Pawel Krawczyk is a Senior Application Security Consultant with 15+ years of hands-on experience securing mission-critical systems across finance, public sector and defense in the UK and EU. He blends deep technical skills as an active Python, C and Java developer with pragmatic security engineering—deploying large-scale HIDS/NIDS (Wazuh/OSSEC, Suricata) and automating hardening via Ansible. A former Application Security Team Lead at Goldman Sachs and consultant for HSBC and Willis Towers Watson, he designs secure SDLCs, tunes SAST tools like CheckMarx, and embeds DevSecOps into both greenfield and 20+-year legacy projects. He also builds applied security tooling (WebCookies.org) and contributes to notable open-source ops work such as the Wazuh Ansible playbooks, improving operational response and agent configuration. CISSP, CESG and UK SC certified, Pawel pairs board-level communication and conference experience with detailed technical delivery and a knack for translating complex threats into actionable remediation. Unusually for a consultant, he combines classical infosec research and tool-building with an entrepreneurial streak evidenced by long-running independent consultancy and niche projects outside tech.
15 years of coding experience
18 years of employment as a software developer
Secondary school certificate, Secondary school certificate at I Liceum im. Bartlomieja Nowodworskiego w Krakowie (Nowodworek)
Not graduated Chemical Engineering, Not graduated Chemical Engineering at Politechnika Krakowska im. Tadeusza Kościuszki
Contributions:9 commits, 6 PRs, 2 comments in 2 years 5 months
Contributions summary:Pawel primarily focused on configuring and maintaining the Ansible playbooks for Wazuh. Their contributions included enabling and configuring the active-response feature, ensuring correct agent configurations for remote commands and email notifications, and fixing Jinja2 syntax issues within the configuration files. These changes directly impact the functionality and security of the Wazuh deployment managed by the Ansible playbooks.
Contributions:7 commits, 2 comments in 1 year 4 months
Contributions summary:Pawel primarily focused on enhancing the functionality of the `ghost.py` library, which is a webkit-based browser. Their contributions included adding features to enable plugins like Flash and Java, modifying the code to improve cache handling, and merging updates from other branches. They also addressed a bug that would cause the application to crash due to missing parameters.
pythonbrowserscriptableweb-browserpython3
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.