Portfolio

Knowledge

• Public Key Infrastructure (PKI)
• Java Backend Entwicklung
• Containerisierter Microservice-Betrieb mit Docker, Kubernetes, etc.
• Spring Boot
• Quarkus
• Continuos Integration / Continous Delivery (Gitlab CI, Github Actions)
• Identity Management und Identifizierungslösungen
• Cloud Computing
• Cloud Hyperscaler (Amazon Web Services, Google Cloud, MS Azure)

Languages

• German (native language)
• English (business fluent)
• Spanish (basic knowledge)

Portfolio

• My professional experience over the past twenty years is highly diverse. My core competencies lie in the design, development, and integration of software components within the Trust Center environment, including:

• Developing a GitLab pipeline to maintain and automatically deploy custom software components across various environments.

• Developing and maintaining various monitoring tools to oversee PKI functionalities and integrate them as local checks within CheckMk.

• Designing a deployment solution using GitLab and Red Hat Ansible Tower to roll out new software releases via DevOps processes.

• Building an automated test suite for conducting acceptance testing on third-party software products.

• Implementing an OCSP Proxy server for a Trust Center as a Docker container deployed in a Kubernetes cluster. Modifying the source code to align with Kubernetes best practices for configuration, monitoring, and logging. Establishing an operational environment in a public cloud.

• Establishing a build environment for the automated building, testing, and deployment of software components intended for a Trust Center.

• Adapting Python-based test software for a public transport PKI solution to meet new client requirements.

• Developing a consolidated logging and reporting solution using the ELK stack for performance and incident monitoring within a client project in the healthcare sector.

• Developing an ACME server implementation (RFC 8555) as part of a Proof of Concept (PoC).

• Creating an Erlang module to analyze server responses during performance testing of OCSP servers using tsung software.

• Designing and implementing a Ruby-based REST API to facilitate communication between customer front-ends (Web, SCEP, ACME, etc.) and CA backend systems for automated certificate provisioning.

• Designing and prototyping a centralized authentication solution using SAML for easy integration into web applications, including the required provisioning processes.

• Planning and executing a hardware refresh for the core and access layer network components of a custom PKI, including migrating firewalls from Cisco PIX to Juniper.