GWAPT Journey: The Reality of Web Application Security Testing
Exploring the challenges and time-intensive nature of web application security testing, even with professional tools like Burp Suite.
Read More →Career Profile
Experienced Cybersecurity Specialist with over 10 years of IT expertise, specializing in cloud security, threat management, and compliance frameworks. Based in Poznan, Poland, I bring a global perspective to cybersecurity challenges while serving clients across Europe and beyond. Proven track record of implementing security controls, reducing vulnerabilities, and enhancing organizational cyber maturity. Skilled in Azure cloud infrastructure, Microsoft Power Platform automation, and security auditing. Passionate about continuous learning and delivering innovative solutions that drive business excellence.
Experiences
• Enhanced cybersecurity governance framework, achieving 95%+ compliance across 7 systems (3 medium-risk, 4 low-risk)
• Led AI-driven cybersecurity awareness program, reducing content creation time by 50% and increasing phishing reporting by 60%
• Conducted comprehensive audit of 10,000+ Azure accounts, identifying and remediating 3% unauthorized access in Microsoft Entra ID
• Developed automated workflows using Microsoft Power Platform, reducing document processing time by 80%
• Orchestrated business continuity planning for critical systems, identifying and resolving backup plan discrepancies
• Championed DevSecOps initiatives by integrating automated security scanning (SAST/SCA) into CI/CD pipelines on Azure DevOps and GitHub Actions, resulting in the discovery of 40+ critical vulnerabilities and the adoption of safer dependency management by development teams
• Developed comprehensive technical documentation for internal threat management controls and monitoring systems
• Created detailed process maps identifying business partner workflows and technology integration points
• Analyzed control effectiveness and identified opportunities for refinement and improvement
• Collaborated with cross-functional teams to enhance security posture and threat detection capabilities
• Developed and deployed custom Microsoft PowerApps solutions, automating business processes and creating data visualization dashboards
• Managed Azure cloud infrastructure for 200+ users, including VM deployment, storage configuration, and network resource maintenance
• Enhanced organizational productivity through streamlined workflows and improved decision-making capabilities
• Implemented security best practices and ensured system scalability and reliability
• Managed critical infrastructure including Windows systems, LAN networks, and cloud backup solutions
• Supervised application maintenance and computing infrastructure activities ensuring 99.9% uptime
• Provided technical support to 200+ employees across the United States with <2-hour response times
• Implemented robust backup and disaster recovery procedures ensuring data resilience and availability
• Provided Tier 1/2 technical support for over 500 personnel, resolving an average of 200+ helpdesk tickets monthly with a 87% satisfaction rating
• Managed user accounts, permissions, and group policies within Active Directory to ensure compliance with strict Department of Defense (DoD) security protocols
Projects
A collection of projects demonstrating expertise in cybersecurity, software development, and data analysis. These projects showcase practical applications of security principles, automation, and analytical thinking.
Inventory Management Application - Developed a comprehensive Android inventory management system using Java and SQLite database, featuring user authentication, real-time inventory tracking, and data persistence capabilities.
Animal Shelter Analytics Dashboard - Built an interactive data visualization dashboard using Python Dash framework, integrating REST API with MongoDB for real-time animal shelter data tracking and analytics.
Financial Fraud Detection Analysis - Conducted comprehensive fraud analysis on financial payment datasets using Python and pandas, creating data visualizations and statistical models to identify patterns and support risk management decisions.
OWASP Security Vulnerability Assessment - Performed comprehensive security assessment of banking application using IntelliJ and OWASP tools, identifying vulnerabilities, remediating false positives, and recommending security improvements including Spring Boot updates.
Data Analytics Shopping Cart System - Developed a data processing system that analyzes sales data from text files, generating comprehensive reports including product sales summaries, item-specific analytics, and visual histograms for business intelligence.
Technical Skills & Proficiencies
Cybersecurity & Security Tools
Threat Management, Security Auditing, Compliance Frameworks (NIST, ISO 27001), Vulnerability Assessment, Incident Response, Security Controls, OWASP ZAP, Penetration Testing, Risk Assessment, Security Scanners, IntelliJ
Cloud & Infrastructure
Microsoft Azure, AWS, Cloud Security, Infrastructure Management, Virtual Machines, Network Security, Azure Active Directory, Microsoft Entra ID, Cloud Backup Solutions, Disaster Recovery
Programming & Development
Python, Java, JavaScript, SQL, PowerShell, REST APIs, Microsoft Power Platform, PowerApps, Power Automate, HTML/CSS, Git, Version Control
Data & Analytics
Data Analysis, Data Visualization, Pandas, Jupyter Notebooks, MongoDB, SQLite, Business Intelligence, Dashboard Creation, Statistical Analysis
IT Management & Support
Windows Systems Administration, LAN/WAN Management, Technical Support, System Maintenance, User Training, Documentation, Process Automation, Change Management
Business & Leadership
Strategic Planning, Project Management, Team Leadership, Stakeholder Communication, ROI Analysis, Digital Marketing, Business Process Optimization
GIAC Security Essentials (GSEC)
May 2023
GIAC Certified Incident Handler (GCIH)
August 2023
GIAC Certified Intrusion Analyst (GCIA)
November 2023
GIAC Strategic Planning, Policy & Leadership (GSTRT)
May 2024
GIAC Defense Security Architecture (GDSA)
January 2025
GIAC Cloud Security Automation (GCSA)
March 2025
CompTIA A+
December 2021
Latest Blog Posts
Sharing insights on cybersecurity, technology trends, and professional development.
View All Posts →DevSecOps Best Practices: Integrating Security into CI/CD Pipelines
Exploring effective strategies for integrating automated security scanning into modern development pipelines.
Read More →