Description

I’m a Cybersecurity specialist who helps organizations improve their security posture, meet compliance requirements, and develop future-oriented strategies. My work sits at the intersection of technology, policy, and advisory — with a focus on practical, actionable solutions.

I support organizations in designing, implementing, and optimizing SIEM and SOC processes, including log management, threat detection, and monitoring. I also provide guidance in governance, risk management, and compliance — including frameworks like ISO27001, NIST, and CIS. In addition, I advise on security architecture, incident response planning, and policy development.

Beyond the operational side, I offer strategic guidance to management teams and IT leaders who need clarity, direction, and hands-on support in executing their cybersecurity strategy.

Services & Areas of Expertise:

SIEM & SOC Consulting – setup, optimization, and support of detection and monitoring processes
GRC & Compliance – assistance with frameworks such as ISO27001 and NIST, including risk management and policy documentation
Security Architecture & Documentation – development of security guidelines, plans, and technical advisory
vCISO & Cybersecurity Advisory – temporary or part-time strategic support for executive and management teams

Industry field of expertise

Languages

Dutch
Native or bilingual
English
Fluent
Spanish
Conversational
Arabic
Basic
Indonesian
Basic
Javanese
Basic

Workplace preferences

Can work on-site

Zwolle (up to 50km)

MSPS Groep B.V.
SOC/SIEM Consultant - Purple team
SOFTWARE PUBLISHING
January 2021 - Today (5 years and 5 months)
Amsterdam, Netherlands
Responsible for a broad and dynamic range of cybersecurity operations within a high-demand environment, including but not limited to threat detection, incident response, vulnerability management, email threat analysis, and phishing awareness campaigns. Actively contributed to the design, tuning, and continuous improvement of detection mechanisms across multiple log sources to enhance the organization's threat visibility and reduce time-to-detection.

Worked closely with SOC analysts, IT teams, and management to ensure rapid containment and remediation of security incidents while conducting in-depth root cause analyses to prevent recurrence. Coordinated end-to-end incident handling processes, from triage to post-incident reviews, using SIEM platforms such as Elastic Stack.

Drove phishing simulations and awareness initiatives aimed at reducing user susceptibility to social engineering attacks, while analyzing campaign results to improve training materials and identify risk-prone user groups. Regularly collaborated with internal stakeholders to review security baselines, enforce policy compliance, and advise on best practices for hardening systems and safeguarding sensitive data.

Played a key role in proactive security efforts including the development of custom detection rules, threat hunting exercises, and implementation of security automation to minimize manual overhead. Maintained a sharp focus on strengthening the organization's overall security posture through continuous improvement, knowledge sharing, and a risk-driven approach to security operations.
Cyber Threat Intelligence Vulnerability Management Security Awareness SIEM Phishing
MSPS Groep B.V.
SIEM Engineer & Rules Detection developer
DIGITAL AND IT
January 2022 - January 2023 (1 year)
Amsterdam, Netherlands
Led end-to-end threat detection development across endpoint, email, cloud, and infrastructure log sources. Created and refined SIEM detection rules using behavioral logic, anomaly baselining, and contextual correlation to improve both detection precision and response speed. Actively reduced alert fatigue by tuning rule thresholds, normalizing noisy data, and validating detections against real-world scenarios and threat intel. Partnered closely with incident response teams to provide actionable alerts that supported rapid triage, forensic analysis, and root cause identification. Integrated MITRE ATT&CK mappings and custom use cases aligned with evolving adversary techniques. Delivered continuous improvement through rule lifecycle management, detection gap analysis, and threat hunting validation. Played a pivotal role in elevating overall detection maturity, increasing visibility, and helping teams transition from reactive monitoring to proactive threat mitigation.
SIEM Anomaly Detection Alerting Incident Management Purple team
MSPS Groep B.V.
Vulnerability Management Lead
DIGITAL AND IT
January 2021 - January 2022 (1 year)
Amsterdam, Netherlands
Responsible for identifying, analyzing, and prioritizing vulnerabilities across a wide range of assets using threat intelligence, CVSS scoring, exploitability data, and asset criticality. Collaborated with technical teams to coordinate timely and effective remediation efforts, ensuring alignment with business risk and compliance requirements. Monitored and responded to malware threats, leveraging endpoint data, behavioral analysis, and sandboxing tools to support containment and recovery. Conducted detailed investigations into phishing attempts, including header analysis, payload inspection, and sender reputation scoring. Provided actionable intelligence to strengthen early threat detection and reduce response times. Played a key role in improving incident response workflows by integrating vulnerability data into detection strategies and driving awareness of persistent email-based threats across the organization.

Vulnerability Management Threat Assessment Phishing Remediation Red Team