Cracow, Małopolskie, Poland
Information Security Lead with 8+ years of international experience delivering cybersecurity strategy, risk management, and security operations across enterprise environments. Proven expertise in implementing and aligning security controls with ISO 27001, NIST, and SOC frameworks. Strong background in security architecture assurance, incident response, and SOC operations (SIEM/EDR), combined with hands-on leadership in driving security initiatives, mentoring teams, and advising stakeholders. Recognized for improving organizational security posture, reducing risk exposure, and aligning cybersecurity programs with business objectives in complex hybrid cloud environments. Core Competencies: • Information Security Management Systems (ISMS) & ISO 27001 • Risk Management & Security Audits • Security Operations (SIEM, SOC, Incident Response) • Cloud & Infrastructure Security • Identity & Access Management (IAM) • Stakeholder Management & Team Leadership
Lead security assurance and risk validation across cloud, on-premise, and SaaS environments, ensuring alignment with ISO 27001 and enterprise ISMS controls. Conduct comprehensive risk assessments and implement mitigation strategies to reduce critical vulnerabilities across infrastructure and applications. Perform third-party and supply chain security audits, ensuring compliance with regulatory and organizational security standards. Strengthen identity and access governance (IAM, RBAC, MFA), reducing unauthorized access risks across enterprise systems. Collaborate with SOC and IT teams to enhance incident detection and response capabilities, improving operational resilience. Support secure architecture reviews and validate security controls across multiple business units. Contribute to enterprise-wide logging, monitoring, and SIEM integration strategies.
Served as Technical Advisor for Microsoft Defender for Endpoint, supporting enterprise-scale security operations across EMEA customers. Led endpoint protection and threat management initiatives, improving detection and response capabilities across large environments. Conducted incident investigations and threat analysis using MITRE ATT&CK, reducing incident resolution time and improving SOC efficiency. Designed and implemented SIEM solutions (Microsoft Sentinel), including automation of incident response workflows using Azure Logic Apps. Collaborated with stakeholders to align security controls with ISO 27001, NIST, and GRC requirements. Mentored junior analysts and supported team capability development across a 30-member cybersecurity team. Contributed to operational decision-making and continuous improvement of security processes.
Managed enterprise security infrastructure including firewalls (Checkpoint, Cisco ASA), secure web gateways, and cloud security solutions (Zscaler). Monitored network traffic and system logs using SIEM tools (Splunk) to detect and respond to security incidents. Implemented and optimized firewall policies, VPN configurations, and secure remote access solutions. Deployed web application security controls (WAF) to protect against OWASP Top 10 vulnerabilities. Ensured compliance with enterprise security policies and EU regulatory standards.