Gergo Kaman

As an OT Cyber Security Engineer at Siemens Energy, I am responsible for enhancing the cyber security posture of power plants to ensure business continuity. My primary responsibilities include providing support and fine-tuning various IDS/IPS security solutions, conducting risk assessments, and evaluating vulnerabilities to maintain robust security defenses. This role demands a deep understanding of complex security systems and the implementation of proactive measures to mitigate potential threats.

Tools: Tenable OT, Nessus scanner

• Optimized firewall configurations to provide maximum protection without inhibiting productivity or performance.
• Conducted regular audits of IT infrastructure to ensure adherence to established cybersecurity policies and best practices.
• Traveled to client sites to perform onsite testing.

As a SOC Senior Analyst, I was responsible for continuously monitoring and analyzing security events within the organization to identify potential threats and security incidents. Regularly conducted threat detection and event analysis to ensure the effective protection of network and system security. My role was extended to Remediation and Incident response as well.

Tools: Microsoft Defender, Azure analytics, Falcon Crowdstrike, Carbon Black, SPLUNK, Sentinel One, SNOW.

My responsibilities was to assess customer needs and provided tailored solutions and to implement network security systems. Additionally Writing comprehensive system documentation for the customers. Created demonstration environments and conducted webinars for teaching and even marketing purposes. Performed penetration testing and phishing simulations or any tailored Social Engineering tasks.

Tools: Vectra Cognito, Pcysys-Pentera, Thycotic Secret Server, Parrot OS, and Kali Linux. Pentest:Nmap,Aircrackng,Airogeddon,GoPhish,bettercap,maltego,reconng,Metasploitable,Veil Evasion, mimikatz,hydra

I specialized in planning the implementation of Industrial Security Solutions and Provided technical support for SCADA/ICS systems. Engaged in pre-sales activities to meet client requirements and planned and supported Proof of Concept (PoC) initiatives. Monitored ICS systems for IDS/IPS alarms and ensured security and conducted passive vulnerability evaluations.

Tools: Nozomi Guardian, OPSWAT Metadefender, Forescout NAC, Sophos NGFW, PaloAlto NGFW, TeamViewer IoT, Moxa Security, EWON VPN, Waterfall Security, Fidelis Security, and Cyber-X."

Conducted security assessments and provided recommendations for disaster recovery, remote access, network appliances, servers, and directory services. Globally configured and managed Cisco and Juniper switches and efficient and effective troubleshooting of complex multi-vendor network service provider environments.

Demonstrated strong analytical, troubleshooting, and problem-solving skills.

Tools: CA Spectrum, Cisco WLC, Celsius Pinpoint, BMC, Putty, and Wireshark

Provided round-the-clock support for web and client-based applications.

Analyzed and resolved integration issues stemming from system configurations. Supported 1st and 2nd line agents in task completion.

Tools: BMC, ServiceNow, Symantec, Avaya, Airwatch, Druva, Websense, and O365