Description
Welcome to my portfolio. I am a dedicated SPLUNK expert with an extensive 15-year background in the IT industry. My global experience spans across a multitude of roles, projects, and geographies, offering a comprehensive understanding of diverse client needs and operational environments.
Throughout my career, I have thrived in a multitude of roles, each enhancing my proficiency in SPLUNK and broadening my skill set. As a Team Leader, Architect, Content Developer, Administrator, Threat Hunter, and Analyst, I have harnessed SPLUNK's potential in distinct settings, tailoring its deployment to meet diverse operational and security needs. These roles have each contributed to the tapestry of my professional journey, enabling me to offer versatile SPLUNK solutions that can address a wide range of client requirements.
I have a well-rounded experience in leveraging SPLUNK for both IT security and observability purposes. My robust portfolio includes developing monitoring in Security Operation Centers (SOC), where I focus on aspects such as data analysis, attack detection and response, use case design, and anomaly detection. This IT security-related expertise is complemented by my proficiency in using SPLUNK for IT Operations monitoring and observability, where I am adept at building services and Key Performance Indicators (KPIs).
Despite my strong focus on SPLUNK, my expertise is not confined to it. I hold advanced certifications like CISA, CISSP, which testify to my broader IT proficiency. My soft skills, honed over the years, enable me to effectively communicate with both technical teams and business professionals.
I invite you to browse through my portfolio and explore my contributions across a diverse set of global projects. I am confident that my multifaceted experience and skills can add value to your organization and projects.
Main skillset
SIEM/Log management technologies
Splunk – highly experienced
Architecture design & deployment, content development, administration, data analysis, premium apps (Splunk ITSI, Splunk ES)
ArcSight & QRadar– basic experience
SOC design & build – workflows, processes and procedures
Observability monitoring for IT Operations
Workshops for business
Design monitoring use cases, anomaly detection, KPIs, services
Effective log analysis and transformations of big amount of data to human readable results
Knowledge about devices, technologies and tools related to IT security and IT in general
Scripting / Programming – Python – software developer background
AI/LLM usage – using with no-code apps and python apps for solving problems and cooperation with other tools to perform actions.
Open-minded, effective, easy learning, passionate, analytical thinking, solving problems
Experience / Projects
Years of experience
Projects
Splunk projects
Splunk ES projects
Splunk ITSI projects
Experience in many international projects for companies like:
Novo Nordisk (Denmark)
HSBC (UK)
IKEA (Sweden)
EuroClear (Belgium)
Novartis (Europe)
Merck Group (Slovakia)
Wipro (Sweden)
Sony (UK & USA)
EuroFins (Poland)
UBS Bank (Poland)
ING Services / Tech (Poland)
BNP Paribas Bank (Poland)
McKesson AG (Germany)
Materialise NV (Belgium)
Hewlett Packard Enterprise (Poland)
DHL IT Services (Czech Republic)
New World Resources Plc (NWR Karbonia) (Poland)
And many others (including government organisations in EU)
Cooperating also in projects for end clients with:
Cydeckt (Austria)
RedTeam (Poland)
DefendIT (Poland)
More details like list of projects & duties described in CV/portfolio.
Certifications
General IT Security:
CISSP - Certified Information Systems Security Professional
CISA - Certified Information Systems Auditor
C|EH - Certified Ethical Hacker
Splunk:
Splunk Certified Cybersecurity Defense Analyst
Splunk Enterprise Certified Architect - Splunk version 8.x
Splunk ITSI Certified Admin - Splunk IT Service Intelligence version 4.x
Splunk ES Certified Admin - Splunk Enterprise Security version 6.x
Splunk Enterprise Certified Admin - Splunk version 7.x
Splunk Certified Power User - Splunk version 7.x
Splunk Certified User - Splunk version 6.x
ArcSight:
HP ASE - ArcSight Analyst V1 - HP Accredited Solution Expert ArcSight Analyst V1 (v6.5)
HP ATP - ArcSight Security V1 - HP ArcSight ESM Security Administrator and Analyst (v6.5)
Others:
2013 MCITP - Microsoft Certified IT Professional - Enterprise Administrator on Windows Server 2008
2013 MCSA - Microsoft Certified Solutions Associate - Windows Server 2008
2013 MCTS - Microsoft Certified Technology Specialist
Windows Server 2008 Applications Infrastructure, Configuring
Windows Server 2008 Network Infrastructure, Configuring
Windows Server 2008 Active Directory, Configuring
Windows Vista, Configuration
2009 SCJP - Sun Certified Programmer for the Java Platform, Standard Edition 6
Courses
(examples)
Splunk - Creating Dashboards with Splunk 8.0 (Online - 2 days) 2021
Splunk - Enterprise Practical Lab (Online - 1 day) 2020
Splunk - Implementing Splunk IT Service Intelligence 4.4 (Online - 4 days) 2020
Splunk - Architecting Splunk 7.3 Enterprise Deployments (Online - 2 days) 2020
Splunk - Splunk Enterprise 8.0 Troubleshooting (Online - 2 days) 2020
Splunk - Enterprise 8.0 Cluster administration (Online - 3 days) 2020
Splunk 7.X - Advanced Searching and Reporting (Online - IOD) 2020
Splunk 7.X - Fundamentals 3 (Online - IOD) 2020
Splunk - Enterprise 7.2 Data administration (Online - 3 days) 2019
Splunk 7.X - Fundamentals 2 (Online - 4 day) 2019
Splunk - User Behaviour Analytics (Online - 1 day) 2018
Splunk - Analytics and Data Science Bootcamp (USA - 2 days) 2017
Splunk - Enterprise System Administration (USA - 1 day) 2017
Splunk 6.X - Fundamentals 1 (Online - 1 day) 2017
ArcSight ESM 6.5 Advanced Analyst - ASE (Poland - 3 days) 2016
ArcSight ESM Introduction (Switzerland - 2 days) 2015
ArcSight FlexConnector Configuration (Poland - 3 days) 2014
ArcSight ESM Administrator 6 CORR Engine (Poland - 4 days) 2014
AI_Devs2 - Connect GPT-4 with applications and automation logic (Poland - 5 weeks) 2023
McAfee - DLP/ENS Management (India - 4 days) 2017
Agile Introduction (Poland - 1 day) 2015
ITIL Introduction (Poland - 1 day) 2014
Cloud Solutions - Advanced (Poland - 1 day) 2014
Enterprise Architecture - real use case (Poland - 1 day) 2014
Active Directory - security model (Poland - 1 day) 2013
IT Security Manager - ISO/IEC 27001 (Poland - 3 days) 2013
Internal auditor - ISO/IEC 27001 (Poland - 3 days) 2013
Penetration testing (Poland - 3 days) 2013
Security and monitoring of computer networks (Poland - 2 days) 2012
and much more...
Conferences
(examples)
Splunk .conf 2023 (USA)
InfoSecurity 2022 (UK)
Splunk .conf 2019 (USA)
AI & Big Data Congress 2018 (Poland)
Splunk Discovery Day 2018 (Poland)
x33fcon 2018 (Poland)
Splunk .conf 2017 (USA)
Security BSides 2016 (Poland) - Lecturer
Topic: How and why you can prepare your company to implement SIEM solution - problems and challenges
Security Case Study 2016 (Poland) - Lecturer
Topic: Logs not only for developers - system events in the context of the incident analysis
and much more...