Dr. Bahareh Shojaie
Angestellt, Senior Information security manager, Jungheinrich AG
Hamburg, Deutschland
Werdegang
Berufserfahrung von Bahareh Shojaie
Bis heute 3 Jahre und 5 Monate, seit Jan. 2021
Security Portfolio Manager
EWE Tel
- Managing capability in planning and monitoring teams of different divisions - consistent development of new product ideas - Market research and observing future security trends - Responsible for the lifecycle of security products - Task distribution priorities - Developing relevant document, such as business case, product concept, trainings, sales information - Portfolio Strategy - Analysing turnover to improve the sale - Maintaining current products, e.g. more options, better price, attractive bundles
Conducting cloud risk management and supporting cloud risk processes Performing Threat modelling, vulnerability management and governance in cloud computing security Designing and implementing an ISMS according to the ISO/IEC 27001 Assessing and analysing policies and conducting gap analyses Conducting IT security audit, risk management and assessing corresponding technical security solutions Analysing Capability Maturity Model based on the Cyber Strategy Framework
- Ensuring the security of IT landscape - Governance, risk, compliance and in particular establishment and further development of new internal control system - Coordinating and supporting IT in analysing processes, identifying and assessing risks, implementing appropriate controls as well as the documentation and implementation of the necessary measures - Accompanying external and internal audits and assist in the resulting measures - Actively participating in knowledge sharing and cross-functional working
5 Monate, März 2018 - Juli 2018
Cyber Security Consultant
Capgemini Outsourcing Services GmbH
Assessing Information Security Management Systems based on international standards Assessing Cyber security maturity based on ISO/IEC 27001 Assessing and analysing policies as well as auditing technical IT security solutions
4 Jahre und 3 Monate, Jan. 2014 - März 2018
Researcher and Supervisor
University of Hamburg
Analyzing “Implementation of Information Security Management Systems based on the ISO 27001 standard” Evaluating the effectiveness of the security controls of ISO 27001 for IT security audit Analyzing organizations’ Information Security Culture for designing security awareness Analyzing the adoption of ISO 27001, in terms of the average number of certificates issued Analyzing complementary and best practices security standards from industry and security policies
1 Jahr und 7 Monate, Jan. 2011 - Juli 2012
Analyzer
KPJ health care, Malaysia
Analyzing and re-planning of Information Security Management System
Ausbildung von Bahareh Shojaie
2014 - 2018
Computer Science - Information Security
University of Hamburg
Analyzing Implementation of ISMS based on the ISO 27001 standard, Evaluating the effectiveness of security controls ISO 27001:2013, Analyzing organizations’ Information Security culture, Investigating the benefits of ISO 27001 to develop an ISMS
2011 - 2013
Computer Science - Information security
University Technology Malaysia
Sprachen
Deutsch
Gut
Englisch
Fließend