Managing Director &
Chief Information Security Officer
Dr Carlo Harpes is an expert in information and computer security, with 29 years of experience in consulting, research, education, and standardization. He is the founder (in 2007) and managing director of itrust consulting. Prior to this, he had been Managing Director and Head of Security, Audit, and Governance of Security at Telindus PSF (3 years), and before, during 8 years, he had been CISO and head of Risk management at CETREL S.C., the electronic payment operator in Luxembourg.
Carlo Harpes holds a PhD in information techniques and cryptography, as well as an electrical engineering diploma from the EPF Zurich. He is PKI expert registered at ILNAS, External 27001 lead auditor, and assistant professor associated to the University of Luxembourg. Furthermore, he is one of the founding members of CLUSIL and national representative of ISO/IEC JTC1 SC27...
With itrust consulting, he participated in multiple international research projects, often as Task or Work package leader: BUGYO Beyond (Celtic), DIAMONDS (ITEA2), CockpitCI (FP7), MICIE (FP7), Liveline (FP7), iGOing (FP7), SGL Cockpit, TRESpASS (FP7), IDS4ICS (AFR grant supervision), ATENA (H2020), bIoTope (H2020), QUARTZ (on quantum key management), CRITISEC (on intrusion detection on critical infrastructures), TOKEN (on security and blockchain applicability), LuxQCI (ESA).
IT Security Consultant &
Data Protection Officer
Matthieu Aubigny is a senior IT security consultant, employed since >12 years at itrust consulting. He is an engineer from the École National Supérieur des Arts et Métiers, holds a professional Master's degree in Information Systems Security Management from the University of Luxembourg, two Masters in Theology and a Bachelor's degree in Philosophy from ICP Paris.
His proven excellence as technical expert in the framework of the EuroPrise certification for the European privacy regulations for IT services and products qualified him to become officially announced as Data Protection Officer (DPO) at itrust consulting. Today, his IT security consultancy work enables him to hold the similar position for several companies in Luxembourg in the field of archiving and energy supply, and to work in relationship with a law firm specializing in this filed.
To ensure the high-quality service level at itrust consulting, Matthieu executes his role as Quality Manager precisely and is also in charge of Customer Relation Ship management with French-speaking customers.
As IT consultant and security consultant with significant work experience (>20 years), he currently fulfills several roles for customers, e.g. as ‘Security Manager’ and ‘Security Expert’ in the area of security management for institutional customers (Court of Justice, European Commission, Ministry, Trade Unions) and also for private customers.
His successful contribution for more than 10 years to Security Research within European research projects (FP7 or H2020: MICIE, CokpitCI, ATENA, BioTop etc.), National research projects (LuxLaunch project) or for research projects from agencies such as ESA, particularly in the field of security, resilience of critical infrastructures and the design of warning and vulnerability management systems, GNSS localization, allows him today to offer a solid expertise in relation to today’s most urgent issues in cybersecurity (CIP, CIIP, Cloud Computing, Privacy by Design, AI).
Further on, Matthieu is experienced in in microprocessor research, voice recognition, commercial management and as a teacher and consultant in computer technologies (hardware and software). His work regularly leads him to apply world-wide recognized best practices security standards (ISO 27xxx, ISO 15408, ISO 29xxx, NIST) and to develop new standardized approaches to meet customers' security needs. In order to stay on the edge of the development in Information Security he is a member of the ILNAS Expert Group on ISO/IEC Standards on ‘IT Security techniques’ and is in charge of Working Group 3 (JTC1/SC27/WG3) on ‘Security evaluation criteria’.
Chief Administrative Officer &
Senior Information Security Consultant
Ingo Senft, born in 1966, joined itrust consulting in August 2016. As Chief Administrative Officer his area of responsibility covers internal administration, Human Resources, Sales Management, Public Relations Management and Security Consultancy. As Senior Manager with significant business experience (> 25 Years) Ingo supports the Managing Director and secures the planned growth and further development of itrust consulting. Based on his previous experience in dealing with customers from various sectors he also consults itrust consulting's customers. From 2018 to 2020 he was nominated Chief Information Security Officer (CISO).
Before, as Head of Quality and Information Security Management, he was responsible for the implementation/management of an integrated Management System at the euroscript Group (today: Amplexor) ensuring compliance with various ISO standards: e.g. Quality Management (ISO 9001/EN 9100/ISO 13485/ISO 14971), Information Security Management (ISO 27xxx/ISO 22301/ISO 31000), Corporate Social Responsibility (ISO 26000) and the approval as PFS Support issued by the CSSF.
Since 1990 he was continuously involved in the Sales process for Public Institutions and the Private Industry covering various responsibilities as: Sales Manager for newspaper systems, Product and Sales Manager for data transmission systems, Head of EU Sales and Business Project Manager. Ingo holds a Master’s degree in Electrical Engineering awarded by the University of Applied Sciences in Frankfurt, where he specialized in computer science, data protection and security. He is certified as internal Auditor for Quality Management, for Information Security Management, as Project Manager (PRINCE2) and experienced (>10 years) in the planning and implementation of Business strategies.
Dr Arash Atashpendar joined itrust consulting in May 2020 as Head of Department Research, Development and Innovation (RDI).
Information Security Consultant
Jihad Dazine joined itrust consulting in October 2021 as Information Security Consultant.
In 2015, Jihad achieved her engineering degree in information security (ENSIAS, Morocco), and in 2020 she completed her Master of Science in Mines Nancy, France in cybersecurity: ‘attacks and defences’.
She started her career mainly working at different banks, where she gained four years of experience in supporting IT security projects (integration and administration of security tools, e.g. load balancers, antiviruses, SIEM, firewalls, patch management, vulnerability assessment…) and organizational security projects, covering implementation of ISO/IEC 27001 compliant ISMS, ensuring PCI-DSS conformity and data protection. She is certified Ethical Hacker (CEH) and certified Lead Auditor ISO/IEC 27001.
Currently, Jihad assists our customers in ISMS implementation and GDPR compliance missions, and she also supports technical projects related to IT security.
Marieta Dimitrova joined the team of itrust consulting in September 2014 as management assistant. Holding a master’s degree diploma in International public administration from the University of national and world economy, Sofia, she started her career initially in Bulgaria. Marieta Dimitrova is responsible for the administrative and commercial affairs of the company.
Bernard Donneaux has a degree in electronics and 32 years of experience in IT and telecommunications. He joined itrust consulting in April 2015 as security consultant in the ICT team. Before, he was at Bank Degroof as security, network and office automation manager since 1999 and then as project manager. He also held the position of network administrator for CORDIS project at Intrasoft International since 1997, network engineer in charge of maintenance and implementation of Novell servers and network equipment, especially CISCO & Bay Networks, at Alcatel Telecom since 1991. He began his career as "Field Engineer", responsible for hardware maintenance and software systems IBM compatible 3170, 5250 and PC, at Bell Business System in 1983.
Information Security Consultant
Rose Ebene joined itrust consulting in March 2019 for an internship supporting R&D in the H2020 project ATENA by writing user guides and deliverables. Since September 2019, she actively supports private companies as Information Security Consultant in the implementation and improvement of their ISMS, e.g. creating policies by domain. Rose also assists customers in GDPR compliance missions. In May 2019 she has been named as CISO backup.
Rose holds a degree in computer systems and network engineering received in 2011 from the African Institute of Informatics in Libreville, Gabon. In September 2018, she started to study Information Systems Security with the aim of obtaining a master's in ISM (MSSI) at the University of Luxembourg. In April 2019, she received the ‘ISO 27001 Foundation’ certification issued by Certi-Trust.
Heinrich Fries has been employed as Security Researcher at itrust consulting since mid-May 2021.
Before joining itrust consulting, he completed his masters studies in Physics at the University of Freiburg, specializing in quantum computation. He also holds a bachelor's degree in Physics, obtained in 2018 from the same university.
During his master studies, Heinrich accepted a scientific research assistant job working for the Fraunhofer institute (IAF) where he carried out research in the field of quantum computing, focusing on the optimization of quantum algorithms. As a member of the Research, Development and Innovation (RDI) department, Heinrich is involved in projects related to quantum computing and cryptography.
He assists the head of the RDI department by conducting research on post-quantum or quantum-safe algorithms and cryptographic systems (i.e., secure against quantum algorithms), as well as disseminating results through scientific publications and talks at conferences. He also contributes to software implementation activities using different programming languages such as Python and C++.
Currently, Heinrich contributes to itrust consulting activities in QUARTZ and other related projects. He also carries out various ICT administration and development tasks.
Administrative and commercial assistant
Marianne Guérin holds a BTS in International Sales issued by the Chamber of Commerce of Industry (CCIP) in Paris. At the beginning of her career she also studied 2 years of Marketing at the CCIP. She joined itrust consulting in September 2019 as administrative and commercial assistant, active in invoicing and offer creations for our customers. During the previous 20 years, Marianne kept various positions in administration, sales and customer service departments in France, England and Luxembourg.
Benjamin Hodzic has successfully completed his studies in philosophy at the University of Luxembourg. In September 2021, he joined itrust consulting as a document manager in order to draft and adapt GDPR compliant documents and documents of different management systems to the specific needs of customers.
IT Security Consultant
Gonzalo Matamala, IT security consultant at itrust consulting since January 2015, is a graduated engineer in Telecommunication systems from Escuela Técnica Superior de Ingenieros de Telecomunication in Valencia, Spain. Before joining itrust consulting, Gonzalo has been a Senior Kernel Software Engineer at Panda Security and Lumension Security.
IT Security Consultant
Sam Menghi is an IT Security Consultant at itrust consulting since 2012. He possesses a technical informatics diploma and a BTS in informatics. Sam received several certifications in the web technologies and telecommunication domains. Moreover, during his studies, he fulfilled several internships in the informatics department of financial institutions. He has good knowledge in Microsoft Windows, Microsoft Server 2008, UNIX and Apple OS X.
Sam spent his internship at itrust consulting, working on the Bugyo Beyond project. He developed the latest version of TRICK Service using J2EE and the latest web design technologies.
In 2013 he became a backup of the CIO, he helps managing the IT of itrust consulting. He helps designing and maintaining the overall network architecture, setting up and configuring the different required machines and services, and documenting operational procedures. He also manages the IT inventory of itrust consulting.
In the same year, Sam started to support the ethical hacking team by performing various intrusion tests remotely and on site at customers. He mainly performs web intrusion tests using the OWASP methodology and testing guide. He also performs vulnerability scans using known tools such as OpenVAS or Nessus.
ICT Manager &
Ensuifudine OMAR has been analyst developer at itrust consulting since 2012. He completed a six-month internship during his Master studies at itrust consulting, working on the ESA LASP project, in order to obtain his degree in ‘IHM’ Human Machine Interface, Informatics from the University Paul Verlaine Metz.
He works in software development, and develops several tools for itrust consulting, like TRICK Service, Software Checker, Vulnerability Management System (a tool developed for the TREsPASS and ATENA project), and on a pseudo anonymization project for Centre de gestion informatique de l'éducation (CGIE).
Since 2016 he is also an ICT administrator for backup and to maintain the infrastructure at itrust consulting. In 2020 he was promoted to ICT Manager, Head of Department Software Development and took over the role of Chief Information Officer (CIO).
R&D specialist and developer
Rathaiah Pureti completed his B.Sc. in Mathematics and M.Sc. in Physics, both in India, and his Ph.D. in 2016 in the field of characterization of semiconductor materials at the Interuniversity Microelectronics Center (IMEC)/K.U. Leuven, Belgium. In his subsequent employment at LIST, he was mainly involved in the design, implementation and evaluation of advanced nanoanalytical instrumentation and the related data analysis software protocols and systems.
In November 2021, he joined itrust consulting as R&D specialist in computer science, where he works in the RDI (Research, Development and Innovation) department, mainly supporting the RDI manager in key projects such as IPCEI-CIS and CRITISEC.
More specifically, he primarily assists the team by working on the design and development of novel optimization and clustering algorithms. He also participates in some of the cryptography-related projects at itrust consulting. He also contributes to the technical documentation of tools under development.
Information Security Consultant &
Health and Safety Officer
Guillaume Schaff is employed as global security consultant at itrust consulting since 2012. He studied in the industrial and electronic domain, where he received a ‘Brevet de Technicien Supérieur’ in Electronics and a ‘licence professionnelle’ in industrial maintenance at the ‘Université de Lorraine’. Then he reoriented himself towards the security sector and achieved a Master’s degree in Global Security Engineering and Management at the ‘Université de Technologie de Troyes’. During his internship at itrust consulting in 2012, he specialized in the implementation of security measures for economically friendly transport solutions.
Guillaume participated in the FP7 TREsPASS project studying the socio-technical risks of ICT. During this project he has authored several scientific articles about his work in TREsPASS. He also assists customers of itrust consulting related to PSDC and PCI DSS certification.
Guillaume has worked a lot in providing consultancy tasks during the implementation of Information Security Management Systems (ISMS) for different types of customers, e.g. private companies like CREOS or public entities of the Luxembourgish state such as CTIE, CGIE and ANSSI. During his work for public entities, e.g. for ANSSI, Guillaume has actively participated in the development and the writing of the National Information Security Policy (PSI-LU) and worked on a large part of the related documentation (policies by domain, procedures, standards, etc.). Guillaume has also actively advised and assisted CREOS Luxembourg in the creation and the implementation of their ISMS and to improve the security for SCADA systems and critical infrastructure.
Since 2014, Guillaume has also actively participated in the creation of the DataREG application of the CTIE, allowing Luxembourg public entities to establish their register of processing activities as requested by the GDPR (General Data Protection Regulation). Further on, Guillaume assisted several customers from itrust consulting to achieve compliance with the GDPR. At the end of 2018 he received the ‘GDPR foundation’ certification, issued by Certi-Trust.
Junior Ethical Hacker and Developer
Kendal Yaman joined itrust consulting in September 2020 as Junior Ethical Hacker and Developer.
Beginning of September 2020, Kendal graduated as Master’s in Information and Computer Sciences, specialized in Information Security. Here, he received his first experiences as ‘ASP.Net’ developer, where he developed a web application during his student job. Then, he realized his master thesis with the objective to evaluate the robustness of target programs running under the Disk Operating System (DOS) by exporting the ‘American Fuzzy Lop’ tool under DOS. This experience allowed him to improve his skills in ‘C’ and ‘Assembler’. Further, he assimilated the different aspects of Computer Security, such as blockchains, analysis of the various security protocols (e.g. AES and PGP) and the detection and exploitation of existing vulnerabilities in an infrastructure.
In 2018, Kendal obtained his Bachelor’s in Applied Information Technology, where he gathered significant programming skills (e.g. in C, C#, Python, Java, PHP, etc.) in different environments (Windows, Linux, MacOS).
In parallel to his studies, Kendal continuously trained himself in Ethical Hacking, by participating in online courses with a focus on Offensive Security and participating in various online challenges. He completed the trainings: (1) Hacking & Security: Fundamentals and (2) Certified Ethical Hacker (exam is planned for 2021).
Today, Kendal performs vulnerability assessments, penetration tests following OWASP and participates in projects related to Computer Security (Nessus, Burp, IDS…) at itrust consulting.
55, rue Gabriel Lippmann
L-6947 Niederanven, Luxembourg
L-6831 Berbourg, Luxembourg
Please send your application to firstname.lastname@example.org