With proven experience in leading Security Operations, Conducting Product assessments (EDR, Mail Gateway, TIP, ASM, Dark Web Monitoring, DRP, and SOAR), and developing SOC Processes, Use Cases, Playbooks, Detection Rules, and Automation Workflows.
As a Cyber Defense Engineer, my professional passion encompasses whatever is related to blue team capabilities like threat detection, incident response, and threat hunting and my skills extend to SIEM Administration, implementing and managing SOAR solutions, integrating SOCs with automation tools, and proficient scripting.
I hold a professional certificate in Threat Hunting (ecthpv2) and am willing to solidify my practical capabilities with other blue/purple team certificates in the future. My core belief is that you can’t protect what you don’t understand, so I’m eager to stay well-informed and up-to-date with the latest trends and advancements in the dynamic field of cybersecurity.
- TheHive: Open Source SOAR
- MISP: Malware Information Sharing Platform
- BookStack: Documentation Platform
- EDR Assessment
- ELK: Elasticsearch, Logstash, Kibana
- C2 Frameworks
- Attack Simulation
- How to Send Logs From an API to QRadar SIEM Through Syslog Middleware
- Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
- German Police Disrupt DDoS-for-Hire Platform dstat[.]cc; Suspects Arrested
- THN Recap: Top Cybersecurity Threats, Tools, and Practices (Oct 28 - Nov 03)
- Cyber Threats That Could Impact the Retail Industry This Holiday Season (and What to Do About It)
- Google’s AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine