Wazuh SIEM/XDR Project
Affordable enterprise-style detection & response stack for SMEs. Built SIEM/SOAR pipeline with Wazuh + YARA, behavior rules, priority alerting, and attack simulations.
Ivan Kuznetsov
Cybersecurity Engineering Student · SIEM/XDR & Threat Detection · AI-Driven Automation
About me
I’m a final-year Cyber Security Engineering student at TalTech and an intern at Cybertex Security, focusing on open-source SIEM/XDR with Wazuh + YARA and security awareness (KnowBe4).
I also design AI automation for workflows (n8n + LLMs) and enjoy endpoint security, networking & systems (Cisco, Windows, Linux).
Languages: English (Fluent) · Estonian (Fluent) · Russian (Native)
Skills
Programming & Databases
Python
JavaScript
HTML/CSS
PostgreSQL
REST API
Git
PHP
C
MySQL
Cybersecurity
SIEM (Wazuh)
XDR/EDR
Threat & Vulnerability Management
Incident Response
YARA
SOAR
CVSS
CIS Benchmarks
MITRE ATT&CK
Cyber Kill Chain
Systems & Networking
Linux (Red Hat, Ubuntu, Kali)
Windows Server (AD, GPO)
Cisco IOS
IPSec (Policy & Route-based)
VLANs/NAT/WAN/QoS
Cisco ASA
GLBP
Bash/CLI
Tools & Platforms
Wireshark
Nmap
Elastic Stack
Syslog
KnowBe4
VirusTotal API
Performance Monitor
Blockchain & Automation
n8n
LLM Integrations
Open-source Automation
Retrieval-augmented generation (RAG)
Smart Contracts
Node Deployment & Hardening
Portfolio
AI Sales Assistant (Conversational DB Agent)
Chat assistant that parses free-text intent, keeps conversation memory, and fetches products from PostgreSQL. Frontend + n8n workflows + OpenAI responses.
Orbital Signal Deception Planner
AI-based counter-SIGINT prototype that forecasts 24-hour satellite trajectories and generates rule-based deception tactics.
FinCheck — Personal Finance Tracker
Full-stack web app for budgeting, categorization, and charts with security controls against XSS/SQLi.
Work experience
Cyber Security Intern · Cybertex Security OÜ
- Built cost-efficient SIEM/XDR with Wazuh + custom YARA rules; validated detections in lab scenarios.
- Managed KnowBe4 security awareness: anti-phishing, analytics, training.
- Developed AI assistant automations with n8n for customer support & internal operations.
- Supported monitoring, vulnerability assessments, and incident response.
Assistant Logistics Manager, Operational Logistics Manager · Linkobalt OÜ
- Coordinated international road transport across the EU; managed global import/export routes.
- Performed sanctions/dual-use compliance checks; prepared full customs documentation.
- Improved cross-border processes and ensured regulatory compliance.
Education
Tallinn University of Technology (TalTech)
BSc Cyber Security Engineering
Certifications
SC-900: Security, Compliance & Identity Fundamentals
EITCA/IS — Information Technologies Security Programme
CCNA: Enterprise Networking, Security & Automation
CCNA: Switching, Routing & Wireless Essentials
CCNA: Introduction to Networks
Red Hat System Administration I (RH124)
Red Hat System Administration II (RH134)
Security for Blockchain & DApps Specialization
Digital4Sustainability Learning Path
Contact
Let’s build secure and intelligent systems together.