Location
PolandRate
Years of experience
7+About
I am a seasoned Cybersecurity Consultant with a passion for aligning security architecture plans and processes with security standards and business goals. In my current role as a Senior Cybersecurity Consultant and Solutions Architect at Credit Suisse in Wroclaw, Poland, I have architected and deployed custom data matching DLP solutions and developed Python monitoring tools for security events. My responsibilities include preparing ISO-27017/IEC-27017 cloud security audits, building and maintaining Azure/AWS infrastructure with Terraform and CloudFormation, and implementing DevOps practices such as infrastructure as code and continuous integration/automated deployment. I am also adept at complex system integration, including DLP technologies and password management tools, to enhance data security and system performance. Previously, I served as a Cybersecurity Manager at M3 Network, where I administered IT monitoring tools and managed over 1000 endpoints using a combination of security solutions. My role involved setting up GCP firewall rules, enhancing user experience through GCP cloud CDN, and leveraging AWS services for robust security architecture solutions. As a Digital Commercial Banking Expert at Alior Bank, I designed and deployed numerous cybersecurity integrations for a commercial banking application and led the development of a portable network security interface device. My career also includes extensive experience as an Information Security Officer with the United States Army, where I drove international engagements and managed multibillion-dollar projects. I hold a Master's degree in Cybersecurity from the University of Maryland and have expertise in various international security standards and frameworks.Tech Stack
Cybersecurity, Burp Suite, IBM QRadar, IDS/IPS, Nmap, OpenVASExperience
- Custom DLP Solutions Development: Architected, developed, and deployed custom-designed data matching DLP Python scanning solutions with the capability of scanning 2.3TB daily across multiple regions at Credit Suisse.
- Cloud Security Audit and Compliance: Prepared enterprise ISO-27017/ISO/IEC-27017 cloud security audits to ensure program and architecture compliance at Credit Suisse and Alior Bank.
- Infrastructure as Code (IaC) Implementation: Built and maintained Azure/AWS infrastructure using Terraform and AWS CloudFormation, and deployed Azure IaC through platforms like Terraform, Ansible, and Chef.
- DevOps Practices: Implemented DevOps practices, including continuous integration and automated deployment, to streamline development processes and enhance system reliability.
- Security Architecture and Monitoring Tools: Architected and developed Python monitoring tools for security events in a complex application environment, improving security event detection and response.
- System Integration and Data Security: Managed complex integration of multiple DLP technologies and password management tools, ensuring secure data classification, movement, and deletion.
- Mentoring and Team Leadership: Led and mentored teams of software engineers and QA specialists, providing technical guidance, capacity planning, and performance reviews to ensure team effectiveness and alignment with business goals.
Employment history
▪ Architected, developed, and deployed of two custom designed exact data matching DLP python scanning solutions (EMEA and APAC region) with scanning capability of 2.3TB daily to assist end users with finding precise Client Identifying data sets across an inventory of over 100k Network Drive, Sharepoint and O365 data at rest repositories
▪ Prepare enterprise ISO-27017/ ISO/IEC-27017 cloud security audit of program/architecture compliance
▪ Prepared configuration hardening documentation for both AWS and Azure environment stakeholders as pertaining to network and endpoint security, current threat and attack trends mitigation,
▪ Architected and developed python monitoring tools for monitoring of security events in a complex application with over 60 interfaces.
▪ Built and maintained Azure/AWS infrastructure using Terraform and AWS CloudFormation
▪ Implemented DevOps practices such as infrastructure as a code, continuous integration/automated deployment
▪ Deploy Azure IaC through third party platforms like Terraform, Ansible and Chef
▪ Knowledge of Vulnerability management and common Vulnerabilities affecting Cloud environments
▪ Architect and design AAD B2B external entity client onboarding/offboarding configurations (Security Hub) for functionalities like domain white listing, access packages, and cross tenancy rules to provision conditional access to specific SPOL directories
▪ Responsible for complex integration of multiple DLP technologies and Password Management (PAM) tool to classify, move and delete data; specific focus on system performance with loose coupling utilizing APIs and services.
▪ Solutions architecture of a Secure Data Exchange alternative solution to replace USB usage through Azure Active Directory, Share Point Online, PowerApps, and O365 data leakage prevention technology
▪ Provided system documentation, reporting, and security review of architecture, data flows, and access controls associated with fully automated system that can access and modify files in repositories across EMEA/AMER/APAC
▪ Strong experience working in an international environment with global teams
▪ Administered IT-monitoring Azure Security Center toolset to collect and track metrics, collect and monitor log files, and set alarms that notify security team of users with console access and no twofactor authentication enforced
▪ EDR management of over 1000 endpoints/interfaces using combination of Webtitan, Perchy, Azure Defender, NinjaOne, Knowbe4, Vipre, ESET, DarkwebID to provide systematic management of cloud infrastructures to include GCP, AWS, Sage, SFDC in multitenant architectures
▪ Setup GCP firewall rules to allow/deny traffic on VM instanced based on specified configuration used GCP cloud CDN to deliver content from GCP cache locations drastically improving user experience and latency
▪ Hands-on experience in security architecture solutions leveraging AWS Services such as AWSCloudWatch, CloudTrail, GuardDuty, Trusted Advisor, AWS COnfig
▪ Push custom Powershell scripts to update/configure client cloud infrastructure and mobile devices toensure NCSC CyberEssentials compliance levels met
▪ Evaluated, deployed, and supported application security technologies, processes and workflows onmultiple platforms (Server, Client, Mobile, Tablets)
▪ Advise SMB (10M+ GBP Revenue) in identifying IT boundaries and architecture, as well as how todefine and protect assets.
▪ Create workflows and requirements for Powershell scripts to enable OTP for unfederated clients aspart of external party onboarding into enterprise Azure federation
• Designed and deployed over 30 cybersecurity integrations associated with a customer facingcommercial banking application with over 150k active clients involving steering or traffic redirectionmethods
• Good exposure to Agile software development and DevOps practices such as IaC, Continousintegration and deployments leveraging Terraform, Git, Jenkins, Code Pipeline, Code Deploy
• Ran, maintained, and utilized security tools as part of enterprise Appsec program, e.g., static anddynamic test tools for defense in depth
• Good understanding of the principles and best practices of software configuration management(SCM) in agile, scrum, Kanban, “Scran-ban” methodologies
• Prepare enterprise ISO-27017/ ISO/IEC-27017 cloud security audit of program/architecturecompliance
• Prepare Ansible Playbooks using YAML functions and utilizing setup and automate the CI/CD pipelineand deploy microservices, provision load balancer, auto-scaling group using Ansible
• Project lead for the development and integration a portable network security interface device toencrypt and secure online transactions
• Develop and design a masked password replacement for authenticating clients into application
• Perform detailed vulnerability analysis and security upgrades related to TPM, vector side attacks ofhardware from application, while offering functional business use of device for various usecases
▪ Solution Architect of a Theater Security Cooperation Management system synchronizing operationalapplications with logistics management systems to gather, analyze and communicate competitive andmarket intelligence
▪ Enforce enterprise information security/cloud security best practices for ISO-27017, NIST, and FIPSframeworks
▪ Drive International/multinational private and public Sector engagements with executive levelstakeholders in multibillion dollar/multiyear projects
▪ Project Manager of multiple multiyear and multibillion dollar foreign military sales program in EMEAregion
▪ Drive senior stakeholder discussion on deriving tech requirements from business requirements andhigh-level architecture for over 50 program level projects
Education history
We’ve helped 83 clients with IT recruitment and software development.
Read about a few of them below...