Victor is a proficient Cybersecurity Engineer with extensive knowledge of hardware, software, networking, and security frameworks/technologies. He has a background in System Administration and worked as a Technical Lead for a Microsoft Partner on Security and Compliance, Mail Flow, Azure, and Exchange Online/Hybrid. Victor is also skilled in customer engagements, project continuity/management, and supervising teams of engineers.
Automated Malware Sandbox(Cuckoo Malware Analysis) is a platform that performs dynamic/automated malware analysis. The sandbox is made up of one management console and two sandbox environments(Windows/Linux) for malware analysis.
The project involved working on SIEM(Security Information and Event Management) with Azure Sentinel, Exabeam, and ArcSight. SIEM tools are an important part of the data security ecosystem: they aggregate data from multiple systems and analyze that data to catch abnormal behavior or potential cyberattacks.
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios. VECTR provides the ability to create assessment groups, which consist of a collection of Campaigns and supporting Test Cases to simulate adversary threats. Campaigns can be broad and span activity across the kill chain, from initial compromise to privilege escalation and lateral movement and so on, or can be narrow in scope to focus on specific detection layers, tools, and infrastructure.
Work history
UpStack
Cybersecurity Engineer
2021 - Present (2 years)
Remote
Working on planning, implementing, managing, monitoring, and upgrading security measures for the protection of data, systems, and networks.
Ensure a response for all system and/or network security breaches, also troubleshooting security and network problems.
Identify the client’s security needs and establish best practices and standards accordingly.
Worked on the setup of a mini forensics lab with an automated malware analysis lab (Cuckoo Sandbox).
Handled ISO 270001 and ISO 20000 reviews and recertifications, as well as SOC and SIEM reviews.
Managed behavioral and threat analytics, White Box penetration tests and Dynamic/stress testing, as well as the addition of more layers to the Defense-in-Depth architecture.
Worked for a startup cybersecurity company that provides threat intelligence reports/vulnerability assessments, penetration testing, and bug bounty hunting.
Performed penetration tests on the client’s infrastructure, and security awareness presentations. Worked on SIEM design and implementation; server and firewall hardening.
Handled vulnerability scanning and threat assessment reports, report writing for Blue and Red Team engagements, as well as social engineering and information harvesting.
Worked on third-party integration with Office 365 services. Performed penetration testing and security audits on computer systems and networks.
Acted as Project Lead for a team of technicians responsible for on-premise and cloud migrations. Managed all Active Directory tasks and implementation of federation services either with Windows ADFS or other third-party IDP such as OKTA.
Managed Azure, Intune, Office 365 Security and Compliance, Exchange, Teams, SharePoint, and One drive to leverage its full capability.
Acted as a mentor for support engineers by developing their technical acumen, case maintenance, and customer interaction skills.
Created Procedures in effort to provide step by step documentation of troubleshooting workflow infrastructure.
Provided modern support to Microsoft customers on these areas: Exchange Online/Hybrid configuration, Identity and Access Management, Security and Compliance, Advanced Threat Protection, Migrations, Azure VM/Resource provisioning, Windows Server.
CompTIA Security+ Certified Security Professional; Networking Foundations: Networking Basics; Office 365: Implement Identities for SSO; Windows Server 2016: Active Directory Federation Services; Windows Server 2016: Installation and Configuration.
LinkedIn Certifications
Usable Security
Coursera
Technical Support Fundamentals
Coursera
Palo Alto Networks Academy Cybersecurity Foundation
