Patrick Stöckle

Siemens AG

Research Scientist • March 2023 – Present, Munich

In my job as expert for cloud and container security at Siemens, I help people to use these technologies securely, and develop tools and approaches to support them in doing so.

Technical University of Munich (TUM)

Research Assistant • November 2017 – February 2023, Munich

I have been working at the Chair of Software and Systems Engineering. I worked for 4 years on an industry-funded project about security configuration. Furthermore, I was teaching in the form of central exercises and tutorials, notably as the leading teaching assistant of the course Security Engineering from 2019 until 2022. I created the practical exercises in this course and graded and explained them. Furthermore, I organized the final exam.

3iMedia GmbH

Software Engineer • August 2014 – March 2017, Eggenstein-Leopoldshafen

Web Development, Mobile App Development

Schülerhilfe Ettlingen

Student Tutor • May 2012 – July 2014, Ettlingen

Student tutor for Mathematics, Latin Language, and Physics.

Technical University of Munich (TUM)

Ph.D., Informatics • November 2017 – Present

Thesis Title: A Holistic Approach for Security Configuration
Supervisor: Prof. Dr. Alexander Pretschner.
2^nd supervisor: Assistant Prof. Dipl.-Ing. Dr.sc. / BSc Jürgen Cito.

Karlsruhe Institute of Technology (KIT)

Master of Science, Informatics • April 2016 – September 2017

Master's thesis's title: Model Versioning with Consistency Conservation in Vitruvius in the context of the VITRUVIUS project.
Majors: Software Engineering and Software Security.
Minor: Economics with focus on Game Theory.

Karlsruhe Institute of Technology (KIT)

Bachelor of Science, Informatics • October 2012 – March 2016

Bachelor's thesis's title: Partikelbasierte Erweiterung und Laufzeitoptimierung der Prädiktion von Posen gesuchter Objekte mittels Implicit Shape Models in the context of the Active Scene Recognition project.
Minor: Mathematics (Algebra).

Eichendorff-Gymnasium Ettlingen

Abitur • 2012

IT Security and Security Configuration

Since the IT security focus in my master's degree, I have been heavily involved with this. Later, in my Ph.D., I worked on a cooperation project between the Technical University of Munich (TUM) and Siemens on security configuration. Security misconfigurations enable many cyberattacks and make most of them easier than necessary. Through the experience of that project, I know very well about practical IT security problems and how to fix them. In the industry project, I developed tools to help administrators to harden their systems. If organizations hardened their infrastructure using these tools now, they would prevent data breaches and ransomware attacks in the future.

Teaching and Supervision

I am a good teacher who can help people better understand complex matters. From 2019 until 2022, I was the leading teaching assistant for the course Security Engineering at the TUM, with ca. 300 enlisted students every year. I renovated much of the existing but outdated course material during this time and added more recent and relevant content. Furthermore, I introduced graded, hands-on programming exercises; if the students got more than 66% of the points, they received a 0.3 bonus on their final grade. I provided the exercises to the students via the Artemis Learning Platform. Before introducing these graded programming exercises, there were only a couple of student submissions every week. Afterward, over 100 students submitted, on average, a solution per week, and over 80 students received the bonus in the end. Motivating these students to not only study the theory for the exam but also make their hands dirty and implement the stuff made them learn even more. Unfortunately, the graded exercises and the bonus have been removed after I left the TUM.
During my time at the TUM, I supervised 13 bachelor's/master's theses. Although I supervised them, I learned a lot from my students. Supporting others with advice and guidance and seeing how they solved some problems I struggled with or came up with ideas I had never thought about was an incredible experience.

Programming and Software Engineering

I am an experienced programmer with a lot of experience in different languages. Currently, the language I use the most is Python 🐍, but I learned to program with Java ☕️. During my studies, I also programmed in C, C++, Haskell, TypeScript, Xtend, and Kotlin. Currently, I'm working a lot with Rego which is inspired by Datalog/Prolog. Furthermore, I am very passionate about everything around writing the actual software.
For me, version control with git is a pivotal part of handling any software project, and I worked a lot with continuous integration tools such GitLab CI/CD. Thanks to an excellent course at the TUM, I know a lot about REST, Microservices, Docker, Protocol Buffers, and Spring. All these concepts, frameworks, and tools can help us as programmers enormously when writing, deploying and maintaining software.

Automated Implementation of Windows-related Security-Configuration Guides

Patrick Stöckle, Bernd Grobauer, Alexander Pretschner

In: 35th IEEE/ACM International Conference on Automated Software Engineering

Overall Acceptance Rate: 37 of 312 submissions (12%).

• 

Automated Identification of Security-Relevant Configuration Settings Using NLP

Patrick Stöckle, Theresa Wasserer, Bernd Grobauer, Alexander Pretschner

In: 37th IEEE/ACM International Conference on Automated Software Engineering

Overall Acceptance Rate: 128 of 562 submissions (23%).

• 

Hardening with Scapolite: A DevOps-based Approach for Improved Authoring and Testing of Security-Configuration Guides in Large-Scale Organizations

Patrick Stöckle, Ionuț Pruteanu, Bernd Grobauer, Alexander Pretschner

In: Twelveth ACM Conference on Data and Application Security and Privacy (CODASPY)

Overall Acceptance Rate: 65 of 357 submissions (18%).

• 

Better Safe Than Sorry! Automated Identification of Breaking Security-Configuration Rules

Patrick Stöckle, Michael Sammereier, Bernd Grobauer, Alexander Pretschner

In: 4th ACM/IEEE International Conference on Automation of Software Test (AST)

• 

Automatisierte Identifikation von sicherheitsrelevanten Konfigurationseinstellungen mittels NLP

Patrick Stöckle, Theresa Wasserer, Bernd Grobauer, Alexander Pretschner

In: Software Engineering 2023

• 

Sichere Konfigurationshärtung laufender Systeme

Patrick Stöckle, Michael Sammereier, Bernd Grobauer, Alexander Pretschner

In: Sicherheit in vernetzten Systemen: 30. DFN-Konferenz

• 

CIS Microsoft Edge Benchmark v2.0.0

Caleb Eifert, William Ferguson, Johannes Goerlich, Daniel Jasiak, Patrick Stöckle

In: Center for Internet Security (CIS) Benchmarks

Continuous Container Security Compliance - From belief to proof

Date: 13.12.2023

Event: 8^th Future Architecture Conference @ Siemens (Intranet Only)

• 

Experiences on CI pipelines for Container Security

Date: 05.12.2023

Event: CSTech – Annual Siemens-internal Symposium on Cybersecurity Technologies (Intranet Only)

Better Safe Than Sorry! Automated Identification of Breaking Security-Configuration Rules

Date: 15.05.2023

Event: AST'23

Automatisierte Identifikation von sicherheitsrelevanten Konfigurationseinstellungen mittels NLP

Date: 24.02.2023

Event: SE'23

Sichere Konfigurationshärtung laufender Systeme

Date: 09.02.2023

Event: 30. DFN-Konferenz "Sicherheit in vernetzten Systemen"

Sichere Konfiguration leicht(er) gemacht

Date: 17.10.2022

Event: 2. Online-Informationsveranstaltung für kommunale IT-Dienstleister

Automated Identification of Security-Relevant Configuration Settings Using NLP

Date: 11.10.2022

Event: ASE'22

Hardening with Scapolite

Date: 25.04.2022

Event: CODASPY'22

• 

Sicherheits­konfigurationsrichtlinien effizient verwalten und umsetzen: Der Scapolite-Ansatz

Date: 03.02.2022

Event: 29. DFN-Konferenz "Sicherheit in vernetzten Systemen"

Automated Implementation of Windows-related Security-Configuration Guides

Date: 26.02.2021

Event: SE'21

Automated Implementation of Windows-related Security-Configuration Guides

Date: 23.09.2020

Event: ASE'20

• 

Towards deriving automated implementation & verification mechanisms from a single machine-readable requirements specification

Date: 02.05.2019

Event: SCAPv2 Workshop

Summer '22

Security Engineering

University: Technical University of Munich (TUM)

Role: Leading Teaching Assistant

Summer '21

Security Engineering

University: Technical University of Munich (TUM)

Role: Leading Teaching Assistant

Winter '20/21

Advanced Topics of Software Engineering

University: Technical University of Munich (TUM)

Role: Teaching Assistant

Summer '20

Security Engineering

University: Technical University of Munich (TUM)

Role: Leading Teaching Assistant

Winter '19/20

Advanced Topics of Software Engineering

University: Technical University of Munich (TUM)

Role: Teaching assistant

Summer '19

Security Engineering

University: Technical University of Munich (TUM)

Role: Leading Teaching Assistant

• I'm a dog owner since 2021. I love to spend time outside with my wife and our dog on walks within the city of Munich and hikes outside the city, for example, in the Alps. 🐕🥾⛰
• I love to go to museums and visit exhibitions. 🖼 My favorite permanent exhibition in the city of Munich is the Lenbachhaus, but I really like the temporary exhibitions of the Kunsthalle.
• Another hobby of mine is going to theaters and operas. 🎭 Here in Munich, my favorite place is the Gärtnerplatztheater for operas and the Volkstheater for plays.
• I really like playing soccer and started recently with flag football. ⚽️🏈 Furthermore, I like to participate in running events like the Munich Marathon; I was running the 10K in 2019, half-marathon in 2022, and the marathon in 2023. 🏃🏻‍♂️