Wazuh SIEM/XDR Project
Affordable enterprise-style detection & response stack for SMEs. Built SIEM/SOAR pipeline with Wazuh + YARA, behavior rules, priority alerting, and attack simulations.
Ivan Kuznetsov
Junior Cybersecurity Engineer · Cyber Security Engineering Student · SIEM/XDR & IAM · Automation
About me
I’m a final-year Cyber Security Engineering student at TalTech and currently working as a Junior Cybersecurity Engineer in Tallinn.
My hands-on experience includes incident investigation and remediation (Cortex XDR), identity and access management, and building SIEM/XDR solutions with Wazuh + custom YARA rules.
I also have practical software development experience (PHP/JavaScript/Python) and enjoy automation workflows with n8n and LLM integrations.
Languages: English (Fluent) · Estonian (Fluent) · Russian (Native)
Skills
Programming & Databases
Python
JavaScript
HTML/CSS
PostgreSQL
REST API
Git
PHP
MySQL
Cybersecurity
SIEM (Wazuh)
XDR/EDR
Threat & Vulnerability Management
Incident Response
YARA
SOAR
CVSS
CIS Benchmarks
MITRE ATT&CK
Cyber Kill Chain
Systems & Networking
Linux (Red Hat, Ubuntu)
Windows Server (AD, GPO, PowerShell, Hyper-V)
Azure Entra ID
Ansible
Cisco IOS
IPSec (Policy & Route-based)
VLANs/NAT/WAN/QoS
Cisco ASA
GLBP
Bash/CLI
Tools & Platforms
Wireshark
Nmap
Elastic Stack
Syslog
KnowBe4
VirusTotal API
Performance Monitor
Blockchain & Automation
n8n
LLM Integrations
Open-source Automation
Retrieval-augmented generation (RAG)
Smart Contracts
Node Deployment & Hardening
Portfolio
AI Sales Assistant (Conversational DB Agent)
Chat assistant that parses free-text intent, keeps conversation memory, and fetches products from PostgreSQL. Frontend + n8n workflows + OpenAI responses.
Orbital Signal Deception Planner
AI-based counter-SIGINT prototype that forecasts 24-hour satellite trajectories and generates rule-based deception tactics.
FinCheck — Personal Finance Tracker
Full-stack web app for budgeting, categorization, and charts with security controls against XSS/SQLi.
Work experience
Junior Cybersecurity Engineer · Admirals Group AS
- Investigated and remediated security incidents using Cortex XDR.
- Managed identity and access in Microsoft Entra ID.
- Performed software security analysis to approve or reject additional applications in line with company policies.
- Ran phishing simulation campaigns to improve security awareness.
Junior Software Developer · Saule IT Services OÜ
- Developed backend-driven frontend solutions in PHP using OOP principles and SOLID architecture with JavaScript integration.
- Implemented DTO-based data flow and validation across backend modules.
- Upgraded legacy CAPTCHA implementation to a modern solution for improved security and UX.
Junior Cybersecurity Engineer · Cybertex Security OÜ
Cyber Security Intern · Cybertex Security OÜ
- Built cost-efficient SIEM/XDR with Wazuh; validated detections in lab scenarios.
- Managed KnowBe4 security awareness: anti-phishing, analytics, training.
- Developed AI assistant automations with n8n for customer support & internal operations.
- Supported monitoring, vulnerability assessments, and incident response.
Assistant Logistics Manager, Operational Logistics Manager · Linkobalt OÜ
- Coordinated international road transport across the EU; managed global import/export routes.
- Performed sanctions/dual-use compliance checks; prepared full customs documentation.
- Improved cross-border processes and ensured regulatory compliance.
Education
Tallinn University of Technology (TalTech)
BSc Cyber Security Engineering
Certifications
SC-900: Security, Compliance & Identity Fundamentals
EITCA/IS — Information Technologies Security Programme
CCNA: Enterprise Networking, Security & Automation
CCNA: Switching, Routing & Wireless Essentials
CCNA: Introduction to Networks
Red Hat System Administration I (RH124)
Red Hat System Administration II (RH134)
Security for Blockchain & DApps Specialization
Digital4Sustainability Learning Path
Contact
Let’s build secure and intelligent systems together.