Matthew Grygar — IT Consultant, Lector & Technology Partner

IT Risk Manager/Systems Engineer/IAM Specialist

Prague · CZHybrid · Open

Calm structure for complex problems. Stabilising critical systems when incidents escalate — and building processes so they don't happen again.

Get in touch →

Years in live operations

Critical-incident response

→

Toward IT Risk lead

IAM / IdMIncident ManagementIBM ITIMSLA GovernanceISO 27001ISO 27005ISVGLDAPDB2WebSphereLinuxPowerShellGrafanaJIRAITILOperational ResilienceIAM / IdMIncident ManagementIBM ITIMSLA GovernanceISO 27001ISO 27005ISVGLDAPDB2WebSphereLinuxPowerShellGrafanaJIRAITILOperational Resilience

01 / About— What I bring

Stability under pressure.

I help organisations stabilise critical systems when incidents escalate and time pressure rises — and then set up processes so it doesn't happen again.

My experience leads from direct work in production operations and coordination of Major/P1 incidents, through identification of operational risks, to operation and management of Identity & Access Management solutions in regulated sectors.

I bring a combination of technical depth and operational overview — I understand processes, systems and what breaks at 3am. Long-term I am heading towards IT Risk Management and operational risk management.

Currently: System Engineer – Identity & Access Management (Trask, 2025–present)

— Toolbox

Long-term direction

Going forward, I want to focus on IT Risk Management — identifying and managing operational risks, IT service governance and building processes that protect organisations from outages even in demanding situations.
It makes sense to me to work at the intersection of technology, risk and business — where every technical decision has a direct impact on operational stability and security.

02 / Experience— 5 entries · click to expand

Live operations — where failure is not an option.

Jan 2025 – presentCURRENT

Trask

System Engineer – Identity & Access Management

＋

Operation and management of IAM solutions for enterprise clients in regulated sectors (finance, energy).

Installation and configuration of IBM IAM stack: ITIM, ISVG, DB2, LDAP, WebSphere (WAS) on Windows Server.
Upgrade of existing IAM environments, configuration of instances and integration links.
Access governance: configuration of roles, access permissions and notifications (password changes, role assignments).
Technical analysis in ISVG (Java component integrator) — error analysis, use-case scenario simulation.
Collaboration with development team on GUI modifications; support for IAM-related incidents.
Creation of reports from LDAP, testing of access scenarios, co-authoring implementation specifications.

— Secure environment

Work on projects within environments of regulated financial institutions. Emphasis was placed on process accuracy, audit trail of every change and zero tolerance for security deviations.

— Technologies

IAMIBM ITIMISVGLDAPDB2WebSphere (WAS)Access ManagementWindows ServerLinux

Key Impacts

Complete installation and commissioning of IBM IAM stack in production environment
Successful upgrades of complex IAM environments for enterprise clients
Support for secure identity and access management in regulated sectors

Feb 2024 – Sep 2025

OX Point

Senior Application Support Specialist

＋

Primary technical link between operations and development — responsible for production stability, escalation management and incident coordination with impact on critical operations.

Management of P1/Major incidents in an environment of 300+ devices in production; escalation coordination in cooperation with operations manager.
Coordination of specialist team (DevOps, development, technicians) during critical outages in 24/7 on-call mode.
Design of internal guidelines for L1/L2/L3 responsibility division, escalation paths and capacity planning to ensure service availability.
Built JIRA project from scratch: severity model, SLA parameters, workflow automation and notifications — as the basis for measurable operations management.
Monitoring and analysis of error patterns (Grafana, SQL, Linux/SSH) for early identification of operational risks.
Support for critical infrastructure migrations; management reporting on incident progress and operational status.

— Technologies

Incident ManagementProduction OperationsJIRASLA ManagementLinuxGrafanaSQLLog AnalysisCross-team Coordination

Key Impacts

Stabilisation of operations for 300+ devices in production
Successful management of critical P1 incidents
Introduction of structured SLA and severity model
Design of operational model L1–L3 including escalation paths and responsibilities
Improved clarity of escalations and operational governance
Strengthened reporting transparency towards management

May 2023 – Mar 2024

NAKIT

Senior IT Platform Specialist

＋

Operation and availability management of the Identita občana system — critical state infrastructure enabling online authentication of millions of citizens in communication with public administration.

Management of P1/Major incidents with high impact on end users; chairing crisis calls and coordinating service recovery in minute-level SLA mode.
Coordination of several teams of technical specialists across organisations during critical outages — with emphasis on rapid recovery and minimising impact on service availability.
Monitoring of application availability, incident recording and analysis, SLA parameter compliance control and identification of recurring operational risks.
Management of planned shutdowns including preparation of materials for management reporting and communication of impacts to stakeholders.
Analysis of application logs and data inconsistencies in cooperation with DB and infrastructure teams.
Basic PowerShell scripting; work in Linux (Red Hat) and Windows Server environments.

— Secure environment

Work in an environment with strict security requirements and state regulation. Emphasis was placed on process discipline, access management and awareness of operational risks.

— Technologies

Application OperationseGovernmentIncident CoordinationSLA MonitoringLog AnalysisLinuxWindows ServerPowerShell

Key Impacts

Management of incidents with high impact on millions of end users
Recovery of critical state infrastructure in minute-level SLA mode
Stabilisation of escalation and communication processes during outages
Improved coordination between technical partners across organisations
Transparent incident reporting towards management

2021 – 2023

MyCom Solutions

IT Infrastructure & Network Support

＋

Design and implementation of network solutions for commercial clients — from initial requirements analysis to physical realisation and environment security.

Design and implementation of network infrastructure including VLAN segmentation, configuration of Ubiquiti (AP, switches) and Fortinet firewall — with emphasis on security and access separation.
Management of RDP access and endpoint devices; incident management including on-site resolution of HW/SW incidents and ticketing.
Complete implementation of structured cabling over 5 km — patch panels, keystone modules, rack installation.
Preparation of internal security lab (Windows/Linux) for testing network configurations and security scenarios.

— Technologies

IT InfrastructureNetwork ConfigurationVLANUbiquitiFortinetStructured CablingRDP EnvironmentsHardware Support

Key Impacts

Implementation of complete network infrastructure for several clients including security segmentation
Delivery of more than 5 km of structured cabling
Practical foundation in network segmentation, access management and physical infrastructure
Stabilisation of client operating environments through rapid incident resolution

2021

Národní očkovací centrum ÚVN

IT Operations & Incident Coordination

＋

Operation of IT infrastructure of the National Vaccination Centre at O2 Universum.

Ensuring continuous availability of IT infrastructure — daily preparation and operation of dozens of devices and workstations in an environment with zero tolerance for outages.
Monitoring and operational resolution of incidents in real time; management of MS SQL database with high transactional load including analysis and correction of data inconsistencies.
Leadership of a small IT team: shift planning, responsibility allocation, setting up escalation procedures and operational standards.
Processing and protection of sensitive personal health data in accordance with operational requirements of a restricted access environment (cooperation with Czech Army).
Cooperation with external development team; UAT testing of new versions before production deployment.
Identification of weaknesses in operational processes and proposals for workflow optimisation.

— Secure environment

Highly exposed environment with continuous operations, processing of personal health data and cooperation with the Czech Army in restricted access mode.

— Technologies

IT OperationsIncident SupportDatabase AdministrationTeam CoordinationHardware ManagementService ContinuityHigh-load Operations

Key Impacts

Uninterrupted operations during 131 days of crisis mode
IT support for more than 550,000 processed clients
Stabilisation of database environment under high transactional load
Operations in restricted access environment with processing of sensitive health data
Reduction of operational downtime and optimisation of morning infrastructure preparation

03 / Projects— Selected work

Selected work & personal initiatives.

→ 01

JIRASUPPORTOPERATIONSGOVERNANCE

JIRA Service Workflow Design

Complete design and setup of a JIRA project for operational support — severity model, SLA parameters, workflow automation, role and user group configuration, including a clear request interface for end users.

+Measurable operations management from submission to resolution.

→ 02

SUPPORTRISKOPERATIONSGOVERNANCE

SLA & Incident Management Model

Internal design of an operational support model including L1/L2/L3 responsibility division, escalation paths, SLA parameters and severity levels — as the basis for operational governance and service availability risk management.

+Clear escalations, defined responsibilities, measurable governance.

→ 03

RISKSECURITYFRAMEWORKSSELF-STUDY

Risk Frameworks – ISO 27001 & ISO 27005

Independent study of ISO 27001 and ISO 27005 as reference frameworks for IT risk management and information security. I actively applied findings when identifying operational risks and designing control mechanisms in production environments.

+Practical knowledge of ISO 27001 & ISO 27005 — certification planned.

→ 04

RISKOPERATIONSINCIDENTSPROCESS

Incident Post-Mortem Framework

Design of a structure for post-incident analysis — root causes, escalation flow, impacts, lessons learned and preventive measures. Based on experience coordinating Major/P1 incidents and principles of continuous IT operations improvement.

+Systematic approach to learning from incidents and preventing recurrence.

→ 05↗

LEADERSHIPCOMMUNITYEVENTSPERSONAL

Grail Series Tournament Circuit

Personal initiative — complete organisation of a Magic: The Gathering tournament series from concept to execution. Includes event planning and production, media communication and promo, partner and sponsor negotiations, community building and long-term development of the competitive scene.

+Community of 130+ unique players, 6 tournaments — all managed independently.

grailseries.cz ↗

→ 06↗

DATAVIBE CODINGPROJECTPERSONAL

MtG DC ELO Ranking System

Personal project — complete design and development of a web application for the Czech Duel Commander community. Includes vibe coding the entire frontend, data architecture design, data layer integration and ELO algorithm implementation for long-term performance tracking of 430+ active players.

+Transparent ranking for the Czech DC community — from design to production.

elo.grailseries.cz/cz ↗

04 / Skills— 3 disciplines

What I bring to the table.

My experience is built on operating systems in real environments — incident management, identifying operational risks and building processes that protect organisations from outages. I combine technical background with risk thinking and operational governance.

— 01

Risk & Governance

How an organisation stays alive when something breaks at 02:00.

Major incident coordination

Operational risk awareness

SLA & service governance

Operational resilience

Stakeholder communication

Change management

ITIL framework

ISO 27001 / 27005

RBAC / access governance

Years applied · 5++ growing

— 02

Engineering & Operations

The hands-on layer — the bits that fail and the bits that catch them.

Identity & Access Management

IBM ITIM / ISVG

Incident management

Log analysis & forensics

Monitoring (Grafana)

SQL / IBM DB2

PowerShell / scripting

Linux (Red Hat) / Windows Server

Network infrastructure (VLAN, VPN)

Stack depth · Mid–Senior+ growing

— 03

Tools & Platforms

What lives in the toolbar. Comfortable in production.

JIRA — workflow, SLA, automation

IBM LDAP / WebSphere (WAS)

Confluence / documentation

ServiceNow

Grafana — dashboards & alerting

MS SQL Server

Git / version control

Markdown / docs-as-code

Day-to-day · Production+ growing

01P1 / Major

Incident resolution under pressure

I have led Major incidents with full production impact — coordinating teams of specialists across organisations, managing escalation towards management and maintaining oversight of recovery priorities. The goal was always to bring the system back to a stable state quickly and without unnecessary side effects.

02Risk

Identifying and managing operational risks

From practice I know where weaknesses most often appear in IT operations — poorly configured access roles, unclear escalation paths, insufficient segmentation or missing capacity. I try to name these risks before they cause a problem and set up processes so they don't recur.

03Operations

Decision-making in critical operations

I have worked on systems with high availability requirements — from a government eGovernment system to infrastructure of hundreds of devices in operation. In such environments you need to decide quickly, systematically and with awareness of the impact of every step on service stability.

04Stakeholders

Communication across technology and business

I have experience communicating with both technical teams and management and customers. I can translate technical problems into a business context — clearly, factually and without unnecessary distortion.

05Governance

Process as the foundation of stability

I don't believe in one-off heroic fixes. Long-term system stability rests on well-designed processes, clearly defined responsibilities and the ability to learn from every incident — that is the foundation on which IT Risk Management works.

Heading towardIT Risk ManagerOperational Resilience / Incident GovernanceIT Security & Compliance

05 / Contact— Let's talk

Let's manage risks before they become incidents.

If you're looking for someone with hands-on experience in incident management and IT risk — whether for an IT Risk Manager role or as an experienced member of an operations team — feel free to reach out.

Best reached by email or LinkedIn. I usually answer within a day; if it's urgent, say so in the subject line and I'll prioritise.

— Emailmatthew.grygar@seznam.cz↗— LinkedInMatthew Grygar↗

MatthewGrygar

Stability under pressure.

Live operations — where failure is not an option.

Trask

OX Point

NAKIT

MyCom Solutions

Národní očkovací centrum ÚVN

Selected work & personal initiatives.

JIRA Service Workflow Design

SLA & Incident Management Model

Risk Frameworks – ISO 27001 & ISO 27005

Incident Post-Mortem Framework

Grail Series Tournament Circuit

MtG DC ELO Ranking System

What I bring to the table.

Risk & Governance

Engineering & Operations

Tools & Platforms

Let's manage risks before they become incidents.