Łukasz Matusz

About me

Cybersecurity specialist with 20+ years of experience in IT. I help companies assess and improve their security posture through standards-based consulting (ISO 27001, NIST), clear documentation, and risk-focused technical reviews.

I work with small and mid-sized organizations that: - lack an in-house security team, - need a structured approach to compliance, risk, and IT governance, - are preparing for audits or external certifications, - require support with practical implementation – not just theory.

Services I offer:

- Security architecture reviews and gap analysis - Threat modeling and risk assessments - Vulnerability analysis (including non-intrusive scans and prioritization) - Information security policies and procedures (access control, backups, incident response, GDPR, etc.) - Compliance support: ISO 27001 / vendor risk - Internal documentation for audits and due diligence - Cybersecurity awareness training (technical and non-technical teams)

I work remotely, in both English and