Hello, I’m Andrzej 👋

My cybersecurity career started over 15 years ago. During this time, I moved from hacking to securing, which has given me the perspective of both an attacker and a defender. I currently run my own consulting and training company. In this role, I'm empowering teams with skills and advising on best practices for securing software across the SDLC.

In recent years, I have trained hundreds of IT specialists (QA, Dev, Ops) in subjects such as Security Testing, Threat Modeling, DevSecOps, and Secure By Design. I emphasize hands-on learning in my trainings, ensuring that engineering teams can immediately put new skills to use in their day-to-day tasks.

The demand I encountered from clients during trainings led me to offer consulting services. As a Trusted Advisor, I now assist companies in establishing and enhancing security for software they're developing.

What to expect?

I will be covering what I know best, which includes:

  • Software security testing and verification

  • DevSecOps and security automation in CI/CD pipelines

  • Threat modeling and risk analysis

  • Product security, especially building application security initiatives

  • Responsibilities that fractional/virtual CISO face

When to expect it?

Right now, the plan is for weekly dispatches. After some experimentation, I will choose a specific time.

Contact

(TODO)

User's avatar

Subscribe to Architecting Security

Providing engineers, architects, and tech leaders with actionable insights to master product security and create resilient, secure by default software products.