Rick de Groot

Cybersecurity Engineer

Rick de Groot

>

I work where identity, risk assessment and offensive security meet — building tooling that turns heavy security processes into something teams can actually run.

Explore my work View projects ↗
01 — About

Practical security, well engineered.

I'm a cybersecurity engineer focused on the overlap between access management, compliance and the offensive side of security. Rather than treat these as separate worlds, I build software that connects them — from biometric IAM platforms to assessment tooling mapped against the major frameworks.

My approach is hands-on: understand the threat, model the controls, then ship a tool that makes the right thing the easy thing.

  • ISO 27001
  • SOC 2
  • NIST CSF 2.0
  • CIS v8
  • OWASP
  • RBAC / ABAC
  • MFA · FIDO2
  • Pen testing
02 — Expertise

What I do.

Identity & Access

Biometric authentication, RBAC/ABAC models, and MFA / FIDO2 workflow design for multi-domain environments.

Assessment & Compliance

Security readiness assessments mapped to ISO 27001, SOC 2, NIST CSF, CIS v8 and OWASP — with clear, reportable outcomes.

Offensive Security

Penetration testing and agentic security automation — finding the gaps before someone else does.

Security Tooling

Desktop and web applications that operationalise security work — from data capture to print-ready reporting.

03 — Selected work

A private project showcase.

Detailed case studies and live builds live over on rickdglab.com.

Unlock projects ↗
04 — Contact

Let's talk security.

Open to conversations about identity, assessment work, and security engineering.

Email me GitHub ↗