marius@cogeanu:~$ whoami _

Offensive security and cyber leadership for systems that matter.

CISSP-certified security professional at Kyndryl, the world's largest IT infrastructure services provider, after 17 years engineering and securing enterprise systems at IBM. I work across offensive security, security consulting, cloud security, incident response, vulnerability management, AI risk and robotics security. The goal is simple: find the exposure, explain the risk, and make the organization harder to compromise.

CISSP industry certifications Kyndryl ex-IBM / 17 yrs

[ open channel ] $ cat offensive-focus.txt in / LinkedIn

operator@cogeanu:~ - profile

        .-----------------------------.
        |  SECURITY OPERATIONS NODE   |
        |-----------------------------|
        |  threat model     loaded    |
        |  attack surface   mapped    |
        |  vuln research    active    |
        |  cloud posture    reviewed  |
        |  incident path    rehearsed |
        |  ai risk          watched   |
        '-----------------------------'

          [MC]   identify exposure
          /|\    validate impact
          / \    translate risk

17years at IBM before joining Kyndryl, the largest IT services provider

CISSPplus further industry security certifications

31Hack The Box machines owned and documented

labmulti-site security lab: SIEM, scanning, adversary emulation, AI

// 02. interactive shell

Try the terminal

Type help, whoami, certs, htb, stack, lab, services, contact, scan, github or clear.

guest@cogeanu.com:~ - bash

Cogeanu ops console initialized.

Type help to list commands. No real commands are executed.

// 03. competencies

cat offensive-focus.txt

Security domains grounded in leadership, consulting, offensive practice and response.

-- ~/offensive-focus.txt ---------------ro

## offensive security

attack surface assessment5/5

vulnerability validation5/5

pentesting / CTF practice4/5

risk translation5/5

## security leadership

security consulting5/5

risk mitigation5/5

regulatory alignment4/5

secure transformation5/5

## cloud / ai / robotics

cloud security5/5

incident response4/5

AI security risk4/5

robotics attack surface3/5

// 04. current operations

git log --oneline

Current security tracks and public learning signals.

now

Security at Kyndryl

Security consulting and engineering at the world's largest IT infrastructure services provider, securing the systems large enterprises actually run on.

kyndryl / consulting / enterprise scale

now

Hack The Box: 31 machines owned

Active offensive practice across Active Directory, web exploitation, privilege escalation and post-exploitation paths. Every box documented with a public-safe writeup workflow.

pentesting / ctf / ethical hacking

2026

Attack surface and vulnerability management

Continuous discovery, validation, prioritization and remediation thinking across exposed services and business risk, backed by a live scanning and SIEM lab.

vulnerability management / exposure

ongoing

AI and robotics security

Security implications of autonomous agents, AI-assisted operations and robotic systems entering real environments — including AI-driven adversary emulation in the lab.

ai security / robotics / agents

17 yrs

IBM

Seventeen years building, operating and securing enterprise IT for global clients — the foundation for translating technical risk into business decisions.

enterprise it / security / leadership

// 05. hack the box

cat htb-owned.log

16 main machines plus the full Starting Point track - 31 owned total. Each chip links to the verified achievement.

-- ~/htb/owned --------- pwned: 31 ---verified

Alert Administrator University Chemistry Instant Cicada GreenHorn PermX BoardLight MagicGardens MonitorsFour Support Cap Active Jerry Lame + 15 Starting Point machines

themes: active directory / web exploitation / privesc / post-exploitation HTB profile

// 06. lab architecture

ls -la /srv/lab

A multi-site, documented lab built like production: virtualized, scanned, monitored, backed up. Capability published, topology private.

virtualization

Proxmox VE cluster with a dedicated Proxmox Backup Server - every service is a rebuildable VM or LXC with a written runbook.

offensive tooling

Greenbone/OpenVAS vulnerability scanning, NodeZero autonomous pentesting and AI-driven adversary emulation with a C2 profile.

zero trust

Tailscale mesh across sites, internal PKI eliminating plain HTTP, Pi-hole DNS control and automated secrets rotation via Doppler.

ai operations

LLM Council - multiple models cross-review one prompt and a chairman model synthesizes the answer - plus agentic automation for lab ops.

monitoring

Uptime Kuma service checks, centralized dashboards and a SIEM track on the roadmap for full log visibility.

self-hosted services

Home Assistant, Immich photos and Paperless documents - real workloads that keep the security controls honest.

// 07. contact

Useful conversations start with a clear signal.

Offensive security, cybersecurity consulting, cloud security, incident response, AI security and robotics risk. CISSP. Kyndryl, after 17 years at IBM.

LinkedIn DM GitHub cogeanu.com