Oleskii
π΅οΈββοΈ OLEKSII HLUSHKOV
Security Operations & Threat Defense
π― Motto
π©Έ Red Blood | π‘οΈ Blue Team | βοΈ Purple Willings
π About Me
I have been involved in cybersecurity for 7 years and have 5 years of industry experience as a Security Operations Specialist working in the National SOC. SIEM is my best friend.
I am proficient in Linux and Windows environments (including Active Directory). My expertise extends to network and host forensics, intrusion detection, and anomaly monitoring.
Beyond my hands-on experience, I actively share my knowledge through cybersecurity training, specifically for Ukraineβs Critical Infrastructure sectors.
I consistently participate in CTF competitions and real-world cyber defense exercises to enhance my skills. π
πΌ Work Experience
2019-2023 Security Operations Analyst at SCPC SSSCIP
- Data ingestion & normalization
- Incident triage & investigation
- Logs analysis & correlation
- Threat Intelligence implementation (MISP)
- Client cooperation
- Newcomers onboarding & mentoring
2023 - present Security Operations Lead at SCPC SSSCIP
- Strategic planning & project management
- Management of cyber defense direction
- SIEM (Splunk) architecture and optimization
- Threat hunting & detection engineering
2021 - present Cybersecurity Instructor at CRDF Global
- Maintain virtual infrastructure
- Develop practical demos and attack-defend scenarios
- Conducting attendeesβ assessment
- Organizing and leading CTF competitions
πΌ Expertise Skills
- SIEM (Splunk preferred)
- Splunk Enterprise Security
- EDR (CrowdStrike, Cisco AMP)
- Threat Intelligence (MISP)
- Threat Hunting
- Network & Windows Forensics
- Windows Hardening
π Frameworks
- MITRE ATT&CK
- MITRE DEF3ND
- SIGMA
- NIST CSF
- CIS 20
π Education
2014-2019 β NTUU KPI
Master in Cyber Security
π Certifications
- GDAT
- Splunk Certified Cybersecurity Defense Analyst
- Cisco CCNA
- Dragos Platform Certified User
- EC-Council:
- CEH
- ECIH
- CHFI
π Courses
- SANS:
- SEC555: SIEM with Tactical Analytics
- SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses
- SEC699: Advanced Purple Teaming - Adversary Emulation & Detection Engineering
- DFIR Netwars
- NATO M6-112: Cybersecurity of Operational Technology Systems
- Splunk:
- Using Splunk Enterprise Security
- Splunk System Administrator
- Splunk Data Administration
- Mandiant:
- Network Traffic Analysis
- Windows Enterprise Incident Response
- Linux Enterprise Incident Response
- Malware Analysis Crash Course
- Creative Red Teaming
- Cisco CCNA
- CompTIA CySA+
π― Valuable Cybersecurity Competitions
- The Hunt SOCathon 2021
- SANS Netwars 2022
- NATO Crossed Swords 2023
- NATO Locked Shields 2024
π Language Skills
- Ukrainian (Native)
- English (B1-B2)
π Contact Me
π§ oleksii.hlushkov@gmail.com
π linkedin.com/in/oleksii-hlushkov-46a3a919a