Professional Portfolio

A portfolio showcasing expertise in GRC, Security Compliance, and AI Governance.

Professional Portfolio

Product Owner Compliance | Diconium GmbH (11/2022 - Present) I lead the integration of Governance, Risk, and Compliance (GRC) into the product development lifecycle, ensuring product-level conformity with international security and regulatory standards.
My focus is on security requirements management, tracing the regulations and standards to requirements, controls, and preparation for CSMS, ISMS, and QMS (and even AIMS) audits.
My Career journey looks like this :

MyJourney

Key Accomplishments & Responsibilities:

Strengthened Regulatory Compliance & Audit Readiness I established robust compliance frameworks covering NIST, FedRAMP, GDPR, ISO 27001, and NIS-2.
This involved creating comprehensive traceability systems, developing real-time compliance/testing dashboards, and defining multi-level backlogs to ensure continuous audit readiness.

Enhanced Automotive Cybersecurity

I conducted in-depth cybersecurity analyses of VW platforms to ensure compliance with critical automotive standards, including ISO 21434, UN R155/156, and China GB/T.
🤖 ISO 21434-CSMS AI Agent A custom AI assistant developed in Microsoft Copilot to automate Cybersecurity Management System (CSMS) ISO 21434 work products.

Drove Measurable Security Improvements

By driving requirement traceability and cross-functional alignment, I successfully contributed to improving the security of our products.

Led Cross-Functional Collaboration & Training

I developed and delivered Automotive Cybersecurity Compliance training for over 100 colleagues in 2025, and created awareness of the organization’s internal capabilities.
The articles below are the output of the Automotive Cybersecurity Compliance training.
📃 Article 1: The overview of Automotive CyberSecurity Regulations and Standards
📃 Article 2: UN R155 vs. China’s GB 44495‑2024: What Automotive Cybersecurity Experts Need to Know

Senior Business Analyst | Luxoft GmbH (12/2021 - 10/2022) In this role, I facilitated a key Vehicle Toolchain project by leading the configuration and integration of the Codebeamer ALM tool with other systems like Azure DevOps and Confluence. I directly engaged with business analysts, testers, and other stakeholders to gather requirements and ensure clear traceability in ADAS systems, thereby enhancing decision-making through dashboard metrics.

Requirements Engineer | Daiichi Electronic (01/2021 - 12/2021) For an infotainment project, I successfully derived over 1000 software and system requirements compliant with ASPICE standards. By aligning requirements management processes, I minimized rework during the testing phase and actively contributed to release planning and change management.

Let’s Connect 🗓️

I’m open to discussing new opportunities, sharing insights on Security Compliance, automating processes via AI, or connecting with fellow professionals in a similar field. Please don’t hesitate to book a time that works for you.

Book a 30-Minute Meeting

Former Experience in Various Sectors

This section highlights projects and analyses from previous roles, demonstrating foundational expertise in data analysis, regional development, and education. For a high-level overview of each project, please view the presentations on SlideShare.

Data Analysis

Regional Economic Development & Statistical Analysis 📈

These presentations were developed during my role as a Specialist at a Regional Development Agency, where I authored statistical periodicals and consulted for over 200 entrepreneurs annually.

Education & Academia 🎓

These documents stem from my academic background in Mathematics/IT/International Relations and my experience in math teaching.