Cybersecurity Intern @ Panos.ai · Berlin

Bernd Janzen

Cybersecurity Analyst — GRC & Security Operations

Career changer: I spent years running operations — including my own coffee shop — before moving into security. Now interning at Panos.ai, mapping GDPR and EU AI Act requirements to real compliance controls and building cloud compliance tooling. CompTIA Security+ certified.

Security+ CompTIA Certified
Wazuh · Splunk SIEM hands-on
Panos.ai Cybersecurity Intern

Background & Skills

My path into security is not the usual one. I trained as an IT clerk in the early 90s, then spent two decades elsewhere: professional dance, carpentry, and six years running my own specialty coffee bar in Berlin with my wife. Hiring and training a team, HACCP compliance, reconciling the till every single night — small-business operations teach you what process discipline actually costs, because every shortcut lands on your own desk.

Those years gave me resilience, an eye for detail, and the habit of staying calm when everything happens at once. After a full-stack bootcamp brought me back to tech, Masterschool's cybersecurity program turned that operational mindset toward security — and GRC turned out to be a natural fit: it is the craft of making rules workable for real people doing real work.

Today I work at the intersection of compliance and engineering: GDPR and EU AI Act mapping, NIST CSF 2.0, and Python tooling for cloud compliance. And yes — every working day still starts with a properly brewed cup of coffee.

whoami
bernd@lab:~$ whoami
grc-analyst
bernd@lab:~$ cat status.txt
Currently: Cybersecurity Engineer Intern @ Panos.ai (May–Jul 2026)
Location: Berlin, Germany
Open to: GRC & security operations roles (DACH)
Security & Monitoring
Wazuh SIEM Splunk Wireshark Nmap Snort IDS Kali Linux
Compliance & Frameworks
NIST CSF 2.0 GDPR EU AI Act NIS2 OWASP
Networking
TCP/IP DNS / DHCP HTTP/S pfSense VLANs Packet Tracer
Programming
Python JavaScript Bash

Work & Projects

☁️
Completed

gcp-cloudscope

Live GCP project: an asset-inventory pipeline that classifies real cloud resources against a YAML rules engine into a GDPR/EU AI Act compliance report, plus a GDPR chatbot using Gemini and pgvector. Found and fixed a real internet-facing firewall exposure along the way.

GCP Cloud Asset Inventory Vertex AI / Gemini GDPR EU AI Act
🎬
Completed

Movie Database Application

Full-stack web application with a secure RESTful API and React frontend. Implemented JWT authentication, role-based authorization, and secure API integration principles.

Node.js Express MongoDB React JWT

Certifications

🔐
CompTIA Security+
CompTIA · Jan 2026
🛡️
Google Cybersecurity
Google / Coursera · May 2026
🖥️
Google IT Support
Google / Coursera · Oct 2025
🌐
Full-Stack Web Dev
CareerFoundry · Apr 2024
📋
Cybersecurity Program
Masterschool · Jun 2026

Let's connect

Open to entry-level SOC / GRC roles and cybersecurity conversations.