You're seeing this page as if you were . The main menu is still yours, though. Exit from immersion
Malt Strategy
New report
Malt Tech Trends 2026
Adrià Pagès TorruellaAP

Adrià Pagès Torruella

Security Engineer

€500/day
Barcelona, ES
3-7 years
Incident Response
Vulnerability Management
PCI DSS
Web Security
AWS

Average response time: 1 hour

About Adrià

About me

I'm a cybersecurity engineer based in Barcelona, specialised in Threat Hunting, Incident Response, and Detection Engineering. Over the past years I've protected critical enterprise environments — at Zurich Insurance I led L3 IR operations across all global business units (+60,000 endpoints), designing detections and automating workflows on CrowdStrike, Splunk, and Cortex XSOAR.

What I do

I bring an uncommon mix: a solid defensive foundation paired with real offensive capability. I've developed custom malware to test security controls, discovered 3 working bypasses against CrowdStrike Falcon, and reverse-engineered samples to extract IOCs. This lets me design detections by thinking like an attacker, not just reacting to alerts.
I'm also a product builder: I designed, developed, and launched MottivAI (mottivai.com), a microservices-based SaaS that uses LLMs to streamline job-search workflows. That gives me a practical perspective when working with engineering teams on AppSec and DevSecOps.

How I can help

  • Threat Hunting & Detection Engineering: SIEM/EDR alert design, false-positive reduction, proactive hunts
  • Incident Response: investigation, containment, and remediation of security incidents
  • Malware Analysis: static and dynamic analysis, reversing, IOC extraction
  • AppSec / DevSecOps: SAST/DAST integration into the SDLC, risk-based vulnerability management
  • PCI DSS: security requirements definition and implementation

Stack: CrowdStrike Falcon, Splunk, Microsoft Defender, Cortex XSOAR, OpenSearch, Proofpoint, Tanium, Azure, AWS, Docker, Python, Bash.

Certifications: BSCP (PortSwigger), CySA+ (CompTIA).
I publish technical research on blog.adriapt.com, covering web security, malware development, and AI applied to security.
Insurance
Digital and IT Services

  • Spanish

    Native or bilingual

  • English

    Fluent

  • Catalan

    Native or bilingual

Can work on-site
Barcelona (up to 50km)

Experience

  • Welltech
    Security Engineer
    November 2025 - Today (7 months)
    Barcelona, Spain
    • • Designed and implemented a risk-based vulnerability management lifecycle integrated into the SDLC, reducing alert fatigue and enabling developers to remediate insecure code earlier in the pipeline
    • • Drove PCI DSS compliance by defining security requirements and collaborating cross-functionally with engineering, infrastructure, and product teams
    • • Monitored security alerts and led incident response efforts, effectively containing and mitigating threats across the organisation
    Vulnerability Management Incident Response
  • Zurich Insurance
    Incident Response & Threat Hunting Consultant
    August 2024 - November 2025 (1 year and 3 months)
    Barcelona, Spain
    • • Provide L3 Incident Response service to all Zurich Insurance Business Units around the world
    • • Investigate new threats and attacks used by threat actors acros +60.000 endpoints; conduct Threat Hunts to proactively detect menaces in the network
    • • Design, create and maintain 30+ alerts in SIEMs & EDRs to detect potential threats on time and minimise false positives
    • • Designed and developed automations to improve Threat Hunting workflow and provide metrics and dashboards
    • • Reverse engineered malware to obtain IOCs and update existing alerts; developed malware to test security tools and found 3 CrowdStrike bypasses
    • • Tools: CrowdStrike Falcon, Splunk, Proofpoint, Tanium, Microsoft Defender, Cortex XSOAR, OpenSearch, Azure, AWS
    AWS Incident Response Malware Analysis Threat Hunting
  • Zurich Insurance
    Information SecurityAnalyst
    August 2022 - August 2024 (2 years)
    Barcelona, Spain
    • • Enhanced and managed security operations within the Spanish Business Unit of Zurich Insurance
    • • Performed SAST and DAST scans on multiple applications and collaborated with developers to remediate vulnerabilities
    • • Provided support by handling IAM tickets from a security perspective
    Web Security Vulnerability Management
Check out Adrià's experience

Recommendations

Be the first to recommend Adrià

Help this freelancer shine by sharing your experience working together.

These freelancer profiles also match your criteria

AgathaA

Agatha Frydrych

Backend Java Software Engineer

4.7

(3)

2

BaptisteB

Baptiste Duhen

Fullstack developer

4.6

(4)

5

AmedA

Amed Hamou

Senior Lead Developer

4

(2)

7

AudreyA

Audrey Champion

Web developer

4.3

(3)

4

Signup to reveal

Education

  • Bachelor of Science
    Universitat Politècnica de Catalunya (UPC)
    2022
    Bachelor of Science
  • Hacking, Network Security, Machine Learning
    KTH Royal Institute of Technology
    Hacking, Network Security, Machine Learning
Check out Adrià's education

Certifications

Categories