Experienced (forensic) analyst, member of the CERT team at a Fortune 100 company. I have worked for the government CERT (GovCERT.CZ), Big4 (PwC), SaaS/PaaS providers, financial institutions, and handled various incidents. From misconfigurations to state actor attacks or ransomware attacks. I have experience with cloud environments where we migrated the entire infrastructure. This presents a number of challenges for the SOC/CERT team. Each environment is unique and brings new challenges that need to be adapted to.
My main area of interest is (forensic) analysis: system or application logs, network records (PCAP, flow), or alerts from various IDS/IPS/EDR tools.
I try to keep up with current events. This helps me monitor current vulnerabilities across the infrastructure. The buzzword "threat hunting" is often used for this.
I have been participating in the Locked Shields cyber exercises since 2014, where I am responsible for the team monitoring network traffic.
I hold GIAC certifications (Network Forensic Analyst, Continuous Monitoring, and Cyber Threat Intelligence). I am a lecturer at the non-profit organization Czechitas and a reserve officer in the Czech Armed Forces. In my free time, I also enjoy photography.
Do you have network traffic records, logs, or PCAPs and want to know what happened? Is your network behaving unusually and you don't know where the problem is? I can help you.
Do you want a nice photo? I offer you my experience with portrait photography.
Hand in hand with analysis goes consultation on best-practice settings. If you are unsure about the settings, don't hesitate to contact me.
I have experience in teaching and lecturing to both professional and lay audiences. My primary area of focus is cybersecurity.
Email: ondrej@ondrejsramek.cz
PGP: 9EC7 FB8B 5C67 5602 CB1C D3A2 FB35 6E00 A9EF 0A8C
ID No.: 21732761
Person registered in the Trade Register since June 19, 2024