Aleksander Frelas — Co-Founder

With over a decade of experience in cybersecurity, I have led offensive security, penetration testing, vulnerability management, and security automation initiatives across global organizations. My work spans industries including finance, healthcare, retail, aviation, logistics, and technology, where I have helped secure critical infrastructure, enterprise applications, and large-scale cloud environments. I have built and managed product security programs, integrated security into SDLC and DevSecOps pipelines, and developed automated security testing solutions. My experience includes leading red team assessments, designing risk-based vulnerability management strategies, and aligning security initiatives with business objectives. By combining technical expertise with strategic leadership, I help organizations proactively reduce risk and strengthen security resilience. Key Contributions ✔ Led product security and cybersecurity initiatives, integrating security into software development and infrastructure operations. ✔ Managed penetration testing and security automation programs, improving security validation across diverse environments. ✔ Developed and executed risk-based vulnerability management strategies, ensuring prioritized remediation of critical threats. ✔ Designed and implemented offensive security frameworks, including adversary simulation, red teaming, and breach response exercises. ✔ Advised executives on cybersecurity risk, ensuring alignment with regulatory requirements and business objectives. ✔ Mentored cybersecurity teams, fostering technical growth and leadership development. I am passionate about building and scaling security programs, automating security processes, and helping organizations stay ahead of emerging threats. My approach ensures that security is not just a compliance measure but a core enabler of business resilience.

Stackforce AI infers this person is a Cybersecurity Expert with a focus on Offensive Security and Risk Management.

Experience: 19 yrs 2 mos

Skills

Penetration Testing
Application Security

Career Highlights

Over a decade of experience in cybersecurity.
Expert in penetration testing and vulnerability management.
Proven track record in aligning security with business objectives.

Work Experience

Ensombl

Strategy Advisor (4 mos)

Velite.io

Founding Member (2 yrs 4 mos)

FreightCaviar

Cybersecurity Content Contributor (2 yrs 7 mos)

Gap Inc.

Senior Manager - InfoSec - Penetration Testing & Security Automation (1 yr 10 mos)

SecureIT

Director - Penetration Testing Program (11 mos)

MobiWorks Consulting

Founder (6 yrs 1 mo)

IBM

Managing Consultant - Penetration Tester - X-Force Red (2 yrs 4 mos)

KPMG US

Cyber Defense Consultant (5 mos)

Crowe

IT Security Engineer (2 yrs 3 mos)

Purdue University

IT Technical Support (5 mos)

University of Notre Dame

Digital Project Assistant (3 mos)

Mondo

Music Artist Manager (3 yrs 6 mos)

The RuneScape Store

Owner & CEO (6 yrs 3 mos)

Education

at The Leadership School of the Freedom Institute

Bachelor of Science at Purdue University

at Trinity School at Greenlawn

at The Leadership School of the Freedom Institute

Aleksander Frelas

Co-Founder

United States19 yrs 2 mos experience

Most Likely To Switch

Key Highlights

Over a decade of experience in cybersecurity.
Expert in penetration testing and vulnerability management.
Proven track record in aligning security with business objectives.

Stackforce AI infers this person is a Cybersecurity Expert with a focus on Offensive Security and Risk Management.

Contact

Skills

Core Skills

Penetration TestingApplication Security

Other Skills

Ethical HackingDigital StrategyInformation SecurityVulnerability ScanningVulnerability AssessmentDatabase SecurityNetwork SecurityProject ManagementSystems AnalysisData AnalysisSystem AdministrationSocial MediaInformation TechnologySecurityComputer Security

About

Experience

19 yrs 2 mos

Total Experience

2 yrs 5 mos

Average Tenure

6 yrs 1 mo

Current Experience

Ensombl

Strategy Advisor

Jan 2026 – Present · 4 mos

Velite.io

Founding Member

Jan 2024 – Present · 2 yrs 4 mos · United States

Freightcaviar

Cybersecurity Content Contributor

Oct 2023 – Present · 2 yrs 7 mos

Gap inc.

Senior Manager - InfoSec - Penetration Testing & Security Automation

May 2021 – Mar 2023 · 1 yr 10 mos · Remote

Managed the penetration testing program to achieve utilization and KPI/OKR targets
Ascertained career development and competency progression of four penetration testers
Demonstrated a strong depth of knowledge in cybersecurity principles through hands-on testing
Built an in-house automated penetration testing and reporting platform to reduce manual penetration testing effort by 40%
Aligned the program’s processes with validation standards and quality of service expectations
Set team goals and collects supporting metrics to measure performance
Led development and improvement of program processes and methodologies
Oversaw team discretionary budgets inclusive of training, non-billable travel, and other incidentals
Responsible for talent decisions regarding performance management, compensation, and hiring
Optimized asset management to attribute ownership to 90% of previously untracked assets
Managed vendor relationships and engagement

Secureit

Director - Penetration Testing Program

Jun 2020 – May 2021 · 11 mos · Remote

Founded the penetration testing program to perform testing for clients requiring FedRAMP assessments
Expanded the penetration testing program to stand-alone assessments, increasing revenue 60% in one year
Exercised both technical and managerial expertise

Mobiworks consulting

Founder

Apr 2020 – Present · 6 yrs 1 mo · Texas, United States

MobiWorks Consulting LLC is a US-based cybersecurity consulting company specializing in performing network, web, API, and mobile application penetration testing and vulnerability assessments. With over a decade of hands-on testing experience, MobiWorks has served clients of all sizes in the public sector, healthcare, financial, utility, transportation, and retail/commercial industries.

Ethical HackingApplication SecurityDigital StrategyInformation SecurityVulnerability ScanningPenetration Testing+1

Ibm

Managing Consultant - Penetration Tester - X-Force Red

Feb 2018 – Jun 2020 · 2 yrs 4 mos · Global

Specialized in Web Application, API, Mobile Application Penetration Testing, and Social Engineering
Occasionally performed Internal /External Network Penetration Testing

Kpmg us

Cyber Defense Consultant

Sep 2017 – Feb 2018 · 5 mos

Conducted security testing and assisted stakeholders with identifying viable remediation solutions for any vulnerability identified
Tracked, assisted and managed the resolution and closure of security risks including reviewing plans and monitoring progress or remedial actions
Delivered technical Security Testing (includes Penetration Testing) and Security Assessments
Established appropriate metrics in order to have a solid understanding of the operational issues and provided value reporting to the stakeholders
Provided an in-depth review of an organization’s ability to protect its information assets and its preparedness against cyber threats
Proactively assessed organizations’ technical infrastructure including host-based log analysis, and/or network analysis to determine if any unidentified compromise has occurred previously
Provided reviews of organizations’ abilities to respond to cyber security incidents
Supported clients in the identification, creation and execution of an IR program after a cyber-incident has occurred

Crowe

IT Security Engineer

Jun 2015 – Sep 2017 · 2 yrs 3 mos · Chicago, Illinois

Performed comprehensive client assessments pertaining to internal and external network penetration
Classified findings based on risk ratings and areas of impact within the client environment, such as Access Management, Patch Management, Password Management, Vendor & Third-Party Application Management, Physical Network Management and Security Awareness/Social Engineering
Mitigated control issues by developing corrective solutions within strict deadlines
Delivered risk findings to clients through technical work-papers, conference calls, and detailed reports

Purdue university

IT Technical Support

Aug 2014 – Jan 2015 · 5 mos · West Lafayette, IN

Provided IT support for the school’s faculty, staff, and graduate students
Worked with an enterprise ticket system to track and remediate issues
Supported Microsoft Exchange accounts and facilitated e-mail account upgrades

University of notre dame

Digital Project Assistant

May 2014 – Aug 2014 · 3 mos

- Generated digital surrogates of historical documents for archival purposes

Mondo

Music Artist Manager

Jul 2012 – Jan 2016 · 3 yrs 6 mos

The runescape store

Owner & CEO

Mar 2007 – Jun 2013 · 6 yrs 3 mos

Launched and managed a successful e-Commerce company specializing in selling gaming goods
Delegated independent assignments to security, operational, financial, marketing, and accounting departments
Employed and trained four staff members
Recognized as a top-seller by gaming communities world-wide