Roland Kwolek

About me

I am a Cybersecurity Architect with more than 15 years of experience in software development, software architecture, and embedded systems. My career began in embedded software development, where I worked with a wide range of hardware platforms, from resource-constrained microcontrollers to embedded Linux systems. In parallel, I gained experience developing and maintaining large-scale server-side solutions, including distributed telecommunications systems and server infrastructures consisting of thousands of machines. Over time, my focus evolved toward software architecture and cybersecurity, combining deep technical expertise with a strong security mindset.

Today, I specialize in cybersecurity for connected medical devices, helping development teams build secure products that meet both technical and regulatory requirements. My work includes cybersecurity architecture, threat modeling, risk assessments, vulnerability management, incident response, and the integration of security controls throughout the software development lifecycle.

I have extensive experience designing and implementing secure communication solutions, including TLS 1.3, public key infrastructure (PKI), certificate validation, digital signatures, and elliptic curve cryptography. I work closely with software, systems, quality, and regulatory teams to ensure that security is incorporated into products from the earliest design stages.

My technical background spans embedded software, embedded Linux, hardware design, and cloud-connected systems. This broad experience allows me to bridge the gap between engineering teams, architects, and cybersecurity specialists while maintaining a practical understanding of how systems are designed, implemented, and operated.

Outside of my professional work, I enjoy exploring technology through personal projects involving electronics, embedded systems, Linux, watch restoration, and cybersecurity research. I am driven by curiosity, continuous learning, and a passion for understanding how complex systems work and how they can be made more secure.

Professional Highlights

• 15+ years of experience in software development, architecture, and cybersecurity.
• Cybersecurity Architect specializing in connected medical devices.
• Professional experience across medical, automotive, and telecommunications domains.
• Extensive background in embedded systems, embedded Linux, and large-scale distributed software.
• Led the integration of TLS 1.3 and cryptographic security solutions into embedded products.
• Experienced in threat modeling, cybersecurity risk assessments, and secure product development.
• Contributor to wolfSSL-based security solutions.

Cybersecurity

Architecture & Risk Management

• Cybersecurity architecture for connected products.
• Threat modeling (STRIDE).
• Cybersecurity Risk Assessments (CSRA).
• Security requirements definition.
• Security architecture reviews.
• Vulnerability management.
• Incident response.

Secure Development

• Secure Software Development Lifecycle (SSDLC).
• Secure coding practices.
• Security testing and verification.
• Software supply chain security.

Cryptography & Secure Communication

• TLS 1.3.
• Public Key Infrastructure (PKI).
• Certificate validation.
• Digital signatures.
• Elliptic Curve Cryptography (ECC).

Security Assessment

• Penetration testing.
• Wireshark.
• Burp Suite.
• Metasploit.
• Embedded device security analysis.

Software & Security Architecture

• Definition of software architectures for embedded and connected products.
• Cybersecurity architecture and security-by-design principles.
• Threat-driven design of security controls.
• Architecture reviews and technical leadership.
• Collaboration across software, systems, quality, and regulatory teams.
• Experience with IEC 62304 and cybersecurity processes in regulated environments.

Software Development

Languages

• C
• C++
• Python
• Bash
• Assembly

Technologies

• Embedded Linux
• RTOS
• Buildroot
• CMake
• Unit Testing
• MISRA C
• Git
• Docker

Hardware & Embedded Systems

• Embedded system design.
• Digital and analog electronics.
• PCB design and review.
• Hardware troubleshooting.
• Embedded Linux.
• Low-level debugging.
• Hardware/software integration.

Standards & Frameworks

• IEC 62304
• IEC 62443-4-1
• ISO 14971
• FDA Cybersecurity Guidance
• NIST SP 800-30
• NIST SP 800-53
• CVSS

Certifications

• ISC2 Certified in Cybersecurity (CC)
• iSAQB CPSA-F
• Professional Scrum Master (PSM I)

Beyond Work

Outside of my professional activities, I enjoy electronics, embedded systems, Linux, cybersecurity research, watch restoration, and leathercraft. I believe that curiosity and hands-on experimentation are among the best ways to continue learning and developing new skills.