About me
Ingmar van der Poel
Hello, my name is Ingmar van der Poel.
I am a software developer, Data Protection Officer and Security Officer.
By telling about my personal ambitions, I hope to be a source of inspiration.
Software developer
As a Software developer I build and maintain applications which for example are used in hospitals. But also connections from applications to for example a system that holds patient records.
Data Protection Officer
As a Data Protection Officer I ensure compliance with the General Data Protection Regulation (GDPR). One of the many things I do is supporting the activities required to sign a processor agreement, the necessary negotiations, explaining the implemented measures to the other party and ensure implementation of the adequate measures. Article 39 of the GDPR lists all the tasks of a Data Protection Officer
In my experience there is often a lot of confusion about the obligations that arising from the GDPR. The right approach there should not be any confusion whatsoever. In addition to overseeing compliance with the GDPR, I also promote privacy awareness and help the other parties involved to ensure that everything goes smoothly.
Security Officer
As a Security Officer I maintain and improve the Informatio Security Management System (ISMS) which is ISO 27001 compliant. In addition to the periodic internal audits the ISMS is also audited externally. An external audit can both be a control audit (only a partial check) or a recertification audit in which case the whole ISMS is checked for compliance with the ISO 27001.
The right combination for good, secure software in compliance with the law.
As a Security Officer I have a good overview of all implemented measures. My background in software development enables me to understand the technical side of thes measures and influence the design and implementation of the software.
The combination of the Security Officer role, Software developer role and the Data Protection Officer role enables me to deliver good, secure software, make the appropriate arrangements and ensure compliance with the law.
My earned certificates and current focus
Or.. Read more about my ambitions & ideals.
My ambitions & ideals In the context of software development.
Software must be secure
Software, for example a website, must be able to withstand hackers.
I think this is very important. Not only do I focus on the software, but also on the infrastructure. To assist this I have obtained certification for, among other things, the CSIS (CompTIA Secure Infrastructure Specialist), CLNP (CompTIA Linux Network Professional) and CIOS (CompTIA IT Operations Specialist) certifications. Scroll down for more information.
Privacy. Be careful with data
Be careful with the data users hand over.
I think this is very important. That's why I took the course 'Privacy officer in practice'.
Separation of environments
Develop new versions of the software in a development environment. Then, when the software is stable and finished, release this software to a test environment. When the software version has been approved, it can be released to for example the live environment. An example: This website is tested in a test environment which has the same configuration as the live environment. Before a new version of this website is released, it is tested in the test environment.
Error detection and fixing them proactively
Humans make mistakes. They really do. Don't only log the errors, but actively inform yourself the moment an error occurs. For example, this can be done by sending an automatic email. This enables you to react quickly and adequately.
Always keep in mind that your because of advancing insight and possible changes in requirements, the software might need to be modified. Always make sure that your software remains easy to maintain.
Good software always does what it is suposed to do. And this should remain the case when the usage increases. For example, sending an email to all users with an user base that is getting bigger.
Make sure the software looks good
This generates trust.
Stick to the law
Help your customer stick to the law when applicable. Inform them.
Love what you build
Build software that is useful and makes people happy. And where you stand for.
"With passion"
Building software is an art. I build software with passion. By doing so I can use my creativity. In addition to the things the software has to be able to do, there is a lot more to it. I think, for example, that consideration must be given to scalability. But also which data the application collects, and whether all this data is really necessary. The less data you collect and save, the less risk you have that this data falls into the wrong hands. It is to be expected that requirements demanded by law concerning privacy continue to become more strict. In shirt, it is my ambition to create good software that requires minimal management!
What are your ambitions and ideals?
Or.. Read more about me.
Eager to learn
My hobby is my work. I am always exploring, trying out and learning new things. As you probably already guessed, my interests are quite broad. My focus is currently mainly on security and privacy. Both organizational, for example the usage and maintenance of a ISO 27001 Security Management System, and technical. I believe that to be able to analyze security risks and to effectively implement security measures, you also need sufficient technical knowlegde. For this reason, besides gaining technical knowlegde in the context of software development, I am for example continuously gaining knowlegde about the infrastructure in which the software runs.

I always want to learn more; if you know something interesting that I should dive into, I'd love to hear it!
Earned certificates

Computing Technology Industry Association
CSIS (CompTIA Secure Infrastructure Specialist)

Computing Technology Industry Association
CompTIA Security+

Professional Scrum Master I (PSM I)

Computing Technology Industry Association
CLNP (CompTIA Linux Network Professional)

Computing Technology Industry Association
CIOS (CompTIA IT Operations Specialist)

Linux Professional Institute
LPIC-1 Linux Administrator

Computing Technology Industry Association
CSSS (CompTIA Systems Support Specialist)

Computing Technology Industry Association
CompTIA Linux+ powered by LPI

Computing Technology Industry Association
CompTIA Network+

Computing Technology Industry Association
CompTIA A+

Linux Professional Institute
Linux Essentials

MCTS (Microsoft® Certified Technology Specialist)
Microsoft Windows Vista® ,Configuration
I focus a lot on security
One of the things that I focus a lot on, is security. Not only the security of the developed software itself, but also on the infrastructure that the software runs in, and the development environment. The release procedure and separation of environments are important as wel. For example: This website is developed in a development environment. After saving the code in the version management system, this code can only be released via this version management system to either the test environment or live environment. One of the advantages of this release procedure, is that the code can only be released via one system. Another big advantage is that all the versions of this website that have ever been released to the live environment, can be found in this version management system. This release procedure also ensures that only working and approved code is released to the live environment.