Tamas Buzgo

Position description : 2022 September – 2024 December (end-of-contract)

• Designed and managed implementation of Secure Remote Access for 3rd parties (150+ vendors), Claroty xDome.

• Developed and reviewed ISA95 designs across 62 assets in EMEA; validated secure architecture before vendor implementation.

• Conducted business development aligned with NIS Directive and Industrial Cybersecurity requirements.

• Provided consultancy in OT/IoT environments, including asset discovery, management, secure design adhering to IEC 62443, vulnerability management, and incident response.

• Developed Target Operating Models (TOM) based on IEC 62443 standards.

• Provided Threat Management solutions tailored to industrial environments.

• Engaged directly with clients, including risk assessment and operational technology departments, delivering tailored solutions and presentations.

• Developed RAMI 4.0 solutions (Reference Architecture Model Industry 4.0, a framework designed to structure and align industrial digitalization initiatives) and implemented advanced cybersecurity solutions tailored for Industry 4.0.

• Applied extensive experience with Microsoft Azure architecture and implementation for cloud and hybrid solutions, including Azure Active Directory (AAD), Azure Sentinel, Azure IoT Hub, Azure Security Center, and integrating open-source technologies such as Kubernetes and Docker, along with robust IAM architectures utilizing OAuth, OpenID Connect, and role based access control (RBAC) designs.

Expert

Position description:

• Led business development initiatives aligned with NIS Directive and Industrial Cybersecurity requirements.

• Delivered consultancy in OT/IoT asset management, secure architecture based on IEC 62443, vulnerability management, and incident response.

• Provided governance consultancy, developing Target Operating Models (TOM) leveraging IEC 62443 standards.

• Conducted penetration testing in high-critical environments (digital twin environment) including Oil & Gas, Chemical Industry, Logistics, Automotive, Energy, and Critical RESUME

Infrastructure, reviewed source code by SonarQube, used automated security validation platform from Pentera.

• Designed network and security architectures based on ISA99/IEC 62443 standards.

• Implemented cybersecurity solutions such as Nozomi Networks (Guardian), Microsoft IoT Defender (CyberX), Claroty, Radiflow, and Tenable.ot.

• Managed vulnerability assessment services guided by standards such as NIST 800-82, 800- 53, NIS Directive, and IEC 62443.

• Developed and executed RAMI 4.0 solutions for industrial environments.

• Deployed and managed Microsoft Azure solutions including Azure Security Center, Azure IoT Edge, Azure Active Directory, integrating open-source platforms like Kubernetes and Docker, alongside IAM systems using RBAC and OAuth.

Position description:

• Managed business development to comply with local legislation (69/2018).

• Conducted penetration testing based (Kali Linux, parrot OS) on OWASP for critical environments (Oil & Gas).

• Integral member of a global cybersecurity team, directly interfacing with client risk and DCS departments.

• Conducted SAST/DAST tools for review of source-code (SonarQube)for DAST tools OWASP Zap Burp Professional, Acunetix etc.)

• Designed network and security architectures based on ISA99/IEC 62443.

• Managed projects involving infrastructure replacement and cybersecurity solution implementation.

• Deployed cybersecurity platforms including Nozomi Networks, Microsoft IoT Defender, Claroty, Radiflow, and Tenable.ot.

• Implemented SIEM solutions (McAfee) and network monitoring systems (SolarWinds).

• Utilized Microsoft Azure architecture including Azure AD, Azure Security Center, Azure Sentinel, integrating open-source solutions such as Kubernetes and Docker, and robust IAM frameworks utilizing OAuth and RBAC.