitectureVerimi, Berlin, Germany
Estabilishing a tech-team, insourcing of dev & ops activities, IT/cloud architecture decisions, security & risk analyses.
2016 – 2018: Software architect & engineer (R&D, “Blockchain” specialization) LIRIS Lab, INSA de Lyon, France
R&D project(s) to develop a blockchain based platform for data traceability (of particularly big data and machine learning models)
2014 – 2015: Digital infrastructure coordinator, post-doc International Agency for Research on Cancer (IARC/WHO), Lyon, France
Assessment & coordination of the IT infrastructure at the DEX group
2013 – 2014: European project coordinator, post-doc LIRIS Lab, INSA de Lyon, Lyon, France
Management of INSA activities within European research projects
2011 – 2013: Research associate DIMIS Lab, University of Passau, Passau, Germany
Prototype development & reliability evaluation of mobile & dynamic communication systems
2006 – 2008: Freelance work IT consulting at a consulting agency for law and finances, Herne, Germany
Replacement and reorganization of the whole IT infrastructure (15 employees)
2004 – 2008: Research assistant FLW Lab, Dortmund University of Technology, Dortmund, Germany
Development (Java/C++) of an embedded real-‐time control system for material flow systems in logistics
Education
09 / 2013: Doctoral degree (conducted as French-German “cotutelle de these”)[manuscript]
University of Passau (Germany) & INSA de Lyon (France) Award of Excellence 2013 (categorie: natural sciences) [press release (de)][press release (fr)]
Research domain: Reliable and secure peer-to-peer (P2P) systems; complex system analysis; game theory
Title: Achieving collaboration in distributed systems deployed over selfish nodes - a Publish/Subscribe case study
The PhD was conducted in the cotutelle de thèse program, a binational supervision between the Grande École INSA de Lyon (France) and the University of Passau (Germany), financed by a 3-year grant, currently also working as research associate at the University of Passau.
10 / 2008: “Diplom” in computer science (equivalent to ‘Master’)[manuscript][os software]
Dortmund University of Technology, Germany
Research domain: reliability and security of service-oriented IT-architectures in logistics
Title: Analysis and performance evaluation of a decentral material flow control using a distributed data acquisition system.
Supervised Students
02 / 2018: Bachelor thesis (German manuscript) - T. Dallmeir, Fachhochschule Kufstein, Austria Diskussion von Möglichkeiten und Herausforderungen von Dashboards in Webseiten am Beispiel der Blockchain-Plattform DTP Objective: Proof-of-concept of a status quo dashboard being integrated in industry-standard technology landscapes.
02 / 2018: Bachelor thesis (German manuscript) - C. Glatzel, Fachhochschule Kufstein, Austria Analyse von modernen Admin-Oberflächen und Möglichkeit zur Verbesserung dieser anhand der Blockchain Plattform DTP Objective: Implementation of admin interfaces suitable for complex dynamic data.
10 / 2017: Master thesis - M. Schiedermeier, INSA de Lyon, France Design proposal on privacy preserving ledger applications - An architectural case study on e-voting Objective: Proof-of-concept development of distributed data analytics over encrypted data with Shamir’s Shared Secrets, being applied on-top of blockchain for secure traceable computing.
01 / 2017: 4IF Practical Project - B. Renault, INSA de Lyon, France Tabular-based data visualisation with modern web technologies[screenshot]
Objective: Complex data visualization with modern web technologies at the example of blockchain data models in tabular form using Angular2/TS.
01 / 2017: 4IF Practical Project - A. Sultan, INSA de Lyon, France Graph-based data visualisation with modern web technologies[screenshot]
Objective: Complex data visualization with modern web technologies at the example of graph-visualized blockchain data models.
07 / 2016: Master thesis (German manuscript) - H. Wilhelmer, Fachhochschule Kufstein, Austria Real-Time Big Data Verarbeitung: Entwicklung und Evaluierung eines Vergleichsschemas der Technologien
Objective: Comparison of current technologies and efficiency for Big Data processing.
05 / 2016: Bachelor thesis (German manuscript) - A Adadouc, University of Passau, Germany Verwaltung komplexer multimedialer Inhalte im internationalen Kontext
Objective: Evaluation & prototype development of modern user interfaces for multimedia content.
04 / 2016: 4IF Practical Project (French presentation) - N. Bonfante, INSA de Lyon, France Calcul multi-partite sécurisé
Objective: Proof-of-concept and simple performance assessment of analytics over encrypted data with Shamir’s Shared Secret scheme.
10 / 2015: Master thesis - M.Schipflinger, Fachhochschule Kufstein, Austria Large Scale Data-Retrieval in E-Health Applications Objective: Analysis of essential performance aspects for large-scale data retrieval at the example of the IARC-WHO GloboDiet research infrastructure (former ‘e-smp’).
01 / 2014: Master thesis - M. Vielsmaier, Universität Passau, Germany Open Shop Scheduling with Transfer Operations Objective: Comparison of optimization algorithms and use case study with an intralogistics scenario.
03 / 2012: Bachelor thesis (German manuscript) - T. Kronschnabl, Universität Passau, Germany Publish/Subscribe Algorithmen für P2P Applikationen - Twitter as P2P system Objective: Analyis of technical characteristics for P2P system deployment with Twitter as application use case.
12 / 2011: Master thesis (German manuscript) - C. Schoernich, Universität Passau, Germany Untersuchung der Robustheit von Gossiping-basierten Publish/Subscribe Systemen Objective: Robustness assessment of available Publish/Subscribe algorithms and implementation of an individual algorithm focused on robustness
Publications
Anonymous voting using distributed ledger-assisted secure multi-party computation, M. Schiedermeier, O. Hasan, T. Mayer, L. Brunie, H. Kosch. In: Applied Network Sciences 9, 51, Springer Nature, 2024. [link], DOI: https://doi.org/10.1007/s41109-024-00650-2
A transparent referendum protocol with immutable proceedings and verifiable outcome for trustless networks, M. Schiedermeier, O. Hasan, T.R. Mayer, L.- Brunie, H. Kosch. In: Proceedings of the 8th International Conference on Complex Networks and Their Applications, Springer International Publishing, 2019, 647—658. [link] See also pre-publication at arXiv: [arXiv:1909.06462]
Deliverable D2.2: Incremental report on provenance, trust and reputation models – Technical Realization (network & storage layer), T. R. Mayer. Project Report (WP1 Value Assessment), Project “Linked Data for Prescriptive Analytics: Application to Fraud Detection, Value Assessment” with Atos/Worldline industrial partner, 03/2018 (confidential, not publicly accessible).
Deliverable D2.2: Incremental report on provenance, trust and reputation models – Technical Realization (network & storage layer), T. R. Mayer. Project Report (WP1 Value Assessment), Project “Linked Data for Prescriptive Analytics: Application to Fraud Detection, Value Assessment” with Atos/Worldline industrial partner, 03/2018 (confidential, not publicly accessible).
Credit-based Reputations for Identity Management with Blockchain and Flow Networks, T. R. Mayer, O. Hasan, and L. Brunie. Whitepaper proposal, 4th Rebooting-the-Web-of-Trust Workshop, Paris, 04/2017.
[link]
Deliverable D2.1: Incremental report on provenance, trust and reputation models – Concepts & Models, T. R. Mayer. Project Report (WP1 Value Assessment), Project “Linked Data for Prescriptive Analytics: Application to Fraud Detection, Value Assessment” with Atos/Worldline industrial partner, 03/2017 (confidential, not publicly accessible).
Deliverable D1: Report on the requirements and scenarios for the usage of data, T. R. Mayer.
Project Report (WP1 Value Assessment), Project “Linked Data for Prescriptive Analytics: Application to Fraud Detection, Value Assessment” with Atos/Worldline industrial partner, 09/2016 (confidential, not publicly accessible).
Digital care in the Alpine Space, M. Amiel, L. Brunie, A. Flory, T. R. Mayer, and M. Said. Urbani issiv, vol. 1, no. Thematic issue (Spatial planning, health systems and Ageing in the alps), pp. 21–24, 2015. [link]
Evaluation of the NATHCARE model and policy guidelines, M. Amiel, L. Brunie, A. Flory, T. R. Mayer, and M. Said. Project Report 4, Alpine Space Programme 2007-2013, June 2015.
Many-player Inspection Games in Networked Environments, G. Gianini, E. Damiani, T. R. Mayer, D. Coquil, H. Kosch, and L. Brunie. In: Proceedings of the 7th 2013 International Conference on Digital Ecosystems and Technologies, 2013, pp. 1–6.
[link]
Inspection Games for Selfish Network Environments, G. Gianini, T. R. Mayer, D. Coquil, H. Kosch, and L. Brunie. Technical Report MIP-1203, University of Passau, Germany, 2012.
[link]
RCourse: A robustness benchmarking suite for publish/subscribe overlay simulations with Peersim, T. R. Mayer, D. Coquil, C. Schoernich, and H. Kosch. In: Proceedings of the 1st EDCC Workshop on P2P and Dependability, 2012.
[link][project]
On reliability in Publish/Subscribe systems: a survey, T. R. Mayer, D. Coquil, H. Kosch, and L. Brunie. International Journal of Parallel, Emergent Distributed Systems, vol. 27, no. 5, pp. 369–386, 2012.
[link]
Evaluating the Robustness of Publish/Subscribe Systems, T. R. Mayer, L. Brunie, D. Coquil, and H. Kosch. In: Proceedings of the Sixth International Conference on P2P, Parallel, Grid, Cloud and Internet Computing, 2011.
[link]
Live-Ticker Supported Sports Video Annotation, T. R. Mayer, D. Coquil, and M. Döller. In: Workshop on Interoperable Social Multimedia Applications, 2010.
[link]
Contribution to the performance evaluation of decentralized material flow controls on the example of a control prototype, T. R. Mayer, S. Libert, and M. ten Hompel. Logistics Journal, 2010.
[link]
Ein Beitrag zur Bewertung der Leistung dezentraler Materialflusssteuerungssysteme am Beispiel eines Steuerungsprototyps, T. R. Mayer, S. Libert, and M. ten Hompel. Logistics Journal, 2010.
[link]
Standardized Mobile Multimedia Query Composer, M. Döller, T. Mayer, K. L. Fong, S. Beck, H. Kosch, and D. Coquil. In: New Diections of Intelligent Interactive Multimedia Systems Services, vol. 2, pp. 87–101, 2009.
[link]
Contact
You want to contact me? That’s great! Write me an email and I come back to you as soon as possible.