Henning Kerstan
This website requires JavaScript. Please enable JavaScript for this website.

Dr. Henning Kerstan – Curriculum Vitæ

DE EN

Summary

Dr. Henning Kerstan brings 14+ years of professional experience, with more than 9 years in industry (consulting, product management, business development) and more than 5 years in academia (research, teaching). His focus areas are information security, cybersecurity, and regulatory compliance, spanning ISMS design and audit support, risk analysis, and evaluation and certification services. His combination of academic expertise in mathematics, computer science and IT security (Dr. rer. nat., summa cum laude), practical experience at PwC, ETAS/Bosch and TÜV NORD, and entrepreneurial experience makes him a compelling partner for complex security challenges.

Work experience and employment

TÜV Informationstechnik GmbH (TÜVIT), TÜV NORD GROUP

Essen • Germany • https://tuvit.de

since 10/2025

Team Lead Business Development Artificial Intelligence

  • line management responsibility for the team
  • strategic development and expansion of the evaluation and certification portfolio for artificial intelligence (AI) / machine learning (ML) (e.g., in line with EU AI Act, ISO/IEC 42001)
  • business development and acquisition of new clients in the area of Trustworthy AI (incl. direct sales and marketing)

ETAS GmbH, Bosch Group

Bochum • Germany • https://www.etas.com

4/2023 – 9/2025

Project Manager & Consultant for Automotive Cybersecurity

  • led an international project team
  • overall responsibility for an agile cybersecurity project with a leading German car OEM
  • contributed to establishing the company’s TISAX-specific requirements (incl. prototype protection)
  • consulted on cybersecurity topics in the automotive industry (e.g., in line with UNECE R 155/156, ISO/SAE 21434, ISO/IEC 27001, NIST SP 800-53)
  • identified and assessed risks in cloud-vehicle security architectures
  • initiated and shaped a penetration testing concept for automotive cloud systems

TÜV Informationstechnik GmbH (TÜVIT), TÜV NORD GROUP

Essen • Germany • https://tuvit.de

4/2020 – 3/2023

Product Manager

4/2022 – 3/2023
  • held product ownership for the hardware evaluation portfolio and AI/ML testing services
  • positioned new services in the market (e.g., post-quantum security (PQC), Secure Firmware Updates)
  • extended the company’s internal ISMS with TISAX-specific requirements (incl. prototype protection)
  • provided technical sales support and acquired new clients

Senior IT Security Expert/Consultant

4/2020 – 3/2022
  • developed new evaluation and certification services for AI/ML and hardware evaluation
  • provided technical sales support
  • conducted source code reviews (hardware-related, e.g., Boot-ROM, firmware) to detect physical attack potential (e.g., side-channel attacks, fault injection attacks)
  • performed source code analysis of cryptographic implementations (high-level)

PricewaterhouseCoopers GmbH Wirtschaftsprüfungsgesellschaft (PwC)

Düsseldorf • Germany • https://pwc.de

4/2018 – 3/2020

Senior Associate (Technology Consulting / CIO Advisory)

  • supported the redesign of an ISMS in line with ISO/IEC 27000 standards, incorporating data protection requirements for the global IT infrastructure of a leading German car OEM
  • developed a new ISMS cryptography policy for a pharmaceutical company
  • assisted with the analysis and documentation of business processes for the implementation of GDPR in the sales departments of a leading German car OEM
  • contributed to the implementation of GDPR for an international mobility provider

Technische Universität Darmstadt

Darmstadt • Germany • https://www.tu-darmstadt.de

4/2017 – 3/2018

Postdoctoral Researcher (Wissenschaftlicher Mitarbeiter) in IT Security (fixed-term)

  • taught the fundamentals of cryptography and IT security, created and edited lecture material, exercises, exams, and delivered lectures
  • recruited and mentored a new team of student teaching assistants
  • collaborated internationally with researchers in Germany and Italy
  • served as a peer reviewer for several international conference submissions

PricewaterhouseCoopers GmbH Wirtschaftsprüfungsgesellschaft (PwC)

Düsseldorf • Germany • https://pwc.de

5/2016 – 3/2017

Senior Consultant (Technology Consulting / CIO Advisory)

  • provided technology and IT consulting focused on the automotive industry
  • managed an IT project and negotiated IT Transitional Services Agreements as part of an international post-merger integration
  • revised a market sizing model for a connected car study

Universität Duisburg-Essen

Duisburg • Germany • https://www.uni-due.de

11/2011 – 5/2016

Research and Teaching Assistant (Wissenschaftlicher Mitarbeiter) in Theoretical Computer Science (fixed-term)

  • collaborated internationally with researchers in France, Italy, and the Netherlands
  • presented at various international conferences and workshops in countries including Barbados, India, Germany, France, Netherlands, Poland, Estonia, Portugal, and the UK
  • taught exercise groups, gave tutorials, prepared and graded exams, and supervised theses
  • served as a peer reviewer for multiple international conference and journal submissions

Henning Kerstan und Roman Ortmann GbR

Duisburg • Germany

since 5/2009

Small Business Owner (Geschäftsführender Gesellschafter)

  • provided sound and lighting equipment for small events (concerts, sport events, proms, weddings, birthdays)
  • offered IT support for individuals and small local companies
  • developed websites (Typo3, WordPress) and provided webhosting

Universität Duisburg-Essen

Duisburg • Germany • https://www.uni-due.de

3/2009 – 7/2011

Student Research and Teaching Assistant (Studentische Hilfskraft)

  • implemented a C++ prototype of an algorithm for solving a scheduling problem in steel production
  • taught several exercise groups and graded student homework (basic math/computer science)

Education

PhD in Computer Science (summa cum laude)

Universität Duisburg-Essen • Duisburg • Germany • https://www.uni-due.de

11/2011 – 4/2016

Diplom in Mathematics (1.0)

Universität Duisburg-Essen • Duisburg • Germany • https://www.uni-due.de

4/2007 – 9/2011
  • degree: Diplom-Mathematiker (Dipl.-Math.)
  • specialization: algebra, cryptography, operations research
  • minor: computer science

Abitur (1.0)

Landfermann-Gymnasium • Duisburg • Germany • https://landfermann.de

8/1997 – 6/2006
  • bilingual education in German and English
  • developed a network application (VisualBasic 6.0) for the school’s weather station

Publications

Below is a short overview of my publications. For a more detailed overview including short summaries, please go to my online list of publications (https://henningkerstan.de/en/publications).

Monographs

[Ker16] Henning Kerstan. Coalgebraic Behavior Analysis. PhD thesis. Universität Duisburg-Essen. 2016.

[Ker11] Henning Kerstan. Trace Semantics for Probabilistic Transition Systems. Diplomarbeit (final thesis in the German diploma degree; equivalent to a master's thesis). Universität Duisburg-Essen. 2011.

Refereed Articles in International Journals

[BBKK18] Paolo Baldan, Filippo Bonchi, Henning Kerstan, Barbara König. Coalgebraic Behavioral Metrics. Logical Methods in Computer Science. 14 (3). 2018.

[KK13] Henning Kerstan, Barbara König. Coalgebraic Trace Semantics for Continuous Probabilistic Transition Systems. Logical Methods in Computer Science. 9 [4:16] (834). 2013.

Refereed Articles in Proceedings of International Conferences

[BBKK15] Paolo Baldan, Filippo Bonchi, Henning Kerstan, Barbara König. Towards Trace Metrics via Functor Lifting. In 6th Conference on Algebra and Coalgebra in Computer Science (CALCO'15) . Leibniz International Proceedings in Informatics (LIPIcs). Schloss Dagstuhl – Leibniz-Zentrum für Informatik. 2015.

[BBKK14] Paolo Baldan, Filippo Bonchi, Henning Kerstan, Barbara König. Behavioral Metrics via Functor Lifting. In 34th International Conference on Foundation of Software Technology and Theoretical Computer Science (FSTTCS 2014) . Volume 29 of Leibniz International Proceedings in Informatics (LIPIcs). Editor(s): Venkatesh Raman, S. P. Suresh. Schloss Dagstuhl – Leibniz-Zentrum für Informatik. 2014.

[KKW14] Henning Kerstan, Barbara König, Bram Westerbaan. Lifting Adjunctions to Coalgebras to (Re-)Discover Automata Constructions. In Coalgebraic Methods in Computer Science . Volume 8446 of Lecture Notes in Computer Science. Editor(s): Marcello M. Bonsangue. Springer, Berlin, Heidelberg. 2014.

[KK12a] Henning Kerstan, Barbara König. Coalgebraic Trace Semantics for Probabilistic Transition Systems Based on Measure Theory. In CONCUR 2012 – Concurrency Theory. Volume 7454 of Lecture Notes in Computer Science. Editor(s): Maciej Koutny, Irek Ulidowski. Springer, Berlin Heidelberg. 2012.

Other Publications

[KLG21] Henning Kerstan, Marc Le Guin. Sichere Firmware-Updater für sichere Embedded Systems. In Security-Insider. Editor(s): Peter Schmitz. Vogel IT-Medien GmbH. 2021.

[VAK+16] Richard Viereckl, Dietmar Ahlemann, Alex Koster, Evan Hirsh, Felix Kuhnert, Joachim Mohs, Marco Fischer, Walter Gerling, Kaushik Gnanasekaran, Julia Kusber, Juliane Stephan, David Crusius, Henning Kerstan, Trent Warnke, Manuel Schulte, Jonas Seyfferth, Edward H. Baker. Connected car report 2016. In Connected car report 2016. Editor(s): Richard Viereckl, Alex Koster, Evan Hirsh, Dietmar Ahlemann. PwC Strategy&. 2016.

[KK12b] Henning Kerstan, Barbara König. Coalgebraic Trace Semantics for Probabilistic Transition Systems Based on Measure Theory. Technical report. Abteilung für Informatik und Angewandte Kognitionswissenschaft, Universität Duisburg-Essen. 2012.