Work with me

PhD cryptographer and cybersecurity engineer based in Berlin. I take on selective advisory engagements alongside my full-time role, focused on EU CRA readiness, SBOM management, vulnerability handling, and incident response.

  • Hands-on ISO/SAE 21434 TARA, cryptographic integration, and secure coding guidance on automotive programs at ITK Engineering.
  • Core contributor to EAGLYS GateDB — a production SQL-over-encrypted-data proxy built on FHE and secure computing primitives.
  • PhD in pairing-based cryptography (Okayama University, MEXT scholarship); open-source author of the ELiPS library.
  • Actively tracking EU CRA, NIS2, and CSA-related obligations for embedded and connected products.

Areas I advise on

EU CRA consulting

  • Essential requirements gap analysis
  • Conformity assessment route selection
  • Vulnerability disclosure obligations
  • Importer / distributor readiness checklists

SBOM management

  • SPDX / CycloneDX generation
  • Provenance, signing, VEX workflows
  • Continuous SBOM refresh in CI/CD
  • Supplier SBOM intake processes

Vulnerability handling

  • ISO/IEC 29147 & 30111 processes
  • Triage & severity scoring playbooks
  • CVE & advisory workflows
  • PSIRT operating model design

Incident response

  • Readiness assessments
  • Playbook design (NIST SP 800-61)
  • Tabletop exercises
  • Post-incident reviews

Automotive cybersecurity

  • ISO/SAE 21434 TARA
  • UN R155 alignment
  • Secure boot, HSM integration
  • Mbed-TLS integration on embedded

Applied cryptography

  • Protocol review (FHE, MPC, ZK)
  • Primitive selection & migration
  • Secure C / C++ / Rust code audit
  • Side-channel & constant-time checks

Get in touch

Tell me a little about the problem you’re working on. I typically reply within 2–3 business days. For confidential matters, email me directly at hire.credibly374@passinbox.com or reach out on LinkedIn.