HI, I AM

Dickson Mervyn Kapichi

Cybersecurity Specialist — Offensive Security & Infrastructure

Penetration testing, network hardening, Active Directory management, and cloud infrastructure security. Securing enterprises across Malawi and the region.

Get in Touch Download CV

About Me

I'm an offensive security specialist and infrastructure architect with over 6 years of hands-on experience in cybersecurity, system administration, and IT infrastructure management. Currently working as an ICT Technician at Computer Automation Ltd, managing critical infrastructure across multiple branches in Malawi.

My expertise spans penetration testing, network security assessments, Active Directory administration, Linux/Windows server hardening, and cloud infrastructure security. I combine practical hands-on skills with a deep understanding of security frameworks and compliance requirements.

I'm passionate about cybersecurity, digital forensics, and building secure, resilient infrastructure. When I'm not securing systems, I enjoy exploring emerging threats, contributing to open-source security projects, and mentoring aspiring security professionals.

Key Certifications

Google Cybersecurity Professional Certificate
(ISC)² Certified Associate (CC)
Cisco Certified Cybersecurity Associate
Fortinet NSE 1-3
CSI Linux Certified

Services

Penetration Testing

Comprehensive offensive security assessments to identify and exploit vulnerabilities before attackers do.

External/Internal Assessments
Vulnerability Exploitation
Detailed Reporting & Remediation

Infrastructure Security

Secure architecture design and hardening for Windows Server, Linux, Active Directory, and cloud platforms.

AD Configuration & GPO Management
Server Hardening & Patching
Architecture Design

Security Assessments

Comprehensive security audits including network assessments, application security reviews, and compliance evaluations.

Network Security Audits
Vulnerability Scanning
Compliance Evaluation

Security Hardening

End-to-end security hardening for systems, networks, and applications based on industry best practices.

System Hardening
Network Segmentation
Security Baseline Implementation

Digital Forensics

Incident investigation, evidence collection, and forensic analysis for incident response and legal proceedings.

Incident Investigation
Evidence Collection & Analysis
Forensic Reporting

Infrastructure Management

Multi-site IT infrastructure management, system administration, and technical support services.

System Administration
Network Management
Technical Support

Recent Projects & Case Studies

Penetration Testing Methodology Development

Penetration Testing

Designed and implemented a comprehensive penetration testing methodology for Computer Automation Ltd, covering external VPS and internal LAN assessments with detailed reporting framework.

Network reconnaissance & enumeration
Vulnerability identification & exploitation
Post-exploitation & lateral movement
Professional reporting & remediation guidance

Active Directory Infrastructure Hardening

Infrastructure

Redesigned and secured multi-site Active Directory infrastructure with GPO management, group creation, RDS/RemoteApp deployment, and enterprise password policies.

AD structure optimization & security
Group Policy Objects (GPO) configuration
RDS/RemoteApp deployment
Multi-site replication & disaster recovery

Digital Forensics Case Study

Forensics

Comprehensive forensic investigation case study ("The Midnight Transfer Case") covering cybercriminal profiling, fraud analysis, and digital evidence investigation techniques.

Cybercriminal profiling & threat analysis
Fraud Triangle assessment
Digital evidence collection & chain of custody
Professional forensic reporting

Web Infrastructure & Email Server Setup

Infrastructure

Designed, deployed, and secured professional web and email infrastructure on AlmaLinux/cPanel with Postfix/Dovecot mail services and hardening best practices.

Web server configuration & optimization
Mail server setup (Postfix/Dovecot)
SSL/TLS certificate management
Security hardening & monitoring

Cybersecurity Portfolio Website

Web Development

Developed a professional cybersecurity portfolio website with advanced animations, security headers, SEO optimization, and responsive design.

Modern web design & UX
Security hardening & CSP
SEO optimization & structured data
Responsive & accessible design

Forensic Accounting Analysis

Digital Forensics

Developed forensic accounting case study with Benford's Law analysis, indirect income reconstruction, and working capital analysis for fraud investigation.

Benford's Law statistical analysis
Indirect income reconstruction
Financial pattern analysis
Comprehensive documentation

Clients & Collaborators

Malawi
Government

MLW

ICTAM

ActionAid

First Capital Bank

Nico Tech

Core Expertise

Technical Skills

Network Security & Architecture
Penetration Testing & Ethical Hacking
Malware Analysis & Reverse Engineering
Active Directory & GPO Management
Linux/Windows System Administration
Cloud Infrastructure (AWS, Azure, GCP)
Security Information & Event Management (SIEM)
Digital Forensics & Incident Response

Leadership & Strategy

Security Operations Center (SOC) Management
Risk Assessment & Management
Vulnerability Management Programs
Security Policy Development
Incident Response Planning
Team Building & Mentorship
Digital Transformation Initiatives
Technology Roadmap Development

Tools & Technologies

Penetration Testing: Metasploit, Burp Suite, Caido
SIEM: Elasticsearch, Splunk, Wazuh
OS: Kali Linux, AlmaLinux, Ubuntu, Windows Server
Cloud: AWS, Azure, GCP, Linode
Databases: MySQL, PostgreSQL, SQL Server
Web: Apache, Nginx, cPanel
Scripting: Python, Bash, PowerShell
Forensics: Autopsy, Volatility, Wireshark

Get in Touch

Available for consulting engagements, advisory roles, and leadership opportunities. Let's discuss how we can work together to strengthen your cybersecurity posture.