Thomas started his career in 2007 in the Information Risk Management practice of a Luxembourg Big4 firm where he was mainly working on IT Audit and IT Advisory engagements.
In 2018 as Associate Partner he went on to lead the Cybersecurity and IT Risk Assurance practice of another Big4 firm in Luxembourg. In this role, Thomas was serving the financial sector, delivering IT Audit and Assurance work and advising clients on IT Governance and Cybersecurity topics including Security Testing, Vulnerability Scanning, Identity and Access Management, Cyber Resiliency and Cyber Threat management.
From 2021 onwards, Thomas was leading the Digital Forensics & Incident Response Team in the same Big4 network member firm in Germany. These services encompassed the forensic investigation of Cyber Breaches and Data Theft, the development of Crisis Response and Communication strategies and the assessment of remediation activities following cyber incidents.
In his capacity as Regional Forensics Lead Partner based in Eschborn/Frankfurt am Main he further assumed overall responsibility for the development and coordination of marketing activities relating to forensic services in the Central Region.
He is a Certified Information Systems Auditor (CISA), GIAC Certified Forensic Analyst (GCFA), and member of ISACA Luxembourg, IAPP and ACFE Germany.
In 2025 Thomas returned to Luxembourg joining Deloitte’s IT Audit team in the Audit&Assurance practice.
In this role, he is responsible for the delivery of IT Audit work in the context of year-end and internal audit assignments and the provision of Assurance engagements in accordance with recognized international standards (in particular ISAE3000/SOC2).