Location
PolandRate
$26
/ per hour
Years of experience
10+About
I am an accomplished and analytical IT security professional with extensive experience in penetration testing and network administration. Over the years, I have honed my skills in conducting security assessments for various applications and infrastructure components, and I am adept at automating workloads using advanced programming skills and commercial software such as Nessus, MetaSploit Framework, and BurpSuite. My roles have involved providing detailed security reports and recommendations, implementing and administering security solutions like WAF and SAST, and performing hands-on penetration tests for decentralized and cloud environments. I am fluent in English and Polish, with a strong background in multiple business sectors including finance, government, and e-commerce. In my career, I have taken on significant responsibilities such as forming new cybersecurity teams, managing network infrastructure, and participating in security research and bug bounty programs. I have a track record of effectively communicating with clients and team members, maintaining network security equipment, and delivering security training sessions and workshops. My qualifications include industry-recognized certifications such as GXPN, OSWE, and OSCP. I am committed to achieving high standards in all my work, continuously seeking to enhance security practices and contribute to the overall success of the organizations I serve.Tech Stack
Cybersecurity, Bash, Go Lang, JavaScript, Network, Network Administrator, PythonExperience
- Performing security assessments and penetration tests to identify vulnerabilities and improve security posture.
- Managing and maintaining network infrastructure to ensure smooth and secure operations.
- Utilizing programming skills and commercial software like Nessus, MetaSploit Framework, and BurpSuite to automate and streamline security tasks.
- Providing clear and detailed reports on security findings and maintaining excellent communication with clients and team members.
- Demonstrating the ability to work both independently and as part of a larger team to achieve project goals.
- Applying security expertise across various industries, including finance, government, and e-commerce.
- Maintaining and applying knowledge from certifications such as GXPN, OSWE, and OSCP to enhance security practices.
Employment history
Lead Infrastructure & Cybersecurity Engineer, Spyrosoft
April 2022 - Present
- Performed security research in Bug Bounty programs.
- Identified vulnerabilities in various systems and applications.
- Developed exploits for identified vulnerabilities.
- Documented findings with detailed reports including steps to reproduce and remediation suggestions.
- Collaborated with development teams to help them understand and fix vulnerabilities.
- Stayed updated with the latest security trends, threats, and mitigation techniques.
- Participated in Capture The Flag (CTF) competitions and other security challenges.
- Conducted threat modeling to assess potential threats and predict their impact.
- Created custom security tools and scripts to automate testing and discovery processes.
Security Researcher, SynAck Red Team
January 2022 - Present
- Helped to form a new Cybersecurity team, services portfolio, and client base.
- Provided penetration testing and other IT security-related services for multiple customers.
- Developed and implemented cybersecurity policies and procedures.
- Conducted regular security audits to ensure compliance with industry standards and regulations.
- Led incident response efforts to address security breaches or incidents.
- Provided training and mentorship to team members on cybersecurity best practices.
- Conducted risk assessments to identify and mitigate potential security risks.
- Coordinated with stakeholders to align security initiatives with business goals.
- Evaluated and deployed security technologies and solutions.
- Continuously monitored and analyzed security logs to detect and respond to suspicious activities.
- Established and tracked key security metrics to measure the effectiveness of security programs.
Security Engineer / Pentester, Equinix
May 2020 - November 2021
- Performed penetration tests of web, mobile applications, APIs, and infrastructure components.
- Conducted multiple source code and cloud infrastructure security reviews.
- Implemented and administered WAF and SAST solutions including custom rules meeting organization needs.
- Participated in DevSecOps team building and recruitment.
- Aided product development teams in establishing security best practices.
- Improved and maintained overall SDLC security posture through security toolset.
IT Security Pentester, DB Schenker
May 2019 - May 2020
- Conducted hands-on penetration tests for decentralized infrastructure and cloud environments.
- Delivered written reports including necessary recommendations and applicable countermeasures.
- Introduced multiple internal, security-oriented projects.
- Performed internal security training sessions and workshops.
IT Security Consultant / Pentester, Securitum
July 2018 - May 2019
- Performed web application and infrastructure pentests, audits, and source code reviews.
- Conducted red-teaming assessments including physical security and social engineering attacks.
- Provided advisory and support in fulfilling best security practices.
- Participated in pre-engagement and post-engagement activities.
Pentester, Exatel
November 2016 - June 2018
- Performed penetration tests and security audits for external customers and internal infrastructure.
- Tested infrastructure and applications across various industries including energy, government, banking, and e-commerce.
- Participated in pre-engagement and post-engagement activities.
- Conducted internal security research involving bug hunting and exploit development.
Security Analyst, Trustwave
November 2014 - November 2016
- Analyzed multiple security threats from various data sources.
- Administered UTM platform, AV, DLP, IPS, and FW solutions.
- Maintained network security equipment to ensure compliance and system operation.
- Diagnosed and resolved common network problems.
- Maintained a detailed inventory documentation.
Network Specialist, Guest-Tek
August 2013 - November 2014
- Administered Linux-based servers and network equipment.
Education history
Technical High School of Transport and Telecommunicaon in Lublin
2009 - 2013
IT technician