National CSIRT Team Lead / Information Systems Agency Of Armenia

Sep 2023 - Current Yerevan Armenia

• Overseeing cybersecurity incident response team at National CERT/CSIRT of Armenia.
• Conducting constituent meetings, defining and implementing CSIRT services based on FIRST CSIRT Services Framework
• Fostering international collaboration with other national CSIRT or CSIRT networks such as FIRST or TF-CSIRT
• Team main areas of focus are Cyber Threat Intelligence, Malware Analysis and Incident Response.

Threat Hunter / Cybereason Global SOC

Feb 2022 - Sep 2023 Remote

• Incident investigation and threat hunting within Global Security Operation Center (GSOC) of Cybereason's Managed Detection and Response (MDR) service
• Various SOC / Security Orchestration, Automation and Response (SOAR) automation and improvements
• Threat analysis reports for new malware and adversary Tactics Techniques and Procedures (TTPs) such as Bumblebee Loader or Sliver C2 Framework
• Threat forecast with internal and external threat sources, OpenCTI

SecOps engineer / Dassault Systèmes

Oct 2020 - Feb 2022 Paris France

• Endpoint Detection and Response (EDR), Security Information and Event Management (SIEM) alert analyse and investigation
• Digital Forensics and Incident Response (DFIR)
• Red team exercises
• Automation

Information Security Officer / Dassault Systèmes

Oct 2018 - Oct 2020 Tokyo Japan

• Information Security awareness in APAC
• Vulnerability management
• Security review of projects
• Pentest

Apprentice – Information Security Officer / Dassault Systèmes

Sep 2017 - Sep 2018 Paris France

• Vulnerability management
• Procedures
• Security best practices
• Open Web Application Security Project (OWASP)

Apprentice – System Network and Security / Métropole Television, Groupe M6

Sep 2015 - Sep 2017 Paris France

• Key Performance Indicators creation (KPIs)
• System Monitoring
• Integration and automation
• Patch management

Information security engineer / École Supérieure de Génie Informatique (ESGI)

Sep 2015 - Sep 2018 Paris France

• Operating System internals / hardening
• Cryptography
• Penetration testing
• Revers engineering
• Forensics
• Malware analysis
• Vulnerability exploitation

University Level Degree in computer science / University Institute of Technology

Sep 2013 - Jul 2015 Amiens France

• Mathematics
• Algorithmic
• Data bases
• Operating systems
• Development
• Background studies

• OffSec Certified Professional (OSCP)
• System Forensics and Incident Handling (BlackHat)

• Self-hosting stack (networking, docker, VPN, mail system, DNS etc)
• Honeypot
• EDR bypass
• Wg Gen Web (Wireguard WEB interface)
• Various automation and scripting