Badges

55 Points
8 Years

User Activity

About 6 years ago
Answered a question: Which would you recommend to your boss, IBM QRadar or Splunk?
None are "log management" tools, and Splunk is not SIEM nor is the Enterprise Security add on. When you state "log management" I can infer log retention, historics, data analysis, so I think that the question needs to be further refined to make sense of what you're asking…
Experience
Following

Answers

About 6 years ago
Log Management
Which would you recommend to your boss, IBM QRadar or Splunk?

About me

Security professional slash wearer multiple hats, red (penetration testing), green (DFIR) and blue (defense). I no longer publicly disclose the companies I work for - but feel free to ask.

Specialties: Pentesting, DFIR, net forensics (packet fun), system forensics, mobile forensics. Covert Network Attacks, Covert Network Exploitation, Information Assurance, Information Operations, Threat Analytics.

Security Research with exploitable discoveries on IBM, Microsoft, Cisco, F5, VMWare, SAP, Adtran, etc.

Certifications
  • Certified Penetration Tester (CPT)
  • Stonegate Firewall Engineer (SGFE)
  • Stonegate Firewall Architect (SGFA)
  • Certified Ethical Hacker (CEH)
  • Certified Hacking Forensics Investigator (CHFI)
  • Offensive Security Certified Professional (OSCP)
  • Real World Security Practitioner (RWSP)
  • GIAC Reverse Engineering Malware (GREM)
  • Big Data Foundations - Level 1
  • Data Science Foundations - Level 2
  • Data Science Foundations - Level 1
  • Hadoop Foundations - Level 1
  • Text Analytics - Level 1
  • Data Science for Business - Level 1
Education

SANS
Long Island University