IT Security & Infrastructure Specialist

 

Tristan Schmurr, CISSP

(download as a PDF file or view it as a Google Document)

Luxembourg
+352 691 483 795
tristan@schmurr.net
https://schmurr.net/

PROFILE

Problem solver with more than 20 years experience in network system architecture and enterprise-wide infrastructure solutions to maximise data confidentiality, integrity and availability.

SKILLS

  • Cybersecurity
  • IT infrastructure
  • Monitoring
  • Linux and open-source culture
  • PCI DSS

EXPERIENCE

Catella Bank (former Banque Invik), Luxembourg — Network Administrator

09/2009 - 05/2022 

Maintained the Bank’s IT infrastructure and its security for Credit Card issuing, acquiring and Wealth Management business units running in a 24/7 production environment. Ensured its compliance, availability and security to fulfil industry standards (CSSF, PCI DSS, SWIFT CSP).

Completely designed monitoring system with over 10,000 services, 100 business processes and a million events/day for PCI DSS Level 1 Payment Service Provider and Card personalisation bank that improved customer support from responsive to proactive and improved service availability.

Managed all layers from utility supply to application role access: IT rooms, systems, networks, firewalls, Web Application Firewalls, HSMs, storage networks and virtualisation technologies on a multi-vendor infrastructure.

Implemented full network segmentation, product integration, Multi-Factor Authentication (MFA), established connections with third parties (branches, SWIFT, Visa, Mastercard, internet, clients and suppliers) using various technologies. Intensive use of cryptographic tools, data protection, transfer, destruction and its disposal.

Scrutinised audit points, executed projects and operated daily activities both independently and as part of a team. Knowledge transfer and technical instruction. Acted as interim ISO and external SOC coordinator.

Key Achievements:

  • Initiated and maintained PCI DSS (Payment Card Industry Data Security Standard) Level 1 company certification, covered all technical requirements and some organisational processes to protect businesses and their customers against payment card fraud.
  • Technology migrations of the banking environment while assuring technical, audit and security requirements are met or exceeded.
  • Repeatedly activated Disaster Recovery Planning (DRP) and Business Continuity Planning (BCP) following environmental and system failures.
  • Investigated, mitigated and remediated cyberattacks.
  • Wind down of the company: data archiving, infrastructure sanitisation and decommission, terminated contracts with suppliers while following regulatory requirements.

Celimage, Luxembourg — Network Computing consultant

04/2004 - 04/2005, 12/2005 - 08/2009

Led a team of 3 technicians to design, build and administer applications, e-mail and Web hosting platforms integrating Open Source software. Evaluated hardware and software needs. Prepared and updated IT disaster recovery plan. Ensured data security and availability by performing remote and on-site system monitoring of firewalls, routers, servers, system logs and backups. Installed system patches and upgrades. Troubleshot performance issues, with around-the-clock availability to resolve incidents.

Key Achievements:

  • Orchestrated successful IT relocation projects in critical environments such as satellite transmission and critical credit card processing while ensuring the systems’ availability

  •  Served as IT Lead on technology initiatives, advising and assisting project teams with feasibility studies, user training, financial and strategic business planning and completing follow-up analysis to measure project success.
  •  Developed Web solutions to increase production efficiency; deployed collaborative intranet solutions, streamlining enterprise-wide communications and data exchange.

GAX, Luxembourg IT Infrastructure & Security Analyst

05/2005 - 11/2005

Maintained and updated corporate network, enabling secure, reliable Unix system and Web banking functions. Partnered with executive management and development staff to create enterprise-wide IT policies. Completed daily backup of key production data and confidential information, maintaining offsite records for recovery. Implemented new Web applications and servlets. Internal training.

Europe Online, Luxembourg Network and Systems Engineer

11/1999 - 03/2004

Provided internet services via satellite for a global start-up company. Developed departmental and company policies on security practices and internet usage. Interfaced with colleagues of varying positions, cultures and ability levels to achieve project goals and troubleshoot problems. Monitored and managed data centre, performing high availability setup, load balancing and failover services. Tracked performance issues, logging corrective actions and solutions. Designed IT policies and remote access procedures; established audit documentation and processes.

EDUCATION & TRAINING

CISSP, (ISC)²

Since 03/2019

Certified Information Systems Security Professional (active certification, ID 675331)

ISO/IEC 27001 Lead Implementer, PECB

11/2021

Information Security Management Bootcamp training.

CEHv8, EC-Council

06/2015 - 06/2018 

Certified Ethical Hacker Version 8 (past certification)

Professional Certification in Risk Management, ICHEC Enterprise

04/2009 - 10/2009 

Training course in Global Risk management.

Professional Certification in Business Management, Luxembourg Chamber of Commerce

01/2008 - 04/2008 

Covered several aspects of business management (certified)

Coursework in Physics, Jean Rostand, Strasbourg (F)

2016

PERSONAL

Male, 46 years old, French citizen. Permanent Luxembourg resident.

French and English languages in the professional context.

No driving licence.

Extracurricular activities

Cycling adventures, photography, competent crew-level sailor with International Sailing and boating passport. Affinity for nature, travel and multicultural environments. Extensive use of computers for 30+ years, home automation technologies, mapping. Managing my own IT infrastructure.

Non-Profit

Supporter of global and local associations promoting children help, education, environment, diversity, cartography and endorsing bicycle use.

Professional Activities

Extensive network of professionals in various industries, performed occasional cybersecurity training.