Managing Director &
Chief Information Security Officer
Dr Carlo Harpes, born in 1968, founded itrust consulting in March 2007 and works there as Managing Director and Senior Security Consultant. He is a specialist in the field of computer science security used in education, research and standardisation. He has 20 years of experience in the security domain. Before founding his own organisation, he had been Managing Director and Department Chief of Security Consultance at Telindus PSF for 3 years, thereafter, for 8 years, he had been assistant director in charge of the Security Department at CETREL S.C., electronic payment operator in Luxembourg. With itrust consulting, he participated in multiple projects: CockpitCI (FP7), MICIE (FP7), Liveline (FP7). SPARC, TREsPASS (FP7), SGL Cockpit, bIoTope (H2020), ATENA (H2020).
Carlo Harpes holds a PhD in information techniques and cryptography, as well as an electrical engineering diploma from the EPF, Zurich. He is PKI expert registered at ILNAS, ISO auditor for the SNCH, and assistant professor associated to the University of Luxembourg. Furthermore, he is one of the founding members of CLUSIL, and national representative of ISO/IEC JTC1 SC27.
IT Security Consultant &
Data Protection Officer
Matthieu Aubigny is a senior IT security consultant, employed since >12 years at itrust consulting. He is an engineer from the École National Supérieur des Arts et Métiers, holds a professional Master's degree in Information Systems Security Management from the University of Luxembourg, two Masters in Theology and a Bachelor's degree in Philosophy from ICP Paris.
His proven excellence as technical expert in the framework of the EuroPrise certification for the European privacy regulations for IT services and products qualified him to become officially announced as Data Protection Officer (DPO) at itrust consulting. Today, his IT security consultancy work enables him to hold the similar position for several companies in Luxembourg in the field of archiving and energy supply, and to work in relationship with a law firm specializing in this filed.
To ensure the high-quality service level at itrust consulting, Matthieu executes his role as Quality Manager precisely and is also in charge of Customer Relation Ship management with French-speaking customers.
As IT consultant and security consultant with significant work experience (>20 years), he currently fulfills several roles for customers, e.g. as ‘Security Manager’ and ‘Security Expert’ in the area of security management for institutional customers (Court of Justice, European Commission, Ministry, Trade Unions) and also for private customers.
His successful contribution for more than 10 years to Security Research within European research projects (FP7 or H2020: MICIE, CokpitCI, ATENA, BioTop etc.), National research projects (LuxLaunch project) or for research projects from agencies such as ESA, particularly in the field of security, resilience of critical infrastructures and the design of warning and vulnerability management systems, GNSS localization, allows him today to offer a solid expertise in relation to today’s most urgent issues in cybersecurity (CIP, CIIP, Cloud Computing, Privacy by Design, AI).
Further on, Matthieu is experienced in in microprocessor research, voice recognition, commercial management and as a teacher and consultant in computer technologies (hardware and software). His work regularly leads him to apply world-wide recognized best practices security standards (ISO 27xxx, ISO 15408, ISO 29xxx, NIST) and to develop new standardized approaches to meet customers' security needs. In order to stay on the edge of the development in Information Security he is a member of the ILNAS Expert Group on ISO/IEC Standards on ‘IT Security techniques’ and is in charge of Working Group 3 (JTC1/SC27/WG3) on ‘Security evaluation criteria’.
Chief Administrative Officer &
Senior Information Security Consultant
Ingo Senft, born in 1966, joined itrust consulting in August 2016. As Chief Administrative Officer his area of responsibility covers internal administration, Human Resources, Sales Management, Public Relations Management and Security Consultancy. As Senior Manager with significant business experience (> 25 Years) Ingo supports the Managing Director and secures the planned growth and further development of itrust consulting. Based on his previous experience in dealing with customers from various sectors he also consults itrust consulting's customers. From 2018 to 2020 he was nominated Chief Information Security Officer (CISO).
Before, as Head of Quality and Information Security Management, he was responsible for the implementation/management of an integrated Management System at the euroscript Group (today: Amplexor) ensuring compliance with various ISO standards: e.g. Quality Management (ISO 9001/EN 9100/ISO 13485/ISO 14971), Information Security Management (ISO 27xxx/ISO 22301/ISO 31000), Corporate Social Responsibility (ISO 26000) and the approval as PFS Support issued by the CSSF.
Since 1990 he was continuously involved in the Sales process for Public Institutions and the Private Industry covering various responsibilities as: Sales Manager for newspaper systems, Product and Sales Manager for data transmission systems, Head of EU Sales and Business Project Manager. Ingo holds a Master’s degree in Electrical Engineering awarded by the University of Applied Sciences in Frankfurt, where he specialized in computer science, data protection and security. He is certified as internal Auditor for Quality Management, for Information Security Management, as Project Manager (PRINCE2) and experienced (>10 years) in the planning and implementation of Business strategies.
Dr Arash Atashpendar joined itrust consulting in May 2020 as Head of Department Research, Development and Innovation (RDI).
Junior IT Security Consultant &
System Security Manager
Since August 2017, Alexis Deudon works for itrust consulting, starting as IT Security Developer and meanwhile established as Junior IT Security Consultant.
Alexis holds a bachelor’s and a master’s degree, both in Computer Science, awarded by the University of Namur. During his studies and in order to put his knowledge into practice, he started his professional career in Information Security at itrust consulting. As a major part of his master studies, he got a deep insight into blockchain technologies and wrote his dissertation ’Study of the selection criteria for a blockchain solution according to the characteristics of its use case‘, aiming at facilitating the choice of a blockchain solution according to the customer's needs.
Between 2017 and 2019, Alexis supported the ATENA research project (European Research Programme Horizon 2020) by leading a project on the analysis of the DarkNet (detection and documentation of vulnerabilities in order to protect critical infrastructures). In addition, this project creates documentation for our customers, covering Information Security Management as well as Protection of Personal Data. His work has led to the implementation of a system that allows the identification of threats and vulnerabilities concerning a specific asset on the darknet. The development of the system has included every stage of software engineering from elaborating the specification document to the coding and integration of the software.
In 2019 he started supporting the CRITISEC research project by contributing to the specification and development of a computer system to detect intrusions on a private network.
In May 2020, Alexis has been named System Security Manager (SSM) at itrust consulting, managing the technical part of the company’s Information Security Management System (ISMS). In addition to this role, he assists the Chief Information Security Officer (CISO) in tasks related to the ISMS.
Next to his involvement in regular ICT administration tasks, Alexis supports our customers regarding the implementation of ISMS systems, e.g. creating and customizing policies, procedures, standards and related documentation.
Marieta Dimitrova joined the team of itrust consulting in September 2014 as management assistant. Holding a master’s degree diploma in International public administration from the University of national and world economy, Sofia, she started her career initially in Bulgaria. Marieta Dimitrova is responsible for the administrative and commercial affairs of the company.
Bernard Donneaux has a degree in electronics and 32 years of experience in IT and telecommunications. He joined itrust consulting in April 2015 as security consultant in the ICT team. Before, he was at Bank Degroof as security, network and office automation manager since 1999 and then as project manager. He also held the position of network administrator for CORDIS project at Intrasoft International since 1997, network engineer in charge of maintenance and implementation of Novell servers and network equipment, especially CISCO & Bay Networks, at Alcatel Telecom since 1991. He began his career as "Field Engineer", responsible for hardware maintenance and software systems IBM compatible 3170, 5250 and PC, at Bell Business System in 1983.
Information Security Consultant
Rose Ebene joined itrust consulting in March 2019 for an internship supporting R&D in the H2020 project ATENA by writing user guides and deliverables. Since September 2019, she actively supports private companies as Information Security Consultant in the implementation and improvement of their ISMS, e.g. creating policies by domain. Rose also assists customers in GDPR compliance missions. In May 2019 she has been named as CISO backup.
Rose holds a degree in computer systems and network engineering received in 2011 from the African Institute of Informatics in Libreville, Gabon. In September 2018, she started to study Information Systems Security with the aim of obtaining a master's in ISM (MSSI) at the University of Luxembourg. In April 2019, she received the ‘ISO 27001 Foundation’ certification issued by Certi-Trust.
IT administrator and developer
Alex Ferreira Costa has been employed as IT administrator and developer for itrust consulting since mid-September 2020.
Before, he completed his studies at the University of Luxembourg obtaining a Master's degree in Computer Science specialized in Information Security, following his Bachelor's degree in Mathematics, achieved in 2018.
In parallel to the preparation of his master studies, Alex accepted a student job working on ARM architecture, more precisely on cryptographic coding. In February 2020, he started his six-months internship at itrust consulting, consisting of developing, improving, and testing a proof of concept from a PhD study on a specific network intrusion detection system which is part of the CRITISEC project. Alex got a lot of experience in the field of network security, resulting in high honours on his Master’s thesis. He has been coding in different environments (e.g. Linux, Debian, Windows), but also utilizing different programming languages (e.g. Python, Java, C++, Rust, and more).
Currently, Alex continues to work on the CRITISEC project and provides IT administration tasks.
Administrative and commercial assistant
Marianne Guérin holds a BTS in International Sales issued by the Chamber of Commerce of Industry (CCIP) in Paris. At the beginning of her career she also studied 2 years of Marketing at the CCIP. She joined itrust consulting in September 2019 as administrative and commercial assistant, active in invoicing and offer creations for our customers. During the previous 20 years, Marianne kept various positions in administration, sales and customer service departments in France, England and Luxembourg.
IT Security Consultant
Nick Kasselouris is an IT Security Consultant at itrust consulting since 2016. He has 8 years of professional experience in various Advisory, Financial and IT roles in the Banking industry and has a deep knowledge of risk and control frameworks, IT and Network Security. He possesses several certifications on penetration testing and ethical hacking, wireless technologies, and information systems auditing and governance. His interests are in the fields of Penetration testing, Malware Analysis and Reverse Engineering. During his professional experience he has been involved in Operation Audits under the COSO/ COBIT/ SOX 404 Frameworks, in Agreed upon Procedures for several Financial Institutions in Greece and Luxembourg; he has worked as a Systems Administrator and Developer for a start-up operation in Washington, DC, and currently focuses on Advanced Exploitation Techniques across Windows, UNIX, and SCADA Systems.
IT Security Consultant
Gonzalo Matamala, IT security consultant at itrust consulting since January 2015, is a graduated engineer in Telecommunication systems from Escuela Técnica Superior de Ingenieros de Telecomunication in Valencia, Spain. Before joining itrust consulting, Gonzalo has been a Senior Kernel Software Engineer at Panda Security and Lumension Security.
IT Security Consultant
Sam Menghi is an IT Security Consultant at itrust consulting since 2012. He possesses a technical informatics diploma and a BTS in informatics. Sam received several certifications in the web technologies and telecommunication domains. Moreover, during his studies, he fulfilled several internships in the informatics department of financial institutions. He has good knowledge in Microsoft Windows, Microsoft Server 2008, UNIX and Apple OS X.
Sam spent his internship at itrust consulting, working on the Bugyo Beyond project. He developed the latest version of TRICK Service using J2EE and the latest web design technologies.
In 2013 he became a backup of the CIO, he helps managing the IT of itrust consulting. He helps designing and maintaining the overall network architecture, setting up and configuring the different required machines and services, and documenting operational procedures. He also manages the IT inventory of itrust consulting.
In the same year, Sam started to support the ethical hacking team by performing various intrusion tests remotely and on site at customers. He mainly performs web intrusion tests using the OWASP methodology and testing guide. He also performs vulnerability scans using known tools such as OpenVAS or Nessus.
ICT Manager &
Ensuifudine Omar is analyst developer at itrust consulting since 2012. He spent a six month internship during his Master studies at itrust consulting, working on the ESA LASP project, in order to obtain his degree in “IHM” Informatics from the University Paul Verlaine Metz. He works in software development and developed several tools of itrust consulting like TRICK Service and Software Checker (a tool developed for the TREsPASS project). Lately, he is working on a pseudo anonymisation project.
Information Security Consultant &
Health and Safety Officer
Guillaume Schaff is employed as global security consultant at itrust consulting since 2012. He studied in the industrial and electronic domain, where he received a ‘Brevet de Technicien Supérieur’ in Electronics and a ‘licence professionnelle’ in industrial maintenance at the ‘Université de Lorraine’. Then he reoriented himself towards the security sector and achieved a Master’s degree in Global Security Engineering and Management at the ‘Université de Technologie de Troyes’. During his internship at itrust consulting in 2012, he specialized in the implementation of security measures for economically friendly transport solutions.
Guillaume participated in the FP7 TREsPASS project studying the socio-technical risks of ICT. During this project he has authored several scientific articles about his work in TREsPASS. He also assists customers of itrust consulting related to PSDC and PCI DSS certification.
Guillaume has worked a lot in providing consultancy tasks during the implementation of Information Security Management Systems (ISMS) for different types of customers, e.g. private companies like CREOS or public entities of the Luxembourgish state such as CTIE, CGIE and ANSSI. During his work for public entities, e.g. for ANSSI, Guillaume has actively participated in the development and the writing of the National Information Security Policy (PSI-LU) and worked on a large part of the related documentation (policies by domain, procedures, standards, etc.). Guillaume has also actively advised and assisted CREOS Luxembourg in the creation and the implementation of their ISMS and to improve the security for SCADA systems and critical infrastructure.
Since 2014, Guillaume has also actively participated in the creation of the DataREG application of the CTIE, allowing Luxembourg public entities to establish their register of processing activities as requested by the GDPR (General Data Protection Regulation). Further on, Guillaume assisted several customers from itrust consulting to achieve compliance with the GDPR. At the end of 2018 he received the ‘GDPR foundation’ certification, issued by Certi-Trust.
Junior Ethical Hacker and Developer
Kendal Yaman joined itrust consulting in September 2020 as Junior Ethical Hacker and Developer.
Beginning of September 2020, Kendal graduated his Master’s in Information and Computer Sciences, specialized in Information Security. Here, he received his first experiences as ‘ASP.Net’ developer, where he developed a web application during his student job. Then, he realized his master thesis with the objective to evaluate the robustness of target programs running under the Disk Operating System (DOS) by exporting the ‘American Fuzzy Lop’ tool under DOS. This experience allowed him to improve his skills in ‘C’ and ‘Assembler’. Further, he assimilated the different aspects of Computer Security, such as blockchains, analysis of the various security protocols (e.g. AES and PGP) and the detection and exploitation of existing vulnerabilities in an infrastructure.
In 2018, Kendal obtained his Bachelor’s in Applied Information Technology, where he gathered significant programming skills (e.g. in C, C#, Python, Java, PHP, etc.) in different environments (Windows, Linux, MacOS).
In parallel to his studies, Kendal continuously trained himself in Ethical Hacking, by participating in online courses with a focus on Offensive Security and participating in various online challenges. He completed the trainings: (1) Hacking & Security: Fundamentals and (2) Certified Ethical Hacker v10 (exam is planned for 2020).
Today, Kendal started to perform vulnerability assessment, penetration tests and participates in projects related to Computer Security at itrust consulting.
55, rue Gabriel Lippmann
L-6947 Niederanven, Luxembourg
L-6831 Berbourg, Luxembourg
Please send your application to email@example.com