Deutsch

Dr. Petr Zimak

 

Personal Information

Employment and Education

Key Activities

Projects

Skills

Teaching and Presentations

Languages

 

Key Activities

 

2015-: Consulting in Information Security and Privacy

  • Implementing "state of the art" security controls in projects.

  • Applying regulatory and legal requirements and guidelines in projects.

  • Provide security expertise and support to service responsibles and external partners.

  • Cooperate with and support supervisory authorities.

  • Design and implement the asset and risk management process as part of the ISMS.

2011-2014: Head of Professional Services at Devoteam Genesis AG

  • Management of the five engineering teams (env. 20 persons): team meetings, team leader meetings, training and certification, continuing education, targets and provisioning.

  • Planning of resources: coordination of own resources, reporting on capacity utilisation and availability, cooperation with the european Devoteam group.

  • Project supervision: coordination and quality assurance.

  • Management of the customer support and service desk: quality assurance, supervision of the support cases, reporting on support cases for customers, guaranteing the 7x24 stand-by service, replacement material for maintenance contracts, safeguarding the support infrastructure (ServiceNow, mail, etc.).

  • Cooperation with sales and marketing: coordination presales, standard offers, answering RFI, RFP etc., customer care, customer events and briefings.

  • HR support: staffing needs of the engineering teams, job descriptions for engineering and internal IT positions, selection of candidates and job interviews, coordination with the european Devoteam group.

2011-2014: Management of the internal IT Support at Devoteam Genesis AG

  • Management of the internal IT support: quality assurance, monitoring the support cases, support infrastruktur.

  • Responsibility for internal infrastructure: external web server, external FTP server for customers, Internet connection, telephony, air conditioning and climate control, working equipment (laptops, desktops, smart phones, ...) for employees, test and lab equipment, infrastructure for customer trainings, planning, replacement and extension of internal infrastrucure (firewalls, VPN, network devices, servers, storage, etc.), budgeting of internal infrastructure, responsible for IT security.

  • Apprenticeship training

  • Coordination with the global IT support of the Devoteam group: Exchange, Google Mail, internal social medium and collaboration platform, licenses, standard infrastructure, etc.

2008-2014: Consulting

  • Concepts, implementations, documentation, training, trouble shooting and support in various areas (DDI/IPAM, security, threat and risk management, performance care).

  • Architecture, implementations, documentation, training, patches and upgrades, failover, backup, disaster recovery, trouble shooting and support for various products (VitalQIP, ArcSight, nCircle/Tripwire, etc.)

  • Analysis of log sources, development and implementation of ArcSight FlexConnectors, scripting for data pre- and postprocessing (e.g. XDAS), reporting and forensics.

  • runIP appliances, Alcatel-Lucent appliances, ArcSight appliances, nCircle appliances, collaboration with partners, suppliers and manufacturers.

  • Participation and talks at customer events.

  • Presales, offers and tenders, proofs of concepts (PoC).

1989-2007: Design and Operations of the Network of the University of Basel

  • Key data: fiber backbone connecting several locations within the city, a larger number of telephone leased lines (2-8Mb/s), ca. 8000 active hosts (servers, clients, printers, measuring appliances etc.), heterogeneous environment including Windows, Macintosh and Linux platforms, about 500 managed network devices (all Cisco), over 1500 unmanaged network devices (miniswitches etc).

  • Hardware: switches (Cisco Catalyst 29xx, 45xx, 65xx), routers (25xx, 26xx, 28xx, 3750, 45xx, 65xx, 72xx), firewalls (PIX 525/515, FWSM), VPN concentrators (3030, 3015), WLAN access points (12xx), BlueSocket access control gateways (BlueSecure 2100), Allot's bandwidth and traffic management (NetEnforcer).

  • Network management: HP OpenView/NNM, Cisco Works, locally developed software (NOC).

  • Operations: hardware acquisition, support contracts, device configuration, hardware installation, software updates, monitoring, support and troubleshooting.

1994-2007: Security

  • Design, installation and operations of the Internet firewall and the firewall to the internal security areas.

  • Viruses: identification (firewall, virus and spam filters, collaboration with SWITCH CERT), isolation (access lists, physical segregation) and support with decontamination of infected devices.

  • Periodic security scans.

  • User information and education.

1989-2007: Network Services

  • DNS: design and operations of the nameservers of the University of Basel, contact to nic.ch, domain hosting.

  • Mail: configuration and operations of the mail servers (SMTP) and mailbox servers (POP, IMAP), mailing lists.

  • Web services: web servers, squid proxy server, Rent-A-Page web hosting.

  • RADIUS: authentication for dial-in, VPN, web server etc. Local files, IMAP- and POP server, LDAP and databases as authentication sources. RADIUS accounting.

  • LDAP: design and operations of a central failsafe LDAP infrastructure, design of the DIT, schema extensions, access control, quality of data.

1996-2007: Identity Management

  • Management of persons, organizations, roles, accounts (UNIX, LDAP, RADIUS), mail addresses etc. (URZadmin)

  • White pages of the University of Basel (http://perssearch.unibas.ch).

  • Self services for user specific settings and services.

  • Mail address selection and activation for new students.

  • Integration with other systems to "unique sign on".

2007-2014, info@zimak.ch

Deutsch