Roland Dworschak, MSc. BSc.
CSSLP, OSCP, ACSE
MSc | Secure Information Systems
BSc | Computer and Media Security
CSSLP | Certified Secure Software Lifecycle Professional – (ISC)2
OSCP | Offensive Security Certified Professional
ACSE | AlienVault Certified Security Engineer
Cyber Defense Services; Computer forensics and malware analysis, 3rd level incident response and in-house software development for our security operation center (SOC) and other projects.
Responsible for Common Criteria evaluation (EAL5+) and certification at NXP for a MIFWARE DESFire IC variant with contact and contactless interface (Gratkorn, Austria)
Reviewed and analyzed existing management systems for virtual organizations as part of the Security Team.
Research on Claims-Based Security (Geneva) and Windows Communication Foundation (WCF) in close collaboration with Microsoft Redmond.
The resulting prototype of the “security management system for virtual organizations” was further analyzed as part of my master thesis.
Bundesamt für Sicherheit in der Informationstechnik (BSI)
Bonn, Germany. http://www.bsi.bund.de/
Analyzed functionality and security of web2.0 components
Developed and demonstrated several attacking scenarios for web applications and browsers by exploiting the trust relationship through active content. Results were (in a shortened version) officially published (see Publications)
Developed graphical web front end for analyzation and prognostication of collected network data used as early warning system by the CERT
Researched and developed a customized web parser scanning for injected code or data on official site
Responsible for security and availability of national network infrastructure and services Administration and design of high available linux clusters using low cost equipment NIDS implementation in customer networks and server / firewall hardening.
Establish a monitoring service for VPN to customers using Juniper (Netscreen) appliances along with remote access through OpenVPN
Developed and implemented several web applications for a CMS used by 3000+ clients and business partners daily.
Designed and implemented an interface for Unify databases used by nationwide well-known gastronomy clients.
Developed a web-based front end for an international gastronomy system which was based on a Unix cli.
Developed and implemented solutions to securely transfer and backup databases of a magazine company with more than 15000 customers and 2000 updates a day.
Designed and developed a dynamic personalized newsletter mailing system (for sending out magazines) with a web front end for administrators, publishers and customers.
Responsible for the security and availability of the local ISP with more than 200 customers.
Planned and introducted a web based monitoring service for productive servers and network services.
Designed and developed customized web solutions for customers.
OSCP – Offensive Security Certified Professional
Vienna, Austria. Badge
ACSE – AlienVault Certified Security Engineer
Vienna, Austria. https://www.alienvault.com/certification
(ISC)2 CSSLP – Certified Secure Software Lifecycle Professional
Vienna, Austria. https://www.isc2.org/csslp/
Oct 2007 – Jul 2009
University of Applied Sciences
Secure Information Systems (Master’s program)
– Advanced Cryptology (Cryptoanalysis, Mobile Cryptology, Public Key Infrastructure)
– Advanced Networking (Protocol Stacks, Routing, Quality of Service)Degree dissertation:
– Security management system for virtual organizationsPassed with high distinction
Grade Point Average: 1.14 (1.0 = excellent, 5.0 = insufficient)Best Project Award in 2007
Academic Excellence Scholarship in 2008 and 2009
Oct 2004 – Jul 2007
University of Applied Sciences
Computer- and Media Security (Bachelor program)
– Security methods of the ePassport
– Security analysis of Web 2.0Passed with high distinction
Grade Point Average: 1.08 (1.0 = excellent, 5.0 = insufficient)Academic Excellence Scholarship in 2004 and 2005