Ugur ATES

Experience

• 

  ADEO IT Consulting Services

  Jul 2019 - Sept 2019

  Pentester Intern
• 

  BRANDEFENSE

  Jul 2019 - Apr 2022

  Threat Intelligence Analyst

  As a Threat Intelligence Analyst, my role involves a focused and strategic approach to understanding and countering cyber threats:🔍 Malware Analysis: Proficient in dissecting complex malware, I utilize advanced analysis techniques to understand their mechanisms and develop effective countermeasures. This involves detailed investigation into the behavior, origins, and impact of malicious software.🔗 Digital Risk Protection and Management: My responsibilities also extend to managing digital risk, ensuring the organization's online presence and digital assets are protected against various cyber threats. This involves continuous monitoring and analysis to prevent data breaches, fraud, and other digital risks.🌐OSINT: Leveraging Open Source Intelligence (OSINT) to gather critical information, I analyze publicly available data to identify potential threats. This key aspect of my role supports informed decision-making and proactive security measures.🐍 Python for Intelligence Gathering and Analysis: Utilizing Python, I develop tools and scripts to automate and enhance the threat intelligence process. This technical skill aids in efficient data processing and analysis, contributing to more effective threat identification and response.🛡️ Balanced Offensive and Defensive Intelligence: I employ a balanced approach in cyber intelligence, involving both offensive and defensive strategies. This includes identifying vulnerabilities and potential attack vectors, as well as developing robust defensive tactics to protect against them. Show less

• 

  EchoCTI

  May 2022 - Apr 2023

  🔍 Threat Intelligence Process Management: Led the threat intelligence team in proactive monitoring and analysis of cyber threats, contributing to the company's cybersecurity strategy and developing actions to minimize risks.🔐 Threat Hunting (AQL(Qradar), SPL(Splunk), XQL (Palo alto) SIGMA, YARA Rules): Effectively utilized SIGMA and YARA rules to enhance threat hunting and incident response processes, enabling the identification of complex cyber threats and facilitating swift, effective responses.🛡 Expertise in SOC Consultancy: Provided SOC L2 and L3 level technical consultancy, with hands-on experience in setting up and managing SIEM, XDR/EDR, DLP, and PAM tools, enhancing overall security posture. Show less

  • Threat Intelligence Team Leader / SOC L2, L3 Advisor

    May 2022 - Apr 2023

  • Product Owner

    May 2022 - Apr 2023
• 

  Nesine.com

  Apr 2023 - Oct 2023

  Cyber Security Analyst / Incident Responder L2/L3

  🔒 XDR Management, Detection and Response: I am a pioneer in the management and optimization of the company's Extended Detection and Response (XDR) systems, taking a proactive approach against security threats. I continually strengthen the company's cybersecurity posture with advanced threat detection and rapid response capabilities.🛡 DLP (Data Loss Prevention) Management and Policy Writing: I manage DLP systems that are critical for protecting the company's sensitive data. I develop effective policies to prevent data leaks and meet compliance standards.🗃 DAM (Database Access Management): I manage database access safely and efficiently. I ensure database security with authorization and access controls, and create a protection shield against unauthorized access and internal threats.🛡️ Firewall (Network security Analyst): Specializing in monitoring and managing firewall rulesets for optimal network security, while ensuring seamless integration with other security solutions. My expertise lies in maintaining robust and adaptable network defenses against evolving cyber threats.🔍 Expert in YARA & SIGMA Rules: Proficient in crafting and implementing YARA and SIGMA rules for advanced threat detection. My expertise ensures precise identification of malicious activities, enhancing organizational security posture.📊 Proficiency in Query Languages: Skilled in AQL (Audit Query Language), SPL (Search Processing Language), and XQL (eXtended Query Language), leveraging these tools for in-depth analysis and effective detection of complex cyber threats.🛠️ Streamlined Detection Strategies: Specialize in developing proactive detection strategies, integrating cutting-edge technologies and methodologies to stay ahead of evolving cyber risks. Show less

• 

  Enerjisa Üretim

  Oct 2023 - Sept 2024

  Cyber Security Engineer

  - SIEM (Qradar): Rule development, maintenance, and management- EDR/XDR (Defender): Rule development, maintenance, and management- Threat Intelligence: Development of internal resource solutions and management of licensed products- Internal Development Processes (Threat Intelligence, phishing awareness)- DLP

• 

  Papara

  Sept 2024 - Feb 2025

  Senior Cyber Security Engineer

  SOAR: management, maintance and develop playbooksEDR/XDR Management, Detection and Response: I am a pioneer in the management and optimization of the company's Extended Detection and Response (XDR) systems, taking a proactive approach against security threats.- SIEM: Rule development, maintenance, and management- Threat Intelligence: Development of internal resource solutions and management of licensed products