Skip to content

dodiazlopez/main

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

66 Commits

README.md

README.md

 
 

_config.yml

_config.yml

 
 

ejerciciodeclaseherencia1.py

ejerciciodeclaseherencia1.py

 
 

mavenproject1-1.0-SNAPSHOT-jar-with-dependencies.jar

mavenproject1-1.0-SNAPSHOT-jar-with-dependencies.jar

 
 

pruebaSyslog-1.0-SNAPSHOT-jar-with-dependencies.jar

pruebaSyslog-1.0-SNAPSHOT-jar-with-dependencies.jar

 
 

Repository files navigation

I am Daniel Díaz-López, 35, a PhD in Computer Science who performs as researcher and Professor in information security affiliated to the Universidad del Rosario (Colombia). In this site you can find most of the projects which I have being part of and the technical material I have led or built.

MOST IMPORTANT QUALIFICATIONS

ORIENTED COURSES

Courses oriented in undergraduate/graduate programs:

  • Artificial Intelligence for cybersecurity
  • Digital forensic and incident handling
  • Threat Intelligence (aligned with FOR578 certification)
  • Security in Enterprise Architecture (aligned with SABSA framework)
  • Ethical hacking (aligned with the CEH certification)
  • Security in the software development life cycle (aligned with the CASE certification)
  • Chief information security officer (aligned with the CCISO certification)
  • Network security (aligned with the CCNA Security certification)
  • Security for cloud computing (aligned with the AWS security specialty certification as I am AWS Faculty Ambassador)

SOFTWARE PROJECTS

Some of these projects were developed jointly with the Colombian Military Forces:

  1. Model for detection of anomalies in information security events using predictive models. Project developed for the General Command of the Military Forces (CGFM) of Colombia. Main benefit: Reduction in the attendance and treatment time of security incidents in the SOC (Security Operation Center) of the CGFM.

  2. Open Source Intelligence for the Colombian Context: A set of transforms addressed to the Colombian context were developed, which were implemented and contributed to the community allowing to the law enforcement agencies to develop information gathering process from Colombian open sources. Additionally, in this project three machine learning models were developed which are used to perform sentiment analysis over the information obtained from an adversary.

  3. Data science project aimed to predict the water consume for London city (Ice Water Project): Development of 4 predictive models (one for each season) which determine the water consume for London and helps to control the water pumps which manage the water flow bringing it closer to the real demand. These models can also support the planning of maintenance operations for the city aqueduct.

  4. COSMOS: Collaborative, Seamless and Adaptive Sentinels for the Internet of Things - Project developed for the University of Murcia

  5. Security for IoT: Solution for management of security events in (IoT) architectures

  6. Cyberintelligence for Internet of Things

  7. Design and development of IOT devices for SMART HOME

  8. Analysis of information security risks in different IoT scenarios

EDUCATION AND TRAINING

TECHNICAL CERTIFICATIONS

  • AWS Faculty Ambassador Amazon Web Services Education. April 2020
  • AWS Cybersecurity Specialist (IAM, Cloud Trial, Cloud Watch, Amazon Inspector) Amazon Web Services Education. December 2020
  • Law Enforcement Agencies (FCS) – Cybersecurity Intelligence Specialist Spanish National Cybersecurity Institute (INCIBE). July 2018
  • Advanced CERT Specialist Spanish National Cybersecurity Institute (INCIBE). July 2017
  • CCNA Security Instructor National University – NETCAD Academy. December 2017
  • Certified Ethical Hacker (CEH) V 7.0 EC-Council. License ECC977492. April 2013
  • Lead Auditor ISO27001 - Information Security Management System (ISMS) SGS. License 513410/F/3895. March 2014
  • Internal Auditor ISO22301 - Business Continuity Management Systems (BCMS) SGS. License 39680853/128103886. July 2014
  • ITIL Foundation EXIN your ICT competence partner. License 4955987.20238281. May 2013

AWARDS

  1. Award: Finalist in the Excellence in Teaching contest 2021 Awarded by: University of Rosario (Colombia)

  2. Award: Best paper award C3-Sex: a Chatbot to Chase Cyber perverts Awaded by: The 4th IEEE Cyber Science and Technology Congress. Fukuoka, Japan, 2019.

  3. Award: Scholarship to participate in the Cybersecurity Summer BootCamp 2018 Awarded by: General Secretariat of the Organization of American States – OAS (International) and the Spanish National Cybersecurity Institute – INCIBE (Spain) Date: July 2018.

  4. Award: Junior Researcher Awarded by: Colombian School of Engineering Julio Garavito (Colombia) Date: February 2018.

  5. Award: Scholarship to participate in the Cybersecurity Summer BootCamp 2017 Awarded by: General Secretariat of the Organization of American States – OAS (International) and the Spanish National Cybersecurity Institute – INCIBE (Spain) Date: July 2017.

  6. Award: International doctor. Distinction Cum Laude Awarded by: University of Murcia (Spain) Date: November 2015.

  7. Award: Honor mention in Communications Technologies Awarded by: University of Murcia (Spain) Date: June 2011.

  8. Award: Honor mention in Wireless Networks Awarded by: University of Murcia (Spain) Date: June 2011.

  9. Award: Master scholarship Awarded by: Ministry of Foreign Affairs from the Spanish government (Spain) Date: June of 2010.

  10. Award: Half honor for high academic performance Awarded by: University of Cauca (Colombia) Reason: Second Best academic GPA 9th, 6th semester. Dates: II-2007, I-2006.

  11. Award: Honors for high academic performance Awarded by: University of Cauca (Colombia) Reason: Best academic GPA 8th, 7th, 5th, 4th semester. Date: I-2007, II-2006, II-2005, I-2005.

  12. Award: Recognition of academic excellence Awarded by: Seminario Menor Arquidiocesano (Colombia) Type of entity: Catholic High School. Date: July of 2003

DEVELOPMENT OF PROJECTS

Participation in Research Projects with Funding

  1. Developing Cyber Intelligence Capacities for the Prevention of Crime. Project funded by University of Rosario. 2021. Role: Main Researcher. Status: Finished. Call: IV-TFA043 (5000,00 €).

  2. Strengthening Governance Capacity for Smart Sustainable Cities. Project funded by Erasmus+ Capacity Building in Higher Education programme. 2019. Role: Researcher. Status: Finished. Call: EAC/A05/2017 (999.826,00 €).

  3. Developing secure and resilient architectures for Smart Sustainable Cities. Project funded by the Colombian School of Engineering. 2019. Role: Main researcher. Status: Finished. CALL: PRP0010 - CI_JI_2018 (79.295,75 US).

  4. COSMOS: Collaborative, Seamless and Adaptive Sentinels for the Internet of Things. Project funded by BBVA Foundation, 2017-2018. Role: Researcher. Status: Finished. (35.000,00 €)

  5. Cybersecurity Architecture for Incident Management. Project funded by the Colombian School of Engineering, 2018. Role: Researcher. Status: Finished. (13.918,00 €)

  6. Design and development of reactive tools with application to distributed middleware for the processing of big data. Project funded by the Colombian School of Engineering, 2018. Role: Researcher. Status: Finished. (12.945,00 €)

  7. Development of a SIEM (Security Information and Event Management System) solution for the protection of information assets. Project funded by the Colombian School of Engineering, 2017. Role: Main Researcher. Status: Finished. (10.209,00 €)

Participation in Consultancy Projects

  1. CONSULTING CONTRACT No. 799 from 2016 between Superintendence of Industry and Commerce– SIC and D. Díaz-López. "Provision of professional services of an engineer in electronics and telecommunications, to implement the critical and fundamental controls of the "Doing phase" of the Information Security Management System of the Technology and Information Office of the Superintendence of Industry and Commerce".

  2. CONSULTING CONTRACT No. 081 from 2015 between Superintendence of Family Allowance - SSF and the ICT Research and Development Center - CINTEL. "Develop the Strategic Plan for Information Technology and Communications - PETIC for the Superintendence of Family Allowance - SSF, having as reference the framework of business architecture for the management of TI in Government. Additionally, support the SSF in the implementation of project management processes, supplier management and service management".

  3. CONSULTING CONTRACT No. 046 from 2015 between Superintendence of Family Allowance - SSF and the ICT Research and Development Center - CINTEL. "Contract the second phase of the Information Security Management Plan (PGSI) of the Superintendence of Family Allowance, corresponding to the stage of implementation of the policies and the elaboration of procedures defined in the first phase of the plan".

  4. CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL. "Develop and implement the phases "Planning" and "Doing" of the PHVA cycle of the Information Security Management System - ISMS for the UPRA, in accordance with the standards established under the ISO 27001: 2013 and complying with the guidelines established in the national e-Government Manual".

  5. CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce– SIC and ICT Research and Development Center - CINTEL. "Support the Office of Technology of the Superintendence of Industry and Commerce in the activities of the first stage of implementation of the Business Continuity Plan of the Office of Technology, required in the certification process of the standard ISO 27001 included in the implementation of the Information Security Management System (ISMS)".

  6. CONSULTING CONTRACT No. 671 from 2013 between Ministry of Information Technology and the ICT Research and Development Center - CINTEL. "Design and development of an integral strategy of awareness, support and appropriation addressed to governmental entities, citizens and industry, which contributes to the increase and improvement of the offer of information, services and spaces for the State participation by electronic means".

  7. CONSULTING CONTRACT No. 152 from 2013 between Ministry of Information Technology and the ICT Research and Development Center - CINTEL. "Support to the Office of Technology of the Superintendence of Industry and Commerce (SIC) in the development of the activities defined in the technical standard ISO 27001 to structure the phase "Doing" of the Information Security Management (ISMS)".

  8. CONSULTING CONTRACT No. 198 from 2012 between Superintendence of Industry and Commerce – SIC and ICT Research and Development Center - CINTEL. "Technical support to the Office of Technology of the Superintendence of Industry and Commerce in the development of the activities proposed for the improvement of the technological architecture of the data center (phase 1) and activities defined in the technical standard ISO 27001 to structure the phase "Planning" of an Information Security Management System - ISMS (phase 2)".

SCIENTIFIC PUBLICATIONS

Publications in Journals

  1. J. Ramirez Sánchez, A. Campo-Archbold, A. Zapata Rozo, D. Díaz-López, J. Pastor-Galindo, F. Gómez Mármol, J. Aponte Díaz, "On the power of social networks to analyze threatening trends", IEEE Internet Computing, vol. 2022, 9 pages, 2022, doi: 10.1109/MIC.2022.3154712.
  2. J. Ramirez Sánchez, A. Campo-Archbold, A. Zapata Rozo, D. Díaz-López, J. Pastor-Galindo, F. Gómez Mármol, J. Aponte Díaz, "Uncovering Cybercrimes in Social Media through Natural Language Processing", Complexity, vol. 2021, Article ID 7955637, 15 pages, 2021. https://doi.org/10.1155/2021/7955637
  3. I. Martínez Martínez, A. Florián Quitián, D. Díaz-López, P. Nespoli, F. Gómez Mármol, "MalSEIRS: Forecasting Malware Spread Based on Compartmental Models in Epidemiology", Complexity, vol. 2021, Article ID 5415724, 19 pages, 2021. https://doi.org/10.1155/2021/5415724
  4. P. Nespoli, D. Díaz-López, F Gómez. “Cyberprotection in IoT environments: A dynamic rule-based solution to defend smart devices”, Journal of Information Security and Applications, Volume 60, August 2021.
  5. J. Ibañez, S. Rocha, D. Díaz-López, J. Pastor-Galindo, F. Gómez. “C3-Sex: A conversational agent to detect online sex offenders”. Electronics, SI Advanced Cybersecurity Services Design”, Electronics, October 2020, 9(11).
  6. J. Velandia, A. Pardo, F. Ardila, D. Díaz-López, P. Nespoli, F. Gómez. “BlockSIEM: Protecting smart city services through a blockchain-based and distributed SIEM”, Sensors, August 2020, 20(16).
  7. M. Sanabria-Ardila, L. Benavides, D. Díaz-López and W. Garzón-Alfonso, "A Semantic Framework for the Design of Distributed Reactive Real-Time Languages and Applications," IEEE Access, vol. 8, pp. 143862-143880, 2020, doi: 10.1109/ACCESS.2020.3010697.
  8. P. Nespoli, D. Useche Pelaez, D. Díaz-López, and F. Gómez Mármol, “COSMOS: Collaborative, Seamless and Adaptive Sentinel for the Internet of Things,” J. Sensors, vol. 19, no. 7, 2019.
  9. J. Salinas Santiago, K. Gómez Hernández, D. Díaz-López, and D. Cabuya Padilla, “Open Source Search & Analytics for Cybersecurity using Elasticsearch,” Rev. UIS Ing., vol. 15, no. 1, 2019 (Accepted).
  10. C. Aguado, C. Sanchez, D. Díaz-López, and J. Garcia, “Using Reverse Engineering to Face Malware,” J. Eng. Educ., vol. 14, no. 21, pp. 107–121, 2019 (Accepted).
  11. M. Hernandez Medina, C. Pinzón Hernández, D. Díaz-López, J. Garcia Ruiz, and R. Pinto Rico, “Open source intelligence (OSINT) as support of cybersecurity operations. Use of OSINT in a Colombian context and sentiment Analysis,” Rev. Vínculos, vol. 15, no. 2, pp. 195–214, 2018.
  12. D. Useche-Peláez, D. Díaz-López, D. Sepúlveda-Alzate, and D. Cabuya-Padilla, “Building malware classificators usable by State security agencies,” ITECKNE, vol. 15, no. 2, pp. 107–121, 2018.
  13. D. Díaz López et al., “Shielding IoT against cyber-attacks: An event-based approach using SIEM,” Wirel. Commun. Mob. Comput., vol. 2018, 2018.
  14. D. Díaz López et al., “Developing Secure IoT Services: A Security-Oriented Review of IoT Platforms,” Symmetry (Basel)., vol. 10, no. 12, 2018.
  15. L. Benavides, C. Pimienta, M. Sanabria, D. Díaz-López, W. Garzón, W. Melo and H. Arboleda, “REAL-T: Time Modularization in Reactive Distributed Applications,” in Advances in Computing, 2018, vol. 885, pp. 113–127.
  16. D. Díaz-López, G. Dólera-Tormo, F. Gómez-Mármol, and G. Martínez-Pérez, “Dynamic counter-measures for risk-based access control systems: An evolutive approach,” Futur. Gener. Comput. Syst., vol. 55, pp. 321–335, 2016.
  17. D. Díaz-López, G. Dólera Tormo, F. Gómez Mármol, and G. Martínez Pérez, “Managing XACML systems in distributed environments through Meta-Policies,” Comput. Secur., vol. 48, pp. 92–115, 2015.
  18. D. Díaz-López, G. Dólera Tormo, F. Gómez Mármol, J. M. Alcaraz Calero, and G. Martínez Pérez, “Live Digital, Remember Digital: State of the Art and Research Challenges,” Comput. Electr. Eng., vol. 40, no. 1, pp. 109–120, 2014.
  19. D. Díaz-López, B. Mesa, “Radio Planning Software Tool for Fixed Wireless Access systems in rural environments”. Informatics Technology Management (GTI) Magazine, Industrial University of Santander, issue 8, number 20, 2009.

Publications in Conferences

  1. J. Murcia, S. Moreno, D. Díaz-López, and F. Gómez Mármol. C3-Sex: a Chatbot to Chase Cyber perverts. The 4th IEEE Cyber Science and Technology Congress. Fukuoka, Japan, 2019.
  2. A. Pardo, F. Ardila, D. Díaz-López, and F. Gómez Mármol. BSIEM-IoT: A Blockchain-based and Distributed SIEM for the Internet of Things. 17th International Conference on Applied Cryptography and Network Security (ACNS). 1st International Workshop on Application Intelligence and Blockchain Security (AIBlock). Bogota, Colombia. 2019.
  3. D. Useche, D. Díaz-López, P. Nespoli, and F. Gómez Mármol, “TRIS: a Three-Rings IoT Sentinel to protect against cyber-threats,” in 5th International Conference on Internet of Things, Systems, Management & Security (IOTSMS 2018), At Valencia, Spain, 2018, p. 101.
  4. C. Meneses, J. Herrera and D. Díaz-López, “Deepweb (TOR, honeypot)”, in Conference OWASP Latam Tour 2018, At Bogota, Colombia, 2018.
  5. J. Salinas Santiago, K. Gómez Hernández and D. Díaz-López, “Open Source Search & Analytics - Elastisearch”, in Conference OWASP Latam Tour 2018, At Bogota, Colombia, 2018.
  6. D. Useche, D. Sepúlveda and D. Díaz-López, “Cuckoo + ML”, in Conference OWASP Latam Tour 2018, At Bogota, Colombia, 2018.
  7. C. Sánchez Venegas, C. Aguado Bedoya and D. Díaz-López, “Radare for reversing”, in Conference OWASP Latam Tour 2018, At Bogota, Colombia, 2018.
  8. M. Hernández Medina, C. Pinzón Hernández, R. Pinto Rico and D. Díaz-López, “Maltego applied to the Colombian context”, in Conference OWASP Latam Tour 2018, At Bogota, Colombia, 2018.
  9. M. Blanco Uribe, E. Cerón, N. Gómez Solano, D. Díaz-López and C. Santiago, “Data Science Applied In Cybersecurity”, In Conference Barcamp Security Edition 2017, At Bogota, Colombia, 2017.
  10. H. Alvarez Lucena, M. Blanco Uribe and D. Díaz-López, “Offensive Web Testing Framework (Owtf)”, In Conference Owasp Latam Tour 2017, At Bogota, Colombia, 2017
  11. J. Merchán, A. Vega Torres and D. Díaz-López, “Owasp Mobile Project and Internet Of Things”, In Conference Owasp Latam Tour 2017, At Bogota, Colombia, 2017
  12. T. Higuera Munevar, N. Moreno Guataquira and D. Díaz-López, “Owasp Seraphimdroid Project”, In Conference Owasp Latam Tour 2017, At Bogota, Colombia, 2017
  13. D. Useche Peláez, M. Bueno Martinez and D. Díaz-López, “The Owasp Enterprise Security Api (Esapi): Security Control Library”, In Conference Owasp Latam Tour 2017, At Bogota, Colombia, 2017

Other Technical Production

  1. D. Díaz-López, Review of the cybersecurity state of the SIC IT department, contract/register: CONSULTANTING CONTRACT No. 799 of 2016 between Superintendence of Industry and Commerce– SIC and D. Díaz-López.
  2. D. Díaz-López, Security plan for the SIC IT department, contract/register: CONSULTING CONTRACT No. 799 from 2016 between Superintendence of Industry and Commerce– SIC and D. Díaz-López.
  3. D. Díaz-López, Report of execution of the training campaigns developed around the ISMS, contract/register: CONSULTING CONTRACT No. 799 from 2016 between Superintendence of Industry and Commerce– SIC and D. Díaz-López.
  4. D. Díaz-López, Report of the updating activities for the software supporting the ISMS, contract/register: CONSULTING CONTRACT No. 799 from 2016 between Superintendence of Industry and Commerce– SIC and D. Díaz-López.
  5. D. Díaz-López, Report of security controls implementation for ISMS (26 security controls), contract/register: CONSULTING CONTRACT No. 799 from 2016 between Superintendence of Industry and Commerce– SIC and D. Díaz-López.
  6. D. Díaz-López, ICT Strategic Planning (PETIC) for SSF, contract/register: CONSULTING CONTRACT No. 081 from 2015 between Superintendence of Family Allowance - SSF and the ICT Research and Development Center - CINTEL.
  7. D. Díaz-López, TI Architecture for the PETIC for SSF, contract/register: CONSULTING CONTRACT No. 081 from 2015 between Superintendence of Family Allowance - SSF and the ICT Research and Development Center - CINTEL.
  8. D. Díaz-López, Diagnostic and technological Evaluation for SSF, contract/register: CONSULTING CONTRACT No. 081 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  9. D. Díaz-López, Project Operative Plan, contract/register: CONSULTING CONTRACT No. 081 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  10. D. Díaz-López, Implementation of security controls defined in the PGSI for SSF, contract/register: CONSULTING CONTRACT No. 046 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  11. D. Díaz-López, Report of training and knowledge transfer sessions regarding the policies and procedures of the PGSI, contract/register: CONSULTING CONTRACT No. 046 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  12. D. Díaz-López, Policies and procedures for information security, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  13. D. Díaz-López, Dissemination Plan for the information security and Ethical Hacking Report, contract/register: CONSULTING CONTRACT No. 046 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  14. D. Díaz-López, Definition of the organizational structure for the security information management in the SSF, contract/register: CONSULTING CONTRACT No. 046 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  15. D. Díaz-López, Project Operative Plan, contract/register: CONSULTING CONTRACT No. 046 from 2015 between Superintendence of Family Allowance – SSF and the ICT Research and Development Center - CINTEL.
  16. D. Díaz-López, Software to support the ISMS, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  17. D. Díaz-López, Applicable Legal Matrix in information security, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  18. D. Díaz-López, Indicators for the ISMS, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  19. D. Díaz-López, Labeling and classification guide for information assets, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  20. D. Díaz-López, Information Security Policies and Procedures, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  21. D. Díaz-López, Plan of training and awareness in information security, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  22. D. Díaz-López, Methodology for information security risk management, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning - UPRA and the ICT Research and Development Center - CINTEL.
  23. D. Díaz-López, Manual for an Integrated Management System, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning - UPRA and the ICT Research and Development Center - CINTEL.
  24. D. Díaz-López, Ethical Hacking Report, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  25. D. Díaz-López, Project Operative Plan, contract/register: CONSULTING CONTRACT No. 195 from 2015 between Unit for Agricultural Rural Planning – UPRA and ICT Research and Development Center - CINTEL.
  26. D. Díaz-López, Software to support the ISMS, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce – SIC and ICT Research and Development Center - CINTEL.
  27. D. Díaz-López, Statement of Applicability, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce – SIC and ICT Research and Development Center - CINTEL.
  28. D. Díaz-López, Risk Treatment Plan, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  29. D. Díaz-López, Information Security Risk Matrix, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  30. D. Díaz-López, Information asset inventory, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  31. D. Díaz-López, Information security procedures, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  32. D. Díaz-López, Information Security Policies - specific domain, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  33. D. Díaz-López, Project Operative Plan, contract/register: CONSULTING CONTRACT No. 453 from 2014 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  34. D. Díaz-López, Definition and implementation of methods for the e-government strategy sustainability, contract/register: CONSULTING CONTRACT No. 671 from 2013** between Ministry of Information Technology and the ICT Research and Development Center - CINTEL.
  35. D. Díaz-López, Definition and implementation of the information security model for public sector companies, contract/register: CONSULTING CONTRACT No. 671 from 2013** between Ministry of Information Technology and the ICT Research and Development Center - CINTEL.
  36. D. Díaz-López, Develop specialized support in information security, contract/register: CONSULTING CONTRACT No. 671 from 2013** between Ministry of Information Technology and the ICT Research and Development Center - CINTEL.
  37. D. Díaz-López, Design of the roadmap for each governmental organization to implement the e-government strategy, contract/register: CONSULTING CONTRACT No. 671 from 2013** between Ministry of Information Technology and the ICT Research and Development Center - CINTEL.
  38. D. Díaz-López, Identification of needs in the governmental organizations regarding the e-government national strategy, contract/register: CONSULTING CONTRACT No. 671 from 2013** between Ministry of Information Technology and the ICT Research and Development Center - CINTEL.
  39. D. Díaz-López, Software to support the ISMS, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  40. D. Díaz-López, Applicable Legal Matrix, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  41. D. Díaz-López, Indicators for the ISMS, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  42. D. Díaz-López, Mechanisms to prevent data leakage, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  43. D. Díaz-López, Label and classification guide, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  44. D. Díaz-López, Plan for training and awareness in information security, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center- CINTEL.
  45. D. Díaz-López, Procedures and instructions in information security, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  46. D. Díaz-López, Information Security Policies, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce- SIC and the ICT Research and Development Center - CINTEL.
  47. D. Díaz-López, Project Operative Plan, contract/register: CONSULTING CONTRACT No. 152 from 2013 between Superintendence of Industry and Commerce - SIC and the ICT Research and Development Center - CINTEL.
  48. D. Díaz-López, Information security plan, contract/register: CONSULTING CONTRACT No. 198 from 2012 between Superintendence of Industry and Commerce - SIC and the ICT Research and Development Center - CINTEL.
  49. D. Díaz-López, Information security diagnostic, contract/register: CONSULTING CONTRACT No. 198 from 2012 between Superintendence of Industry and Commerce - SIC and the ICT Research and Development Center - CINTEL.
  50. D. Díaz-López, Document with the review and evaluation of the data center, contract/register: CONSULTING CONTRACT No. 198 from 2012 between Superintendence of Industry and Commerce - SIC and the ICT Research and Development Center - CINTEL.
  51. D. Díaz-López, Project Operative Plan, contract/register: CONSULTING CONTRACT No. 198 from 2012 between Superintendence of Industry and Commerce - SIC and the ICT Research and Development Center - CINTEL.

CONTRIBUTIONS TO MAKING COMPUTER SCIENCE MORE EQUITATIVE

Work in committees and community engagement

  1. I am an active OWASP Bogotá Chapter co-leader helping in the planning and development of different initiatives like the OWASP Latam Tour 2017 and 2018. The OWASP Latam Tour is an annual event that is developed in a simultaneous way in different Latin America cities in the months of April and May. We had 215 participants in the 2017 edition and almost 320 participants in the 2018 edition. More information about the Owasp Bogota Chapter can be find here: https://www.owasp.org/index.php/Bogota

  2. I am an active member of the group of interest in cybersecurity “HackLab Bogotá” which meet every 15 days to share knowledge around different topics like: reversing, hardening, pentesting, security controls, etc. I have participated in logistic labors to guarantee the space and conditions to develop the meetings, and also as current speaker. More information about the HackLab Bogota can be find here: https://www.meetup.com/es/HackLab-Bogota/

  3. I am an academic counselor of 34 bachelor students (women and men) from the Computer Science Faculty, which are in the first years of the program. Doing this labor as counselor has been one of the most grateful activities I have done, because these students feel free to tell me about their academic worries, vocational concerns and even personal issues. I take it like a really challenge because I am engaged to avoid the scholar desertion due situations that would have been avoided if a proper action/strategy would have adopted.

Support of students for academic labors

I definitely encourage students to participate in different academic activities like conferences, seminars contests ferias etc. This implies support in the preparation of the content to be shown, the preparation of the students to face a big audience and looking for the financial support with sponsors to make possible the participation. Some press release about these activities can be found next:

  1. Press release about participation of students in the IX Seminar of Security of Information (2018-11-29)
  2. Press release about participation of students in the 37th Technological Feria in the National Institute of Telecomunications (Brasil) (2018-10-11)
  3. Press release about participation of students in the Owasp Latam Tour 2018 (2018-06-26)
  4. Press release about support for student in the achievement of the certification CSX Cybersecurity fundamentals of Isaca (2018-05-31)
  5. Press release about participation of students in the VIII Seminar of Security of Information (2018-05-08)
  6. Press release about participation of student in the academic showcase (2018-05-8)
  7. Press release about support for student to participate in different cybersecurity academic events (2017-12-07)
  8. Press release about participation of students in the Cyberex 2017, (2017-07-25)

Promotion of research results

As part of the spreading of result I am always interested in publicizing the new contributions and when possible achieve that papers get published as “open access” or with Creative Common License (CC), so they can be read for whoever is interested. Some recent press release related to paper publications can be found next:

  1. Press release about publication of paper in international journal (2019-04-09)
  2. Press release about publication of paper in national journal (2019-01-15)
  3. Press release about publication of paper in national journal (2018-12-13)
  4. Press release about publication of paper in international journal (2018-12-4)
  5. Press release about publication of paper in international journal (2018-11-29)
  6. Press release about scholarship for professor Daniel Díaz (2018-08-14)
  7. Press release about scholarship awarded to professor Daniel Diaz, (2017-07-31)

Networking activities (talks, meetings, presentations for non-specialist audiences)

I have participated as speaker in some events addressed for non-specialist audiences with the purpose of spread how the science and the research I develop can make our societies safer. Additionally, I am always thinking about doing networking with governmental, industry or academic partners to join efforts and achieve common goals. Some press release related with these activities can be found next:

  1. Press release about the participation as speaker in the First Think Tank organized by the Colombian Air Force (FAC) (2019-04-04)
  2. Press release about meeting with the rector of the University of Murcia (Spain) to start research agreement between universities (2018-11-20)
  3. Press release about development of research stage in the University of Murcia (Spain) (2018-11-27)
  4. Press release about participation as speaker in the data analytics symposium (2018-10-02)
  5. Press release about project with the Cybernetic Joint Command (CCOC) of the Colombian Military Forces (2018-03-15)
  6. Talk over OSINT Cyberintelligence in a military context in the University of Murcia (Spain) (2018-11-20)
  7. Press release about public lecture “Resume of the Cybersecurity Summer BootCamp 2017”, (2017-10-04)
  8. Press release about public lecture “CSX CYBERSECURITY FUNDAMENTALS by ISACA”, (2017-10-18)

Activity in Social Media and Advocacy

I participate with some frequency in different social media like broadcast TV (El Tiempo Television) and Youtube Channels (Channel i+i News, Channel from the Computer Science Faculty), and I also advocate that my students do it. Some available content in which I have participated can be reached in the following links:

  1. Demo Authentication Bypasses over Webgoat (2019-01-30)
  2. Demo Bypass Client Side Javascript Validation over Webgoat (2019-01-30)
  3. Demo XXE (XML External Entity) injection over WebGoat (2019-01-30)
  4. Demo Use of truffleHog (2019-01-30)
  5. Demo Use of SSLyze (2019-01-30)
  6. Demo SQL injection (advanced) over WebGoat (2019-01-30)
  7. Demo SQL Injection (Mitigation) over Webgoat (2019-01-30)
  8. Interview “Special report about cyberattacks and hacking tutorials” for the “Chanel i+i News” belonging to the Colombian School of Engineering (2017-06-30)
  9. Interview “Activities of the HackLab Group” “Actividades del Grupo HackLab” for the “Channel i+i News” belonging to the Colombian School of Engineering (2017-04-07)
  10. Demo Blind String SQL Injection over WebGoat (2017-04-07)
  11. Demo Blind Numeric SQL Injection over WebGoat (2017-04-07)
  12. Demo Numeric SQL Injection over WebGoat (2017-04-07)
  13. Demo XPATH Injection over WebGoat (2017-04-07)
  14. Demo String SQL Injection over WebGoat (2017-04-07)
  15. Demo Log Spoofing over WebGoat (2017-04-07)
  16. Demo Hijack a Session over WebGoat (2017-04-19)
  17. Demo Command Injection over WebGoat (2017-04-07)
  18. Interview “Bullet Proof Password” - “Contraseñas a prueba de todos”, for the TV program “TECNOSFERA” belonging to “EL TIEMPO TELEVISION” (2017-03-16)

PROFESSIONAL AND ACADEMIC PROFILES

If you are interested in some of the topics presented here or want to make research about cyberdefense, cyberintelligence, privacy, security in software development cycle, Ethical Hacking, security in Internet of Things (IoT), do not hesitate to contact me to my email: danielo.diaz@urosario.edu.co

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages