Tomasz Chyła

Senior Information Security Specialist | Threat Mitigation | 🤖AI in Security

E-mail LinkedIn

Summary

Experienced cybersecurity specialist dedicated to protecting critical assets in complex IT environments, from traditional on-premise servers to modern containerized platforms. My mission is to transform reactive vulnerability management into a proactive, data-driven defense strategy.

I translate raw data from tools like Qualys and Sysdig into concrete, business-oriented recommendations for risk reduction, designing and implementing security governance processes that ensure compliance and elevate organizational security posture.

I am currently developing my skills at the intersection of cybersecurity and AI, exploring Machine Learning and Generative AI to predict threats and automate security in complex systems.

Work Experience

Senior Information Security Specialist

July 2020 - Present

  • Identify, evaluate, recommend, and prioritize security patching for server and container environments.
  • Collaborate with teams to ensure timely and effective remediation of vulnerabilities.
  • Develop and maintain security patching processes, ensuring compliance with organizational policies.
  • Utilize vulnerability management tools (Qualys, Sysdig) to assess and report on security posture.
  • Act as a subject matter expert on security patching, collaborating with technical and management personnel across the organization.
  • Develop and maintain strategies, processes, and governance for efficient security patch and vulnerability management.
  • Translate technical vulnerability data into actionable business recommendations.
  • Ensure the latest security threats are understood and that remediation is maintained across all environments.

Owner

Sep 2009 - Sep 2020

  • Provided professional IT solutions and consulting services for businesses.

IT Security & Infrastructure Specialist

Mar 2009 - Aug 2020

Junior IT Security Specialist (Jan 2017 - Aug 2020)

  • Managed ESET ERA console for 1,500+ endpoints, including reporting, policy creation, and threat analysis.
  • Administered WSUS server, managing testing and deployment of updates to 1,500+ endpoints.
  • Executed the full Vulnerability Management lifecycle using Qualys Guard for internal and external network scanning, analysis, and remediation.
  • Utilized Nmap and Burp Suite to supplement vulnerability discovery and remediation efforts.
  • Promoted and enforced security policies and standards across the organization.

Senior Information Technology Specialist (Feb 2013 - Dec 2016)

  • Administered Active Directory, VMware hosts, and Microsoft Server 2008/2012 environments.
  • Managed network infrastructure setup, monitoring, and troubleshooting.
  • Oversaw server backup processes to ensure high success rates.

Junior IT Specialist (Mar 2009 - Jan 2013)

  • Managed the full lifecycle of desktop and laptop assets.
  • Provided end-user support and training.
  • Handled hardware/software procurement and vendor management.

Skills

Vulnerability Management

Qualys Guard Sysdig Patch Management Risk Prioritization Remediation Tracking

Security & Networking

Security Governance Policy Development

Infrastructure & OS

Kubernetes Windows Server Red Hat Active Directory VMware

Emerging Interests

AI/ML in Cybersecurity Generative AI Process Automation Python

Education

Engineer's Degree, Network and System Administration

Radom Academy of Economics

2010 - 2014