About Alexander
Cybersecurity consultant helping businesses improve security posture through practical penetration testing and strategic advisory. With 12+ years of experience, I founded SafePwn to deliver high-quality, business-focused security services that create measurable value.
Whether you need:
- A long-term security roadmap
- A focused web application or API penetration test
- Targeted AI Breakout exercise or Network Testing
- Retesting after remediation
- A quick security consultancy
- Ongoing advisory support
- Independent testing or validation for clients, audits, or investors
I can help.
Clients value clear communication, practical reporting, prioritised remediation guidance, and collaborative delivery from start to finish that I tailor depending on client's preferences.
NDA-friendly, PI & Cyber insured, professional reporting, business-aware consulting.
GIAC GPEN, CREST CRT / CPSA / CCT INF , CEH, AWS Certified
Engagement Types
• Web Application Penetration Test
• AI Breakout Assessment
• Mobile Application Penetration Test
• API Penetration Test
• External Infrastructure Test
• Internal Network & Segmentation Testing
• Cloud Security Review
• Targeted Adversary Simulation
• Phishing Simulations
• Active Directory & Azure AD Reviews
• ASVS / AISVS Security Reviews
Assessments also cover business logic abuse, revenue-impact flaws, and monetisation risks where relevant.
English
Native or bilingual
Polish
Native or bilingual
Remote only
Primarily works remotely
Experience
- Secure Impact LtdSenior Security ConsultantJuly 2024 - Today (1 year and 11 months)• Purple Teaming - highly collaborative clients• Multi-month projects - complex and unique systems to assess• Physical security - hands-on experience with physical penetration tests and black-team style engagements• AI Testing
- Jaja Finance LTDApplication Security SpecialistDecember 2020 - May 2024 (3 years and 5 months)• Revitalised SDLC via CI/CD, secure design (HLD/LLD), OWASP secure coding practices, vulnerability remediation, SCA & system hardening• Penetration tests and code reviews of APIs, mobile (Android/iOS), and web against OWASP Top 10, aligning to OWASP ASVS, NIST and MASVS• Supporting engineers & stakeholders as a subject matter expert especially on production incidents and out-of-hours remediation• Using internal risk board and Wiz threat intelligence for prioritisation• Phishing using KnowBe4, defences using Mimecast & O365 DLP.• Played a key role in achieving PCI-DSS, ISO 27001.
- ADECO SportCEO – Succession AdministratorHEALTH AND WELLNESSDecember 2019 - August 2024 (4 years and 8 months)Katowice, Poland• Spearheaded risk management and threat modelling along with BCP/DR• Use of CIS benchmarks, Cyber Essentials+, UX/UI tools, Firebase, GitHub, C & Java• Leadership and Management – led and coordinated a diverse groups of employees across R&D, programming, production and logistics• Penetration testing of internal infrastructure and mobile app• Product Owner – for patented tennis wall, hardware sensors, mobile app• Project Manager – successfully completed an EU-funded project – hardware with mobile app (Android Store: Adeco Sport Pro)• Experience in compliance & contracts – EU laws.
Recommendations
Be the first to recommend Alexander
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- BSc (Hons) - 1st class in Computer Security and ForensicsUniversity of Bedfordshire2015
- GIAC Certified Penetration Tester (GPEN)GIAC2025GIAC Certified Penetration Tester (GPEN)