MB Saugus Tinklas

Cloud Security
Architecture & Consulting

Cybersecurity consulting services across Europe. Cloud security architecture, posture management, and zero-trust design.

Contact Us → Our Services
FINANCIAL SERVICES / MANUFACTURING / AUTOMOTIVE
About Us

Security expertise across domains

Our team covers multiple security domains, tools, and platforms - from cloud-native architectures to enterprise network defense.

We work with clients in financial services, manufacturing, and automotive - industries where security is a requirement, not an option.
10+
Years Experience
EU
Wide Coverage
5+
Cloud Platforms
AWS, Azure, OCI, GCP, K8s
ZTA
Zero Trust Architecture
Our Services

Areas of expertise

01
CSPM

Cloud Security Posture Management

Azure, AWS, OCI, and GCP security posture audits. Cloud-native and third-party CSPM deployment, misconfiguration detection and remediation. Policy alignment across regulatory frameworks and industry standards.

Wiz MVP Cortex Cloud CloudGuard Orca Security Defender for Cloud
02
Transformation

Cloud Security Transformation

End-to-end security program management. Strategy, tool selection, implementation, team onboarding, and process buildout - from planning to operational maturity. Includes CNAPP adoption programs, DevSecOps integration, alert automation, security policy authoring, and operational handover planning. We also support hiring, team structuring, and vendor management for long-term security operations.

03
Adoption

Cloud Adoption Security

Cloud adoption strategy aligned with DevSecOps and Cloud Adoption Framework best practices. Governance structures, identity frameworks, and security baselines built in from day one.

04
Migration

Cloud Migration Security

Security requirements for data and application deployment in the cloud. Covers both cloud-first and Lift & Shift migration strategies.

05
Network

Cloud Network Security

IaaS and PaaS service security integration and design based on Zero Trust architecture principles.

06
Assessment

Cloud Security Assessments

Hands-on security reviews of AWS and Azure environments. Goes beyond checklists - findings are validated with real-world verification by an experienced practitioner.

Track Record

Selected Projects

Projects our experts have worked on in the past

End-to-end CNAPP program across three cloud platforms - from vendor evaluation and C-level budget approval through multi-cloud integration, RBAC design, user training, and security standards authoring. 2-year engagement.

Key deliverables
  • Developed 2-year project timeline, presented to C-level executives for budget approval
  • Drafted technical requirements, managed RFP, evaluated 3 vendors with PoC assessments and executive scoring reports
  • Produced HLD/LLD documentation, integrated across Azure, OCI, and GCP environments
  • Configured SSO, RBAC (least privilege), custom dashboards, policies, and workload mappings
  • Delivered user training sessions for onboarding and critical issue remediation
  • Authored Cloud Security Management standard aligned with SCF, CIS, and industry best practices

Full Prisma Cloud rollout over 15 months - HLD/LLD design, CSPM/CIEM/Code Security integration, custom RBAC model, ServiceNow alert distribution, and operational handover with 150+ policy reviews across 12+ frameworks.

Key deliverables
  • HLD/LLD documentation compliant with internal governance, including network and data flow diagrams
  • Integrated CSPM, CIEM, and Code Security (Checkov) components across AWS and Azure
  • Built custom ServiceNow on-premises alert integration (non-standard setup)
  • Terraform-based configuration management, custom RBAC model and entitlement matrix
  • Policy review across 12+ regulatory frameworks, 150+ policies for AWS and Azure
  • SSO, Conditional Access, MFA, Trusted Logon IP configuration
  • Identified and escalated product issues - 16 built-in policies corrected by the vendor

Security operations lead for a Lift & Shift cloud migration. Network hardening, infrastructure deployment via Terraform, and first application migrations completed with zero disruption.

Key deliverables
  • Application connection mapping using ServiceMap for disruption-free migration planning
  • Reverse-engineered existing Azure network topology, created documentation, and implemented hardening policies
  • Deployed infrastructure via Terraform - VNETs, Subnets, NSGs with security hardening
  • Migrated first applications with zero production disruption
  • Led team of 3 security specialists, completed full knowledge transfer to Cloud SecOps

CISO-delegated initiative to improve network security posture across 500+ firewall clusters. Delivered on time using automation - 100+ changes implemented across all environments with zero production impact.

Key deliverables
  • Network segmentation improvements across test, development, and production environments
  • Security posture audit and equipment hardening across 500+ firewall clusters
  • Automation using Python, AlgoSec, Skybox, and Nipper Studio
  • 100+ changes implemented with zero disruption to production services
  • Network security policy reviews aligned with least privilege principles
Credentials

Professional Certifications

Microsoft Azure
Cybersecurity Architect Expert SC-100
Azure Architect Expert AZ-300
Azure Security Engineer AZ-500
Azure Fundamentals AZ-900
Security Fundamentals SC-900
Kubernetes (CNCF)
CKA - Certified Kubernetes Administrator
CKS - Certified Kubernetes Security Specialist
General
CISSP (ISC2)
CCSK (Cloud Security Alliance)
Wiz Cloud Fundamentals
Infrastructure & Operations
Terraform Associate 003
ITILv4 Foundation
Industry Experience
Financial Services
Manufacturing
Automotive
Community Projects & Tools

netbobr

Firewall request risk analyzer we built and maintain. Helps security and non-security teams validate firewall requests against PCI-DSS, CIS Controls, and NIST SP 800-53 before submission. Free to use.

Visit netbobr.com →
ZERO TRUST ARCHITECTURE CLOUD NATIVE SECURITY DEFENSE IN DEPTH POSTURE MANAGEMENT DEVSECOPS THREAT MODELING ZERO TRUST ARCHITECTURE CLOUD NATIVE SECURITY DEFENSE IN DEPTH POSTURE MANAGEMENT DEVSECOPS THREAT MODELING
Leadership

Founded by experience

Mindaugas Dailidonis

Mindaugas Dailidonis

Founder & Principal Consultant

Over 10 years in technical and managerial roles across Cloud and Network Security - working with clients in financial services, manufacturing, and automotive.

Expertise
Cloud Security Network Security Zero Trust CNAPP Security Transformation Security Automation Security Architecture Security Leadership & Strategy
Industry Experience
Financial Services Manufacturing Automotive
Contact

Let's talk security

Let's
talk

Get in touch to discuss your cloud security requirements.

Contact by Email →
Email
mind@cloudsecurity.lt
WhatsApp
+370 648 24128
LinkedIn
cloudsecuritylt