Luxembourg · freelance-first · Europe

Security that holds when the environment gets complex.

I help regulated and technology-led organisations connect cybersecurity, DevSecOps, cloud automation and AI governance into systems that can be operated, audited and improved.

PROFILE / 2026AVAILABLE

SENIOR CONSULTANT

Cybersecurity · DevSecOps · AI Governance

From production hardening and threat detection to regulatory readiness and process automation.

20+years across infrastructure, security and transformation
95%deployment automation coverage at BNP Paribas
42 minfull deployment and test cycle, down from 6–12 hours
60+ / 120physical servers / VMware VMs scaled at Connexion Group

What I bring together

Four disciplines. One operating picture.

Security work is strongest when policy, platforms, people and delivery move in the same direction.

01

Cybersecurity, threat detection & vulnerability management

Security operations that connect exposure discovery with action: vulnerability assessment, EDR/XDR policy and agent review, detection logic, threshold tuning, alert investigation, MalOps and incident escalation. I work across production environments, audit evidence, CIS hardening and operational ownership rather than treating security as a dashboard exercise.

See security delivery
02

DevSecOps, platform security & cloud automation

Secure delivery from design to production: CI/CD controls, infrastructure as code, Kubernetes and OpenShift security, identity and secrets, workload isolation, logging, observability and GitOps governance. The focus is practical automation that reduces manual effort while preserving change traceability, rollback capability and release confidence.

See platform delivery
03

ICT resilience, risk & regulatory implementation

Practical implementation of DORA, NIS2, MiCA and EU AI Act expectations through ICT risk assessments, control mapping, KPI/KRI design, third-party reviews, RACI and escalation models, DR analysis, failover testing, tabletop exercises and audit-ready evidence. Requirements become owned routines that management and delivery teams can use.

See the delivery method
04

AI Danger & Risk, process architecture & transformation

Automation for processes that are slow, repetitive or difficult to govern: BPMN and process modelling, RACI and SIPOC, baseline analysis, process mining, reporting automation and AI-assisted research. I structure AI danger and risk analysis, human oversight, data protection, access controls and guardrails for RAG and LLM-based workflows.

Discuss a transformation problem
05

Management, governance & CISO as a Service

Flexible security leadership for organisations that need senior coordination without an immediate permanent executive hire: security operating models, ICT risk registers, CAB and change governance, KPI/KRI reporting, crisis and incident escalation, third-party oversight, awareness and management-level decision support.

Discuss a leadership mandate

Selected delivery contexts

Built in production, not only in presentations.

Different environments, same discipline: understand the system, make the risk visible, then improve the way it runs.

01Financial services

BNP Paribas Securities Services

Configuration, release and deployment governance across development, testing, UAT, pre-production and production. Automation moved a full deployment and test cycle from 6–12 hours to a maximum of 42 minutes.

Automation / Release / Control

02Banking transformation

ING Luxembourg

Created and led the first automation squad, delivered the Automation Management System in four months and helped move infrastructure from local environments through hybrid cloud to Azure.

DevOps / Azure / Zero Trust

03Security operations

AXA Luxembourg

Linux estate, vulnerability management, SOC2 implementation, CIS benchmark reviews, patch lifecycle and custom Cybereason agent/tooling development. The work connected production security operations with control evidence, risk treatment, third-party follow-up and executive reporting.

EDR / Vulnerability / SOC2

04Independent consulting

Cyber Solutions Luxembourg

Readiness programmes, cloud-agnostic containerisation and local AI systems for research and document review. Engagements combine governance design, process baselines, AI risk analysis and measurable time reduction instead of isolated technology pilots.

AI Risk / Kubernetes / Process

How I work

Make the next decision easier.

Engagements are structured to leave behind better decisions, clearer ownership and systems that teams can actually operate.

01

Assess

Map the environment, controls, dependencies, gaps and operational reality.

02

Architect

Turn risk and requirements into a practical target state and delivery path.

03

Automate

Remove toil from delivery, security operations, reporting and evidence collection.

04

Assure

Measure the change with useful KPI/KRI, testing, traceability and feedback loops.

Working vocabulary

The stack follows the problem.

Security & control frameworks

ISO 27001 · GDPR · SOC2 · CIS Benchmarks · NIST · MITRE ATT&CK · Zero Trust · ICT risk · KPI/KRI · RACI · audit evidence

Platforms & automation

Kubernetes · OpenShift/OKD · Azure · AWS · GCP · Terraform · Ansible · GitLab · ArgoCD · Helm · Python · GitOps

Detection & observability

Cybereason · Cisco Secure Endpoint · Sophos Intercept X/XDR · Trellix EDR/XDR · Elastic Security · ELK · Splunk · Prometheus · Grafana

Process & AI

BPMN · ARIS · RACI · SIPOC · Value Stream Mapping · Camunda · n8n · Process Mining · RAG · LLMOps · NIST AI RMF

Technical Overview

Architecture, platforms and controls that hold together.

Technology choices are matched to the operating model, risk profile and delivery constraints. The result should be understandable to engineers and defensible to management.

Security architecture

Identity-first access, segmentation, secrets management, secure baselines, EDR/XDR controls, vulnerability remediation, logging and evidence flows across production environments.

Platforms & cloud

Linux and Red Hat, Windows, VMware, OpenStack, KubeVirt, Kubernetes, AKS, OpenShift/OKD, Rancher, Docker, AWS, Azure and GCP.

Automation & delivery

Python, Terraform, Ansible, GitLab CI, ArgoCD, Helm, Argo Workflows, Octopus/Tentacle, Nexus or Artifactory and SonarQube for controlled delivery.

Detection & observability

Cybereason, Cisco Secure Endpoint, Sophos Intercept X/XDR, Trellix EDR/XDR, Elastic Security, ELK, Prometheus, Grafana and Thanos.

Data, identity & integration

Keycloak, PostgreSQL, MongoDB, S3-compatible storage and integration platforms such as Mule, with security, access and operational ownership built into the design.

Quality & operating governance

Selenium, Robot Framework, TestLink, Cucumber, BPMN, ARIS, RACI, process mining, KPI/KRI, DR and failover, CAB, crisis escalation and management reporting.

A useful conversation starts with the actual constraint.

Have a security, delivery or resilience problem worth making clearer?

Email Iulian Connect on LinkedIn

Freelance-first · advisory, hands-on delivery or transformation support · Luxembourg · hybrid · remote · rate on request