Over a decade working in Information Security starting as an Analyst to Engineer and currently as a Principal Consultant. My main area of expertise is Security Operations as my current role (and previous ones) is centered around implementing the ability to monitor a clients network from a security perspective 24/7. I have vast experience with Intrusion Detection/Prevention, Log management and Security Information and Event Management with a strong focus on Analysis/Visualization of large data-sets provided by these NSM inspired infrastructures.

Specialties: ArcSight, Splunk, SIEM/SEM, IDS/IPS, Security Operations, Log Management/Retention. QRadar, RSA Envision, Log/Packet Analysis, Incident Response/Management.