David Santa

Cybersecurity Engineer
IT&C Security Master Graduate

About Me

I am a young Cybersecurity Engineer and fresh IT&C graduate with an insatiable passion for learning everything about anything. I love doing practical things so I have a hands-on aproach, tinkering with all sorts of technologies, tools and frameworks.

My career in cybersecurity started with being an L1 SOC Analyst, monitoring network defense tools and it has evolved into providing L3 services such as Digital Forensics, Malware Analysis, Incident Response and Designing SIEM Rules.

In the past year I have been part of a GRC team but in an Operation role, responsible for overseeing and helping the implementation of cybersecurity policies and procedures as well as defining the requirements for the IT Infrastructure.

What I Do

Digital Forensics

I have taken part in several Digital Forensics actions, ranging from malware infected workstations to compromised Domain Controllers used in executing Ransomware attacks. I have used EnCase and Sleuth Kit (Autopsy) as my main Disk Forensics tools, Volatility and Redline for Memory Forensics and the REMnux distro for Malware Analysis

Security Monitoring

I have provided network security and endpoint security monitoring for more than 10 clients ranging from small companies with 200 IT devices to huge clients that included hybrid infrastructures combining on-prem, public and private cloud, ICS/SCADA and virtualized networks. A comprehensive list of tools I have used can be seen below.

Vulnerability Management

I have provided monthly Vulnerability Assessment Reports using Automated Vulnerability Scanners such as Nessus, Nexpose, Acunetix, Pentera and OpenVAS. Also I have hosted monthly presentations based on the VA Report, offering advice towards prioritising and remediating found vulnerabilities.

Incident Response

I have provided alongside the CERT team incident response actions following the SANS's PICERL framework. I have worked in all phases of the IR process, from deploying and configuring tools, data acquisition and log analysis to containment, forensic, remediation and reporting.

Technologies & Tools

EnCase

EnCase
TSK Autopsy

TSK Autopsy
Volatility

Volatility
FireEye Redline

FireEye Redline
REMnux

REMnux
Nessus

Nessus
Qualys

Qualys
Nexpose

Nexpose
OpenVAS

OpenVAS
Pentera

Pentera
Acunetix

Acunetix
SOCRadar

SOCRadar

Resume

Education

2023
Master's Degree

Cybersecurity Master

I have finished the Information Security Master program at the Faculty of Cybernetics, Statistics and Economic Informatics by presenting my Dissertation Thesis titled "A Self Learning Anomaly Detection Based Web Application Firewall". - Overview + Full Thesis

2021
Bachelor's Degree

Economic Informatics, CSIE

I have finished my undergraduate program in Economic Informatics at the Faculty of Cybernetics, Statistics and Economic Informatics in 2021 with a final grade of 9.50 by presenting my Bachelor Thesis titled "A web platform for online debates" which included a full-stack MERN web app. A detailed description of the program can be found at this link

Experience

2022 - Current
Banca Comerciala Romana

Cybersecurity Engineer

• Part of the Infosec Operations team in the GRC department - “Run The Bank” team.
• Responsible for overseeing and helping the implementation of cybersecurity policies and procedures as well as defining the requirements for the IT Infrastructure.
• The daily tasks include: risk analysis decisions, security approvals on helpdesk tickets, monitoring security solutions, configuring and managing IT Security solutions.
• The main task is managing all the 80+ mandatory annual pentests from the configuration of access to presenting the findings to the business and monitoring the remediation of the findings.

2020 - 2022
Safetech Innovations

Information Security Analyst

• Part of a CERT team operating 24/7 to ensure incident response, malware analysis and digital forensics.
• Vulnerability scanning of internal and external networks using Nessus, Nexpose and Penterra and providing in-depth vulnerability assessment reports.
• Securing immediate response for security monitoring, incident analysis, incident response, threat hunting and threat intelligence using solutions such as Darktrace, Splunk, QRadar, CyberX (Defender for IoT), Security Onion, Cyber Stellar, AlienVault, CyberQuest etc.
• Providing, on request, digital forensics services using a wide range of tools including EnCase, Volatility, Autopsy, Wireshark, REMnux toolkit etc.

2020
Asociatia Magic

Volunteer Developer

•Developed an online tool for visualizing trips made by volunteer drivers helping ill kids
•Being part of a team of two developers, two UX/UI designers and one driver, all volunteers
•Working with React.js for the frontend of the web and Mapbox for map support.

2019 - 2020
Logiscool Romania

Lead Programming Trainer

• Teaching basic coding to students between 7 and 17 years old.
• Coordinating a team of 12 trainers.
• Maintenance of 32 laptopts for students by periodically reinstalling the operating system and ensuring blocking access to malicious sites .

Technical Skills

Self Assessment

Security Monitoring

95%

Digital Forensics

75%

Vulnerability Management

80%

Malware Analysis

60%

Incident Response

85%

Programming

75%

Knowledges

  • Threat Management
  • Reverse Engineering
  • Vulnerability Assessment
  • Vulnerability Management
  • Incident Response
  • Digital Forensics
  • Cryptography
  • Network Security
  • SCADA Security
  • Cloud Security
  • Endpoint Security
  • Database Security
  • Web Security
  • IDS/IPS
  • SIEM
  • Wireshark
  • Antivirus
  • E-payment Security
  • Ethical Hacking
  • Security Systems Design

Certifications

Microsoft Certified: Azure Security Engineer Associate

Credential ID: 991439970
18 May 2021

Contact

Bucharest

+40763664070

[email protected]

Freelance Available

How Can I Help You?