DevSecOps Expert - Deutsche Bank UK HCLTech, BUCHAREST October.2022 - until now (3 years, 3 months) Job domain: IT Software Responsibilities: Engineered comprehensive Entra ID resilience strategies, including advanced backup and restore capabilities for critical Entra ID objects (users, groups, enterprise applications, service principals, conditional access policies, and licenses) using Microsoft365DSC and PowerShell DSC. This ensured rapid recovery from accidental or malicious deletions, covering both soft- and hard-deleted objects; Championed configuration drift monitoring and remediation for Entra ID, maintaining desired state configurations, and bolstering security posture; Leveraged the Microsoft Graph PowerShell SDK to automate complex Entra ID management tasks, including tenant cloning for development testing environments, granular IAM provisioning, and enforcing security policies at scale; Designed and implemented robust Conditional Access Policies (CAPs) to govern access to network resources, applying Zero Trust principles to ensure least-privilege access for users, groups (Security, Dynamics), and service principals; Provided deep expertise in managing Service Principals and Enterprise Applications within Entra ID, securing application integrations and minimizing attack surface; Orchestrated end-to-end security automation within CI/CD pipelines (Azure DevOps, GitHub Actions), embedding security checks early in the SDLC to prevent vulnerabilities from reaching production; Implemented advanced Static Application Security Testing (SAST) for source code and binary code, including the creation of custom rules to identify business logic flaws and ensure easy debugging, while establishing baseline files for efficient false-positive analysis; Drove proactive vulnerability management by performing continuous scanning for CVE vulnerabilities across components, libraries, dependencies, and files within repositories; Aligned security practices with industry-leading frameworks and standards, including NIST, SOC2, and ISO27001:2022, ensuring a strong compliance posture and robust risk management. DevSecOps Engineer - Unicredit Spa Italy Axsys Romania, BUCHAREST March.2022 - September.2022 (6 months) Job domain: IT Software Responsibilities: Providing leadership in the DevSecOps areas of vulnerability scanning, certificate management, password policy management, data analysis of security monitoring outputs, coordination of remediation patching, and other daily security and compliance efforts; Assisting in developing an automated security framework for robust deployment tools and processes, leveraging various scripting languages and open-source solutions; Reviewing and analysing vulnerability data to identify security risks to the organisation's network, infrastructure, and applications, and determine any reported vulnerabilities that are false positives; Comprehension in the security areas of Key Management Systems, Certificate Management, Encryption, Penetration Testing, Vulnerability Scanning, Security and Monitoring tools; Familiarity with Information Security frameworks-standards (i.e., IEC/ISO 27001:2013, CIS, NIST, RFC2196) and with SAST, DAST, and OSS scanning tools; Working with APIs and Plugins to integrate security tools into established CI/CD pipelines; Experience in building managing private clouds with Red Hat OpenStack; Experience creating pods and clusters in Kubernetes and deploying those using the Red Hat OpenShift Platform; Good understanding of the OpenShift Platform in managing Docker containers and Kubernetes clusters; Comfortable with securing a production container ecosystem (Docker, GKE, CloudRun, service discovery, and service registry) in a continuous delivery environment using Jenkins, Ansible, and Terraform. Senior DevOps Engineer - Lego Group Denmark Arnia Software , BUCHAREST September.2021 - February.2022 (5 months) Job domain: IT Software Responsibilities: Using Terraform to provision Azure Infrastructure; Write clean, high-performance, well-tested infrastructure code with a focus on reusability and automation (i.e., Ansible, Terraform); Working knowledge of backup and restore solutions in Linux and Windows environments with Veeam Backup & Replication; Experience with database management systems (MS SQL Server MySQL MongoDB); Experience with monitoring tools like Prometheus and Grafana; Experience with Amazon Web Services (Amazon EKS, CloudFormation, CloudWatch, Amazon WorkSpaces, Lambda, API Gateway, Aurora); Knowledge of configuration management processes and software repositories (Git), including tagging-versioning and branching strategies; Experience with continuous integration tools like Git and GitLab; Exposure to Microservices architecture (CI/CD pipeline using Azure Pipelines); Experience with continuous integration tools like Git, GitLab, Jenkins; Experience in automation exposure using Azure DevOps, Terraform, Ansible, PowerShell, Python, Docker, and Kubernetes (AKS) as part of the LIVE project; Perform Application vulnerability scanning; Perform network vulnerability scanning. DevSecOps Specialist - Nordic RSC Denmark GE Digital, BUCHAREST July.2019 - August.2021 (2 years, 1 months) Job domain: Engineering Responsibilities: Participating in the infrastructure architecture governance model; Providing technical expertise for the Software Configuration & Build Management functions toolset, processes, and procedures; Developing and implementing build processes and procedures for maintaining build plans, version control, and defect tracking; Ensuring that all releases and deployment packages can be tracked, installed, tested, verified, and/or uninstalled or backed out, if appropriate, in Nexus Repository; Supporting the design and deployment of infrastructure solutions meeting standardisation, consolidation, TCO, security, regulatory compliance, and application system qualities for different businesses; Researching and evaluating emerging technology, industry, and market trends to assist in project development and/or operational support activities; Ensuring all tasks are carried out concerning applicable processes and procedures (e.g., ISO27001) relevant to the site and functions within the job scope; Experience with database management systems (SQL Server PostgreSQL); Experience in automation exposure using Azure DevOps, Terraform, PowerShell, Python, Docker, and Kubernetes (AKS) as part of a POC project; Scanning for CVE vulnerabilities inside the component libraries' dependency files in the repositories; Performing static analysis for source code and binary code to discover security vulnerabilities, including custom rules, as part of the SAST scanning to check for business flaws and ensure easy debugging; Creating baseline files to use for false-positive analysis during SAST scans; Performing the scanning of GIT secrets (tokens, certs, ssh keys) using Gitguardian, OXSecurity, MegaLinter in VCS using CI/CD pipelines (Azure DevOps and GitHub Actions) config files (environment variables), config management and secret management system; Monitoring and interpreting data from several security monitoring platforms. Information Technology System Engineer BullGuard, BUCHAREST April.2018 - June.2019 (1 years, 2 months) Job domain: IT Software Responsibilities: Work closely with solution architects and cloud engineers and provide support to senior staff, ensuring designs align with technical and business direction across the company; Write clean, high-performance, well-tested infrastructure code with a focus on reusability and automation (i.e., Shell, Python, Terraform); Work collaboratively with Cloud DevOps developers, platform delivery lead, solution architects, and enterprise architects to define and develop secure, highly scalable enterprise cloud products; Explore and recommend new technologies services. Articulate the advantages of various solution options; Provide recommendations on architectural changes to improve efficiency, reliability, and performance and to reduce cost; Support platform delivery lead on the prioritization of the product backlog, refining product roadmap, reporting, KPIs & releases; Actively participate and contribute to all sprint ceremonies (daily stand-up, sprint planning, sprint retro, sprint demo, and backlog grooming); Experience with monitoring tools like Prometheus and Grafana; Hands-on experience with public cloud platforms like Microsoft Azure; Working knowledge of backup and restore solutions in Linux and Windows environments with Veeam Backup & Replication; Experience with database management systems (MS SQL Server PostgreSQL); Knowledge of configuration management processes and software repositories (Git), including tagging versioning and branching strategies; Exposure to Microservices architecture (CICD pipeline using Azure Pipelines); Experience in automation exposure using Azure DevOps, Terraform, PowerShell, Python, Docker, and Kubernetes (AKS) as part of a POC project; Perform Application vulnerability scanning; Perform network vulnerability scanning. Linux System Administrator StarTechTeam, BUCHAREST April.2014 - March.2018 (3 years, 11 months) Job domain: IT Software Responsibilities: Administration of computer networks for partner companies, software installation, patching, upgrading, and maintenance of operating systems, operating systems, installation cloning clones on workstations, data backup, and restoration on RHEL6 on-premises infrastructure; Installation and configuration of equipment and systems of the partner companies and installation of hardware and software upgrades to ensure the complex is done in accordance with company policy; Maintain and improve the existing infrastructure and virtualization system; Install relational databases and associated software; Install application software; Evaluate, test, and integrate new operating system versions, drivers, and patches; Provide technical analysis and resolution of problems and incident reporting; Monitor system events to ensure health, maximum system availability, and service quality. Help Desk Support Specialist with Italian GENPACT , BUCHAREST January.2009 - March.2014 (5 years, 2 months) Job domain: IT Hardware Responsibilities: Receive customers' fault requests by email web-phone on different telecom equipment, create a trouble ticket using a ticketing interface and dispatch it according to internal procedures to the appropriate engineers; Responsible for interfacing with customers via Live Chat and Help-desk tickets to address and resolve T1 and T2 technical and product support inquiries; Maintain and develop a broad technical knowledge of the company's products and services; Offer solutions to issues that are often non-standard/non-routine; Dispatch to other internal groups or escalate if needed; Diagnose and resolve customer problems; Report and track faults throughout the support process; Collect, interpret and communicate customer priorities and feedback regarding system design and performance to other internal teams; Take ownership of escalated issues and follow through to resolution.

Spiru-Haret University October.2008 - May.2010 Diploma (type of studies): Master Degree Field of studies: Law City: BUCHARESTOther relevant information: CRIMINAL JUSTICE LAW ENFORCEMENT ADMINISTRATION Spiru-Haret University October.2004 - June.2008 Diploma (type of studies): Bachelor DegreeField of studies: LawCity: BUCHAREST

Foreign languages: Writing Reading Speaking English Advanced Advanced Advanced Italian Intermediate Intermediate Intermediate Spanish Intermediate Intermediate Intermediate Driving licence : Yes Qualities: Efficient Communicator, Problem solving, Teamwork oriented IT knowledge:-Hands-on experience on IBM z/OS -Hands-on experience on WS2K16, WS2K19, RHEL, ESXi, and HyperV systems; -Experience with web servers (IIS / NGINX); -Knowledge of Python/PowerShell scripting; -Strong experience with monitoring tools like Prometheus and Grafana; -Knowledge of Infrastructure as Code (IaC) deployments (Terraform); -System configuration management expertise with products such as Ansible; -Hands-on experience with public cloud platforms like Microsoft Azure, AWS, GCP; -Working knowledge of backup and restore solutions in Linux and Windows environments; -Experience with relational database management systems and NoSQL; -Knowledge of configuration management processes and software repositories (Git), including tagging/versioning and branching strategies; -Exposure to Microservices architecture (CI/CD pipeline using Azure DevOps, GitHub Actions, Jenkins); -Deployment of a Kubernetes cluster (AKS/EKS/GKE) with Terraform modules; -Designed and maintained a centralized DevSecOps platform, automating CI/CD pipelines using GitHub Enterprise Actions and implementing GitOps workflows with ArgoCD; -Administered OpenShift clusters and automated infrastructure provisioning using Terraform, integrating directly with HashiCorp Vault for secure secrets management; -Operated critical middleware components, including Kafka (via Strimzi), to support event-driven architectures; -Supported development teams in adopting modern frameworks (Quarkus, JBoss) and building Maven pipelines, ensuring code quality via SonarQube integration. Certificates: -EITCA Artificial Intelligence Programme - Credential ID: EITCA/AI/SLJ25005293https://www.eitca.org/certificatesupplement?id=EITCA/AI/SLJ25005293&t=d6kqjdK5Zcg17tK0 -Cyber Diplomacy - United Nations Office for Disarmament Affairs (UNODA) at Vienna - Credential ID: 103-54318-0625 -ISO/IEC 31000:2018 Risk Manager - Global Skill Development Council - Credential ID: 39409 -ISO/IEC 27001:2022 Information Security Lead Auditor - SkillFront - Credential ID: 93217389733765 -ISO/IEC 22301:2019 Business Continuity Management Lead Auditor - SkillFront - Credential ID: 32981790380128 -NIS 2 Responsible - Enrolled in the Romanian Registry of Cybersecurity Training Service Providers/IDFSF: QE-1FBA7FE - Cybersecurity Specialization Certificate series ECE no. 6932 issued on 01.10.2025 -Nuclear Security - United Nations Office for Disarmament Affairs (UNODA) at Vienna - Credential ID: 58-54318-0625 -Weapons of Mass Destruction - United Nations Office for Disarmament Affairs (UNODA) at Vienna - Credential ID: 23-54318-0625 -Expert in Accessing European Structural and Cohesion Funds - Ministerul Educatiei - Seria P Nr. 0054359 -Public Procurement Expert - Ministerul Educatiei - Seria S Nr. 0207635 -Trainer - Public Speaking - Ministerul Educatiei - Seria S Nr. 0242513 -Project Manager - Ministerul Educatiei - Seria S Nr. 0242570 -Certified Agentic AI Developer - Blockchain Council - Credential ID: 142084179 -Deploying and Evaluating GenAI Apps with MongoDB - MongoDB - Certificate No: 5050c00f-5db8-42dc-a6b6-1d42945d7c0a -Certified Python Developer - Global Tech Council - Certificate ID: 133496666 -Conda Fundamentals Certification - Anaconda - Certificate No: 8x49xnewgiyh -Using MongoDB with Python - MongoDB - Credential ID: MDBxmtmkor5sjm -MongoDB for SQL Experts - MongoDB - Credential ID: MDBen06vi97yh -Certified CyberSecurity Expert - Blockchain Council - Credential ID: 99570410 -Certified Full Stack Developer - GSDC - Global Skill Development Council - Credential ID: 28138 -Certified DevSecOps Engineer - GSDC - Global Skill Development Council - Credential ID 24406 -Certified Information Security Executive - Global Tech Council - Certification ID 59405760 -Certified DevOps Developer - International DevOps Certification Academy - Credential ID 76533929343800 -Certified Cyber Security Professional - Global Tech Council - Certification ID 34394045 -DevOps Information Security Engineer - International DevOps Certification Academy - Certification ID 53866231590975 -DevOps Operations Engineer - International DevOps Certification Academy - Certification ID 55993733403738 -Configuring and Operating a Hybrid Cloud with Microsoft Azure Stack - Microsoft Certification ID 17682182 -IT Essentials -Linux Essentials -NDG - LPIC 1-101 -NDG - LPIC 1-102 -CCNA Routing and Switching: Introduction to Networks -CCNA Routing and Switching: Routing and Switching Essentials -CCNA Routing and Switching: Scaling Networks -CCNA Routing and Switching: Connecting Networks -CCNA Security: Implementing Network Security

Job type: Full Time, Contract Job level: over 15 years of experience Salary expectations/Daily Rate (EUR) Unspecified Are you willing to travel: No Working mode: Full-remote