Constantin L.

Chief Technology Officer at CyberOps Network

Cluj, Romania

About

🛡️As a Senior Cyber Security Engineer and Mentor with years of experience, I specialize in improving organizations' defenses against cyber threats through targeted offensive security measures, mimicking real-world Advanced Persistent Threats. 🌍 My global experience spans EMEA, NA, and LATAM, with a notable focus on fintech and banking. Key Roles: ⠀• Offensive Security: Expertise in Penetration Testing, Ethical Hacking, Red Team Operations (including Physical Security Assessment and WiFi), Cloud Configuration Review, Vulnerability Assessments, and Social Engineering tactics. ⠀ • Tools & Techniques: Proficient with industry-standard tools such as Metasploit, Burp Suite, Kali Linux, Tenable/Rapid 7 Nexpose and knowledgeable of OWASP Top 10 vulnerabilities. • Infrastructure Testing: Nmap, Nuclei, Impacket, Responder, Cobalt Strike • Active Directory Audit: Bloodhound, PowerView, PingCastle, PowerUpSQL • Web Application Testing: Burp Suite, Nuclei, Acunetix, Invincti Web Scanner • Configuration Review: Scoutsuite, Prowler, AzureHound, Nipper, CIS Benchmarks ⠀• Defensive Security: Expertise in Incident Response, Threat Hunting, and implementing SOC solutions (Sentinel and ELK). • Tools & Techniques: Proficient with interacting with different platforms such as Elastic, Sentinel and Splunk; Correlating logs from different sources (Firewalls, VPNs, DHCP Servers, DNS Servers, ADDS, EDR Logs). An extensively knowledgeable and hands-on experience with tools such as Sysinternals Suite, Sysmon, MITRE ATT&CK Framework, KAPE, TimeLine Explorer, RITA, Velociraptor. ⠀• Leadership and Management Skills: Demonstrated leadership in innovating and improving cyber security testing methodologies, checklists and efficiency; mentoring newcomers and cyber security talent in my company; leading stakeholder engagements ⠀• Training & Development: Committed to developing security talents through training programs, promoting security awareness, and implementing cybersecurity policies. 🔒Community Engagement: Part of the first DEFCON Group in Romania. 🌍 My role has allowed me to work closely with clients across EMEA, NA, and LATAM, providing me with a unique perspective on global security challenges and compliance requirements, including NIS2, DORA, and TIBER. 💡 Keen to leverage offensive and defensive security skills, and global exposure in a dynamic role valuing innovative security solutions, effective team leadership, and compliance with frameworks like NIS2, DORA, and TIBER-EU. Email: [email protected]

Experience

  • Chief Technology Officer at CyberOps Network
    Feb 2024 - Present · 2 yrs 6 mos

    Responsible for inovation and improving cyber security services offered to our clients Responsible for maintaining company services up to date, in line with new trends and compiling methodologies, checklists and documentation on the most critical services offered by CyberOps Network Technical support on complex cyber security assessments and exercises Point of Contact for Sales Department on Incident Response / Threat Hunting and Red Teaming Assessments

  • Active Directory Specialist at NATO Communications and Information Agency (NCI Agency)
    May 2025 - Present · 1 yr 3 mos

    - Manage and operate Tenable Identity installations, collaborating with Continuous Vulnerability Assessment and Identity and Access Management teams to ensure secure Active Directory configurations. - Monitor Tenable Identity Exposure events, identify and support remediation of Active Directory misconfigurations related to permissions, roles, and groups, ensuring compliance with NATO Security Directives. - Report CIS security incidents per NCIA procedures, support security investigations, and create monthly Active Directory security compliance reports detailing active, inactive, and disabled user and service accounts - Develop and support mitigation and remediation plans for identified cybersecurity risks in Active Directory environments, collaborating with NCIA Service Delivery Managers on complex remediation activities. - Ensure robust protection of NATO CIS systems and data, adhering to NATO Security policies and directives. - Log and track service and change requests using the enterprise ITSM ticketing system, ensuring accurate documentation and resolution within agreed service levels. - Harden Active Directory Environments against Cyber Security Best Practies

  • Cyber Threat Defense (4 yrs 4 mos)
    • Offensive Security Engineer
      Feb 2021 - May 2025 · 4 yrs 4 mos

      As a Penetration Tester, my role is multifaceted, encompassing a range of responsibilities vital to enhancing cybersecurity measures within our clients' organizations: 🌐Internal Infrastructure Assessments - Leveraging tools like Impacket, Responder, Nessus, Rapid7 Nexpose, and CobaltStrike to conduct thorough assessments of internal infrastructures. Through meticulous examination, I identify vulnerabilities and potential points of exploitation, enabling proactive mitigation efforts. 🛡️Active Directory Audit - Utilizing tools such as PowerView, PowerUPSQL, PingCastle, Bloodhound, AzureHound, ADModule, and PurpleKnight and MITM6 I perform detailed audits of Active Directory environments. These audits help in uncovering security gaps and devising strategies to bolster defenses against potential threats. 🕸️Web Application Security - Proficient in tools like Burp Suite, Acunetix, and Nuclei, I conduct comprehensive assessments of web applications. By identifying and addressing vulnerabilities, I ensure the robustness of assets, safeguarding them against cyber threats. ‼️Incident Handling and Response - Equipped with expertise in incident handling and response protocols, I am familiar with a suite of tools including SIEM, ELK, Beats, Sysmon, Sentinel, KAPE, and SysInternals. This enables swift detection, investigation, and mitigation of security incidents, minimizing potential impact. 🔐Configuration Review: I conduct thorough reviews of configurations across various platforms including Azure, Microsoft 365, Firewall, DLP, CI/CD, GitHub, Jenkins, MPLS, and SDN. By ensuring adherence to best practices and regulatory standards, I enhance overall security posture. 🔑ELK SIEM Implementation - Familiar with implementing ELK SIEM solutions within clients' infrastructures, I configured Elastic Endpoint, Beats, Kibana, alerts, and cases. This facilitates comprehensive monitoring and alerting capabilities, empowering us to detect and respond to threats effectively.

    • Head of Information Technology | Technical Director
      Feb 2024 - Feb 2025 · 1 yr 1 mo

      Responsible for inovation and improving cyber security services offered to our clients Responsible for maintaining company services up to date, in line with new trends and compiling methodologies, checklists and documentation on the most critical services offered by Cyber Threat Defense Technical support on complex cyber security assessments and exercises Point of Contact for Sales Department on Incident Response / Threat Hunting and Red Teaming Assessments

  • Cyber Security Consultant / Penetration Tester / Incident Responder at BSI
    Jun 2022 - Apr 2025 · 2 yrs 11 mos

  • Penetration Tester / Red Teamer / Incident Responder at Forward Defense
    Jun 2021 - Apr 2025 · 3 yrs 11 mos

    As a Red Team Engineer, my role involves orchestrating simulated cyber attacks and assessing defense mechanisms against potential threats. Leveraging tools such as Impacket, Responder, Nessus, Rapid7 Nexpose, and CobaltStrike, I lead Red Team engagements (including Physical Assessments) that closely mimic real-world scenarios, pinpointing vulnerabilities and areas for enhancement within clients' organizations security posture. - In specialized Point of Sale (PoS) Penetration Testing, I focus on evaluating PoS systems with targeted techniques. This includes escaping Kiosk Mode, compromising or rooting Android devices, and exploiting PoS application weaknesses. By uncovering vulnerabilities unique to PoS environments, I ensure the integrity of our payment infrastructure and protect sensitive customer data. - Conducting thorough configuration reviews across platforms like Azure, Microsoft 365, DLP, CI/CD, GitHub, Jenkins, MPLS, and SDN, Fortigate and Cisco Firewalls and Pulse Secure VPN Gateways is integral to my role. By meticulously analyzing configurations, I ensure compliance with industry standards and regulatory requirements, mitigating potential risks stemming from misconfigurations. - Furthermore, my expertise extends to Infrastructure Penetration Testing, where I utilize tools such as Impacket, Responder, Nmap and Snaffl3r to identify vulnerabilities and potential entry points within our clients' networks. Through these assessments, I contribute to enhancing the overall network security posture, proactively addressing weaknesses before they can be exploited by adversaries. - Overall, my efforts as a Red Team Engineer are aimed at fortifying organizations cybersecurity defenses and protecting critical assets from evolving threats. By conducting comprehensive assessments, I provide valuable insights and recommendations to bolster the security posture, ensuring the integrity and confidentiality of our systems and data.