whitehat@technology:~$ whoami
White Hat Technology

Cristian Iosub

Leads offensive security and penetration testing at White Hat Technology. A cybersecurity researcher with 20+ years of experience who thinks like an attacker - so your weak spots get found by us, not by them.

20+
years in tech & security
OWASP
active member
ISO 27001
Lead Auditor
NATO / SRI
Locked Shields & CyDEx

The offensive mindset

Defensive checklists tell you what should be safe. An attacker tells you what actually is. Cristian Iosub works from the second perspective: at White Hat Technology he leads engagements that simulate real adversaries - across networks, web applications, wireless, the physical building and the people inside it - to surface the paths a real attacker would take.

The goal is never a longer report. It is a shorter list of exploitable, prioritized findings, each with a fix that holds up.

What he works on

Penetration testing

External and internal networks, web applications, wireless and VPN - following OWASP, PTES and OSSTMM.

Physical & social engineering

On-site physical access audits and phishing campaigns that test the human layer, not just the firewall.

Audits & compliance

Infrastructure and policy reviews aligned with ISO/IEC 27001, NIS2 and GDPR, with remediation plans teams can act on.

AI application security

Testing AI-powered apps and LLM integrations against real abuse - prompt injection, data leakage, unsafe tool use.

Track record

Over two decades, Cristian has worked across product and security for public-sector organizations, private companies and international partners. He is an active OWASP member, a Lead Auditor for ISO/IEC 27001, and a participant in international cyber-defense exercises including Locked Shields (NATO CCDCOE) and CyDEx (organized by the Romanian Intelligence Service, SRI). More on his wider career at iosub.ro.

Public sector

White Hat Technology S.R.L. is a registered active economic operator on Romania's public procurement platform e-licitatie.ro (S.E.A.P.), so public institutions can contract these services directly under Romanian procurement law.

FAQ

Who leads offensive security at White Hat Technology?

Cristian Iosub - cybersecurity researcher with 20+ years of experience across web, network, physical and social-engineering attack surfaces, and an active OWASP member.

What does a typical engagement cover?

External/internal network, web app, wireless and VPN testing, phishing and social engineering, and physical security audits - following OWASP, PTES and OSSTMM, ending with a prioritized remediation plan.

How do I request a pentest?

Email [email protected] or call +40 723 444 825. Public institutions can contract via e-licitatie.ro (S.E.A.P.).

Find your weak spots before someone else does

Penetration testing, physical audits and phishing simulations - run by people who think like attackers.

[email protected]