shield_person Ivan Kuznetsov

Ivan Kuznetsov

Junior Cybersecurity Engineer · BSc Cyber Security Engineering · SIEM/XDR & IAM · Automation

mail Contact visibility View CV code GitHub badge LinkedIn

person About me

I am a Junior Cybersecurity Engineer with hands-on experience in SIEM/XDR, incident response, and detection engineering.

Currently, I manage and operate core security operations, collaborating closely with senior engineers, team leads, and stakeholders to investigate incidents and support infrastructure-level security decisions.

My primary focus lies in detection engineering, building secure automation workflows, and executing effective incident response strategies to protect corporate environments.

Languages: English (Fluent) · Estonian (Fluent) · Russian (Native)

grid_view Skills

code Programming & Databases
Python JavaScript HTML/CSS PostgreSQL REST API Git PHP MySQL
security Cybersecurity
SIEM (Wazuh) XDR (Cortex) Threat & Vulnerability Management Incident Response YARA SOAR CVSS CIS Benchmarks MITRE ATT&CK Cyber Kill Chain
dns Systems & Networking
Linux (Red Hat, Ubuntu) Windows Server (AD, GPO, PowerShell, Hyper-V) Azure Entra ID Ansible Cisco IOS IPSec (Policy & Route-based) VLANs/NAT/WAN/QoS Cisco ASA GLBP Bash/CLI
build_circle Tools & Platforms
Wireshark Nmap Elastic Stack Syslog KnowBe4 VirusTotal API Performance Monitor
hub Blockchain & Automation
n8n LLM Integrations Open-source Automation Retrieval-augmented generation (RAG) Smart Contracts Node Deployment & Hardening

workspaces Portfolio

CIS Benchmark-Based Endpoint Hardening

Information Security

Implemented CIS Benchmark-aligned endpoint hardening for Windows and macOS environments, featuring audit controls and centralized patch management across systems.

Tech: Windows, macOS, CIS Benchmarks, Audit Controls

Wazuh SIEM/XDR

Security Engineering

Built a robust SIEM/XDR platform using Wazuh, integrating custom YARA-based detection rules for advanced malware analysis and threat alerting.

Tech: Wazuh, YARA, Linux, Windows, Syslog

open_in_new Repository

PHP CLI Password Manager

University Project

Developed a secure, interactive command-line vault. Features libsodium encryption (Argon2id, XChaCha20-Poly1305), strict data validation, and Linux clipboard integration.

Tech: PHP 8.4, Symfony Console, libsodium

open_in_new Repository

AI Sales Assistant

AI Automation

Developed a RAG-based chatbot with OpenAI API integration and automated backend workflows via n8n, coupled with a full-stack web application.

Tech: HTML/CSS/JS, n8n, OpenAI API, PostgreSQL

Orbital Signal Deception Planner

Defence AI Hackathon

AI-based counter-SIGINT prototype that forecasts 24-hour satellite trajectories and generates rule-based deception tactics.

Tech: Python, Local LLM, Skyfield, JavaScript

FinCheck — Personal Finance Tracker

University Project

Full-stack web app for budgeting, categorization, and charts with strong security controls against XSS and SQL injection.

Tech: PHP, JavaScript, MySQL, HTML/CSS

open_in_new Repository

history_edu Work experience

Junior Cybersecurity Engineer · Admirals Group AS

01/2026 – Present · Tallinn, Estonia
  • Investigated and remediated security incidents utilizing Cortex XDR.
  • Managed identity and access control using Microsoft Entra ID.
  • Conducted application security reviews and vendor risk assessments aligned with internal security policies.
  • Executed phishing simulation campaigns to improve corporate security awareness.

Junior Cybersecurity Engineer · Cybertex Security OÜ

11/2025 – Present · Tallinn, Estonia
  • Progressed from an intern to a Junior Cybersecurity Engineer role, actively working on diverse cybersecurity projects.

Junior Software Developer · Saule IT Services OÜ

09/2025 – 01/2026 · Tallinn, Estonia
  • Developed a PHP-based backend solution with secure data validation.
  • Improved the legacy CAPTCHA implementation to enhance both security and user experience.

Cyber Security Intern · Cybertex Security OÜ

12/2024 – 11/2025 · Tallinn, Estonia
  • Built a SIEM/XDR platform using Wazuh, deploying custom detection rules.
  • Developed an AI assistant for sales and operations automation leveraging n8n, RAG, and OpenAI.

Operational Logistics Manager & Assistant Manager · Linkobalt

06/2022 – 09/2024 · Tallinn, Estonia
  • Organized and coordinated international road transport within the EU and managed global logistics operations.
  • Conducted compliance checks to ensure adherence to trade regulations, customs clearance, and export procedures.
  • Contributed to operational process improvements and ensured cross-border regulatory compliance.

school Education

Tallinn University of Technology (TalTech)

BSc Cyber Security Engineering

09/2023 – Expected 06/2026

verified Certifications

CompTIA Cybersecurity Analyst (CySA+)

CompTIA · Issued Apr 2026

SC-900: Security, Compliance & Identity Fundamentals

Microsoft · Issued Jun 2025

EITCA/IS — Information Technologies Security Programme

EITCI Institute · Issued May 2025

CCNA: Enterprise Networking, Security & Automation

Cisco Networking Academy · Jan 2025

CCNA: Switching, Routing & Wireless Essentials

Cisco Networking Academy · Nov 2024

CCNA: Introduction to Networks

Cisco Networking Academy · Jan 2024

Red Hat System Administration I (RH124)

Red Hat Academy · Dec 2024

Red Hat System Administration II (RH134)

Red Hat Academy · Dec 2024

Security for Blockchain & DApps Specialization

LearnQuest · May 2025

Digital4Sustainability Learning Path

UNSSC · Mar 2025

chat Contact

Let’s build secure and intelligent systems together.

mailEmail call+372 5623 7788 location_onTallinn, Estonia badgeLinkedIn codeGitHub