Hello, I’m Andrzej 👋
My cybersecurity career started over 15 years ago. During this time, I moved from hacking to securing, which has given me the perspective of both an attacker and a defender. I currently run my own consulting and training company. In this role, I'm empowering teams with skills and advising on best practices for securing software across the SDLC.
In recent years, I have trained hundreds of IT specialists (QA, Dev, Ops) in subjects such as Security Testing, Threat Modeling, DevSecOps, and Secure By Design. I emphasize hands-on learning in my trainings, ensuring that engineering teams can immediately put new skills to use in their day-to-day tasks.
The demand I encountered from clients during trainings led me to offer consulting services. As a Trusted Advisor, I now assist companies in establishing and enhancing security for software they're developing.
What to expect?
I will be covering what I know best, which includes:
Software security testing and verification
DevSecOps and security automation in CI/CD pipelines
Threat modeling and risk analysis
Product security, especially building application security initiatives
Responsibilities that fractional/virtual CISO face
When to expect it?
Right now, the plan is for weekly dispatches. After some experimentation, I will choose a specific time.
Contact
(TODO)
