Requests
30
Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Network Power<100 people
Roles
✔️100%
IT
🐦33%
Design
🧑🔬33%
Engineer
Geos
🇷🇴33%
Romania
Work Background
Ardagh GroupHead of SOC Engineering
Mar. 2023 - Dec. 2023In this role, I lead a dynamic team of two professionals, overseeing daily engineering operations and
driving strategic enhancements for the Security Operations Centre (SOC) and overall security
infrastructure. I have developed and executed a comprehensive roadmap, orchestrating the
deployment of a robust testing environment for SOC tooling, including malware and phishing analysis,
analytical notebooks, and collaborative spaces.
Furthermore, I have presented multiple projects to the Design Authority Board, highlighting strong
communication and leadership skills. I pioneered the development of innovative tools and techniques,
contributing to the advancement of technological capabilities. Moreover, I played a key role in
mentoring and guiding Junior Engineers, fostering a collaborative and growth-oriented team
environment.
Trivium PackagingSecurity Engineer (Qualys)
Jul. 2022 - Oct. 2022United KingdomIn this role I utilised advanced front-door cybersecurity defences, taking a holistic approach to
safeguarding the organisation. I deployed security software agents to gather data on vulnerabilities and
suspicious behaviour and carried out vulnerability management and reporting.
I used Forcepoint SWG to decrypt and inspect traffic and protect employees remotely and on-site. In
addition, I introduced SenseOn to automate and simplify security actions, and improve incident
response.
I provided consultative support for SOC incident activities and configured Microsoft Defender for
Endpoint to defend against advanced persistent cybersecurity threats.
Foreign and Commonwealth OfficeUndisclosed
Dec. 2019 - Apr. 2024Milton Keynes, England, United KingdomIn this role, I have facilitated the successful deployment of new and complex analytics and developed
data lake technology in-house, adapting open-source software tools to suit company needs. In addition,
I have carried out vulnerability management and provided CIS-hardened infrastructure to reduce threat
vulnerability.
I have provided multiple replacement open-source tools, for use in the security operations centre (SOC)
and improved the existing SOC network, tools and email solutions, and provided automated solutions
for remote working. I have provided engineering support for SOC incident activities and ensured secure,
automated monitoring, logging, and alerting for logs was available. I was responsible for collecting and
examining system data in SOC to identify threats, using a SIEM in-house tool. In addition, I created and
maintained the report and alert function and MITRE datasets in the SIEM platform.
The Scottish GovernmentLead LMA Engineer
Aug. 2018 - Dec. 2019Glasgow, United KingdomIn this consultancy project, I was responsible for architecture and definition design and implemented
custom alerting and reporting solutions. I designed and implemented logging, monitoring and alerting
(LMA) and contingency LMA solutions and successfully deployed a new, complex analytics programme.
(AWS + ElasticSearch Platinum + Tennable / Qualys).
Cabinet OfficeCyber Security and Forensics Contractor
Oct. 2017 - Aug. 2018London, United KingdomIn this role, I developed new cyber tools and methodologies to improve cyber threat hunting, analysis
and security. I undertook malware analysis and reporting (AWS, ESXi + ElasticSearch Platinum +
Tenable/Qualys) and provided specialist advice in the interpretation of data to accurately assess cyber
threats.
I analysed Indicators of Compromise after security breaches to fortify cyber robustness and created a
highly effective cybersecurity analytics platform, dashboards, alerts and reporting functionality. In
addition, I trained stakeholders to use the platform, datasets and systems.
Deutsche BankGlobal CyberThreat Consultant
Sep. 2017 - Oct. 2017My role was to improve the bank’s cyber capabilities and resilience, to ensure business interruption
would be minimised after an attack. I identified and analysed Indicators of Compromise to in order to
mitigate subsequent incidents.
I was responsible for driving the company’s problem mitigation skills. I expanded strategic and tactical
intelligence, information and research product and develped in-house vulnerability management tools
to enable an increased understanding of cyber threats. In addition I maintained up-to-date knowledge
of the latest malware and malicious tools available to maximise protection.
HSBCGlobal Cyber Threat Consultant
Jun. 2016 - Sep. 2017Sheffield, United KingdomWhile working for HSBC I expanded the cyber intelligence team from two to seven people and
reviewed, designed, and implemented effective cyber threat intelligence processes.
In addition, I configured and developed the ThreatConnect threat intelligence platform including an
AWS-based solution, in-house solution and ELK stack by preparing and testing Patrol, TPAM and
Guardium technologies and reviewed vulnerability tools (Qualys / Tenable / OpenVAS).
Santander UKCyber Threat Analyst
Jul. 2015 - Jul. 2016London, United KingdomWhile working at Santander I undertook malware analysis and examined infrastructure and technology,
using Azure threat detection. I developed an insight into worldwide hacking and malware by initiating
relationships with prominent hackers and malware developers from across the globe including Eastern
Europe and Latin America.
I collaborated with other financial institutions and the government to understand the threat landscape
and increased the company’s understanding of issues by disseminating learning. In addition I developed
a mutually beneficial information-sharing relationship with The National Cyber Security Centre, enabling
the flow of information and threat analysis.
Sinontech LtdFounder & CEO
Nov. 2014Burton Latimer, Northamptonshire, United KingdomAs founder and CEO of the consultancy firm, I have completed a wide range of complex cybersecurity
projects for a diverse range of high-profile organisations. I am responsible for designing and executing
comprehensive cybersecurity architecture and have delivered on a range of consultative projects
including advisory roles, cyber intelligence collection, the creation of own-data centres, collection and
dissemination of data and the development of gaming servers.
I am responsible for risk management and compliance and choosing appropriate methods for corporate
architectures and business security systems and services. I have reviewed and approved VPNs, routers,
servers, firewalls and IDS scanning technologies before installation and developed prerequisite security
for networking devices.
I have used a variety of research methods, intelligence and data to formulate solutions to complex
problems for component architecture, and interpret complex technical issues. I have performed
vulnerability, penetration and security testing, and risk analysis on infrastructures and have worked on
design and implementation projects with high strategic impact and prepared accurate cost estimates
for all work.
I provide specialist advice and recommendations and successfully communicate security concepts and
associated risks, to technical and non-technical stakeholders and collaborate with stakeholders to
identify the security implications and architectural requirements for business transformation projects
and advise on risk impact.
I respond quickly to security issues and use my knowledge of system architectures to understand
vulnerabilities and identify the impact of vulnerabilities and develop potential solutions to deal with
their impact.
Avyara Information SystemsCyber Threat Intelligence Consultant
May. 2014 - Oct. 2014Doha, QatarIn this role I collaborated with the board of directors to research, develop and improve Private Cloud
and OpenVAS services offered by the intelligence solutions provider. I provided training and support for
penetration testers, junior investigators, and intelligence analysts and managed a team, supporting the
staff to successfully achieve all objectives.
I supported new and existing clients with threat modelling, system network hardening and education
programmes to increase their cyber threat capabilities and identified security weaknesses and
determined the risk posed by potential cyber threats by performing security assessment reviews against
bespoke client infrastructures.
EYCybercrime Associate
Sep. 2013 - May. 2014London, United KingdomIn this role I was responsible for computer forensic analysis of endpoints, mobile devices and servers
and forensic imaging and evidence collection (Private Cloud). I carried out significant script-writing and
script output analysis for software licensing forensics and designed and implemented cyber threat
intelligence functionality using internal Cloud, AWS and Google.
CyByL Technologies LtdSenior Threat Intelligence Investigator and Cyber Intelligence Analyst
Apr. 2012 - Sep. 2013Frimley, Surrey, United KingdomAfter initially starting out as a cyber intelligence analyst, I was promoted to Head of Covert Intelligence
and managed a five-person team. I commercialised cutting-edge software packages that were then
provided to clients and provided subject matter expert support to marketing, business development and sales functions as a subject matter expert. In addition I provided penetration tests, security
assessment reviews and vulnerability assessments to improve the cyber resilience of clients.
Intch is a Professional Networking App for the Future of WorkSee more people like Marcin on Intch
300k+ people
130+ countries
AI matching
Get Intch if you'd like to
489368 people
16
Senior software engineer
19
Project manager @ Zois Energy limited
20
Project and business Manager
36646 people
18
Financial Consultant @ Standard capital corporation
121
Investor Relations Manager @ ExxonMobil
33
Chief Financial Officer and Senior Vice President @ ExxonMobil