Mihai Stan

Cybersecurity operations leader with 8+ years of experience across Security Operations Centers (SOC), Incident Response, and Governance, Risk & Compliance (GRC) in global enterprise and managed security environments. My focus is building structured, resilient security operations that combine threat detection, incident response, and governance frameworks to deliver measurable risk reduction and operational maturity. I have led multinational response teams handling high-severity cyber incidents, coordinating containment, forensic investigation, and recovery while ensuring executive-level communication and structured escalation management. Alongside operational leadership, I work closely with risk, compliance, and audit teams to ensure security operations align with ISO 27001, NIST CSF, CIS Controls, and regulatory requirements such as NIS2 and GDPR. Key areas of expertise include: • Security Operations Center (SOC) leadership • Incident Response & Major Incident Management • Threat Detection & Threat Intelligence • SIEM & EDR operations (Splunk, Microsoft Sentinel, QRadar, CrowdStrike, Defender) • Security monitoring and escalation management • Security governance and risk management • ISO 27001 and NIST framework alignment • Third-party security risk assessments • Executive reporting, KPI and risk dashboards I have delivered security services in both enterprise environments and MSSP client-facing engagements, supporting security maturity assessments, compliance gap analysis, risk register development, and structured incident response operations. I’m particularly interested in roles focused on Security Operations leadership, SOC transformation, and cyber resilience strategy within organizations that take a proactive approach to security.