Dionysis Karamitopoulos

Entra ID  ·  Intune  ·  Defender XDR  ·  Security Architecture  ·  ISO/IEC 27001:2022

Designing secure Microsoft 365 environments through strategic Identity & Access Management, endpoint governance, and ISO-aligned security architecture — reducing exposure and enabling sustainable compliance at scale.

Dionysis Karamitopoulos

ABOUT ME

Building Secure Digital Infrastructures Through Strategic Governance

I'm an Information Security Architect focused on Microsoft 365 security. I specialise in Identity & Access Management, endpoint governance, and secure cloud design. My tools of choice are Intune, Defender XDR, and Entra ID.

I have hands-on experience with ISO/IEC 27001:2022. This covers risk management, internal audits, and regulatory alignment. I build governance structures and security baselines that support business goals.

Career Focus

  • Microsoft 365 security architecture and secure environment design
  • Identity & Access Management with Entra ID in hybrid environments
  • Endpoint governance via Intune & Defender XDR
  • ISO/IEC 27001:2022 implementation, risk management, and compliance

Strategic Thinking

I align security with business goals. Risk is managed, not avoided.

Collaborative Leadership

I work across teams to embed security best practices organisation-wide.

Continuous Improvement

I stay current with emerging threats and adapt security strategies accordingly.

"

Delivering security programmes that improve visibility, reduce exposure, and support sustainable compliance.

PROFESSIONAL EXPERIENCE

Career Journey

Freelance IT & Cybersecurity Consultant

Fiverr · Freelance

Nov 2025 - PresentRemote
  • Providing IT infrastructure, cybersecurity, and compliance consulting.
  • Technical troubleshooting and security hardening for SMEs.
  • Managing client engagements and delivering quality technical solutions.

Security Specialist

Microsoft Community · Freelance

Apr 2025 - Feb 2026 · 11 monthsRemote
  • Supported users on the Microsoft Community Hub.
  • Focused on Microsoft security products — guidance and technical solutions.

IT Systems & Integration Engineer (Cybersecurity & Compliance Projects)

Simtec Software & Services · Contract

Mar 2025 - Oct 2025 · 8 monthsThessaloniki, Greece · Hybrid
  • Deployed Microsoft Intune across all endpoints with security baselines and compliance policies.
  • Integrated Microsoft Defender for Endpoint to strengthen threat detection and incident response.
  • Designed Conditional Access, App Protection, and Identity Protection policies.
  • Configured Fortinet FortiGate firewalls with VPN, certificate auth, and deep inspection.
  • Developed ISO/IEC 27001:2022 policies, risk assessments, and incident response procedures.
  • Performed internal audits and gap analyses ahead of external ISO 27001 certification.
  • Delivered cybersecurity awareness training to staff.

Project: Mixys Cloud Platform Security

  • Secured the Mixys cloud infrastructure through configuration and monitoring.
  • Implemented WAF, VPN, and endpoint security for application and data protection.
  • Ensured GDPR compliance: HTTPS/TLS, encryption, audit logs, MFA, and RBAC.

MIS Engineer & System Administrator

Regency Casino Thessaloniki · Full-time

Oct 2023 - Mar 2025 · 1 year 6 monthsThessaloniki, Greece · On-site
  • Deployed and managed Defender for Endpoint, FortiEDR, and Intune for unified endpoint protection.
  • Configured FortiMail with anti-phishing filters and spam mitigation.
  • Managed Active Directory and GPOs for user provisioning and access control.
  • Led Project BUTLER — integrated new IT systems into casino F&B operations.
  • Delivered technical support aligned with security standards and compliance posture.

Information Security Analyst

CBS LAN A.E. / Lancom Ltd · Contract

Mar 2024 - Dec 2024 · 10 monthsThessaloniki, Greece · On-site
  • Training programme in IBM QRadar SIEM — log collection, correlation, and event analysis.
  • Identified and classified security incidents and false positives.
  • Exposure to SOC workflows, incident escalation, and reporting.
  • ISO/IEC 27001:2022 control mapping and risk management fundamentals.
  • Analysed EDR alerts and Defender for Endpoint telemetry.

Support Engineer

SingularLogic · Full-time

Jul 2022 - Oct 2023 · 1 year 4 monthsThessaloniki, Greece · Hybrid
  • Primary contact for software and hardware technical support.
  • Remote troubleshooting using diagnostic tools.
  • Managed service requests via phone, email, and ticketing systems.
  • Verified support contract terms and coverage for each request.

Career Break

Professional Development · Career Break

Sep 2020 - May 2022 · 1 year 9 monthsThessaloniki, Greece
  • Focused on upskilling in cybersecurity, system administration, and networking.
  • Completed certifications and online courses in IT and security.
  • Attended workshops on cloud computing and IT security.

Professional FIFA Player & Streamer (eSports)

Synapsecom Telecoms S.A. · Full-time

Apr 2020 - Sep 2020 · 6 monthsThessaloniki, Greece · On-site
  • Competed in professional FIFA tournaments on live-streamed betting platforms.
  • Managed online presence and engaged with a fanbase during streams.
  • Analysed in-game stats to improve competitive performance.

Office Employee

Coral A.E. · Full-time

Nov 2018 - Apr 2019 · 6 monthsThessaloniki, Greece · On-site
  • Managed daily office operations including sales and invoicing.
  • Coordinated fuel deliveries and monitored stock levels.
  • Handled customer concerns and maintained financial records.

Office Employee at Fuel Station

Iliadis Paulos & Co · Full-time

Nov 2017 - Sep 2018 · 11 monthsThessaloniki, Greece · On-site
  • Handled invoicing, sales documentation, and supplier communication.
  • Managed fuel orders and inventory.
  • Resolved customer complaints and maintained filing systems.

Owner & Manager | Delicatessen Store

Tsotyli Delicatessen · Self-employed

Jul 2015 - Jul 2017 · 2 years 1 monthThessaloniki, Greece · On-site
  • Oversaw store operations — inventory, procurement, and team coordination.
  • Ran marketing initiatives to grow sales and retain customers.
  • Managed budgeting and financial reporting.
  • Built strong client relationships through excellent service.

CERTIFICATIONS & CREDENTIALS

Professional Qualifications

Click any badge to view details

All certifications are also published on Credly

Visit my Credly profile to verify credentials, view digital badges, and see the full up-to-date list of earned certifications.

View on Credly
Showing 17 of 17

AI In Cybersecurity

Cato Networks

Issued Mar 2026
AI In Cybersecurity Badge
Click to zoom

Information Security Specialist

LetsDefend (now part of HackTheBox)

Issued Dec 2025
Information Security Specialist Badge
Click to zoom

Certified Process Injection Analyst (CPIA)

CyberWarfare Labs

Issued Nov 2025ID: 6929df7e7b627b6c7f0cc207
Certified Process Injection Analyst (CPIA) Badge
Click to zoom

Network Defense

Cisco

Issued Nov 2025
Network Defense Badge
Click to zoom

Cyber Threat Management

Cisco

Issued Nov 2025
Cyber Threat Management Badge
Click to zoom

Digital Safety and Security Awareness

Cisco

Issued Nov 2025
Digital Safety and Security Awareness Badge
Click to zoom

Fortinet FortiGate 7.6 Operator

Fortinet

Issued Aug 2025
Fortinet FortiGate 7.6 Operator Badge
Click to zoom

Fortinet Certified Associate Cybersecurity

Fortinet

Issued Aug 2025 · Expires Aug 2027
Fortinet Certified Associate Cybersecurity Badge
Click to zoom

Google Cybersecurity Certificate

Google

Issued Mar 2025ID: 6951990b-53f9-4581-8248-d55eff2ea8e6
Google Cybersecurity Certificate Badge
Click to zoom

Governance, Risk, Compliance, and Data Privacy

IBM SkillsBuild

Issued Mar 2025ID: 0dc96cb7-b7ac-4770-8ec5-719df406c411
Governance, Risk, Compliance, and Data Privacy Badge
Click to zoom

Microsoft Defender for Endpoint Ninja Training

Microsoft Learning

Issued Feb 2025
Microsoft Defender for Endpoint Ninja Training Badge
Click to zoom

Data Analyst Professional

Reatcode Group

Issued Oct 2023
Data Analyst Professional Badge
Click to zoom

Practical Malware Analysis & Triage

TCM Security

Issued Mar 2023ID: cert_hp4qdp18
Practical Malware Analysis & Triage Badge
Click to zoom

Certificate of Training Network Engineer

National and Kapodistrian University of Athens

Issued Nov 2022
Certificate of Training Network Engineer Badge
Click to zoom

ISO 27001:2013 Basic Principles of Information Security Management Systems

TÜV NORD Hellas

Issued Apr 2022
ISO 27001:2013 Basic Principles of Information Security Management Systems Badge
Click to zoom

Certificate of Training Cybersecurity & Cybercrime

National and Kapodistrian University of Athens

Issued Jan 2022
Certificate of Training Cybersecurity & Cybercrime Badge
Click to zoom

Strategic Cybersecurity Management

AttackIQ

Issued Jan 2022
Strategic Cybersecurity Management Badge
Click to zoom

TECHNICAL EXPERTISE

Skills & Technologies

Specialized in Microsoft Security Ecosystem

CORE COMPETENCIES

Microsoft Security ArchitectureIdentity & Access ManagementDefender XDR & EDRIntune & Endpoint GovernanceSecurity GovernanceRisk AssessmentISO 27001 AlignmentNetwork & Email SecurityInfrastructure ProtectionIncident ManagementThreat Investigation

Microsoft 365 Security

Microsoft Defender for Endpoint
Microsoft Defender for Office 365
Microsoft Defender for Identity
Microsoft Defender for Cloud Apps
Security & Compliance Center
Purview Information Protection
Purview Data Loss Prevention
Threat Intelligence & Analytics

Identity & Access Management

Microsoft Entra ID (Azure AD)
Conditional Access Policies
Multi-Factor Authentication
Privileged Identity Management
Identity Governance
Single Sign-On (SSO)
Azure AD Connect
Identity Protection

Endpoint Security & Management

Microsoft Intune
Endpoint Configuration Manager
Windows Autopilot
Application Management
Compliance Policies
Security Baselines

Infrastructure & Network Security

Azure Security Center
Network Security Groups
Firewall Configuration
VPN & Remote Access
Zero Trust Architecture
Secure Network Design
Vulnerability Management
Security Monitoring

Governance, Risk & Compliance

ISO 27001 Implementation
GDPR Compliance
Risk Assessment & Management
Security Auditing
Policy Development
Incident Response Planning

Systems Administration

Windows Server Administration
Active Directory
PowerShell Scripting
Group Policy Management
Exchange Online
SharePoint Administration
Backup & Recovery
Performance Optimization

COMMUNICATION

Languages

Greek

Native

English

Professional

FEATURED PROJECTS

Key Technical Initiatives

Industrial Network Architecture – Pigadia Ski Resort

Axess Infrastructure Deployment

Dec 2025 – Feb 2026Fiverr

Designed and deployed a production-grade Layer 3 network for a ski resort. The system supports distributed access control and parking automation across the entire site.

Deployment Highlights

  • Core switching: SG2428P / SG3210
  • ER706W-4G router with 4G WAN failover
  • VLAN segmentation: AXESS, CCTV, Guest WiFi, Management
  • 9 industrial PoE cabinets across the resort
  • Dedicated parking infrastructure (APS1, APS2, barrier, counter)
  • Static IP alignment with AXESS vendor range (10.10.10.x)
  • Inter-VLAN routing and firewall policy design
  • CCTV isolated on a dedicated subnet
  • Centralised device management via OC300
Layer 3 NetworkingVLANPoEFirewallCCTVInfrastructure

Documentation

Pigadia – AXESS Network & Infrastructure Overview

High-level overview of the network. Covers gate cabinets, chairlift integration, ticket office, parking automation, and server connectivity.

View PDF

Omada L3 Network Architecture – Pigadia Deployment

Layer 3 network design and VLAN segmentation. Includes core switching, ER706W-4G gateway, industrial PoE cabinets, and parking network. Built for traffic isolation and scalable access control.

View Doc

Pigadia – Omada Network Architecture & Runbook

Full deployment runbook. Includes VLAN design, IP addressing, PoE cabinets, parking integration, firewall rules, and security hardening guidelines.

View Doc

Cyber-Physical Systems (CPS) Smart Office – Network & Security Design

University Project – Mediterranean College

Nov 2025 – Jan 2026Mediterranean College

University project designing a secure Smart Office network. It simulates a Siemens-style CPS environment with IoT devices and enterprise IT. A Head Office and Branch Office are connected via IPsec VPN. Built in Cisco Packet Tracer with full security documentation.

Deployment Highlights

  • HQ with CPS Control Server, Backup, and SIEM
  • IoT devices: smart lamp, door lock, CCTV, thermostat, sensors
  • Secure Wi-Fi with WPA2-PSK and AES encryption
  • VLANs: 10 (Servers), 20 (IoT), 30 (Branch)
  • Site-to-site IPsec VPN (AES) between HQ and Branch
  • OSPF for dynamic routing
  • Firewalls and ACLs for perimeter security
  • AAA local authentication on all devices
  • Branch users control HQ IoT devices through VPN
CPSIoT SecurityIPsec VPNVLANOSPFCisco Packet TracerSIEMACLWPA2

Documentation

University of Derby – CPS Smart Office Presentation

Project presentation covering the network design, VLAN segmentation, IPsec VPN, and before/after hardening analysis.

View PDF

Our Network Topology

Visual topology showing HQ and Branch architecture, VLANs, IPsec tunnel, IoT devices, and server placement.

View Image

Enterprise GRC Transformation & Risk Reduction Program

300+ Employees – Financial Sector

Oct 2025 – Jan 2026Fiverr

A 4-month GRC transformation for a 300+ employee financial organisation. The project covered risk identification, impact assessment, mitigation planning, and full policy framework redesign. All outputs were structured for regulatory compliance.

Deployment Highlights

  • Risk workshops and structured risk register
  • 5×5 risk matrix model
  • Executive heat maps for exposure and residual risk
  • Core governance and security policy redesign
  • Control ownership with RACI model
  • ISO 27001 / NIST control alignment
  • Measurable reduction in critical risk exposure
  • Improved audit readiness and policy enforceability
GRCISO 27001NISTRisk ManagementRisk RegisterRACIPolicy FrameworkAudit Readiness

Documentation

Anonymized Enterprise GRC Transformation Report

Anonymized 4-month GRC project for a financial services firm. Includes risk assessment, heat maps, control gaps, policy redesign, RACI model, and mitigation roadmap.

View PDF

Project Butler – F&B Systems Optimization

Regency Casino Thessaloniki

Oct 2024 – Jan 2025Regency Casino Thessaloniki

Led Project Butler at Regency Casino Thessaloniki. The goal was to improve Food & Beverage operations through better technology. The project was delivered on time and at 100% completion.

Deployment Highlights

  • Built a business plan aligned with department needs
  • Coordinated IT, Finance, and F&B teams
  • Installed devices and printers across the department
  • Worked with Butler company on custom solutions
  • Enhanced access security and user management
  • Delivered on schedule — 100% completion
F&B SystemsProject ManagementIT InfrastructureAccess SecurityUser Management

ACADEMIC BACKGROUND

Education & Training

EDUCATION

European International University - Paris

Official

Advanced Professional Diploma in Cyber Security, Computer and Information Systems Security/Information Assurance

Sep 2025 – Present

Covers both technical and managerial aspects of cybersecurity. Key areas include risk management, infrastructure protection, and incident response.

Includes preparation for the BSI ISO 27001 Lead Auditor certification. Covers ethical hacking, penetration testing, and strategic security decision-making.

Mediterranean College

Advanced Professional Diploma in Cyber Security, Computer and Information Systems Security/Information Assurance

Sep 2025 – Present

Covers both technical and managerial aspects of cybersecurity. Key areas include risk management, infrastructure protection, and incident response.

Includes preparation for the BSI ISO 27001 Lead Auditor certification. Covers ethical hacking, penetration testing, and strategic security decision-making.

General High School

High School Diploma, Technological

2006 – 2009

KEY COURSES

European International University - Paris

Advanced Diploma Program

Advanced Security Protocols

Enterprise Security Management

Security: Attacks and Countermeasures

Securing Networks

Human and Legal Aspects of Cyber Security

Certification Preparation

BSI ISO 27001 Lead Auditor — Information Security Management Systems

COMMUNITY & MEMBERSHIP

Professional Memberships

Cloud Security Alliance

Corporate Member

Science & Technology

Cloud Security Alliance

Feb 2026 - Present

ISC2

Candidate

Science & Technology

ISC2

Feb 2026 - Present

CyberSecurity NonProfit (CSNP)

Member

Science & Technology

CyberSecurity NonProfit (CSNP)

Feb 2026 - Present

Chartered Institute of Information Security

Affiliate

Science & Technology

Chartered Institute of Information Security

Feb 2026 - Present

CAUSES I CARE ABOUT

Economic Empowerment
Education
Science & Technology

Speaking & Events

Webinars

Sessions where I share knowledge on cybersecurity, Microsoft 365 security architecture, and compliance frameworks.

AI & Cybersecurity

Artificial Intelligence & Cybersecurity: Threats, Defense and Regulatory Compliance

Free seminar as part of Edu Festival 2026 (140 Free Seminars). The talk explores how AI and GenAI are reshaping cybersecurity — both as attack accelerators (phishing, deepfakes) and defensive tools. Covers risk through the CIA Triad and the EU AI Act accountability framework.

Edu Festival 2026 · ONLINEMediterranean College – School of Computing
AI / GenAIEU AI ActCIA TriadEdu Festival 2026

Download Full Resume

Complete professional profile in PDF format

Download CV (PDF)

GET IN TOUCH

Let's Connect

I'm always interested in discussing new opportunities, collaborations, or sharing insights about cybersecurity and IT infrastructure. Feel free to reach out through any of the channels below.

Send an Email
Connect on LinkedIn

0/500