Throughout his career, Sebastiaan managed a wide range of technical assignments, covering a wide variety of technical areas and regulatory aspects. The assignments consisted in a mix between consulting projects and audit-related projects, focusing on IT Security.
Sebastian has demonstrated strong technical abilities in the following types of engagements:
Information Technology reviews, covering the entire IT environment (including IT Security, Governance, Change Management, IT Operations, etc.)
- IT Security assessments / Security penetration testing, in part using own tailor-made scripts.
- Review of and consulting on IT Security technical set-up (role-based access control, authorization management systems).
- Review of and consulting on Business Continuity Plans.
- Review of and consulting on Public Key Infrastructure (PKI).
- Forensic and E-Discovery investigations.
As from 2005, Sebastian also acted in several instructor roles for PwC and the Federal Reserve System, covering several of the above domains, as well as information security related standards (CoBIT, ISO17799/27001, PCI, etc.).
Internal and External Audit
A significant part of Sebastiaan’s work experience at PricewaterhouseCoopers consisted of IT-technical review work as part of statutory (external) audits, combined with further work on behalf of client’s Internal Audit departments.
Sebastiaan has demonstrated his audit-technical abilities in the following areas: - Overall audit methodology (not limited to IT-technical domains), including an active role in the re-development of PwC’s audit documentation tool.
Specialties:
- Mobile Security (Banking, Payments, Platform security)
- Management and implementation of security solutions
- Network security
- PCI Compliance attestation and implementation
- Sarbanes Oxley attestation and implementation
- IT General Controls and security audits
- UNIX, Mainframe, AS400, Windows audits
