Kimberly Mattheys - Strategic Advisor - Product Security

Q: Where is Kimberly based?

Kimberly is based in Berlin, Germany and can operate in on-site , hybrid , and remote work models.

Q: What languages does Kimberly speak?

Kimberly speaks the following languages: English (Native), German (Intermediate) .

Q: How many years of experience does Kimberly have?

Kimberly has at least 5 years of experience. During this time, Kimberly has worked in at least 5 different roles and for 4 different companies . The average length of individual experience is 1 year and 11 months . Note that Kimberly may not have shared all experience and actually has more experience.

Q: What is Kimberly's latest experience?

Kimberly's most recent position is Strategic Advisor - Product Security at Banking, Critical Infrastructure, Fintech, SaaS .

Q: What companies has Kimberly worked for in recent years?

In recent years, Kimberly has worked for Banking, Critical Infrastructure, Fintech, SaaS , DevSecCon , Solaris SE , Interfront SOC, and Ltd. .

Q: Which industries is Kimberly most experienced in?

Kimberly is most experienced in industries like Banking and Finance and Information Technology .

Q: Which business areas is Kimberly most experienced in?

Kimberly is most experienced in business areas like Information Technology , Quality Assurance , and Product Development . Kimberly also has some experience in Strategy .

Q: What is Kimberly's education?

Kimberly holds a Bachelor in Information Technology from Belgium Campus .

Q: Does Kimberly have any certificates?

Kimberly has 2 certificates . These include: Aws Certified Cloud Practitioner and Peoplecert Certified Devops Leadership .

Recommended expert

Berlin, Germany

Experience

Jan 2024 - Present

2 years 3 months

Remote

Strategic Advisor - Product Security

Banking, Critical Infrastructure, Fintech, SaaS

I advise security and technology leaders on embedding secure-by-default practices across the software lifecycle to balance innovation with resilience — from idea to production.

Focused on:

DevSecOps & SDLC Governance
Secure Software Supply Chain & CI/CD Pipeline Integrity
Cloud & API Security Architecture
Threat Modeling & Exploit-Driven Risk Management
Developer Enablement & Security Champion Programs
Security Roadmaps
Compliance Alignment (DORA, ISO 27001, NIS2, etc.)

Oct 2023 - Sep 2025

2 years

Cape Town, South Africa

Chapter Leader

DevSecCon

Steering Cape Town’s premier community for DevSecOps, driving thought leadership, collaboration, and best practices in secure software development.

Jul 2023 - Dec 2025

2 years 6 months

Berlin, Germany

Remote

Head of Application Security and DevSecOps

Solaris SE

Architect and lead the strategic deployment of comprehensive security protocols, aligning with organizational goals across web, mobile, and API platforms.
Direct a team of experts in application security, offensive security, and DevSecOps, ensuring alignment with stringent regulatory frameworks including GDPR, BAIT, DORA, ISO, and SWIFT.
Drive secure design, architecture reviews, code reviews, and penetration testing initiatives, enhancing security measures and practices across all phases of software development.
Successfully led the organization to achieve ISO 27001 certification, reflecting a commitment to superior security and continuous improvement.

Dec 2021 - Jun 2023

1 year 7 months

Berlin, Germany

Senior Cybersecurity Engineer

Solaris SE

Developed and implemented cutting-edge security solutions, conducted comprehensive risk assessments, and managed proactive incident response operations to mitigate emerging threats.
Instrumental in cultivating a culture of security awareness, significantly elevating organizational security consciousness and proactive risk management practices.

Jun 2021 - Oct 2021

5 months

Cape Town, South Africa

Lead DevSecOps Engineer

Interfront SOC, Ltd.

Pioneered the integration of security measures within the DevOps pipeline, significantly enhancing code security and operational resilience.
Guided the strategic response to incidents and promoted the adoption of advanced technologies to advance the organization’s security stature.

Industry Experience

See where this freelancer has spent most of their professional time.

Experienced in Banking and Finance and Information Technology.

Banking and Finance

Information Technology

Business Area Experience

See which departments and functions this freelancer has contributed to most.

Experienced in Information Technology, Quality Assurance, Product Development, and Strategy.

Information Technology

Quality Assurance

Product Development

Strategy

Summary

14 years of extensive experience across various industries and fields. I have built a robust career steering cyber security initiatives for high-growth tech and financial sectors, emphasizing secure-by-default practices across the software lifecycle. I combine deep expertise in DevSecOps, application security, and regulatory compliance to drive innovation and secure technology environments.

I excel at implementing security roadmaps and fostering a culture of security across teams while ensuring ISO 27001 and other global standards are met. My hands-on approach in threat modeling, CI/CD pipeline integrity, and cloud and developer enablement transforms challenges into competitive advantages.

Languages

English

Native

German

Intermediate

Education

Belgium Campus

Diploma, Computer Software Engineering · Information Technology · Pretoria, South Africa

Certifications & licenses

Aws Certified Cloud Practitioner

Amazon Web Services

Peoplecert Certified Devops Leadership

PeopleCert

Statistics

Experience

Total positions 5

Experience in Banking and Finance 4.5 y

Avg length 1 y 8 m

Longest experience 2 y 5 m

Global Experience

Countries worked in 2 (South Africa, Germany)

Primary country South Africa

Expertise

Recent roles Strategic Advisor - Product Security, Chapter Leader, Head of Application Security and DevSecOps

Main industries Banking and Finance, Information Technology

Main business areas Information Technology, Quality Assurance, Product Development

Qualifications

Highest degree Bachelor

Certifications earned 2

Profile

Created

March 2026

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Kimberly based?

Kimberly is based in Berlin, Germany and can operate in on-site, hybrid, and remote work models.

What languages does Kimberly speak?

Kimberly speaks the following languages: English (Native), German (Intermediate).

How many years of experience does Kimberly have?

Kimberly has at least 5 years of experience. During this time, Kimberly has worked in at least 5 different roles and for 4 different companies. The average length of individual experience is 1 year and 11 months. Note that Kimberly may not have shared all experience and actually has more experience.

What roles would Kimberly be best suited for?

Based on recent experience, Kimberly would be well-suited for roles such as: Strategic Advisor - Product Security, Chapter Leader, Head of Application Security and DevSecOps.

What is Kimberly's latest experience?

Kimberly's most recent position is Strategic Advisor - Product Security at Banking, Critical Infrastructure, Fintech, SaaS.

What companies has Kimberly worked for in recent years?

In recent years, Kimberly has worked for Banking, Critical Infrastructure, Fintech, SaaS, DevSecCon, Solaris SE, Interfront SOC, and Ltd..

Which industries is Kimberly most experienced in?

Kimberly is most experienced in industries like Banking and Finance and Information Technology.

Which business areas is Kimberly most experienced in?

Kimberly is most experienced in business areas like Information Technology, Quality Assurance, and Product Development. Kimberly also has some experience in Strategy.

What is Kimberly's education?

Kimberly holds a Bachelor in Information Technology from Belgium Campus.

Does Kimberly have any certificates?

Kimberly has 2 certificates. These include: Aws Certified Cloud Practitioner and Peoplecert Certified Devops Leadership.

What is the availability of Kimberly?

Kimberly will be available part-time from March 2026.

What is the rate of Kimberly?

Kimberly's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.