SIEM & Threat Analysis

• Monitoring: Splunk, Wazuh SIEM
• IDPS: Snort 3, Threshold Optimization
• Traffic: NDR & Pattern Analysis

Hardening & Perimeter

• System: Linux Server Hardening (RHEL/Ubuntu)
• Network: Linux NGFW, Squid Proxy, SSL Interception
• Env: Proxmox, VMware, Docker

R&D and Governance

• R&D: 7-Step Research Analysis Methodology
• Automation: Python & Bash for Security Tools
• Standards: ISO 27001, NIST CSF Foundation