External Cybersecurity Architect
Ing. František Kopl, CISSP - cybersecurity architect with 20+ years of experience in IT and security.
I am an experienced IT manager and Enterprise Solution Security Architect. For more than two decades I have helped large organizations design, build, and operate secure IT environments - from strategy through architecture to hands-on implementation.
I have worked both on the customer side (ČEZ ICT Services, W.A.G. payment solutions, Adecco Group) and the vendor side (Microsoft Consulting Services, Anect, Trustsoft, KPCS). This dual perspective lets me understand both the business needs of regulated companies and the realities of the supplier ecosystem.
Since 2022 I have been working as an independent consultant and external architect. I specialize in companies that need to meet the requirements of the new Czech Cybersecurity Act and NIS2 - and want to invest meaningfully, not just for the sake of looking compliant.
The board needs decision input, not paragraphs. I talk about risk, cost, time, and impact - not acronyms.
Architecture recommendations are implementable, tested in practice, and respect operational reality.
No big bangs. We start where the risk is highest or the deadline is closest, and gradually build maturity.
I have no interest in selling you a specific vendor or product. I recommend what makes sense for your situation.
External Lead Architect. Migration of a 10+ year old IoT solution (Europe, APAC). Assessment of existing state, business and security requirements, target design (Azure, Kubernetes, microservices, multitenant). Delivery plan for 19 people. Update of cloud operations standards (Azure landing zones). CxO communication.
Assessment of M365 usage in an oil/gas company under NIS2. Three exit scenarios, migration plan, governance and schedule, risk and mitigation analysis, test scenarios, exit initiation criteria. Data inventory and export scripts.
Global agency searching for CxO roles for Fortune 500 companies. Security assessment of HQ and 80 branches, 600 employees. Security policies, risk analysis, GDPR, NIS2, ISO 27001/2.
Global chemicals manufacturer. Expansion of existing guidelines and standards for IRP and DR procedures (roles, functions, communication plans, DR steps, infrastructure priorities).
Preparation of selected applications for migration to AWS. Business requirements (RTO, RPO), target architecture, TCO. Security baselines for main building blocks (EC2, S3, ECS, RDS). Remediation of security findings.
Migration of 14 Tatra Banka applications to AWS. Initial analysis, target design, cost calculations, approval management (security, operations), infrastructure modeling, stakeholder communication, delivery support.
Review of hardening options for Microsoft PKI to support post-quantum cryptography in fintech. Research, proposal of next steps.
Design and delivery of integrated web solutions (CRM, integrations, websites) for 57 countries, 3 regions, 4 brands, ~10M visits per month. Sitecore WCMS, high availability, integrations to CRM and tracking platforms.
Free 30-minute consultation. We assess your current state and propose concrete steps to reach your target state.
Free consultation