Kajetan Kupaj

Cybersecurity Engineer & Full-Stack Developer | Warsaw, Poland | coopaisolutions@gmail.com | +48 692 302 342

Professional Summary

Full-stack engineer and cybersecurity specialist with nearly 10 years of IT experience, including 6+ years of deep cybersecurity expertise spanning CERT operations, incident response, malware analysis, application security, and enterprise software development. Lead technical architect at aipol.com.pl designing custom software, AI automation solutions, and security services. Proven expertise in building scalable systems, threat hunting automation, and mentoring development teams on security best practices. Bilingual professional (English / Polish) with strong communication skills in international settings.

Keywords: Incident Response, Malware Analysis, Python, JavaScript, Full-Stack Development, Splunk, Application Security, AI Agents, LLM Integration, Penetration Testing, SIEM, Cloud Architecture, Threat Intelligence, Leadership, SaaS Development

Work Experience

Founder & Technical Lead aipol.com.pl 2022 — Present
Warsaw, Poland

Co-building Polish IT services company as lead technical person. Architecting and delivering custom software solutions, AI automation workflows, and comprehensive security services for enterprise clients.

  • Technical Leadership: Design and oversee architecture for multi-tenant SaaS platforms, e-commerce integrations, and enterprise automation solutions
  • AI & Automation: Architect and deploy custom LLM-based agents and AI automation workflows for business process optimization
  • Security Services: Conduct infrastructure audits, penetration tests, and security assessments; provide remediation guidance to clients
  • Product Development: Co-developing skanujzdrowie.pl medical testing platform (e-commerce + patient portal) with Novazym laboratory
  • Portfolio Projects: Building hackersim.io — cybersecurity education platform with browser-based labs and realistic exploit simulations
  • Full-Stack Development: Python, JavaScript (Node.js, React), API design, database architecture (PostgreSQL, MongoDB)
Fullstack Developer & Splunk Specialist Citibank 2020 — 2022
Warsaw, Poland — Global Security Operations

Developed dashboards and search optimization tools for global storage infrastructure monitoring. Modernized legacy systems using Python full-stack development.

  • Designed and deployed complex Splunk dashboards analyzing terabytes of infrastructure data across global datacenters
  • Built custom Python/Flask/SQL search engine for storage server fleet management, reducing query times by 60%
  • Rewrote legacy Java application into modern Python full-stack application, improving maintainability and performance
  • Collaborated with security operations team on automated alerting and threat correlation
Application Security Consultant GlaxoSmithKline (GSK) 2019 — 2020
Remote (Global)

Sole administrator of security policy management platform. Provided security training and guidelines to development teams.

  • Sole SDElements platform administrator for entire corporation; managed security policy workflows and compliance tracking
  • Developed and delivered security guidelines, code review standards, and training materials for development teams
  • Partnered with development leadership on secure SDLC implementation
Security Analyst Aviva 2019
Warsaw, Poland — Global Security Operations Center

Daily threat analysis and incident triage for global insurance operations. Built automated phishing detection and analysis tooling.

  • Performed daily threat analysis, alert triage, and incident assessment for GSOC
  • Automated phishing email analysis tool using Python, reducing manual review time by 70%
IT Security Engineer (Mid) Comtegra 2018 — 2019
Warsaw, Poland

Implemented endpoint protection and data loss prevention solutions. Detected and analyzed advanced threats.

  • Deployed Symantec DLP and SEP across enterprise infrastructure
  • First to detect and fully analyze a failed targeted campaign; provided comprehensive C2C analysis
IT Administrator Heritage Real Estate 2017 — 2018
Warsaw, Poland

Managed IT infrastructure and built custom ticketing system for 300+ user organization.

  • Managed IT infrastructure for 300+ end users; handled hardware, networking, and software distribution
  • Designed and implemented custom ticketing and helpdesk system from scratch
Junior IT Security Specialist ComCERT SA 2016 — 2017
Warsaw, Poland

Started security career handling incident response and malware analysis. Automated threat intelligence gathering.

  • Handled Tier 1 and Tier 2 incident response; investigated security alerts and contained threats
  • Reverse-engineered malware families including DanaBot and TrickBot; documented findings for threat intelligence
  • Automated deepweb threat intelligence scanning, significantly reducing manual monitoring workload

Technical Skills

Languages & Frameworks

Programming: Python, JavaScript, SQL, Java, Bash

Web: React, Node.js, Flask, FastAPI, HTML5, CSS3

Databases: PostgreSQL, MongoDB, Redis, SQLite

Cybersecurity & Tools

SIEM & Monitoring: Splunk, ELK Stack, Prometheus

Security Tools: Metasploit, Burp Suite, OWASP ZAP, Wireshark

Incident Response: Threat hunting, malware analysis, log analysis, YARA rules

AI & Automation

LLM Integration: OpenAI APIs, Claude API, prompt engineering

Automation: Workflow orchestration, data pipelines, bot development

Analytics: Data analysis, visualization, predictive modeling

Cloud & Infrastructure

Cloud Platforms: AWS, Google Cloud, Fly.io, Vercel

DevOps: Docker, GitHub Actions, CI/CD pipelines, monitoring

Architecture: Microservices, SaaS design, multi-tenant systems, REST APIs

Application Security

Expertise: Code review, vulnerability assessment, penetration testing, secure SDLC

Standards: OWASP Top 10, CWE, CVSS, compliance frameworks

Soft Skills

Leadership: Technical decision-making, mentoring, cross-team collaboration

Languages: English (fluent), Polish (native)

Projects & Notable Achievements

Harsh Medieval World (Browser MMO) In Production — 1000+ concurrent players

Solo-built persistent browser-based MMO set in harsh medieval world. Built with vanilla JavaScript, Canvas API for rendering, and WebSocket backend. Hosts 1000+ simultaneous players on Fly.io infrastructure. Features include player-driven economy, card-based combat system, settlement management, and material quality crafting cascades.

hackersim.io (Cybersecurity Education Platform) Active Development

Building browser-based cybersecurity learning platform featuring realistic Linux virtual machines, real exploits, and procedural web challenges. Focus on hands-on pentesting training through live vulnerable targets. Currently used by educational institutions.

skanujzdrowie.pl (Medical Testing E-Commerce) Co-Building

Co-developing e-commerce platform for online cancer screening tests in partnership with Novazym laboratory. Features include order management, test kit logistics, result delivery, and secure patient portal with automated communication workflows.

1audio2headphones (Open Source · Web Audio Tool) Released Free · GitHub Pages

Browser-based tool solving synchronized audio playback across two pairs of headphones from one device — no hardware splitters (which cause volume drops), no Bluetooth pairing, no driver hacks. Released as free open-source alternative to paid audio routing software ($30-100). Pure browser solution using Web Audio API. Live demo: caytec.github.io/1audio2headphones

FreeSystemDoctor (Open Source · Windows Diagnostic Tool) Released Free · GitHub

Comprehensive Windows diagnostic and repair toolkit — built as free open-source alternative to predatory "PC cleaner" software (CCleaner Pro, IObit, Restoro) that charge $30-50/year subscriptions for what Windows does for free. Scans hardware health, performance bottlenecks, system integrity, registry, and security. No subscriptions, no upsells, no false alarms inflating issue counts. Repository: github.com/caytec/freesystemdoctor

Education & Continuous Learning

Self-directed continuous learning path focused on emerging security threats, AI/ML integration, and modern full-stack development practices. Regular participation in cybersecurity conferences, CTF competitions, and open-source community contributions. Maintain expertise through hands-on projects, threat intelligence research, and mentoring junior engineers.

Languages

English — Fluent (professional level, technical communication)

Polish — Native