From targeted penetration tests to comprehensive red team operations, I provide battle-tested security services that simulate real threats and surface concrete vulnerabilities.
Penetration Testing: Systematically test web apps, APIs, networks, mobile, and cloud infrastructure (AWS, Azure, GCP) for vulnerabilities, with detailed reports and remediation guidance.
Red Teaming & Ethical Hacking: Realistic APT simulation with phishing, social engineering, and post-exploitation, so your blue teams can train and your SOC is prepared for real attacks.
Security Consulting & Audits: Gap analyses, ISMS advisory, support with regulatory requirements, and technical security architecture reviews.
Security Awareness Training: Employee workshops, phishing simulations, and tailored training programs to sustainably strengthen your human firewall.
Cloud Security: Security audits and pentests for AWS, Azure, and GCP environments, covering IAM, network segmentation, data access controls, and misconfigurations.
AI Security: Security assessments of AI systems and LLM applications, covering prompt injection, insecure RAG pipelines, and other AI-specific attack vectors. (Coming soon)
Hands-On Expertise: No theoretical knowledge, just real experience from professional practice.
Clear Results: Understandable reports with concrete priorities, not just a list of CVEs.
Holistic Approach: Technical depth combined with strategic understanding of your business.
Trust & Discretion: Absolute confidentiality and professional handling of sensitive findings.