Warsaw, Mazowieckie, Poland
I've been in technology for 18 years and in cybersecurity for 14. I started on the infrastructure side - and that path taught me that effective protection begins long before the tools do: with a clear understanding of the system being protected, and the real risks it actually faces. I've worked in both roles - operational and advisory: six years inside organizations (critical infrastructure at PSE, banking at Inteligo/PKO BP) and eleven years in Big Four consulting (EY, and currently KPMG). This hybrid perspective lets me understand the context from both sides, so the solutions I design don't just look good on slides - more importantly, they hold up in practice. At KPMG Poland, I helped build a cybersecurity team from the ground up to more than 60 experts. I now directly lead the teams in Red Team (including Red Teaming, TLPT, Penetration Testing, Vulnerability Assessment, Stress Testing), Blue Team (including Threat Intelligence, Deception), OT Security, and Cloud Security. For several years I have been serving as an external strategic security advisor for our clients - responsible for shaping security strategy, defining initiatives, and supporting key operational decisions. This shows that beyond delivering advisory projects, I can also sustain a long-term, operational relationship at the strategic level. I've led security transformation projects for clients in the financial, energy, industrial, and critical infrastructure sectors - in environments regulated by, among others, DORA and NIS2, and guided by standards such as ISO 27001, ISO 22301, ISO 27017, and ISO 62443. These engagements took organizations from their starting state to a defined target state - through a combination of short- and long-term initiatives that I helped design, coordinate, and deliver. I'm also a member of the Green Team at NATO CCDCOE Locked Shields - the organising side responsible for the exercise infrastructure of the world's largest red team vs. blue team cyber exercise. What gives me the most satisfaction are projects where something has to be built or rebuilt: a team, a security program, an architecture. Good security works on three levels at once - technology, people, and process. The best technology won't help a team that doesn't understand it. The best team won't defend itself without the right tools. And neither one holds up without the processes that give the work rhythm and consistency. Technical foundation: OSCP, OSCE, Microsoft Cybersecurity Architect Expert. Governance and risk: CISA, CISM, CISSP, GIAC GRID, and ISO 27001 Auditor.
Partner Associate role in the KPMG Poland cybersecurity practice — a continuation of the work started as Director, with additional emphasis on strategic service development, mentoring of next-level leaders, and shaping the team's long-term direction. - Co-led the build of the KPMG Poland cybersecurity team from the ground up to over 60 experts - Directly responsible for teams across Red Team (including Red Teaming, TLPT, Penetration Testing, Vulnerability Assessment, Stress Testing), Blue Team (including Threat Intelligence, Deception), OT Security, and Cloud Security - Serving as external strategic security advisor for one of our clients — for over 4 years responsible for security strategy, initiatives, and key operational decisions - Developing new services in areas gaining the most importance over the next 12–24 months: OT security, adversarial AI security, threat intelligence-led red teaming, attack simulations under financial services regulations - Supporting leadership development within the team — individual development paths, mentoring across both technical and management dimensions, preparing the next generation for Senior Manager and Director roles - Participant of the organising side of NATO CCDCOE Locked Shields — the world's largest red team vs. blue team cybersecurity exercise - Programme council member at The Hack Summit conference, co-leading the Attack: Pentesting & Red Teaming track — each year selecting and curating technical sessions for offensive security practitioners in Poland - Lecturer in postgraduate studies for 10 years at SGH Warsaw School of Economics
As Director at KPMG Poland for three years, I co-led the development of the cybersecurity practice — the people, the services, and the client relationships. My focus was on the engagements where deep technical work genuinely matters: threat intelligence-led red teaming, top-tier penetration testing, attack simulations in OT environments, cloud security, and end-to-end security transformations. For many clients the team I helped build became a trusted advisor. - Oversaw red team engagements simulating real-world intrusions into ICT environments — threat intelligence-led operations replicating tactics and procedures used by cybercrime groups, including for a telecommunications firm, alongside purple team exercises for an insurances sector clients - Led security transformation programmes for organisations with complex corporate structures — including an enterprise-wide security transformation in a capital group from the energy sector with multiple subsidiaries, executing short- and long-term initiatives that moved the organisation from initial state to target maturity level - Working with the team, deployed our own operational environment supporting engagement delivery across both on-premises and cloud infrastructure — plus extensive process automation that reduced delivery time and improved repeatability of outcomes - Grew the KPMG Poland cybersecurity team — hiring of new experts, capability development of existing specialists, and building career paths across Red Team, OT Security, and Cloud Security
- Led end-to-end delivery of cyber security engagements for Tier-1 banks, major energy groups, insurers, and industrial operators — across Polish and international markets - Directly managed a team of ~10 consultants and managers; accountable for delivery quality, staffing, mentoring, and career progression - Designed and scaled KPMG service offerings in penetration testing, red teaming, and OT security — from positioning and pricing through engagement methodology - Owned commercial lifecycle of engagements: scoping, pricing, budgeting, client communication, and delivery oversight - Served as senior technical and methodological lead across complex engagements — risk assessments, infrastructure security reviews, application penetration tests in regulated environments
- Delivered IT infrastructure security reviews and application penetration tests for Polish and international clients from financial, e-commerce, and enterprise sectors - Performed internal and external penetration tests, vulnerability assessments, and configuration reviews of IT infrastructure for banks, insurers, and leading e-commerce companies in Poland and abroad - Conducted web application security assessments for financial institutions and e-commerce platforms, including remediation advisory for development teams - Contributed to risk assessment engagements — scoping, test planning, findings validation, and executive-level reporting
Performed IT infrastructure security reviews and application penetration tests for domestic and international clients in financial services and e-commerce sectors. Scope and responsibility expanded in the Senior Consultant role (see above)
Following the incorporation of Inteligo Financial Services S.A. into PKO BP, scope of responsibilities remained unchanged — continuation of the role held at Inteligo.
- Conducted research and development on ICT security systems in an internet-only bank; planned and built test environments for analysis of malware, phishing sites, and other threats - Designed and implemented IDS, IPS, firewall, DLP, and SIEM security systems — including systems supporting anti-fraud operations - Performed penetration testing of ICT systems prior to production deployment; developed and coordinated periodic penetration testing plans - Defined requirements and recommendations for the bank's information security systems; reviewed projects, solutions, and configuration changes in IT systems - Served as ISO 27001 internal auditor
- Reviewed projects, solutions, and configuration changes in IT systems from an information security perspective in an internet-only bank - Monitored, detected, and prevented information security threats in a regulated financial institution environment - Created, updated, and supervised information security policies and related documentation - Led internal information security audits; coordinated external technical audits - Served as ISO 27001 internal auditor
- Operated and maintained systems supporting SCADA environments at Poland's transmission system operator (national-level critical infrastructure) - Administered the organization's secure remote access platform - Designed, implemented, and maintained Linux-based security and authentication infrastructure; held responsibility for availability levels required for systems classified as critical - Led problem resolution for remote access services