Mario Kogler
Angestellt, Partner Trust & Cybersecurity bei Devoteam Consulting Austria, Devoteam Consulting Austria
Wien, Österreich
Werdegang
Berufserfahrung von Mario Kogler
Bis heute 1 Jahr und 10 Monate, seit Aug. 2022
Partner Trust & Cybersecurity bei Devoteam Consulting Austria
Devoteam Consulting AustriaBis heute 14 Jahre und 2 Monate, seit Apr. 2010
Senior Principal Consultant: IT-Governance, Risk Management and Compliance
Devoteam Consulting
1. Project: IT-Riskanalysis and Penetrationtest | Customer: CTBTO UN | role: Lead Auditor | Delivermodell: Offshore (Croatia) ||| 2. Project: Security Incident Management Framework, security training and awareness, AD audit, Risk Assessment | Customer: Givaudan (Geneva) ||| 3. project: web application security control framework | Customer: TILAK ||| 4. project: IT-policy architecture, Security enhanced SDLC | Customer: ÖBB ||| 5.project: ISO27001 certification | Customer: KACST (Saudi Arabia)
2 Jahre und 5 Monate, Nov. 2007 - März 2010
IT Transformation Consultant / IT Security & Enterprise Architecture
Capgemini Consulting Österreich AG1. Project: Requirementsanalysis | Customer: IAEA | role: alternate PM, Business Analyst | Deliverymodell: Offshore | Duration: 1 year ||| 2. Project: Requirementsanalysis, data migration, test planning, user training | Customer: IAEA | role: alternate PM, team lead | Deliverymodell: Offshore in India | Duration: 7 months ||| 3. Project: IT-Targetarchitecture and roadmap till 2012 | Customer: Raiffeisen International (Kiev) | role: Enterprise Architect | Duration: 3 months
8 Monate, Okt. 2006 - Mai 2007
Thesis: Web Security Gateway solutions
Drei-Banken-EDV GmbH
Responsible for the evaluation of several web gateway security solutions (Bluecoat Proxy SG, Ironport S350, McAfee SWG, Aladdin eSafe GW, Secure Computing Webwasher, Websense Enterprise) and comparison with the existent internet perimeter infrastructure regarding security controls and implementation costs. Focus areas: network security, identity and access management (incl. SSO, centralized access management), high availability (Cache Load Balancing), URL screening, content filtering
2 Monate, Aug. 2006 - Sep. 2006
Project: MPLS VPN Network Design
NextiraOne Austria
Responsible for designing and supporting the implementation of a MPLS VPN network including Provider Edge and Customer Edge routers (Cisco 7600, 6500, 2800) considering confidentiality, integrity and availability services (QoS), verification of QoS parameters with IxChariot Software from IXIA (Quality assurance), recommending security controls based on best practices (NIST), Role: IT Security expert
Development of a detailed technical guideline to perform a web application security test according to OWASP and ÖNORM 17700 including recommendations on mitigating critical security issues, Role: team member security team
5 Monate, Okt. 2005 - Feb. 2006
Project: Penetration Test
Anonymous
Planning and enforcement of a penetration test on the basis of the guideline “A penetration testing model” published by the german Federal Office for Information Security. Conduction of technical (sniffing, mail spoofing, trojan horses, vulnerability assessment etc.) and social engineering attacks, Role: Tiger Team Member
2 Monate, Aug. 2005 - Sep. 2005
Project: Endpoint Security Assessment
Drei-Banken-EDV GmbH
Evaluation of several endpoint security solutions (e.g. Cisco Security Agent, McAfee Entercept) and development of a deployment strategy for the installation of approximately 3000 Cisco Security Agents, Role: IT-Security expert
5 Monate, Feb. 2005 - Juni 2005
Project: .NET Software Development
Voest Alpine IT GmbH
Responsible for the implementation (Managed C++, .NET, MySQL) of an integrated, centralized firewall documentation tool (Cisco PIX, Checkpoint FW-1) in order to meet regulatory requirements, Role: Software Developer
5 Monate, Okt. 2004 - Feb. 2005
Project: Security Performance Test
NextiraOne Austria
Execution of performance tests on network infrastructure components (Checkpoint NGX, Cisco PIX, Phion Netfence) with regards to encryption and VoIP (SIP, SCCP, H.323) followed by a recommendation of performance enhancements
5 Monate, März 2004 - Juli 2004
Project: VPN Security
Spitz GmbH
Establishment of a site-to-site VPN with products like Checkpoint FW-1 NG, Checkpoint Edge, Cisco PIX 501 and Sonicwall SOHO-3 and giving recommendations on security controls regarding VPNs
Ausbildung von Mario Kogler
2014 - 2014
IT-GRC
Governance of Enterprise IT (UK)
2014 - 2014
Communication Skills
PCM (Prozess Kommunikations Modell)
2013 - 2013
Communication Skills
NLP Seminar
2013 - 2013
Öffentlicher Einkaufsprozess
Österreichisches Vergaberecht Seminar
2013 - 2013
IT-GRC
White Cyber Knight (IT-GRC tool) Training
2012 - 2012
Cloud Konferenz BMC-Remedy (Riyadh)
2011 - 2011
Security Services
International Risk & Security Practice Manager Meeting
2011 - 2011
IT-Riskmanagement
Calpana Risk Management Symposium
2011 - 2011
Communication Skills
Communication Skills and Teaming
2008 - 2008
Communication Skills
Presentation Training
2008 - 2008
Enterprise IT Architecture
Architecture Essentials Training at Les Fontaines
2007 - 2007
Communication Skills
Presentation Moderation Training
2007 - 2007
Consulting
Consulting Skills Workshop at Les Fontaines
1 Jahr und 10 Monate, Okt. 2005 - Juli 2007
Secure Information Systems
University of Applied Sciences Hagenberg
Informationsecurity and IT-Riskmanagement
2 Jahre und 10 Monate, Okt. 2002 - Juli 2005
Computer and Media Security
University of Applied Sciences Hagenberg
IT Security, Software Engineering, Computer networks
Sprachen
Deutsch
-
Englisch
-
Spanisch
-