Schlagwörter
Skills
- Information Security | CISSP | Threat Analytics | SIEM Splunk
- Cloud | Azure | AZ-900 Fundamentals | AZ-500 Security Technologies
- Automation | Ansible | Splunk Phantom (SOAR)
- Networking | BGP | OSPF | Multicast | General Routing and Switching
- Programming | Python | Bash Scripting
- Network Security | Check Point | Cisco | Juniper | Palo Alto | McAfee Web Gateway
- Other | VMware ESXi
Projekthistorie
Design, Architecture, Engineering, Documentation, Standards Authority and Automation of Deutsche Bank’s Network Firewall, Network Proxy, NIDS, Aruba Home VPN and general Network Security estate. 24/7 on-call for global final line support: all network security products (Firewalls, NIDS, Proxies, etc)
Using Splunk’s Phantom SOAR product we as a team delivered 37 Cyber Security based automations within 2 years. We worked very closely with the global Security Operations Centre (SOC), Vulnerability, PKI, Threat Analytics, Threat Intel, Cyber Hygiene and I&AM Teams. In addition we developed both a popular self-service solution; and an MS SQL/TIGGS based automation request and tracking portal. 24/7 on-call rota for product operational support.
We defined, designed and delivered multiple Threat Analytics and Detection use cases over a 4 year period. Collaborating with many teams both inside and outside Deutsche Bank’s Chief Security Office to enable our use cases by integrating their systems with Splunk. We worked closely with our SOC, who I also trained and supported on how to detect and analyse security problems. 24/7 on-call rota for SOC support and SIEM Operational issues.