Increased amount of company signed clients from 100 to more than 300 in 2023 in under 1 year. Leadership of company efforts in the LATAM region, in which the company had problems due to a major language barrier in which I helped to gather more contracts.Managed the Occidental team as a lead of 2 team members and helped in +10 major Incident Response scenarios where a deep forensic investigation and malware analysis was required by the clients.Influenced positively negotiations for new clients for Cyrebro, which were impacted by APTs. Led purple team use cases to improve detections, and participated in the penetration testing and vulnerability management efforts. Skills: Security Information and Event Management (SIEM) · SOAR · Splunk Enterprise Security · Cloud Access Security Broker (CASB) · Proofpoint
Led and executed comprehensive red team engagements for clients across LATAM, USA, and ASIA. Leveraged advanced penetration testing techniques and simulated real-world attacks to evaluate and enhance clients' security defenses. Conducted extensive network and application penetration testing to identify vulnerabilities and weaknesses. Executed social engineering campaigns to assess employee awareness and susceptibility to phishing attacks. Developed custom exploit payloads and attack vectors to simulate sophisticated cyberattacks. Leveraged adversarial tactics, techniques, and procedures (TTPs) to emulate real-world threat actors. Provided detailed reports outlining identified vulnerabilities, potential impact, and recommended remediation steps. Contributed to the development of red team methodologies and tools to enhance engagement effectiveness. Collaborated with blue team members to improve detection and response capabilities based on red team findings.
Led advanced threat detection and incident response initiatives as a Senior Security Analyst, leveraging extensive knowledge of attack detection and malware scenarios. Directed the analysis of complex cyber incidents, employing deep knowledge of attack patterns and malware behavior. Led the investigation of various attack scenarios, including APTs, ransomware, and insider threats. Utilized TTPs to identify and assess adversary tactics, techniques, and procedures for proactive threat hunting. Conducted research on emerging attack vectors and tactics, contributing to the enhancement of detection strategies. Developed and delivered threat intelligence reports to stakeholders, providing actionable insights for mitigation. Collaborated with blue team members to enhance security controls based on identified attack patterns. Provided guidance and mentorship to junior analysts, fostering skill development and knowledge sharing.
Technical Support of Network Security and Network Administration for VPN technologies such as Site-to-Site, IKEv1, IKEv2, SSL VPN, Clientless VPN, DMVPN, EZVPN, GETVPN, and FlexVPN for Cisco Systems Products. Conducted proactive network Vulnerability Scans to mitigate encryption risks. Web troubleshooting of Java, SQL and Firewalls issues.