enrique gallardo verfügbar

enrique gallardo

Cyber security especialist

verfügbar
Profilbild von enrique gallardo Cyber security especialist aus Hamburg
  • 22527 Hamburg Freelancer in
  • Abschluss: Telecommunication
  • Stunden-/Tagessatz: 80 €/Std. 640 €/Tag
    85 von ort, 65 remote
  • Sprachkenntnisse: deutsch (gut) | englisch (Muttersprache) | spanisch (Muttersprache)
  • Letztes Update: 24.05.2019
SCHLAGWORTE
DATEIANLAGEN
Resume
Der Download dieser Datei ist nur mit einem kostenpflichtigen Account möglich.
SKILLS
• IT Security• Security Assessments• Logic Flaws Determination
• Social Engineering• Security Strategies• Policies Development
• Service Improvement• Continuous Enhancement• Security Issues Analysis
• Vulnerability Assessment• Penetration Tests• Business Impact and DRPs.
• Info Security Assessment• Threat Anticipation Modeling• ISO/IEC 27000
• Cloud Security Architect• Business Continuity• NIST 800 Series
• Enterprise Info Security• Incident Response Management• IM8/TRM/GB
• Data Governance• DR and Crisis Management• PCI DSS
• Threat Modeling• Metrics and ISM3• MAS TRM
• Risk Management• Secure Scrum• PDPC/GDPR
• Governance /Compliance/ Audit• Vulnerability Management• CSA Framework
Norms & Methodologies & Practices:
  
ISO27001OWASP    OSSTM    NISTISMSSoX   
ISSAFFiSma  PCI-Dss CobitCIS

IT Risk Management and Assessment  
ISO 27005NISTSP800-30 COSODREADOCTAVEMEHARI
Forensic:      
HELIXFTKStatic (Limited)DynamicSandboxing

Data exfiltration (INSIDER CATCHING):   
GTB DLPRSAOnionSecurityDB DAMEPPsSSL interception
Proxy controlDNS behaviorSink holingDNS split BrainEDRsHTTS MitM
Pentesting or Ethical hacking:
    
Nmap nseMetasploit rapid7Nessus OpenVasRetinaVega
WEBAcunetixBurpsuiteTamperData Burp suite nikto
Network Analysis or Network-based monitoring 
CAPSAWIRESHARKOmnipeekNetflow analysis MolochWMI
XplicoFiddlerTCPDUMPSNMPCacti Nagios
Open Source Intelligence:   
FOCAMaltegoScrappers and Spiders FaradayOWTF Opensource
Network Access Control and Protection  
OpenNACMicrosoftCisco ISERadius  LDAPACI802.11x
Firewalls:     
Palo AltoFortigatePfsenseISA TMGUntangleF5 asm
CiscoIptablesJuniper Checkpoint 80ImpervaLayer 7 osi
Traffic Shaper and Balancers:   
Alteon NortelRadwareCisco CCSSF5 L7FilterNdpi Ntop
Virtual Private Networks   
IPSECSSLSSHDirectAccessDMVPN CiscoMLPS
 Intrusion Prevention or Detection System  
Checkpoint Cisco SourcefireJuniper  IDPMcafee EPO AV IntrushieldProventia IBMTipping point
LOG Correlation SIEM (System Information Event Monitoring System)
OSSIM Alien VaultArcsight Splunk Ossec  Elastic SearchAanval ElasticSiemplify Sentinel
Network accounting and behavioural:   
Arbor PeaxflowDarktraceAllot  NetenforcerBroIDSSandvine
Content Manager:     
WebsenseWebwasherBluecoatOpenDNSNXFilter

Virtualization:     
Virtual Box HyperVVMWARE ESX NSXXEN server Qemu crossco Proxmox
Routing and Switching   
EIGRPOSPFBGPMLSSTP

Wireless:      
Rogue Detection WKrackWIPS802.11x VoiPWVPLSoW
PROJEKTHISTORIE
FirmaAufgaben TitelTaskAufgaben - Umsetzung
Art und Weise / Erfolge
Implementation  & achievements
AusgangssituationZielsetzung






LandesBank SOCDeficient or inexistent  New implementation or Tuning existingCreate a SOC Monitoring team and procedures, workflows, frameworks, controls and SIEM rules.
 Junghe Inrich GMBH EDR EPP SIEMDeficient or inexistent New implementation or Tuning existing Tuning of Qradar and CarbonBlack. Migration of TMG to zscaler firewalls.
 Apleona GMBH AAA PIAMDeficient or inexistent New implementation or Tuning existingImplementing AAA and PIM: Cisco ISE + Cyberark
 Novartis DatalakeDeficient or inexistent New implementation or Tuning existingReplace Qradar with Splunk.
 Volvo SIEMDeficient or inexistent New implementation or Tuning existingCreating SIEM use cases escenarios.
 Bekaert CLOUDSECDeficient or inexistent New implementation or Tuning existingImplement WAF and NGFW in Azure.
 QuantumGlobal ALLINDeficient or inexistent New implementation or Tuning existingImplement more than 20 security projects: OpenDNS, WAF, IDS, SIEM, AV, MDM, IOCscanner.
 Credit SuisseDAM  Deficient or inexistent New implementation or Tuning existingImplement a cluster of 200 DAMs in HA. DAM= Database activity monitoring.
 LaCaixaSharepoint FFW Deficient or inexistent New implementation or Tuning existingImplement a File firewall for SharePoint (Imperva)
Vodafone GBMH SIEM WAFDeficient or inexistent New implementation or Tuning existingImplement 100 units cluster of WAFs and integrate them with SIEM Arcsight.
Bank MexicoWAFDeficient or inexistent New implementation or Tuning existingImplement WAF in the Bank in transparent mode and in KRP with DFH.
EvonikSOCsDeficient or inexistent New implementation or Tuning existingFine tune SOC Monitoring team and procedures, workflows, frameworks, controls and SIEM rules.
S21secSOCsDeficient or inexistent New implementation or Tuning existingStart from scratch a SOC Monitoring team and procedures, workflows, frameworks, controls and SIEM rules.
TelefonicaNetworkDeficient or inexistent New implementation or Tuning existingRouting, MLSwitching and transmission: SDH,DWDM. PDH rings.
ZEITLICHE UND RÄUMLICHE VERFÜGBARKEIT
100% welt
KONTAKTANFRAGE VERSENDEN

Ja, ich akzeptiere die AGB

Ja, ich akzeptiere die Datenschutzbestimmungen

Hinweis: der Versand ihrer Kontaktanfrage ist komplett kostenfrei