Security analyst with 3 years of experience defending environments, investigating alerts and managing incidents. Currently transitioning to Red Team through laboratories, courses and practical certifications; I apply offensive techniques to identify gaps, validate controls and improve detection.

Key skills

• Detection and analysis:: triage of alerts and use of SIEM (Splunk/ELK).
• Incident response: containment, remediation and coordination with stakeholders.
• Hunting and forensics: analysis on endpoints and networks; extraction of IOCs.
• Tools and scripting: Splunk, Sysmon, EDRs, Wireshark; Python and Bash.
• Offensive fundamentals: pentesting and Red Team techniques: post-exploitation, lateral movement and persistence.
• Communication: actionable reports and reproducible documentation.

Achievements and focus

• Daily operation in CSIRT resolving real incidents and improving detections.
• Practical training and certifications aimed at Red Team.
• Pragmatic approach: reproducible, automated and measurable solutions.

What I can bring to a Cybersecurity Team

• Dual perspective from SOC and security operations to design and execute realistic and risk-aligned assessments.
• Design and implementation of TTP-based scenarios (e.g., MITRE ATT&CK) to evaluate controls, validate detections, and strengthen security posture.
• Ability to translate technical findings into prioritized, measurable, and outcome-oriented actions to drive continuous improvement.

Do you want to see write-ups or laboratories? Ask me for them and I will share them with you upon request.