Penetration testing and red team: web, API, infrastructure, social engineering, OSINT, multi-vector scenarios. Specialization: AI systems security — red teaming agents, tool chains, and organizational processes. Deliverables are risk-ranked: which risks actually matter, what to fix first, how to close the exposure for good — not just a vulnerability list.
$ ls ./work
- Apr 2024 — Present
BerSec — independent practice
Founder / Offensive Security - Jul 2015 — Jan 2026
Ministry of National Defense
Commander → cyber threat specialistProtective and counterterrorism operations in airborne and special structures — full cycle: analysis, planning, execution, debrief. Command responsibility for people, readiness, and outcomes under time pressure.
Cyber track (2023–2026): threat and adversary analysis in high-protection environments — campaign, infrastructure and TTP identification (including APT groups), OSINT attribution, hardening, access control, audit and monitoring, inter-agency briefings and risk-based reporting.