Abdul Ameti

Full-time role focusing on BSI C5 attestation, NIS2 compliance, and cross-functional team coordination in SaaS agile development environments.

• · Spearheaded the successful attainment of BSI C5 attestation, demonstrating strong leadership and technical project management skills translating business requirements into tangible tech stack solutions

• · Participated in NIS2 scope evaluation and cross-mapped BSI C5 criteria and ISO27001 to identify the remaining gaps for its full implementation Utilized technical expertise in SaaS agile development workflows to coordinate cross-functional teams and drive compliance initiatives Bridged communication between technical and non-technical stakeholders, translating complex business compliance needs into actionable technical requirements

• · Authored the comprehensive system description and drafted key policies, SOPs, documentation, and controls to align with compliance standards

• · Overcame challenges related to tight deadlines by prioritizing the project with the sponsorship of senior management

• · Coordinated and delivered cross-departmental initiatives in Agile environments, ensuring compliance with timelines, budget constraints, and scope

• · Acted as the single point of contact (SPOC) for stakeholders across technical and business teams in multiple geographies Contributed to the application of SDLC frameworks from requirements through design, testing, and deployment in security compliance and cloud migration projects

• · Conducted risk assessments and mitigation planning for regulatory and infrastructure initiatives

Freelance role providing technical support for critical infrastructure security, SIEM integration, and compliance consulting.

• · Provided technical support for critical infrastructure security, including SIEM integration and configuration Contributed to ISO 27001 reviews to ensure compliance with security standards

• · Managed Azure and Microsoft 365 corporate security, implementing XDR solutions and proactive measures against threats (Microsoft Sentinel, Splunk)

• · Implemented DORA for clients in the financial sector, coordinated and recommended in-depth evaluation of existing controls and mitigated gaps

• · Developed and maintained internal technical documentation: reports of status, SOPs, new how-tos or guidelines Pivotal in evaluating and selecting security products to ensure solutions meet clients' needs

• · Was the Single Point of Contact (SPOC) for security inquiries

• · Streamlined workflows through automation with tools like Power Automate

• · Organized security awareness trainings, executed phishing simulation campaigns, and maintained technical knowledge base and SOPs

Freelance role in Berlin, Germany focusing on security awareness, vulnerability assessment, and DevSecOps collaboration.

• · Key contributor to the security team, responsible for increasing employee security levels and cyber awareness Assessed the effectiveness of established countermeasures to present phishing attacks Simulated attacks to identify possible vulnerabilities

• · Delivered comprehensive and insightful presentations on the results of phishing simulation attacks during All-hands meetings

• · Collaborated with the DevSecOps team to evaluate vulnerability monitoring procedures Triaged false positives, analysed, and responded to security incidents Used various SIEM tools to oversee threats and vulnerabilities and enhance filters and playbooks Utilized technical expertise in SaaS agile development workflows to coordinate cross-functional teams and ensure milestone-based compliance delivery Acted as the single point of contact for senior management and technical teams, bridging the gap between regulatory expectations and technical execution

• · Authored comprehensive system descriptions, drafted key policies and controls, and ensured alignment with compliance standards through structured SDLC practices

• · Proactively identified delivery risks and introduced contingency planning strategies to mitigate them