About me

Tomasz Wójciak

Cybersecurity Transformation Architect · vCISO · Identity & Cloud Governance Advisor

I help organizations simplify and modernize their cybersecurity programs by focusing on architecture, identity governance, risk clarity, and practical operating models.

Over 25 years across enterprise IT, critical infrastructure, public sector and global corporate environments have taught me one thing: most security problems are not technical — they are about ownership, communication and decision-making.

My approach is grounded, structured and low-politics. I work best where clarity, autonomy and realistic problem-solving are valued over noise, firefighting, or heavy bureaucracy.

Professional Summary

I am a cybersecurity architect and senior consultant specialising in identity, hybrid cloud, enterprise risk, and leadership advisory.

I support CISOs, IT directors and transformation programs by translating complex security issues into simple decisions. My work spans Azure governance, Active Directory and Entra ID modernisation, privileged access models, NIS2/ISO-aligned risk frameworks, and M&A cybersecurity integration.

I do not focus on day-to-day operations — instead I build structure:

how teams work,
how privileges are governed,
how architecture enables the business, and
how risks become clear, actionable and owned.

Whether guiding a vCISO function, designing identity architecture for cloud adoption, or leading post-acquisition integration, I prioritise realistic execution, clear expectations and long-term maintainability.

Clarity Over Complexity

Security must be explainable to executives and implementable by engineers.

Clear scope and ownership reduce 80% of risk.

Architecture Before Tools

The best tools fail without strong identity, boundaries, and governance.

Architecture is the operating system of security.

Low-Drama, High-Impact

I avoid unnecessary politics and firefighting.

I focus on structured decisions, predictable delivery, and sustainable results.

Career Overview

Today — Freelance Security Architect & vCISO

Leading identity, cloud, PAM, architecture and risk governance projects for clients such as Microsoft, Ørsted, Barry Callebaut, Sysco, Electrolux, Ahold, AML RightSource, Howden Group and others.

2020–2021 — Head of Security Engineering (Equiniti)

Led global IAM/PAM architecture, Azure security baselines and operational governance.

2019–2020 — Security Engineer & Consultant (GAIN Capital · EY)

Hands-on threat detection, incident response, PKI governance and IAM improvements.

2013–2016 — IT Risk & Control Specialist (UBS)

Formal infrastructure risk assessments, control alignment, audit readiness.

Earlier — IAM, AD, Infrastructure Engineering (2006–2013)

AD/SSO engineering, PKI, IAM integration, endpoint hardening, migration support.

1999–2006 — Founder of IT Consulting Firm

Designed and delivered secure infrastructure for SMB/public clients; early experience in governance and service reliability.

Core Capabilities

• Security transformation & leadership advisory

• IAM & PAM architecture (AD, Entra, CyberArk, BeyondTrust)

• Cloud & hybrid governance (Azure, Zero Trust)

• NIS2, ISO 27001, NIST CSF alignment

• M&A cybersecurity evaluations

• OT/ICS secure access

• Risk assessments & decision frameworks

• Documentation, workshops, playbooks, executive communication

Technology Focus

• Azure / Entra ID

• Active Directory

• CyberArk, BeyondTrust, Saviynt

• Intune, Conditional Access

• Tenable, Defender, Qualys

• ADFS, MFA, SSO

• PowerShell automation

LinkedIn Profile

How I Work

I value transparency, structure and direct communication.

I work best with leaders who want clarity and practical strategy rather than bureaucracy or firefighting. My goal is to leave every organisation with better ownership, simpler processes and architecture that will last beyond any single project.

Looking for support with architecture, IAM, or risk governance?

I’m available for contract roles, advisory engagements and transformation programs.

Contact

Page updated

Google Sites

Report abuse