02/26/2026 updated

MR
100 % available

Cybersecurity Specialist, Penetration Testing, Attack Surface Management & SOC

Vilnius, Lithuania MSc in Cybersecurity
Vilnius, Lithuania MSc in Cybersecurity

Profile attachments

Marius_Rebenciuc_CV_Cybersecurity_Specialist.pdf

About me

Cybersecurity Analyst, Penetration Tester and Engineer with an MSc in Cybersecurity and extensive remote project experience. I improve organisational security posture via ASM, vulnerability assessment and penetration testing, working cross-functionally to identify, prioritise, and remediate risks.

Application Programming Interfaces (APIs)Amazon Web ServicesApple Mac SystemsPenetration TestingAutomationTest AutomationMicrosoft AzureCloud Computing SecurityCloud StorageComplianceComputer SecurityContinuous MonitoringSecurity ControlsLinuxEmbedded SystemsIncident ResponseIdentity ManagementInfrastructure ManagementNetwork SecurityPhishingSecurity ManagingSecurity TestingSecurity Information and Event ManagementVulnerabilityWeb ApplicationsLifecycle ManagementCarry Out AssessmentsGoogle CloudData IngestionOffice365Test ScriptsFirewalls (Computer Science)CybercrimeSafety PrinciplesCisco
Penetration Testing: Planned and executed penetration tests across 50+ organisational web applications, 700+ infrastructure components, APIs and cloud assets (AWS). Identified exploitable vulnerabilities including CSM related ones, outdated libraries, misconfigured services. Delivered executive level and detailed reports with remediation guidance attached. Directly collaborating with the asset owners, summarising test reports and offering remediation suggestions. Using OSS and licensed tools.

Attack Surface Management: Conducted external and internal attack surface assessments to discover and catalogue internet-facing assets (subdomains, cloud storage, APIs, shadow IT).

SIEM, SOAR & Detection Engineering: Configured data ingestion pipelines, tuned detection rules, and developed automated SOAR playbooks for various threats (phishing, account compromise, infected host) in order to reduce false positives and accelerate incident response.

Threat Hunting & Endpoint Security: Conducted proactive threat hunting and managed incident response lifecycle. Assisted the CrowdStrike Falcon deployment across Windows OS, Mac OS and Linux estates, resolved RFM issues, and monitored cloud environments (AWS, Entra ID) for IoMs, IoCs, IoAs.

Endpoint Detection & Response: Expertise in CrowdStrike Falcon, Microsoft Defender O365, and XDR technologies for endpoint protection and threat hunting. Used Tanium for increased visibility over hosts vulnerabilities and compliance.

Cloud Security Architecture: Security implementation and compliance management across AWS, Azure, and GCP platforms with focus on IAM and cloud-native security.

Threat Hunting & Incident Response: Proactive threat identification and full incident lifecycle management from detection to containment and eradication.

Involved in the Threat Modelling / Threat Landscape definition, Secure Architecture, Risk Analysis and Risk Score Calculation.

Security Test Automation: Development of automated testing frameworks and validation processes for security controls in embedded systems.

Network Security & Firewalls: Configuration and management of Cisco, Check Point technologies for network protection and monitoring.

Languages

GermanBasic knowledgeEnglishFluentItalianGoodRomanianNative speaker

Project history

Senior Cybersecurity SOC Analyst & Pen-tester

University of Arts London, UK (Hybrid)

Other

500-1000 team member

  1. Security Pen-testing: Planned and executed penetration testing of Web Applications, Infrastructure components, and Cloud assets (AWS), providing reports and remediation advice to product owners.
  2. CrowdStrike Agent Management: Managed the CrowdStrike Falcon deployment; handled agent troubleshooting, resolved Reduced Functionality Mode (RFM) issues, and ensured optimal sensor health across the fleet.
  3. SIEM Detection & Engineering: Configured the ingestion and processing of data, tuned SIEM detection rules and correlation logic to identify meaningful events, reducing false positives and enhancing visibility.
  4. Security Automation (SOAR): Developed and optimised SOAR playbooks to automate routine tasks, significantly accelerating incident response times and reducing analyst fatigue.
  5. Threat Hunting & Incident Response: Engaged in proactive Threat Hunting and Risk Assessments to identify hidden threats. Managed the full incident lifecycle from detection to containment and eradication.
  6. Cloud Ecosystem Security: Leveraged logs collectors (SIEM-AWS, SIEM-Entra ID) to monitor cloud environments for misconfiguration, IoC and enforce security policies.
  7. Tech Stack: CrowdStrike Falcon (NG-SIEM, SOAR, XDR), MS Defender O365, Azure, Entra ID, Pentera, AppCheck, Tanium, Varonis, Rubrik, BeyondTrust, Owasp Zap, Nuclei, Burp Suite.

Cybersecurity Engineer

Everyone TV Ltd, London (Hybrid)

Media & Publishing

250-500 team member

  1. SIEM & Detection: Deployed and tuned Splunk specifically for Detection & Incident Response, creating dashboards and alerts to monitor security events.
  2. Cyber Defence Strategy: Acted as a security pioneer, conducting risk assessments and developing a cybersecurity strategy to improve the organisation's posture.
  3. Incident Management: Enhanced incident detection capabilities through close collaboration with development teams and precise SIEM configuration.
  4. Security Architecture & Compliance: Oversaw API security and backend stability while ensuring compliance with UK-GDPR regulations for managed services and devices.
  5. Policy & Training: Expanded security policies, advocated for data protection, and delivered internal training to raise security awareness.
  6. Cloud Security: Managed the security of the cloud environment, promoting security-conscious processes for cloud entities.
  7. Automation: Utilised Python and JS to develop automated checks for validating application and device operations (functional, sanity, backend tests).

Security Test Automation Engineer

Continental Automotive, Frankfurt (Remote)

Automotive & Vehicle Manufacturing

500-1000 team member

  1. Security Test Specifications Analysis and Requirements Management: Analysed security test requirements thoroughly, developed precise test case descriptions and incorporated them into the requirement management solution for enhanced traceability.
  2. Security Tests definition and Automation: Directed the development and execution of automated testing suites with the chosen test framework, enhanced by automation scripting aiming at validating the security of the ECU flashing process via the OTA Updates operation.
  3. Test Results & Reporting: Managed the compilation and presentation of test results, providing detailed and insightful reporting.
  4. Embedded Validation: Used vehicle communication system simulations along with real peripherals to validate and diagnose embedded systems operations, ensuring the system performance and reliability.
  5. Project & Process: Followed project workflows and contributed to process optimisation, adhering to Agile methodologies to enhance team productivity and project outcomes.

Various Software and Systems Engineering jobs

Certificates

MSc

Northumbria University London UK

2023

Contact form

Log in to get in touch

You need to be logged in to use the contact form.

Sign upLog in