Rzec AB is an IT-security consulting business founded and led by Tomas Rzepka, based in Stockholm, Sweden. Specializing in a range of security services, the company offers assessments, architecture, red/purple teaming, and training, with over 20 years’ experience in the industry. I provide personalized and high-quality services to clients of all sizes, aiding with vulnerability identification and overall security improvements. Contact for me more information on protecting against cyber threats.
IT-security consulting with focus on security assessments, security architecture, red / purple teaming and cyber security training.
Security assessments of applications and infrastructure penetrations tests (Attack Path Mapping and red teaming) as well as hardware hacking and reverse engineering. I also led workshops for threat modeling and current state analysis, as well as architecting implementation according to security requirement specifications. Discovered high severity CVE-2021-3057 in Palo Alto Network GlobalProtect VPN client.
Reviewing security designs and penetration testing IT-systems related to companies and government agencies of importance to Swedish national security. Member of the Swedish team for NATO CCDCOE Locked Shields 2019.
Worked in the Computer Emergency Response Team with focus on penetration testing internal systems and as part of the internal red team, training the blue team on detecting intrusions.
Initially worked with implementation and design of network security solutions as well as generic information security. Joined the penetration testing team and earned a GIAC Web Application Penetration Tester (GWAPT) certification. Eventually, I became the team lead and focused solely on pentest assignments.
Presales, support and training; firewalls, VPN, MFA, and other security products. Acquired CISSP certification (2009).
Generic IT, web development and network security consulting.
At Rzec, I offer comprehensive security assessment (penetration testing) services to evaluate the effectiveness of your organization’s cybersecurity measures.
Technical cybersecurity architecture refers to the design and implementation of technical security measures to protect an organization’s information systems, networks, and products from cyber attacks. Rzec have over 20 years of experience helping organizations improve their security posture.
With years of experience in the industry and a deep understanding of the latest techniques and tools used by real-world attackers, I can assist your organization’s red team as an extra member, lead red teaming activities, or develop custom tools and exploits for engagements.
Rzec is currently developing a network security assessment training. Stay tuned.
