Skip to content

Latest commit

 

History

History
67 lines (50 loc) · 3.82 KB

index.md

File metadata and controls

67 lines (50 loc) · 3.82 KB
Raw

Dave van Stein


Strategic Software Delivery Consultant based in The Netherlands
Email / LinkedIn / GitHub / Twitter

Professional Experience

Strategic Delivery Consultant @ Qxperts.io | Proudly part of Xebia (Jun 2021 - Present)
I help clients with visualising process complexity on the areas of security, compliance, risk, and service management and provide solutions for simplification and re-engineering. I heavily use visualisation tools & techniques like miro, cynefin, wardley mapping, event storming, threat modeling, and liberating structures.

Security Consultant @ Xebia (Oct 2015 - Jun 2021)
I help clients with visualising process complexity on the areas of security, compliance, risk, and service management and provide solutions for simplification and re-engineering. I heavily use visualisation tools & techniques like miro, cynefin, wardley mapping, event storming, threat modeling, and liberating structures.

Security Consultant @ Various Companies (2008 - 2015)

Quality Assurance Consultant @ Various Companies (2001 - 2008)

Projects

My Digital CV
A fun way to get more into the 'everything as code' mindset.

  • Learning Goals: git, vscode, markdown, github actions, github runners
  • More info: github

DVXTE
Damn Vulnerable eXtensive Training Environment is a Docker based playground to learn how to test for security vulnerabilities. The playground contains various vulnerable applications and exercise labs.

  • Learning Goals: git, vscode, docker, linux, web, playwright
  • More info: github

Publications

Articles

Web Vulnerablity Scanners: Tools or Toys? Testing Experience (2009), Security Acts (2010)
Can Web Appliation Security Testing Help Prevent Disasters CxO Magazine (2011)
Veiliger Innoveren met SecDevOps ICT Magazine (2016), JAVA Magazine (2016)
Goed nieuws voor de CISO PVIB Magazine (2021)

Videos

Business Continuity Challenges Xebia webinar (2020)
Podcast Interview with Zack Conord DevSecOps: The Good, The Bad, and The Ugly (2020)
Why killing your current infosec program is a good idea ISACA Square Table 2021
Wardley Mapping Spotlight KDA.zone 2022
Wardley Mapping and Threat Modeling - Panel Discussion Open Security Summit (2022)

Knowledge and Skills

Techniques, Technologies, and Tools

Miro, Mural, draw.io, powerpoint, github, excel, wardley mapping, threat modeling

Certificates

Languages

Dutch: Native
English: B2
German: A1

Education

Master of Science - Process and Product Design - Eindhoven Technical University - 2000
Master of Science - Chemistry - Leiden University - 1998