I have extensive know-how in the field of IT security. In particular, I specialize in application security due to my many years of development experience. I also have a lot of experience in the areas of CI/CD, DevOps and DevSecOps. As a security champion, I am therefore the ideal link between development and the SOC-team.

My knowledge includes application security as well as network and host security, both on-premises and in the cloud (AWS, Azure).
Over the years I have applied numerous security controls in the fields of cryptography, IAM, PKI, SCA, SAST and DAST and I hold some important certifications.
Thanks to the Identity Management Institute I am now another happy Certified Identity Management Professional (CIMP)® and ready for "Identity & Access Management" (IAM), since I am also experienced with some IAM protocols / concepts / tools, e.g. LDAP, SAML, OAUTH2, OIDC / SSO, MFA / AWS IAM, AWS Cognito, Keycloak. 😊

My most important certificates are:
 
 CASE  Certified Application Security Engineer | Java  EC-Council
 CIMP  Certified Identity Management Professional  Identity Management Institute
 CSSLP  Certified Secure Software Security Professional  (ISC)²
 CCSP  Certified Cloud Security Professional  (ISC)²
 CISSP
 SSCP		  Certified Information Systems Security Professional
 Systems Security Certified Practioner		  Fernschule Weber
 ECIH  Certified Incident Handler (WIP)  EC-Council
 DSOF  DevSecOps Foundation℠ Certification  DevOps-Institute
 BSI 200-2
 BSI 100-4		  IT-Grundschutz Praktiker
 Notfallmanagement		  heise Academy
  
   
I have also attended dozens of courses in many fields
  • Awareness Training
  • Cyber ​​Threat Intelligence
  • Data Privacy
  • Digital Forensics
  • Ethical Hacking
  • Information Security
  • Malware Analysis
  • Penetration Testing
  • Reverse Engineering
  • Threat Modelling

© 2012 - 2025 Erwin Pentz | Imprint

Go to top