about
SIEM Engineer · Detection Engineering · Blue Team
Currently managing 23,000+ log sources on IBM QRadar at a large European financial institution under DORA / NIS2 scope. Former Network & Security Team Lead at Jolera Inc. (MSSP), running multi-tenant threat monitoring across Elastic, Microsoft Sentinel, and SentinelOne.
focus Link to heading
- detection engineering · SIGMA · detection-as-code
- incident response and investigation methodology
- log source onboarding, parser/DSM tuning, correlation fidelity
- NIS2 / DORA detection requirements in practice
stack Link to heading
QRadar · Microsoft Sentinel · Elastic · SentinelOne · Wazuh · SIGMA · MITRE ATT&CK · Linux · Git
certifications Link to heading
- BTL1 — Security Blue Team (Jan 2026)
- QRadar SIEM Advanced Topics — IBM / TD SYNNEX (Feb 2026)
- CJDE — Security Blue Team (in progress)