Auf Anfrage

Persönliche Daten

Beruflicher Status
20 Jahre

Deutsch (Muttersprache)

English (Fließend)


06/1998 - 12/2014(16 Jahre, 6 Monate)
Siemens Business Services - ATOS
Service Owner - Secure Remote Lan Access



michael pap eine Anfrage schicken

michael pap ist momentan verfügbar.

Statistik von michael pap

Mitglied seit 20.01.2016
89  Profilaufrufe
background image




       Ing. Michael Pap 



       (+1) 239 851 6979 




       (+43) 720 90 20 96 





       HTL-Eisenstadt Mechanical Engineering 



Senior  IT Administrator / Mechanical Engineer  







2013 - present 

Cyber Computer Technology, Inc. 

IT Consulting, eMail Security Appliance Development, Windows 
2012 Server Administration, VOIP System Service Development, 
Citrix Xen Center and VmWare System Administration, Windows 7 
Enterprise Rollout, Twitter Boostrap, MySQL and PHP 
Development, Routing, Firewalling an VPN, Cisco ASA and PF-
Sense Firewalling, AWS, Cloud based Services  and daily 



1998 - 2014        

Atos SIS / Siemens AG Austria 


Senior Administrator & Service Delivery Manager Remote Access 


Citrix Netscaler SSL VPN System Administrator 


SecurID Authentication Manager Administration  


SMS Passcode System Engineer and Integrator 


Linux Server Administrator (RedHat, CentOS, Debian, Ubuntu) 


Cisco ASA/PIX  Firewall Administrator 


Cisco Secure ACS Server Administrator 


Cisco Router Administrator 


Cisco Switch Administrator 


Cisco VPN Concentrator Administrator 


Shiva Lan Rover Administrator 


FreeRadius Administrator 


Windows 2003 Server Administrator (Remote Access Networks) 


Windows 2008 Server Administrator (Remote Access Networks) 


Cisco VPN Client Support 


RSA SecurID Client Support 


RSA Authentication Manager System Customer Support 


Cisco Secure ACS Customer Support 


VMware vSphere & Citrix Xen Server  



1995 – 1998              

Freelancer – Mechanical Engineering,  


Conveyors, conveying systems and equipment – Paper Industrie 


Steelwork Plant Buildings - OMV


background image


Prototype Truck Trailer - IFE 


Shoe manufacturing Maschine – Kopitarna Sevnica 

Containex / LKW Walter Austria – AutoCAD LT. Modular Container 
construction and calculation Tool. 



1994 – 1995 

Elin Energieversorgung GmbH.                             


Projekt Engineer Construction Stream Power Plants 



1989 - 1994 

Monsberger GmbH. 


Mechanical Project Engineer Construction and Production 


Airline baggage conveyors and sorting system 


Conveyors, conveying systems and equipment 


Dosing hoppers and systems 


Filling apparatus and requisites for carboys, barrels and kegs 


Palletisers for drums, barrels and casks 




Competent with all standard Microsoft Office applications 


Competent with Apple Macintosh applications 


RSA Security Manager Administrator and System Engineer 


Cisco Secure ACS Administrator and System Engineer 


Cisco PIX/ASA Firewall Administrator 


Astaro now Sophos Firewall Administration 


M0n0wall, Watchguard, Juniper, Fortinet, CheckPoint, PF-Sense 
Firewall Administration 


OneTimePassword Security for Linux/Unix Server Access 


Cisco Router/Switch Administrator 


Cisco VPN Concentrator 


System Engineer Remote Access Networks 


Shiva Dialin Router Administator 


RedHat,  CentOS, Debian,  Ubuntu ServerAdministrator 


FreeRadius, Squid, Dansguardian, havp, ha-proxy,LAMP,  


Nagios/Cacti Network Monitoring and Management, 


Windows 2003 / 2008 Server AD, LDAP, MailScanner, Postfix – 
Opensource AntiSpam MailGateway Solutions, 


Lotus Notes, Domino Server Administration Until V 5,          
VMWare ESXi ,Citrix Xen Server, PHP, MySQL, Bash, Perl, Java, 
Remedy Ticket System and more … 



 Current PROJECTS 


Languages – EMAIL SPAM Firewall 
VOICEMAIL Buttler – ELASTIX Addon for Gated Communities  
German - English 



background image

T EC H N I C AL   SK I L L S  



Microsoft Office applications (Word, Excel, Outlook, Power Point, Project, Visio, Access), Apple Macintosh 

applications, RSA Security Manager Administrator and System Engineer, Cisco Secure ACS Administrator 

and System Engineer, Lotus Notes, Windows NT 4.0, Windows 95/98/4.0/2000/XP/7/8/10, OS/2, MS 

Exchange Server and Client, SMS Server, Open VMS, Secure ID, SQL Server, Remedy, HP Asset View, 

HP Open View, Dell KACE K1000 System Management Appliance, Microsoft Word, WordPerfect, Word for 

Windows, Microsoft Excel, RAS, Lotus 1-2-3, Lotus Word Pro, Outlook, MS Office,Lotus Office Suite, MVS, 

SQL 7.0 client utilities, Eudora, PCAnywhere, and Lotus cc: Mail, Citrix Server, Citrix NetScaler, MS 

Terminal Services, Remote Access WAN, Unix, Frame Relay, ISDN, DSL and VPN solutions, Internet 

Explorer, HTML, internet/intranet client support issues, Symantec Ghost, Acronis True Image, several 

Enterprise Anti-Virus Solutions – Symantec, McAfee, TrendMicro and Avira, McAfee Host Intrusion 

Prevention, Various Help Desk problem ticket tracking software, DHCP, WINS, DNS, VPN, RAS and 


CITRIX, Top Secret, PKI, NTFS, ADFS, MVS/TSO, and  ISPF, Unix,  (Sun OS, Solaris), Windows 

experience starting with Windows 3.1 console/desktop and Windows NT 3.5  server, Novell Netware 3.1x, 

VMWARE, (Oracle, Sybase, SQL Server) and applications (MS Office Suite), PingPlotter, Metasploit, 

Wireshark, OpenVAS, HP Open View, Nagios, Cacti, OpenNMS, Zenoss, Kali Linux, Various PC 

hardware/software and Firewalls (Cisco, Check Point, Fortinet, Juniper and Open Source like PFSense), 

RADIUS Server Administration. 




Bash, Java, JavaScript, Lotus Script, Perl, PHP, VBScript, UNIX/Linux Shell, Auto LISP, PowerShell 


Project Management Tools 

Visio, MS-Project, SharePoint,Siemens Custom Build Remedy Project Management Addon 


Ticket Systems 



BMC Remedy 



Oracle, PostgreSQL, MySQL 



HP, Dell, EMC, Fujitsu, Fujitsu-Siemens, IBM, SunSolaris, Cisco 



Telecom, Government, Retail, Energy, Civil Air Navigation, Heavy Industry 


Operation Systems 

OS/2, Windows since 3.1, Windows Server since 3.51, Sun Solaris, RedHat Enterprise Linux, Suse 

Enterprise Linux, Centos, Debian, Ubuntu, Mac OS 


background image



Support local Small and Medium Business  


Responsible for the day to day support of

 small and medium Businesses in my current area. 


Network security sans and audits,  

POS and Payment solutions changes within new Chip Card payment. 

Client Backup 

Windows 7/8/10 rollout  

email security development 

VoIP solutions 

WLAN and Router 

Network printer solutions 

Small Business NAS 

AVIRA Small Business Virus Scanner 

Malware protection solutions 




Windows 7 Enterprise Rollout Management   

March 2014 – Dec 2014 


Responsible for the Windows 7 Enterprise Rollout and Client Support within Rollout Period for local Energy 

Preparing first hardware independent test images with Microsoft sysprep and Acronis. 

McAfee Host Intrusion Prevention within several applications across all departments. 

Deploy final images over DELL KACE Management Appliance. 



Remote Access Engineering Technical Lead & Service Delivery Manager Secure Remote Access  
August 1998 – March 2014  
Responsible for the day to day support of enterprise remote access for Siemens/Atos Austria and 
Outsourcing Customers. 


Configure solutions to support mobile applications with RSA SecurID authentication 


Integrate with multi-factor solutions including certificate, token based OTP and on demand OTP 

to provide higher assurance SSO. 


Provide Tier 3 support for authentication solutions. 


Execute and Provide strategic guidance to the Management team on industry best practices and 


background image


Serve as the subject matter expert for SAML and OAuth authentication *PKI, *SSO (single sign 

on) token management, LDAP integration, PING Federate, Symplified, OKTA, McAfee CIM, ADFS, 
TFIM, Microsoft FIM, OIM  


Coordinate with vendors, customers, developers, engineers and support to develop highly 

scalable, globally deployed authentication 


SSO solutions for web and mobile applications server, LDAP, SSO login page 


Working knowledge of web server and web application platforms such as Microsoft Internet 

Information Services (IIS), Apache, Manage Enterprise in the Cloud data and Access  


Implemented ADFS, Federation Solutions, Mobile technology, Direct Access, TFIM  


SME for Active Directory, Federation, SaaS, Mobility and Access Management  


Manage different engineer’s technical stacks across various enterprise platforms. 


Engage Business Project head on and implement security requirements up front. 


Manage Vendors, Projects, People and Costs 


Implement Security Roadmap, Manage Security Controls Provide governance and management 

of Network, Application and Access controls, as well as SDLC of user and Group Lifecycle. 


Manage Vendors, Projects, People and Costs 


Implement Security Roadmap, Manage Security Controls Provide governance and management 

of Network, Application and Access controls. As well as SDLC of user and Group Lifecycle. 


Lotus Notes, HP Open Mail migration to Exchange 5.x experience  


Lead planning dial-in Secure Remote Access solutions (Shiva, RSASecurID) for the IT staff to cover 

7x24 client support, planning and execution VPN Remote Access (AltaVista VPN), Project lead 
vendor hardware switch Secure Remote Access to Cisco (VPN Concentrator, Secure ACS, Cisco 
Multi-Purpose Router). 


Knowledge of Microsoft Server Platforms since Windows 3.5x  


Knowledge of Microsoft Exchange since 5.x  


Knowledge of Red Hat Linux since Version 5.x 


Knowledge of Debian, Ubuntu, Suse Linux 


Knowledge of all major enterprise network components used in datacenter enviroments 


Knowledge of Kali Linux (Penetration Testing and Ethical Hacking Linux). 


Member Security task force PKI Rollout (Siemens Enterprise PKI), Mobil Client Active Directory 

integration to prevent them to stay in offline mode to integrate them into the company security 
scan and patch cycle. Project lead remote client identity and policy control by checking computer 


Member task force planning, integration and migration customer access to their dedicated or 

shared infrastructure located at the “Strategic Data Center Vienna” (High Availability Level 2, 
ranked top 10 on high secure in Europe). 


Member task force integration and migration windows XP to windows 7 enterprise. 


Project lead customer remote access over SSL VPN vendor (Cisco, Check Point, Juniper, Fortinet, 

Palo Alto) and cost evaluation,  Active Directory integration, client security by using multi factor 
authentication products from top vendors like Symantec VIP, RSA SecurID, SMS Passcode. 


background image

RSA SecurID Experience: 


Working with RSA SecurID in enterprise environment since 1999 (this includes all major releases 

up to 8.1) to provide secure Remote Lan Access to the cooperate Networks all around the World   

Integration and migration Milestones in combination with RSA SecurID: 


Build Dial-UP Networking from scratch with Shiva-Lan-Rover / Shiva Access Manager and RSA 

Secure ID Hardware Token - Credit Card Format and early Key Fobs (with a huge amount on 
broken Tokens at the beginning). 


With faster Internet we started to add VPN to our portfolio by using AltaVista VPN (port to port 

based VPN). 


Migrate AltaVista VPN to Symantec pure IPSEC VPN (native IPSEC without encapsulation 

transport layer). 


Project Lead on developing and deployment of new Remote Access Infrastructure based on Cisco 

VPN and Dial-IN equipment, migrate and upgrade RSA from Sun Solaris to Windows 2003, 
migrate Shiva Access Manager to Cisco Secure Access Control Server to centralize the 
Authentication process over the Cisco ACS and separate the authentication infrastructure into 
different security zones. 


Development, integrate and deliver first- and second level support based on my experience for 

several customers like Austro Control (Civil flight control), a couple of departments of the 
Austrian government, heavy industries like Andritz and Coca Cola Europe. 


Lead Project Management and execution on upgrade and migrate of the Coca Cola Europe whole 

RSA infrastructure with about 150 different access groups and rights. On a common business 
day, there was a usage of about 3500 average accesses/day, 587 accesses denied, 2.800 allowed 
accesses, 39 new pins assigned and 2 new tokens – so I had to develop a scenario with minimal 
downtime within the upgrade process on their Remote Access Infrastructure with multiple 
locations in Europe.    


With the new smartphone area we were able to lower the cost of the hardware tokens by adding 

SMS Text and Mobile Apps to our portfolio. 


Update infrastructure to the latest security level by using latest RSA Authentication Manager 

Features like Load Balancing and Web Tier coming with version 8.1  

Certifications and training 


AutoCAD, Sun Solaris , multiple Microsoft Windows Server Active Directory and Client configuration 

in house trainings, Lotus Notes Administrator I, II, Oracle K1000, K33091, Citrix NetScaler Remote 

Access in-house training, Cisco Gold and Silver Partner events and trainings at Cisco Austria, 

several Microsoft Roadmap events and trainings at Microsoft Austria.